$ rpki-client -vvf rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.mft File: BdJLO4oiJ7b-6S3NJdVL8F7oaMo.mft (raw, json) Hash identifier: ua+FNssE05bOsp1OGjoZnqY2hLmrKOCm8iZEKCalIHo= Subject key identifier: 61:F0:A4:09:42:CB:92:F8:7D:7F:F5:55:1D:D1:BC:F1:07:B2:41:C8 Authority key identifier: 05:D2:4B:3B:8A:22:27:B6:FE:E9:2D:CD:25:D5:4B:F0:5E:E8:68:CA Certificate issuer: /CN=A9157724/serialNumber=05D24B3B8A2227B6FEE92DCD25D54BF05EE868CA Certificate serial: 016B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.mft Manifest number: 0165 Signing time: Sun 19 Oct 2025 06:46:34 +0000 Manifest this update: Sun 19 Oct 2025 06:46:34 +0000 Manifest next update: Sun 26 Oct 2025 06:46:34 +0000 Files and hashes: 1: BdJLO4oiJ7b-6S3NJdVL8F7oaMo.crl (hash: VUbk8U/YXA8vNQyLrMl0R9XYThlDygLieStFs0sZTkI=) 2: 6063C75CB6E411EE94471D14C4F9AE02.roa (hash: 5GVQ1bIBa+U3v3tASIB7alCOpvULFOKmUN8ptv6R1ws=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.crl rsync://rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:46:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 363 (0x16b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157724, serialNumber=05D24B3B8A2227B6FEE92DCD25D54BF05EE868CA Validity Not Before: Oct 19 06:46:34 2025 GMT Not After : Oct 26 06:46:34 2025 GMT Subject: CN=68f4894a-9bb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:93:db:5b:53:f9:49:03:0c:c2:52:32:c2:25: 5a:be:f8:9d:0c:2d:0b:39:45:3d:83:de:bd:46:c3: f1:99:c8:fa:b4:a6:1b:44:df:56:ab:3a:22:9e:82: 3b:4d:57:65:d0:6d:1c:84:4e:33:7e:aa:22:04:81: c3:f5:ae:e9:c0:2a:31:ad:6e:8a:6f:5e:0e:e8:92: 1a:4a:2e:e0:fe:20:30:54:2d:87:b7:ed:9a:88:a1: 9e:64:da:3f:29:ed:61:87:a5:50:f7:e8:49:7c:4c: 0e:19:59:35:4f:1b:59:f5:db:15:e6:a3:cb:bf:81: 84:4d:29:fd:96:fb:84:dd:6c:34:1d:ed:16:1c:0b: 60:4f:51:ce:49:3f:65:4b:5e:78:7e:ac:2f:ec:52: 70:67:6f:01:de:fe:c5:4c:88:c8:d6:73:22:94:fd: f0:a3:c6:83:14:85:f7:a3:71:54:dd:73:36:4f:51: 85:2d:04:52:55:d6:40:02:81:c6:bf:83:2d:5f:42: b7:aa:ef:ee:77:04:91:1f:1d:59:ff:a4:8e:47:aa: 46:c6:30:a1:1f:bd:67:5f:80:4c:13:b1:5a:0e:20: 55:28:63:a5:50:3b:8d:c4:7d:3b:e5:e9:dd:cf:58: 9b:96:c3:42:13:0c:0f:8b:0d:a4:83:36:a0:93:e3: 38:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:F0:A4:09:42:CB:92:F8:7D:7F:F5:55:1D:D1:BC:F1:07:B2:41:C8 X509v3 Authority Key Identifier: keyid:05:D2:4B:3B:8A:22:27:B6:FE:E9:2D:CD:25:D5:4B:F0:5E:E8:68:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:9a:86:0a:3b:92:57:7d:4c:22:1c:9c:d8:2d:64:ab:66:ba: 79:cf:80:a5:a5:5f:84:86:aa:4a:4d:83:bd:39:ca:a7:a3:08: 39:c0:9d:2f:9d:cf:a2:f6:88:0d:cd:53:06:78:d7:d4:0e:32: 11:b8:e3:7d:a3:57:c1:7b:8f:53:70:df:5b:6a:d5:b2:e2:43: 62:0b:90:cb:e2:67:bd:0c:5a:a4:a6:95:40:5e:5e:81:69:72: 58:bf:da:0f:23:0b:2c:91:2b:8f:8d:3b:cd:c3:6c:d0:2b:23: 33:78:aa:6c:ff:ce:e1:a9:bf:98:c3:0f:b5:b5:69:cb:07:54: 0a:a2:75:78:34:6d:53:be:b7:b2:8b:86:03:0b:b8:cb:6d:5c: 61:17:e3:29:5e:be:84:17:a7:00:e5:d4:9c:71:9b:a7:91:7d: f2:86:f0:a2:fb:63:dc:b6:e4:a6:22:04:97:03:ce:2a:4e:d2: 07:67:13:03:7e:08:35:47:4c:e7:c9:8b:72:e3:71:7b:a7:11: cb:95:64:13:ee:b5:5d:fd:58:94:08:4b:cb:e8:5f:82:d4:52: 41:67:ad:97:2f:c8:4e:dc:9e:87:81:aa:85:a5:46:01:47:41: 11:6a:a5:bf:30:d5:80:64:9e:8b:1e:22:18:d7:b6:8f:04:a1: cc:f1:58:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc3MjQxMTAvBgNVBAUTKDA1RDI0QjNCOEEyMjI3QjZGRUU5MkRDRDI1RDU0QkYw NUVFODY4Q0EwHhcNMjUxMDE5MDY0NjM0WhcNMjUxMDI2MDY0NjM0WjAYMRYwFAYD VQQDEw02OGY0ODk0YS05YmI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6ZPbW1P5SQMMwlIywiVavvidDC0LOUU9g969RsPxmcj6tKYbRN9WqzoinoI7 TVdl0G0chE4zfqoiBIHD9a7pwCoxrW6Kb14O6JIaSi7g/iAwVC2Ht+2aiKGeZNo/ Ke1hh6VQ9+hJfEwOGVk1TxtZ9dsV5qPLv4GETSn9lvuE3Ww0He0WHAtgT1HOST9l S154fqwv7FJwZ28B3v7FTIjI1nMilP3wo8aDFIX3o3FU3XM2T1GFLQRSVdZAAoHG v4MtX0K3qu/udwSRHx1Z/6SOR6pGxjChH71nX4BME7FaDiBVKGOlUDuNxH075end z1iblsNCEwwPiw2kgzagk+M4dQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGHwpAlC y5L4fX/1VR3RvPEHskHIMB8GA1UdIwQYMBaAFAXSSzuKIie2/uktzSXVS/Be6GjK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzcyNC9ENzM5ODcyODk1 ODcxMUVFQUQzQkIyNjJDNEY5QUUwMi9CZEpMTzRvaUo3Yi02UzNOSmRWTDhGN29h TW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JkSkxPNG9pSjdiLTZTM05KZFZMOEY3b2FNby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzcyNC9ENzM5ODcyODk1ODcxMUVFQUQzQkIyNjJDNEY5QUUwMi9CZEpMTzRvaUo3 Yi02UzNOSmRWTDhGN29hTW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOmoYKO5JXfUwiHJzYLWSrZrp5z4ClpV+EhqpKTYO9Ocqnowg5wJ0v nc+i9ogNzVMGeNfUDjIRuON9o1fBe49TcN9batWy4kNiC5DL4me9DFqkppVAXl6B aXJYv9oPIwsskSuPjTvNw2zQKyMzeKps/87hqb+Yww+1tWnLB1QKonV4NG1Tvrey i4YDC7jLbVxhF+MpXr6EF6cA5dSccZunkX3yhvCi+2PctuSmIgSXA84qTtIHZxMD fgg1R0znyYty43F7pxHLlWQT7rVd/ViUCEvL6F+C1FJBZ62XL8hO3J6HgaqFpUYB R0ERaqW/MNWAZJ6LHiIY17aPBKHM8VhX -----END CERTIFICATE-----Generated at Mon Oct 20 10:35:24 2025 by rpki-client