$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft File: bifP0YnuRkQx1LkBO8wHWKgCZOY.mft (raw, json) Hash identifier: tXrj+yq+Jb59DZ+TZ1Thm5qEeQ+fEQjUwftCvkhju4w= Subject key identifier: 05:BA:A0:F0:71:2F:BD:EC:BE:00:DE:17:0E:DE:70:D9:DA:E5:6F:E7 Authority key identifier: 6E:27:CF:D1:89:EE:46:44:31:D4:B9:01:3B:CC:07:58:A8:02:64:E6 Certificate issuer: /CN=A9157D13/serialNumber=6E27CFD189EE464431D4B9013BCC0758A80264E6 Certificate serial: 18E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft Manifest number: 18CC Signing time: Fri 22 Aug 2025 16:34:39 +0000 Manifest this update: Fri 22 Aug 2025 16:34:38 +0000 Manifest next update: Fri 29 Aug 2025 16:34:38 +0000 Files and hashes: 1: bifP0YnuRkQx1LkBO8wHWKgCZOY.crl (hash: Dii/AHfsCtESLW34T+mse3lL+oDSOqSEQp2Z0fbOso8=) 2: 33E73FAAE50B11EF838B6642C4F9AE02.roa (hash: hGExMUb+w4JyWjME6Pb9a+xtMzWk7NBawSO3YXbXwM4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.crl rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:34:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6370 (0x18e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157D13, serialNumber=6E27CFD189EE464431D4B9013BCC0758A80264E6 Validity Not Before: Aug 22 16:34:38 2025 GMT Not After : Aug 29 16:34:38 2025 GMT Subject: CN=68a89c1e-a7a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:9e:3e:0d:83:7e:a3:51:3c:2e:de:e9:15:fa: 92:65:81:47:37:ac:33:ae:59:d4:68:fc:8e:80:0b: d5:1c:26:38:fa:e7:8b:f1:83:30:2a:41:f9:90:ca: 24:4d:91:7d:36:04:7a:37:03:7f:63:ac:33:5f:5e: 48:dd:fc:ae:76:a7:c5:82:79:30:5d:e0:fd:39:0f: 74:37:dc:6a:5b:73:dd:5e:ee:dc:e5:7b:b1:1b:52: 7b:fa:68:97:27:1a:1b:10:7d:25:3a:10:d5:8b:50: 29:54:85:9e:b1:74:ce:dd:69:79:d5:b7:f0:24:d9: 91:52:7b:e1:69:d4:e5:5c:32:ec:70:21:ff:e3:fb: 3f:60:67:ac:f0:fe:33:56:f7:1a:43:7c:a8:17:a0: f5:c6:99:18:d8:e7:c2:6f:2a:d1:3d:c6:99:a7:54: ed:fc:db:c5:07:b5:ae:8a:39:27:36:2d:91:46:2a: b3:9c:ed:16:25:c7:4e:87:15:37:ab:16:57:15:e0: 4a:2d:50:fd:76:46:dc:ce:69:a6:b3:a9:03:8d:5f: df:20:58:13:eb:16:de:ea:f7:3f:cd:37:61:10:f0: d2:10:8f:9e:73:1a:e4:a5:cd:40:bc:4c:ac:d1:c3: 8c:d8:c9:75:61:27:21:71:20:8a:77:d4:b6:bf:e3: c9:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:BA:A0:F0:71:2F:BD:EC:BE:00:DE:17:0E:DE:70:D9:DA:E5:6F:E7 X509v3 Authority Key Identifier: keyid:6E:27:CF:D1:89:EE:46:44:31:D4:B9:01:3B:CC:07:58:A8:02:64:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:38:c6:f0:bc:a6:8f:79:35:dc:3c:9a:ad:20:24:75:1e:e2: b8:8f:7f:f0:2b:ac:65:35:99:4c:06:21:fb:0b:9a:a0:ba:38: 80:4a:c1:79:a5:5b:1f:07:3b:8b:d5:f2:30:87:5e:d0:4c:77: 45:28:a7:19:db:1e:a8:ed:92:b3:2f:ce:a2:5e:68:c6:ed:74: 10:22:dc:df:61:a8:83:4e:9b:cc:b2:53:90:61:dc:27:42:c1: 73:47:95:82:a0:dc:6f:84:86:b2:ec:2d:a8:7c:5d:44:26:48: d9:a3:a0:91:ee:14:bb:bb:a7:18:41:37:fa:29:75:b3:4b:65: ba:d9:17:1d:48:ab:38:99:3c:0e:11:3b:8b:c2:15:f1:53:98: bf:b2:bd:58:90:6d:d8:85:8a:27:3b:09:41:61:c1:c2:a3:27: 7e:00:43:ac:33:c3:58:69:30:69:93:29:c7:99:f3:ad:f5:35: c6:5c:f7:f4:21:bb:ad:d1:7a:5b:93:c3:32:50:33:26:0e:a6: d9:10:b0:6d:2f:89:8b:87:5d:08:8b:a6:bb:84:7d:97:6d:ea: a5:2b:41:b0:ea:ca:3f:19:9a:d9:3f:59:be:ee:6b:b9:e5:98: a2:52:ac:74:b5:17:bf:4e:33:4f:8c:3c:b2:15:08:a2:ac:12: f1:ad:ca:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGOIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEMTMxMTAvBgNVBAUTKDZFMjdDRkQxODlFRTQ2NDQzMUQ0QjkwMTNCQ0MwNzU4 QTgwMjY0RTYwHhcNMjUwODIyMTYzNDM4WhcNMjUwODI5MTYzNDM4WjAYMRYwFAYD VQQDEw02OGE4OWMxZS1hN2EyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtJ4+DYN+o1E8Lt7pFfqSZYFHN6wzrlnUaPyOgAvVHCY4+ueL8YMwKkH5kMok TZF9NgR6NwN/Y6wzX15I3fyudqfFgnkwXeD9OQ90N9xqW3PdXu7c5XuxG1J7+miX JxobEH0lOhDVi1ApVIWesXTO3Wl51bfwJNmRUnvhadTlXDLscCH/4/s/YGes8P4z VvcaQ3yoF6D1xpkY2OfCbyrRPcaZp1Tt/NvFB7WuijknNi2RRiqznO0WJcdOhxU3 qxZXFeBKLVD9dkbczmmms6kDjV/fIFgT6xbe6vc/zTdhEPDSEI+ecxrkpc1AvEys 0cOM2Ml1YSchcSCKd9S2v+PJ7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAW6oPBx L73svgDeFw7ecNna5W/nMB8GA1UdIwQYMBaAFG4nz9GJ7kZEMdS5ATvMB1ioAmTm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0QxMy9BQTI1REYxQzk4 RkQxMUU3QTgxNDU1NjBDNEY5QUUwMi9iaWZQMFludVJrUXgxTGtCTzh3SFdLZ0Na T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JpZlAwWW51UmtReDFMa0JPOHdIV0tnQ1pPWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0QxMy9BQTI1REYxQzk4RkQxMUU3QTgxNDU1NjBDNEY5QUUwMi9iaWZQMFludVJr UXgxTGtCTzh3SFdLZ0NaT1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANOMbwvKaPeTXcPJqtICR1HuK4j3/wK6xlNZlMBiH7C5qgujiASsF5 pVsfBzuL1fIwh17QTHdFKKcZ2x6o7ZKzL86iXmjG7XQQItzfYaiDTpvMslOQYdwn QsFzR5WCoNxvhIay7C2ofF1EJkjZo6CR7hS7u6cYQTf6KXWzS2W62RcdSKs4mTwO ETuLwhXxU5i/sr1YkG3YhYonOwlBYcHCoyd+AEOsM8NYaTBpkynHmfOt9TXGXPf0 Ibut0Xpbk8MyUDMmDqbZELBtL4mLh10Ii6a7hH2XbeqlK0Gw6so/GZrZP1m+7mu5 5ZiiUqx0tRe/TjNPjDyyFQiirBLxrcp0 -----END CERTIFICATE-----Generated at Sat Aug 23 18:34:21 2025 by rpki-client