$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft File: bifP0YnuRkQx1LkBO8wHWKgCZOY.mft (raw, json) Hash identifier: l9Bli1bZEuTs+r4vdfgze8bEnRlBdt6GpZfW4ES5xKo= Subject key identifier: 12:87:44:96:70:64:F3:B1:E1:37:A1:A5:3E:26:DE:73:F3:0B:03:D1 Authority key identifier: 6E:27:CF:D1:89:EE:46:44:31:D4:B9:01:3B:CC:07:58:A8:02:64:E6 Certificate issuer: /CN=A9157D13/serialNumber=6E27CFD189EE464431D4B9013BCC0758A80264E6 Certificate serial: 18FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft Manifest number: 18E9 Signing time: Sat 18 Oct 2025 16:50:42 +0000 Manifest this update: Sat 18 Oct 2025 16:50:41 +0000 Manifest next update: Sat 25 Oct 2025 16:50:41 +0000 Files and hashes: 1: bifP0YnuRkQx1LkBO8wHWKgCZOY.crl (hash: F9bwOybizWB9DrAChnHqB3+2tbEUgbaaTSv3GWG5OL8=) 2: 33E73FAAE50B11EF838B6642C4F9AE02.roa (hash: hGExMUb+w4JyWjME6Pb9a+xtMzWk7NBawSO3YXbXwM4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.crl rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:50:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6399 (0x18ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157D13, serialNumber=6E27CFD189EE464431D4B9013BCC0758A80264E6 Validity Not Before: Oct 18 16:50:41 2025 GMT Not After : Oct 25 16:50:41 2025 GMT Subject: CN=68f3c562-106a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:81:57:ad:c3:a1:a5:f5:78:00:1a:16:4a:c6: e3:3c:59:17:7a:a3:e7:fd:45:61:05:99:12:6e:b8: 75:56:b3:2f:70:c9:56:bd:f7:49:36:29:62:fe:a2: 3a:bd:0d:4a:93:b2:0b:ab:60:41:1c:b5:1f:dd:d3: 14:e6:54:85:7e:bf:78:8e:8b:f7:1d:6f:4c:ca:5c: ac:5d:7c:a3:1c:86:e1:7a:96:c8:e4:74:2c:70:d4: 72:97:96:e2:c4:ca:3f:dc:46:a7:38:3b:4a:ab:22: dc:44:4d:b8:70:88:8e:ba:2a:4c:b2:2d:fe:93:23: c5:0c:c4:3c:c1:2a:56:09:0b:df:58:a3:26:7a:69: 1d:52:78:6c:32:41:dd:32:05:af:99:11:5d:04:b5: 38:e5:df:84:8c:b9:85:1a:4d:79:94:9f:1f:7f:36: c6:90:ea:40:1e:b3:c9:21:4e:05:75:6e:60:ae:b5: ca:5d:a7:14:56:22:47:ca:d2:2b:7c:c7:3c:2e:63: 14:e0:b1:9a:5a:7e:44:e9:70:9d:23:2e:6c:b9:ec: e0:12:90:47:2d:df:54:5f:50:06:bc:b3:7e:25:d8: 1f:38:01:8a:2d:3e:6c:0b:e8:49:12:50:7a:54:72: bf:80:97:34:3c:04:9e:ea:10:4d:0d:78:44:33:00: 75:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:87:44:96:70:64:F3:B1:E1:37:A1:A5:3E:26:DE:73:F3:0B:03:D1 X509v3 Authority Key Identifier: keyid:6E:27:CF:D1:89:EE:46:44:31:D4:B9:01:3B:CC:07:58:A8:02:64:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:54:44:bb:6c:5b:bc:75:b7:af:b2:28:26:ed:45:d7:a2:ac: 59:90:39:87:db:6e:46:06:51:9d:15:95:06:e4:9f:10:70:b8: 98:27:82:ab:03:73:48:ac:ed:d0:a8:37:02:01:17:63:0b:de: 2d:b4:db:a0:26:9b:d6:33:77:e3:25:23:36:e5:86:74:cc:5e: d7:52:55:ba:64:64:f9:51:fb:11:f8:93:d8:a0:65:9a:42:85: 55:2c:5c:1c:bb:8c:e5:ae:61:39:72:81:73:28:2d:c8:81:2c: bf:58:fa:f6:11:38:97:8c:f2:b3:fe:6f:8d:9a:c7:89:0b:f4: c6:3b:57:63:14:c7:dd:01:67:f7:40:e5:10:23:4b:53:da:1e: d5:b7:28:e1:ff:17:1b:1a:43:31:f1:62:91:05:02:c3:d3:5a: 04:bf:d8:be:3f:98:c7:4d:08:46:6d:38:df:dd:a3:54:00:26: 73:12:54:b1:2b:01:e5:2f:1d:67:fe:a3:91:6b:7f:9e:6e:65: e5:1a:70:5b:bb:ca:c4:0f:3d:5e:bf:aa:79:8b:4f:ed:a1:30: 58:78:c5:d8:ad:1c:18:7a:ed:7c:f1:f5:c3:50:b3:21:b6:7c: d1:3c:a7:a3:aa:af:43:be:ac:ef:a2:2d:ff:73:ad:e3:73:c2: 75:71:ae:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGP8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEMTMxMTAvBgNVBAUTKDZFMjdDRkQxODlFRTQ2NDQzMUQ0QjkwMTNCQ0MwNzU4 QTgwMjY0RTYwHhcNMjUxMDE4MTY1MDQxWhcNMjUxMDI1MTY1MDQxWjAYMRYwFAYD VQQDEw02OGYzYzU2Mi0xMDZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA84FXrcOhpfV4ABoWSsbjPFkXeqPn/UVhBZkSbrh1VrMvcMlWvfdJNili/qI6 vQ1Kk7ILq2BBHLUf3dMU5lSFfr94jov3HW9MylysXXyjHIbhepbI5HQscNRyl5bi xMo/3EanODtKqyLcRE24cIiOuipMsi3+kyPFDMQ8wSpWCQvfWKMmemkdUnhsMkHd MgWvmRFdBLU45d+EjLmFGk15lJ8ffzbGkOpAHrPJIU4FdW5grrXKXacUViJHytIr fMc8LmMU4LGaWn5E6XCdIy5suezgEpBHLd9UX1AGvLN+JdgfOAGKLT5sC+hJElB6 VHK/gJc0PASe6hBNDXhEMwB1/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBKHRJZw ZPOx4TehpT4m3nPzCwPRMB8GA1UdIwQYMBaAFG4nz9GJ7kZEMdS5ATvMB1ioAmTm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0QxMy9BQTI1REYxQzk4 RkQxMUU3QTgxNDU1NjBDNEY5QUUwMi9iaWZQMFludVJrUXgxTGtCTzh3SFdLZ0Na T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JpZlAwWW51UmtReDFMa0JPOHdIV0tnQ1pPWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0QxMy9BQTI1REYxQzk4RkQxMUU3QTgxNDU1NjBDNEY5QUUwMi9iaWZQMFludVJr UXgxTGtCTzh3SFdLZ0NaT1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxVES7bFu8dbevsigm7UXXoqxZkDmH225GBlGdFZUG5J8QcLiYJ4Kr A3NIrO3QqDcCARdjC94ttNugJpvWM3fjJSM25YZ0zF7XUlW6ZGT5UfsR+JPYoGWa QoVVLFwcu4zlrmE5coFzKC3IgSy/WPr2ETiXjPKz/m+NmseJC/TGO1djFMfdAWf3 QOUQI0tT2h7Vtyjh/xcbGkMx8WKRBQLD01oEv9i+P5jHTQhGbTjf3aNUACZzElSx KwHlLx1n/qORa3+ebmXlGnBbu8rEDz1ev6p5i0/toTBYeMXYrRwYeu188fXDULMh tnzRPKejqq9Dvqzvoi3/c63jc8J1ca4U -----END CERTIFICATE-----Generated at Mon Oct 20 06:49:14 2025 by rpki-client