$ rpki-client -vvf rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft File: bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft (raw, json) Hash identifier: y+BEen83VhDGwHfEeSGcQUhaywpdStGCFue2Bm33nyo= Subject key identifier: D3:34:3B:4A:4B:34:47:43:A4:DF:4A:FC:E4:F7:FF:74:80:C3:F4:60 Authority key identifier: 6D:DE:C6:A1:71:29:23:0E:EE:FE:50:8A:F1:19:62:FB:4C:0F:6F:C2 Certificate issuer: /CN=A9167C9C/serialNumber=6DDEC6A17129230EEEFE508AF11962FB4C0F6FC2 Certificate serial: 05CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bd7GoXEpIw7u_lCK8Rli-0wPb8I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft Manifest number: 05C5 Signing time: Sun 19 Oct 2025 00:44:25 +0000 Manifest this update: Sun 19 Oct 2025 00:44:25 +0000 Manifest next update: Sun 26 Oct 2025 00:44:25 +0000 Files and hashes: 1: bd7GoXEpIw7u_lCK8Rli-0wPb8I.crl (hash: FKQyNT0p06WsWKNY6vHdj5qo5MbGFHvCOf2Mdn7L6f0=) 2: BF811486DC1E11EBB2C72F52C4F9AE02.roa (hash: tkST3vaKxeiP20POIYCSnEB6Q6omsC/qv/TzKr9coAY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.crl rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bd7GoXEpIw7u_lCK8Rli-0wPb8I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:44:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1482 (0x5ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167C9C, serialNumber=6DDEC6A17129230EEEFE508AF11962FB4C0F6FC2 Validity Not Before: Oct 19 00:44:25 2025 GMT Not After : Oct 26 00:44:25 2025 GMT Subject: CN=68f43469-6691 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:d7:dd:09:e7:b6:28:a9:66:94:91:bf:d1:cb: a8:ed:2f:dd:0c:37:28:32:4d:37:1c:d6:16:ce:b3: 44:5e:91:7a:ed:8d:d9:4f:88:f5:20:5c:cb:4a:21: aa:4f:cf:6c:fb:c0:36:89:b7:92:41:94:8c:db:e5: f6:33:70:8c:73:ea:68:ba:0a:65:ca:b9:4d:dc:74: 27:a3:8e:ee:5f:6d:b0:c5:9e:72:0b:4e:29:a6:c6: 79:ee:ec:cf:b9:f4:9e:1b:97:b8:b9:22:dd:01:8a: 09:0b:af:69:b1:ff:70:02:47:d5:44:30:55:d3:31: d8:c5:14:2b:b7:ad:f0:d5:5c:49:0c:b2:32:dc:f1: 78:59:d2:73:78:12:84:b1:c2:79:8a:9d:31:ad:41: 45:f6:75:ff:d0:e6:2f:d5:98:2b:f2:b9:5a:49:42: f7:ca:4c:f5:e8:db:e1:57:14:dc:60:2b:b3:e1:29: f6:d0:be:7a:47:33:16:c1:ff:da:f3:97:5f:9a:06: 39:95:d8:b2:ab:5d:6f:a5:43:c7:e4:8d:01:ca:78: c1:d6:c6:bf:64:07:71:3d:54:8a:b2:8e:04:ca:70: 66:0d:5e:18:28:94:db:8d:5d:e1:f2:91:a6:d0:47: e3:02:8c:18:39:f3:d0:7b:6e:de:97:47:9b:95:cf: 02:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:34:3B:4A:4B:34:47:43:A4:DF:4A:FC:E4:F7:FF:74:80:C3:F4:60 X509v3 Authority Key Identifier: keyid:6D:DE:C6:A1:71:29:23:0E:EE:FE:50:8A:F1:19:62:FB:4C:0F:6F:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bd7GoXEpIw7u_lCK8Rli-0wPb8I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:d2:ee:31:e3:64:f8:ff:d3:4f:09:ea:84:6f:dd:44:49:8f: 6e:68:ad:b3:1a:ae:29:e1:34:c1:ef:20:18:68:c3:41:7b:46: 2e:53:bd:12:6b:ea:37:be:cc:3d:f7:6e:d9:27:dd:1b:ea:cb: 0c:01:fd:3f:9b:39:45:8d:46:8c:07:13:d5:e8:2a:f1:61:67: d1:3d:6d:1b:8c:32:df:e5:9a:f4:5a:41:ae:f6:51:c6:51:69: 5c:ff:d5:f2:4c:d6:4b:f9:90:f8:ee:b5:17:b9:1a:b6:e1:70: a4:ea:dc:e2:e4:40:5a:8f:b6:39:3e:2a:bc:5a:19:5e:db:16: de:15:cd:a0:7c:26:81:0f:4b:e4:bb:c5:2d:cd:85:8a:77:0f: d8:35:c2:52:e0:87:19:30:ed:93:5d:9f:e0:94:1a:d2:1d:69: ff:30:69:04:35:94:82:9d:ec:5a:55:ea:73:3e:8a:4a:5a:05: be:1c:04:f8:9c:b0:f9:88:e5:95:28:55:be:70:83:65:e8:97: 44:5f:cd:d7:62:51:cc:92:73:66:7e:2a:1a:cb:de:94:67:fa: 3a:83:e9:f0:0f:90:c5:4c:6a:d3:52:20:d2:b5:08:fe:41:19: 62:e5:64:14:6c:ef:aa:df:10:9a:db:1e:73:60:24:56:b7:f6: 27:9e:1f:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBcowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDOUMxMTAvBgNVBAUTKDZEREVDNkExNzEyOTIzMEVFRUZFNTA4QUYxMTk2MkZC NEMwRjZGQzIwHhcNMjUxMDE5MDA0NDI1WhcNMjUxMDI2MDA0NDI1WjAYMRYwFAYD VQQDEw02OGY0MzQ2OS02NjkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp9fdCee2KKlmlJG/0cuo7S/dDDcoMk03HNYWzrNEXpF67Y3ZT4j1IFzLSiGq T89s+8A2ibeSQZSM2+X2M3CMc+pougplyrlN3HQno47uX22wxZ5yC04ppsZ57uzP ufSeG5e4uSLdAYoJC69psf9wAkfVRDBV0zHYxRQrt63w1VxJDLIy3PF4WdJzeBKE scJ5ip0xrUFF9nX/0OYv1Zgr8rlaSUL3ykz16NvhVxTcYCuz4Sn20L56RzMWwf/a 85dfmgY5ldiyq11vpUPH5I0BynjB1sa/ZAdxPVSKso4EynBmDV4YKJTbjV3h8pGm 0EfjAowYOfPQe27el0eblc8CrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNM0O0pL NEdDpN9K/OT3/3SAw/RgMB8GA1UdIwQYMBaAFG3exqFxKSMO7v5QivEZYvtMD2/C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0M5Qy85QjZDNDI4MERD MUIxMUVCQTYzNTUwNEVDNEY5QUUwMi9iZDdHb1hFcEl3N3VfbENLOFJsaS0wd1Bi OEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JkN0dvWEVwSXc3dV9sQ0s4UmxpLTB3UGI4SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0M5Qy85QjZDNDI4MERDMUIxMUVCQTYzNTUwNEVDNEY5QUUwMi9iZDdHb1hFcEl3 N3VfbENLOFJsaS0wd1BiOEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAb0u4x42T4/9NPCeqEb91ESY9uaK2zGq4p4TTB7yAYaMNBe0YuU70S a+o3vsw9927ZJ90b6ssMAf0/mzlFjUaMBxPV6CrxYWfRPW0bjDLf5Zr0WkGu9lHG UWlc/9XyTNZL+ZD47rUXuRq24XCk6tzi5EBaj7Y5Piq8Whle2xbeFc2gfCaBD0vk u8UtzYWKdw/YNcJS4IcZMO2TXZ/glBrSHWn/MGkENZSCnexaVepzPopKWgW+HAT4 nLD5iOWVKFW+cINl6JdEX83XYlHMknNmfioay96UZ/o6g+nwD5DFTGrTUiDStQj+ QRli5WQUbO+q3xCa2x5zYCRWt/Ynnh/f -----END CERTIFICATE-----Generated at Mon Oct 20 01:44:32 2025 by rpki-client