$ rpki-client -vvf rpki.apnic.net/member_repository/A916F536/EAAEDED0898A11ECB6A4F70BC4F9AE02/bailJkp9xvzYjT1M3PSGecJi9w4.mft File: bailJkp9xvzYjT1M3PSGecJi9w4.mft (raw, json) Hash identifier: q6pnKkC2QOEKWvMH3/9AihxQfWQfG5mjUn9uEz5dYdo= Subject key identifier: 95:1F:2C:B4:8C:23:5A:E0:75:2D:D2:D1:38:9A:4C:C6:76:EC:4D:A7 Authority key identifier: 6D:A8:A5:26:4A:7D:C6:FC:D8:8D:3D:4C:DC:F4:86:79:C2:62:F7:0E Certificate issuer: /CN=A916F536/serialNumber=6DA8A5264A7DC6FCD88D3D4CDCF48679C262F70E Certificate serial: 0416 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bailJkp9xvzYjT1M3PSGecJi9w4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916F536/EAAEDED0898A11ECB6A4F70BC4F9AE02/bailJkp9xvzYjT1M3PSGecJi9w4.mft Manifest number: 0411 Signing time: Sun 19 Oct 2025 02:20:11 +0000 Manifest this update: Sun 19 Oct 2025 02:20:11 +0000 Manifest next update: Sun 26 Oct 2025 02:20:11 +0000 Files and hashes: 1: bailJkp9xvzYjT1M3PSGecJi9w4.crl (hash: HmGYUIMq5veR6vY3LvVqx7tkiFzWEKCiju7YO//gnRA=) 2: 07C387B6898E11EC9543A60FC4F9AE02.roa (hash: wmX3QKZrSQQ7FG7PQhgo2nOfqEWOBLWRdVunA8VWCRo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916F536/EAAEDED0898A11ECB6A4F70BC4F9AE02/bailJkp9xvzYjT1M3PSGecJi9w4.crl rsync://rpki.apnic.net/member_repository/A916F536/EAAEDED0898A11ECB6A4F70BC4F9AE02/bailJkp9xvzYjT1M3PSGecJi9w4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bailJkp9xvzYjT1M3PSGecJi9w4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:20:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1046 (0x416) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916F536, serialNumber=6DA8A5264A7DC6FCD88D3D4CDCF48679C262F70E Validity Not Before: Oct 19 02:20:11 2025 GMT Not After : Oct 26 02:20:11 2025 GMT Subject: CN=68f44adb-802c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:d4:dd:24:be:49:c8:22:41:e4:d8:87:e9:59: 58:42:e5:49:69:55:6f:ad:99:96:f5:30:d8:b1:32: 58:05:e2:95:97:60:85:d5:2a:ba:39:02:84:e8:5a: 16:4e:a6:a1:96:bd:8c:1b:f9:f1:0e:15:d0:c8:37: 22:b4:87:fd:b7:19:f8:76:bc:6c:ca:e8:a4:56:63: 7a:e2:9b:37:e1:f6:c1:6e:f6:5b:b2:0b:71:9a:cd: e7:84:c9:8f:fc:bd:12:9d:09:b0:57:e5:e0:a3:c4: e7:d6:fb:b3:a7:fc:bd:00:90:92:a1:99:c3:40:9f: 45:e0:e0:25:ac:eb:87:4a:e7:6e:ca:c3:67:a0:32: 79:31:66:50:e5:bc:3c:2b:85:13:4d:72:7d:77:98: b1:c7:72:86:d9:f3:36:36:82:86:6a:e4:9d:05:34: 57:72:21:86:66:9b:f5:60:c9:e2:f8:22:6d:6c:ed: 4d:15:77:04:1c:bb:20:09:6c:44:4f:4f:3c:fd:9c: 1d:8d:d2:a3:fa:3a:9d:5b:d7:a3:f7:da:13:38:5c: 51:0d:ef:f1:1b:6a:10:d5:09:90:e6:1a:b3:3f:a5: df:d0:bd:b4:e2:41:a3:68:17:77:3d:5a:c8:72:5f: b5:6b:75:e3:68:ec:9d:8e:e2:eb:e7:64:d7:34:ce: 85:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:1F:2C:B4:8C:23:5A:E0:75:2D:D2:D1:38:9A:4C:C6:76:EC:4D:A7 X509v3 Authority Key Identifier: keyid:6D:A8:A5:26:4A:7D:C6:FC:D8:8D:3D:4C:DC:F4:86:79:C2:62:F7:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916F536/EAAEDED0898A11ECB6A4F70BC4F9AE02/bailJkp9xvzYjT1M3PSGecJi9w4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bailJkp9xvzYjT1M3PSGecJi9w4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916F536/EAAEDED0898A11ECB6A4F70BC4F9AE02/bailJkp9xvzYjT1M3PSGecJi9w4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:d9:e7:86:2c:43:69:32:88:18:c5:ab:b3:62:bf:ba:5e:7d: 6a:f9:d7:68:87:53:8a:5c:01:56:e1:23:c2:f4:c1:10:0b:3f: 52:1b:62:95:da:8b:5e:29:54:64:09:33:79:1f:9a:78:78:05: 08:ce:d3:3c:64:85:e3:b6:80:b4:c7:e5:6a:cf:86:b0:ff:7e: 13:8d:21:1e:95:f9:43:7c:38:11:c8:c3:2a:6a:c7:3c:c7:83: 18:e3:c7:ef:8e:ac:48:68:db:f9:6f:8a:72:25:95:81:e1:a7: 62:cf:6a:02:35:94:8a:50:98:9c:37:eb:16:ee:36:b9:d3:86: dc:3f:c6:1c:98:7b:f6:38:f0:4c:76:68:b3:21:44:90:eb:c4: 25:02:95:5f:ef:ce:dd:75:09:b7:bc:7b:df:43:76:67:30:1a: 7a:ef:27:cf:b5:c7:9c:b8:5d:84:79:5d:e3:c0:ee:22:48:fd: cf:93:c3:ce:ec:8e:dd:cd:d6:a9:ec:85:ab:40:bc:07:3c:0c: 22:ee:36:13:0a:6b:d8:5c:98:a7:86:cb:32:21:62:f5:27:e5: 1b:1d:7c:6d:4f:9d:74:bb:24:09:22:c3:9a:c6:e1:46:5e:d1: a8:51:0d:70:38:13:af:e7:36:4c:22:a7:59:de:62:b7:39:53: 36:27:35:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkY1MzYxMTAvBgNVBAUTKDZEQThBNTI2NEE3REM2RkNEODhEM0Q0Q0RDRjQ4Njc5 QzI2MkY3MEUwHhcNMjUxMDE5MDIyMDExWhcNMjUxMDI2MDIyMDExWjAYMRYwFAYD VQQDEw02OGY0NGFkYi04MDJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4dTdJL5JyCJB5NiH6VlYQuVJaVVvrZmW9TDYsTJYBeKVl2CF1Sq6OQKE6FoW Tqahlr2MG/nxDhXQyDcitIf9txn4drxsyuikVmN64ps34fbBbvZbsgtxms3nhMmP /L0SnQmwV+Xgo8Tn1vuzp/y9AJCSoZnDQJ9F4OAlrOuHSuduysNnoDJ5MWZQ5bw8 K4UTTXJ9d5ixx3KG2fM2NoKGauSdBTRXciGGZpv1YMni+CJtbO1NFXcEHLsgCWxE T088/ZwdjdKj+jqdW9ej99oTOFxRDe/xG2oQ1QmQ5hqzP6Xf0L204kGjaBd3PVrI cl+1a3XjaOydjuLr52TXNM6FowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJUfLLSM I1rgdS3S0TiaTMZ27E2nMB8GA1UdIwQYMBaAFG2opSZKfcb82I09TNz0hnnCYvcO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RjUzNi9FQUFFREVEMDg5 OEExMUVDQjZBNEY3MEJDNEY5QUUwMi9iYWlsSmtwOXh2ellqVDFNM1BTR2VjSmk5 dzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JhaWxKa3A5eHZ6WWpUMU0zUFNHZWNKaTl3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RjUzNi9FQUFFREVEMDg5OEExMUVDQjZBNEY3MEJDNEY5QUUwMi9iYWlsSmtwOXh2 ellqVDFNM1BTR2VjSmk5dzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCS2eeGLENpMogYxauzYr+6Xn1q+ddoh1OKXAFW4SPC9MEQCz9SG2KV 2oteKVRkCTN5H5p4eAUIztM8ZIXjtoC0x+Vqz4aw/34TjSEelflDfDgRyMMqasc8 x4MY48fvjqxIaNv5b4pyJZWB4adiz2oCNZSKUJicN+sW7ja504bcP8YcmHv2OPBM dmizIUSQ68QlApVf787ddQm3vHvfQ3ZnMBp67yfPtcecuF2EeV3jwO4iSP3Pk8PO 7I7dzdap7IWrQLwHPAwi7jYTCmvYXJinhssyIWL1J+UbHXxtT510uyQJIsOaxuFG XtGoUQ1wOBOv5zZMIqdZ3mK3OVM2JzUf -----END CERTIFICATE-----Generated at Sun Oct 19 23:32:12 2025 by rpki-client