$ rpki-client -vvf rpki.apnic.net/member_repository/A916F536/EAAEDED0898A11ECB6A4F70BC4F9AE02/bailJkp9xvzYjT1M3PSGecJi9w4.mft File: bailJkp9xvzYjT1M3PSGecJi9w4.mft (raw, json) Hash identifier: RJ4HKTIW6MuYGXlunfKth24eIyl7hSA+TK6MkYMk5ko= Subject key identifier: B5:02:DC:78:EC:B1:05:70:74:08:04:8B:C3:E8:16:5D:57:48:62:B1 Authority key identifier: 6D:A8:A5:26:4A:7D:C6:FC:D8:8D:3D:4C:DC:F4:86:79:C2:62:F7:0E Certificate issuer: /CN=A916F536/serialNumber=6DA8A5264A7DC6FCD88D3D4CDCF48679C262F70E Certificate serial: 03F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bailJkp9xvzYjT1M3PSGecJi9w4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916F536/EAAEDED0898A11ECB6A4F70BC4F9AE02/bailJkp9xvzYjT1M3PSGecJi9w4.mft Manifest number: 03F4 Signing time: Sat 23 Aug 2025 00:44:12 +0000 Manifest this update: Sat 23 Aug 2025 00:44:12 +0000 Manifest next update: Sat 30 Aug 2025 00:44:12 +0000 Files and hashes: 1: bailJkp9xvzYjT1M3PSGecJi9w4.crl (hash: iyPfcLB0hSkhfrME6NfP+tklbISDguy8RgJjtM/hr4c=) 2: 07C387B6898E11EC9543A60FC4F9AE02.roa (hash: wmX3QKZrSQQ7FG7PQhgo2nOfqEWOBLWRdVunA8VWCRo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916F536/EAAEDED0898A11ECB6A4F70BC4F9AE02/bailJkp9xvzYjT1M3PSGecJi9w4.crl rsync://rpki.apnic.net/member_repository/A916F536/EAAEDED0898A11ECB6A4F70BC4F9AE02/bailJkp9xvzYjT1M3PSGecJi9w4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bailJkp9xvzYjT1M3PSGecJi9w4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:44:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1017 (0x3f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916F536, serialNumber=6DA8A5264A7DC6FCD88D3D4CDCF48679C262F70E Validity Not Before: Aug 23 00:44:12 2025 GMT Not After : Aug 30 00:44:12 2025 GMT Subject: CN=68a90edc-8278 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:fa:b1:2a:fd:a6:1b:94:2a:bd:f0:61:38:f6: e8:ea:86:5d:bc:29:ba:08:93:99:c9:4f:46:36:b9: d5:53:2f:9c:4d:98:4e:50:cf:7c:5e:d5:cb:1e:d5: 31:14:33:7d:cf:a8:d9:66:a6:b7:1a:5e:29:9c:84: 08:8d:4f:10:d1:8a:be:7e:b7:61:1e:25:dc:34:3c: 89:e9:44:97:9f:cc:95:6e:23:10:da:03:34:1d:1c: bf:87:26:1a:4a:64:c9:b4:39:0b:f8:a3:ba:84:31: 1a:b5:8f:80:41:35:21:fa:5b:71:f8:f9:90:84:52: a8:79:7e:e8:b4:c3:b0:67:4b:37:c0:df:af:d8:5e: 58:34:99:be:1e:2e:4f:ef:93:8e:14:ef:1c:5e:d2: 74:3e:ba:b1:96:a0:f2:94:d8:26:a1:c2:18:85:97: a7:fc:b3:18:c0:95:16:06:55:59:78:af:18:40:90: ca:7b:81:fb:6b:d7:54:3a:06:6b:4a:69:48:9c:28: fa:6d:59:3b:0e:4b:f7:84:bf:03:7b:7b:3f:96:42: b0:ef:d5:44:5f:81:0d:50:97:9f:55:de:2f:37:90: 13:50:17:b0:1d:4b:7e:8d:a4:df:a0:11:bc:74:f1: 28:00:1f:10:12:c8:e7:ab:3d:d9:0c:22:f0:48:57: 6e:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:02:DC:78:EC:B1:05:70:74:08:04:8B:C3:E8:16:5D:57:48:62:B1 X509v3 Authority Key Identifier: keyid:6D:A8:A5:26:4A:7D:C6:FC:D8:8D:3D:4C:DC:F4:86:79:C2:62:F7:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916F536/EAAEDED0898A11ECB6A4F70BC4F9AE02/bailJkp9xvzYjT1M3PSGecJi9w4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bailJkp9xvzYjT1M3PSGecJi9w4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916F536/EAAEDED0898A11ECB6A4F70BC4F9AE02/bailJkp9xvzYjT1M3PSGecJi9w4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:07:1c:86:57:53:39:f4:fd:47:b8:d9:09:a9:d0:bc:ad:40: c9:6c:67:5b:84:2c:ac:3a:0e:5b:4b:8f:62:da:df:34:08:f5: f0:60:8f:b4:8a:ca:88:a0:18:cd:5d:90:00:2b:39:25:66:ae: f8:4d:50:70:b7:e4:63:07:db:b7:57:ec:dc:ab:51:2e:0a:aa: d1:2a:9d:e6:76:12:89:95:fc:3f:58:b2:93:8b:34:0d:92:2e: f2:1f:42:11:81:50:df:71:8f:3a:5c:4c:78:6e:f8:69:e3:22: 1e:c6:b8:c3:df:c0:5b:95:03:20:a7:88:c1:30:31:00:1a:6d: 76:86:61:21:52:92:f3:82:f7:11:eb:bf:86:ff:02:3a:fa:20: 90:ff:61:dc:a4:42:41:4f:7d:68:b3:70:c7:74:e3:17:81:c5: 05:6d:e8:3c:7f:1d:9c:97:dd:18:42:ce:6e:8a:0b:c9:52:45: 6c:11:29:45:eb:72:1e:ce:2e:bb:c6:66:f2:1d:cd:d3:4e:13: 21:11:f9:03:eb:70:73:db:e7:bc:79:4f:06:35:4e:b8:ed:0c: 6e:12:cc:a8:7a:5f:c4:25:bc:ad:53:7a:2f:03:2d:bc:97:c9: cd:0b:24:bf:c8:f9:e6:da:43:af:ef:59:a8:12:fb:05:1f:2a: d5:90:8b:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkY1MzYxMTAvBgNVBAUTKDZEQThBNTI2NEE3REM2RkNEODhEM0Q0Q0RDRjQ4Njc5 QzI2MkY3MEUwHhcNMjUwODIzMDA0NDEyWhcNMjUwODMwMDA0NDEyWjAYMRYwFAYD VQQDEw02OGE5MGVkYy04Mjc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6/qxKv2mG5QqvfBhOPbo6oZdvCm6CJOZyU9GNrnVUy+cTZhOUM98XtXLHtUx FDN9z6jZZqa3Gl4pnIQIjU8Q0Yq+frdhHiXcNDyJ6USXn8yVbiMQ2gM0HRy/hyYa SmTJtDkL+KO6hDEatY+AQTUh+ltx+PmQhFKoeX7otMOwZ0s3wN+v2F5YNJm+Hi5P 75OOFO8cXtJ0PrqxlqDylNgmocIYhZen/LMYwJUWBlVZeK8YQJDKe4H7a9dUOgZr SmlInCj6bVk7Dkv3hL8De3s/lkKw79VEX4ENUJefVd4vN5ATUBewHUt+jaTfoBG8 dPEoAB8QEsjnqz3ZDCLwSFduJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLUC3Hjs sQVwdAgEi8PoFl1XSGKxMB8GA1UdIwQYMBaAFG2opSZKfcb82I09TNz0hnnCYvcO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RjUzNi9FQUFFREVEMDg5 OEExMUVDQjZBNEY3MEJDNEY5QUUwMi9iYWlsSmtwOXh2ellqVDFNM1BTR2VjSmk5 dzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JhaWxKa3A5eHZ6WWpUMU0zUFNHZWNKaTl3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RjUzNi9FQUFFREVEMDg5OEExMUVDQjZBNEY3MEJDNEY5QUUwMi9iYWlsSmtwOXh2 ellqVDFNM1BTR2VjSmk5dzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiBxyGV1M59P1HuNkJqdC8rUDJbGdbhCysOg5bS49i2t80CPXwYI+0 isqIoBjNXZAAKzklZq74TVBwt+RjB9u3V+zcq1EuCqrRKp3mdhKJlfw/WLKTizQN ki7yH0IRgVDfcY86XEx4bvhp4yIexrjD38BblQMgp4jBMDEAGm12hmEhUpLzgvcR 67+G/wI6+iCQ/2HcpEJBT31os3DHdOMXgcUFbeg8fx2cl90YQs5uigvJUkVsESlF 63Iezi67xmbyHc3TThMhEfkD63Bz2+e8eU8GNU647QxuEsyoel/EJbytU3ovAy28 l8nNCyS/yPnm2kOv71moEvsFHyrVkIuV -----END CERTIFICATE-----Generated at Sat Aug 23 19:35:56 2025 by rpki-client