$ rpki-client -vvf rpki.apnic.net/member_repository/A9177B64/ABF9796856BD11EAA503D61CC4F9AE02/BujrLhzBcw8rcm9PAAhEw0U_qlk.mft File: BujrLhzBcw8rcm9PAAhEw0U_qlk.mft (raw, json) Hash identifier: 7TxyaP3k5UJNFWSMyplm1d0TVfetFwSUSuj9fKeVBAE= Subject key identifier: FA:91:78:46:C5:C7:75:00:29:9A:1B:50:50:68:16:DF:5B:C3:F5:23 Authority key identifier: 06:E8:EB:2E:1C:C1:73:0F:2B:72:6F:4F:00:08:44:C3:45:3F:AA:59 Certificate issuer: /CN=A9177B64/serialNumber=06E8EB2E1CC1730F2B726F4F000844C3453FAA59 Certificate serial: 0AFD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BujrLhzBcw8rcm9PAAhEw0U_qlk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9177B64/ABF9796856BD11EAA503D61CC4F9AE02/BujrLhzBcw8rcm9PAAhEw0U_qlk.mft Manifest number: 0AED Signing time: Sat 18 Oct 2025 20:20:11 +0000 Manifest this update: Sat 18 Oct 2025 20:20:10 +0000 Manifest next update: Sat 25 Oct 2025 20:20:10 +0000 Files and hashes: 1: BujrLhzBcw8rcm9PAAhEw0U_qlk.crl (hash: 2Fo6PQ6LSW/nt2myrMCsAcl8FOJEpG5td+rhLNEiWQU=) 2: D490B9E456BE11EAA979861EC4F9AE02.roa (hash: WqlB3AyhDDJWUItXT29SZAzjz5ieM7KBaQAcsyIppRw=) 3: D5248EE456BE11EAA979861EC4F9AE02.roa (hash: 3WC7Ax7r9pRLRqTKxZ8M8Papxi0g4q9TQj02VGvjxfc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9177B64/ABF9796856BD11EAA503D61CC4F9AE02/BujrLhzBcw8rcm9PAAhEw0U_qlk.crl rsync://rpki.apnic.net/member_repository/A9177B64/ABF9796856BD11EAA503D61CC4F9AE02/BujrLhzBcw8rcm9PAAhEw0U_qlk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BujrLhzBcw8rcm9PAAhEw0U_qlk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:20:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2813 (0xafd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9177B64, serialNumber=06E8EB2E1CC1730F2B726F4F000844C3453FAA59 Validity Not Before: Oct 18 20:20:10 2025 GMT Not After : Oct 25 20:20:10 2025 GMT Subject: CN=68f3f67b-6e45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:68:41:bc:62:4b:ba:65:ba:3c:c7:90:a5:6b: 67:cf:e7:8b:66:26:62:1b:f9:18:7a:b6:17:3c:60: ef:e3:c0:f2:30:c6:50:87:aa:88:81:59:c4:80:1d: 6f:a2:a3:c5:49:81:5c:89:83:19:60:cc:cf:08:ff: 77:bf:c5:a4:5f:4a:bf:cf:4e:09:4e:39:69:aa:71: 23:ab:ca:43:70:9f:84:54:3d:9f:74:59:2c:f1:ad: e6:b5:de:e1:3a:68:22:3a:40:c8:d8:be:a3:6b:49: 18:31:d3:05:73:1d:8f:f2:d0:03:e4:bf:8e:9b:65: f9:62:df:45:c8:00:13:38:b8:98:8c:8c:78:e8:cb: 57:e7:0c:93:48:a7:33:88:13:df:04:6e:24:1a:19: f2:a1:1a:42:cd:43:df:75:46:80:93:51:6d:3a:c8: 8a:51:4d:16:04:53:5a:90:db:c4:4f:d7:fa:26:7b: df:c2:aa:91:ca:81:6f:5d:87:ff:cb:07:32:1e:81: 60:bf:5c:5a:dd:89:50:85:c1:d7:b9:b5:aa:7e:7e: 6a:43:19:f4:18:d3:b7:f6:aa:3d:c4:96:30:c8:ce: d5:14:5e:06:5d:f3:73:a3:f9:2b:0d:f8:be:6c:36: fa:d0:50:b3:ee:35:c6:e8:43:a6:3f:72:ba:1c:7f: a2:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:91:78:46:C5:C7:75:00:29:9A:1B:50:50:68:16:DF:5B:C3:F5:23 X509v3 Authority Key Identifier: keyid:06:E8:EB:2E:1C:C1:73:0F:2B:72:6F:4F:00:08:44:C3:45:3F:AA:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9177B64/ABF9796856BD11EAA503D61CC4F9AE02/BujrLhzBcw8rcm9PAAhEw0U_qlk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BujrLhzBcw8rcm9PAAhEw0U_qlk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9177B64/ABF9796856BD11EAA503D61CC4F9AE02/BujrLhzBcw8rcm9PAAhEw0U_qlk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:89:0b:21:21:08:fa:8b:fd:0a:4d:82:3e:12:83:a7:54:6f: 30:ef:2d:0d:e7:62:ae:87:13:3e:40:da:ca:7f:08:dd:de:38: b4:0f:ce:fe:8e:a8:d0:df:a8:d5:a9:09:57:db:7a:65:07:f8: ed:69:84:fc:5a:f4:a6:9e:92:31:86:d6:0c:7d:72:7a:f3:a8: 92:45:05:38:d2:c5:23:6d:9a:49:58:c8:65:49:04:74:24:57: 03:c8:09:cd:0f:cc:15:fe:30:00:df:35:6d:33:76:a0:af:67: fd:bc:e6:e3:7a:5f:08:a3:92:dd:e0:d9:b7:9b:1c:3e:5e:80: 51:83:0b:90:b1:a7:67:41:d9:e3:2e:ad:4f:53:3a:a1:9a:12: 63:9b:49:28:0c:fd:d6:d0:13:7f:ee:d5:41:a2:a9:25:e5:ff: dc:9a:b1:94:40:ba:3c:d2:88:76:80:a8:0e:9c:c4:d5:eb:72: c1:52:7e:06:93:f7:5a:f1:c6:3d:09:3d:7f:7e:93:fe:16:ae: d1:3e:6d:ad:2e:66:a3:51:2f:a7:3c:c4:96:b5:f0:cc:f4:f0: 29:bb:3a:68:64:fc:60:a8:06:aa:ac:ec:29:9e:ba:f0:b2:a2: 53:cb:a0:cf:03:91:c0:34:d6:10:54:07:4b:f9:f1:09:c1:b1: 49:fc:f3:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCv0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzdCNjQxMTAvBgNVBAUTKDA2RThFQjJFMUNDMTczMEYyQjcyNkY0RjAwMDg0NEMz NDUzRkFBNTkwHhcNMjUxMDE4MjAyMDEwWhcNMjUxMDI1MjAyMDEwWjAYMRYwFAYD VQQDEw02OGYzZjY3Yi02ZTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2GhBvGJLumW6PMeQpWtnz+eLZiZiG/kYerYXPGDv48DyMMZQh6qIgVnEgB1v oqPFSYFciYMZYMzPCP93v8WkX0q/z04JTjlpqnEjq8pDcJ+EVD2fdFks8a3mtd7h OmgiOkDI2L6ja0kYMdMFcx2P8tAD5L+Om2X5Yt9FyAATOLiYjIx46MtX5wyTSKcz iBPfBG4kGhnyoRpCzUPfdUaAk1FtOsiKUU0WBFNakNvET9f6JnvfwqqRyoFvXYf/ ywcyHoFgv1xa3YlQhcHXubWqfn5qQxn0GNO39qo9xJYwyM7VFF4GXfNzo/krDfi+ bDb60FCz7jXG6EOmP3K6HH+iSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPqReEbF x3UAKZobUFBoFt9bw/UjMB8GA1UdIwQYMBaAFAbo6y4cwXMPK3JvTwAIRMNFP6pZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3N0I2NC9BQkY5Nzk2ODU2 QkQxMUVBQTUwM0Q2MUNDNEY5QUUwMi9CdWpyTGh6QmN3OHJjbTlQQUFoRXcwVV9x bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0J1anJMaHpCY3c4cmNtOVBBQWhFdzBVX3Fsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 N0I2NC9BQkY5Nzk2ODU2QkQxMUVBQTUwM0Q2MUNDNEY5QUUwMi9CdWpyTGh6QmN3 OHJjbTlQQUFoRXcwVV9xbGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUiQshIQj6i/0KTYI+EoOnVG8w7y0N52KuhxM+QNrKfwjd3ji0D87+ jqjQ36jVqQlX23plB/jtaYT8WvSmnpIxhtYMfXJ686iSRQU40sUjbZpJWMhlSQR0 JFcDyAnND8wV/jAA3zVtM3agr2f9vObjel8Io5Ld4Nm3mxw+XoBRgwuQsadnQdnj Lq1PUzqhmhJjm0koDP3W0BN/7tVBoqkl5f/cmrGUQLo80oh2gKgOnMTV63LBUn4G k/da8cY9CT1/fpP+Fq7RPm2tLmajUS+nPMSWtfDM9PApuzpoZPxgqAaqrOwpnrrw sqJTy6DPA5HANNYQVAdL+fEJwbFJ/PNi -----END CERTIFICATE-----Generated at Mon Oct 20 01:47:10 2025 by rpki-client