$ rpki-client -vvf rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.mft File: bZYGiLbecUGnIYmOngc-FneP7zU.mft (raw, json) Hash identifier: +NbNBKyRjObXSws2WGio66vk+yWvgyEGFpXXBR2Up+s= Subject key identifier: 39:E8:78:AF:AA:E7:B4:33:77:F4:45:F3:FD:CF:8F:A5:13:C0:89:8F Authority key identifier: 6D:96:06:88:B6:DE:71:41:A7:21:89:8E:9E:07:3E:16:77:8F:EF:35 Certificate issuer: /CN=A9197A8F/serialNumber=6D960688B6DE7141A721898E9E073E16778FEF35 Certificate serial: 016E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bZYGiLbecUGnIYmOngc-FneP7zU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.mft Manifest number: 016A Signing time: Sat 23 Aug 2025 04:02:43 +0000 Manifest this update: Sat 23 Aug 2025 04:02:43 +0000 Manifest next update: Sat 30 Aug 2025 04:02:43 +0000 Files and hashes: 1: bZYGiLbecUGnIYmOngc-FneP7zU.crl (hash: ucztvj9iorgR1qtSMnCNHYx0dbSEaXgyXlK1oDdfNHU=) 2: A663285A59DE11EE85CFCB12C4F9AE02.roa (hash: X/pG7qc3+7qr+qWCl38L4oCPzOU3+0jR+niOHWQizTQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.crl rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bZYGiLbecUGnIYmOngc-FneP7zU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:02:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 366 (0x16e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197A8F, serialNumber=6D960688B6DE7141A721898E9E073E16778FEF35 Validity Not Before: Aug 23 04:02:43 2025 GMT Not After : Aug 30 04:02:43 2025 GMT Subject: CN=68a93d63-b1ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:6f:54:ec:e1:4f:02:98:ce:61:db:bd:29:0a: a5:45:96:68:73:ac:3a:01:a0:e1:3b:50:4c:ff:e6: 27:90:7f:e3:f6:06:d9:c9:1e:a7:95:ea:c3:ea:9a: d2:2e:ab:6d:e5:9a:40:69:70:68:a3:93:4b:f7:21: 41:b4:e5:86:1b:17:ae:d3:fa:a0:6f:4e:ad:1d:12: d0:d7:af:e1:52:bd:86:59:fc:af:5e:8a:c1:aa:53: f2:57:92:9a:0e:47:85:94:4f:e0:06:b7:35:f0:99: d1:67:4c:03:89:a5:18:79:38:d1:1f:38:99:cf:2d: 93:f8:36:84:79:e4:0f:62:4e:42:13:72:3e:67:42: e9:d1:32:69:41:27:48:30:e8:a1:0d:5f:5a:91:0d: c8:a3:8f:56:4e:9f:23:d8:be:3b:38:09:7f:63:82: d0:a1:7e:d4:0a:de:2d:a2:4a:a7:5a:9d:31:2d:42: 3f:cf:a6:15:f7:b7:80:2e:e9:18:d7:df:6f:aa:0e: b9:7c:20:48:c1:2b:83:2a:4f:bc:28:b1:5d:28:05: 62:9b:05:88:f2:af:47:d4:da:da:4b:e7:4b:8c:af: 54:d5:1f:94:ae:0f:6c:69:d5:b8:db:50:ff:13:a1: 78:a2:25:f8:67:ac:2b:e4:b2:b1:4c:9e:a8:d6:71: 51:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:E8:78:AF:AA:E7:B4:33:77:F4:45:F3:FD:CF:8F:A5:13:C0:89:8F X509v3 Authority Key Identifier: keyid:6D:96:06:88:B6:DE:71:41:A7:21:89:8E:9E:07:3E:16:77:8F:EF:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bZYGiLbecUGnIYmOngc-FneP7zU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:c4:13:31:0b:74:6a:42:4c:e1:8d:3b:f3:ed:5e:90:d1:74: 18:13:9e:51:15:54:c4:e8:c2:d7:e3:a8:62:10:46:5e:1a:dd: 32:99:84:d3:a8:43:bd:14:6b:74:7b:66:9f:2b:08:dd:56:b9: da:0a:56:3f:d4:47:a7:91:a8:c7:a5:3b:eb:4e:d1:9b:6d:cf: e3:36:90:2c:30:1a:32:b2:e6:e7:26:c4:c8:fa:fc:df:ff:45: a4:7d:18:de:e6:8e:27:86:06:12:56:d6:c3:96:5e:ee:09:58: 98:19:62:a5:ed:f3:38:f7:70:f4:f6:97:02:6a:ef:e5:c6:f9: 98:ad:d8:43:b0:ae:3c:57:73:39:89:bd:fb:64:3d:a7:cf:d9: 59:fc:35:8b:60:7c:3a:17:2e:cf:ea:ac:4f:2b:6c:62:fd:fe: fe:b0:85:a7:4d:66:e4:e6:44:b1:f0:ec:11:42:17:2e:8b:32: d9:90:eb:f4:83:07:b6:60:34:b6:fb:a6:5a:67:fa:28:a8:0f: 43:6f:3e:46:ce:87:8a:3d:2f:1b:50:d2:6f:4b:71:68:21:02: d2:84:ab:1a:45:02:06:78:34:e5:cb:9d:79:56:79:3d:28:6e: 4d:e6:f3:77:8a:fa:a0:c5:9e:6a:e7:e0:75:65:17:b4:7f:58: 6c:73:b3:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAW4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdBOEYxMTAvBgNVBAUTKDZEOTYwNjg4QjZERTcxNDFBNzIxODk4RTlFMDczRTE2 Nzc4RkVGMzUwHhcNMjUwODIzMDQwMjQzWhcNMjUwODMwMDQwMjQzWjAYMRYwFAYD VQQDEw02OGE5M2Q2My1iMWNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5G9U7OFPApjOYdu9KQqlRZZoc6w6AaDhO1BM/+YnkH/j9gbZyR6nlerD6prS Lqtt5ZpAaXBoo5NL9yFBtOWGGxeu0/qgb06tHRLQ16/hUr2GWfyvXorBqlPyV5Ka DkeFlE/gBrc18JnRZ0wDiaUYeTjRHziZzy2T+DaEeeQPYk5CE3I+Z0Lp0TJpQSdI MOihDV9akQ3Io49WTp8j2L47OAl/Y4LQoX7UCt4tokqnWp0xLUI/z6YV97eALukY 199vqg65fCBIwSuDKk+8KLFdKAVimwWI8q9H1NraS+dLjK9U1R+Urg9sadW421D/ E6F4oiX4Z6wr5LKxTJ6o1nFRxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDnoeK+q 57Qzd/RF8/3Pj6UTwImPMB8GA1UdIwQYMBaAFG2WBoi23nFBpyGJjp4HPhZ3j+81 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0E4Ri82M0FDRDVGNDU5 REIxMUVFQTczN0ZFMEFDNEY5QUUwMi9iWllHaUxiZWNVR25JWW1PbmdjLUZuZVA3 elUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JaWUdpTGJlY1VHbklZbU9uZ2MtRm5lUDd6VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0E4Ri82M0FDRDVGNDU5REIxMUVFQTczN0ZFMEFDNEY5QUUwMi9iWllHaUxiZWNV R25JWW1PbmdjLUZuZVA3elUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgxBMxC3RqQkzhjTvz7V6Q0XQYE55RFVTE6MLX46hiEEZeGt0ymYTT qEO9FGt0e2afKwjdVrnaClY/1EenkajHpTvrTtGbbc/jNpAsMBoysubnJsTI+vzf /0WkfRje5o4nhgYSVtbDll7uCViYGWKl7fM493D09pcCau/lxvmYrdhDsK48V3M5 ib37ZD2nz9lZ/DWLYHw6Fy7P6qxPK2xi/f7+sIWnTWbk5kSx8OwRQhcuizLZkOv0 gwe2YDS2+6ZaZ/ooqA9Dbz5GzoeKPS8bUNJvS3FoIQLShKsaRQIGeDTly515Vnk9 KG5N5vN3ivqgxZ5q5+B1ZRe0f1hsc7NP -----END CERTIFICATE-----Generated at Sat Aug 23 13:37:59 2025 by rpki-client