$ rpki-client -vvf rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.mft File: bZYGiLbecUGnIYmOngc-FneP7zU.mft (raw, json) Hash identifier: 8AM1DGmHI5iEmqHFdS+r3mClS4+5bs9m6U4ban1BlKU= Subject key identifier: CF:60:EA:05:40:C5:8D:4A:A7:0E:A6:0A:C2:6C:77:13:B3:49:1E:00 Authority key identifier: 6D:96:06:88:B6:DE:71:41:A7:21:89:8E:9E:07:3E:16:77:8F:EF:35 Certificate issuer: /CN=A9197A8F/serialNumber=6D960688B6DE7141A721898E9E073E16778FEF35 Certificate serial: 018B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bZYGiLbecUGnIYmOngc-FneP7zU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.mft Manifest number: 0187 Signing time: Sun 19 Oct 2025 06:12:50 +0000 Manifest this update: Sun 19 Oct 2025 06:12:49 +0000 Manifest next update: Sun 26 Oct 2025 06:12:49 +0000 Files and hashes: 1: bZYGiLbecUGnIYmOngc-FneP7zU.crl (hash: kwxjz2HLdQtDH+14CJyqVmyhkHiouIFOrQ1t864iziI=) 2: A663285A59DE11EE85CFCB12C4F9AE02.roa (hash: X/pG7qc3+7qr+qWCl38L4oCPzOU3+0jR+niOHWQizTQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.crl rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bZYGiLbecUGnIYmOngc-FneP7zU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:12:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 395 (0x18b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197A8F, serialNumber=6D960688B6DE7141A721898E9E073E16778FEF35 Validity Not Before: Oct 19 06:12:49 2025 GMT Not After : Oct 26 06:12:49 2025 GMT Subject: CN=68f48161-6715 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:d7:7c:5a:f9:da:37:42:5d:85:1d:e9:9e:9b: eb:a8:64:d9:b9:f2:3d:8e:c7:85:cc:fd:97:67:b8: 90:eb:74:99:22:9a:6a:49:ad:0d:d3:8c:d4:70:33: cf:7d:36:29:64:2e:63:6f:ec:95:27:de:63:7e:ba: 66:bf:02:f4:71:fb:78:af:25:fd:a1:b9:63:52:63: 16:58:33:25:a1:95:b8:39:fd:e6:00:1d:df:b4:89: df:26:0e:74:85:9b:e7:ca:18:56:ab:1e:f0:73:a5: ee:4a:c7:39:b9:11:d5:52:75:12:5d:38:08:bc:e1: e6:0e:f7:09:25:22:90:5f:c8:a1:01:9b:62:91:cd: f0:b4:e7:4b:ff:0b:51:47:00:3b:f0:8d:97:79:4c: 6a:19:9d:38:70:c3:71:8f:c2:25:0d:0f:c3:ae:24: 29:65:8a:33:9f:bd:65:fb:37:f8:f3:6c:0d:7e:bd: 00:e0:d6:66:2f:f2:50:04:e0:a8:4c:39:01:ee:c9: fb:d7:4f:df:ec:da:25:23:9a:ee:0f:fa:62:bc:8e: 72:07:d3:72:ae:b3:dc:c7:68:98:b3:c8:93:08:f7: b9:98:02:8b:c5:27:5d:c9:9c:93:9f:9b:1b:72:de: 2e:8a:22:37:0d:ce:85:83:f2:cd:6f:90:ec:ba:8e: e4:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:60:EA:05:40:C5:8D:4A:A7:0E:A6:0A:C2:6C:77:13:B3:49:1E:00 X509v3 Authority Key Identifier: keyid:6D:96:06:88:B6:DE:71:41:A7:21:89:8E:9E:07:3E:16:77:8F:EF:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bZYGiLbecUGnIYmOngc-FneP7zU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:a9:d7:58:0e:67:d7:fc:b7:f8:67:dc:7f:dc:4e:0b:83:59: ce:dc:6c:69:78:c3:03:9c:85:79:f9:9d:59:e1:58:ad:7b:84: 78:c7:a3:40:09:b6:72:03:34:15:75:e8:ed:5f:a2:64:70:2a: a7:12:7b:2f:73:83:42:cf:1c:9b:08:82:51:58:f8:16:c5:99: c4:6f:6e:81:ec:45:8d:ea:89:03:f8:3d:3d:d2:ba:a5:b6:3f: 94:a1:1d:10:cb:19:98:bc:a7:8c:2c:df:22:28:f5:89:fa:42: 4d:90:1e:40:54:4d:da:c1:29:bb:81:60:45:09:ef:6b:cc:30: da:de:c6:01:c3:16:5d:a8:82:07:a4:3a:10:80:bc:78:86:04: 5a:e1:57:71:5b:f9:7b:83:bd:2e:d7:00:e6:17:b4:9d:f9:ca: 78:26:3d:15:8b:ef:81:b9:6d:bf:fd:66:27:4c:7e:d5:cc:01: 80:5f:54:0f:f0:04:a4:ef:3b:72:65:1b:d2:8a:fb:73:fb:71: 64:41:8a:04:1a:0e:1c:9a:0c:45:f0:9e:ed:70:63:1f:93:51: 3f:1f:bf:47:c9:39:1f:a4:6c:96:39:77:e1:46:ff:79:e7:ed: 8e:92:fb:70:45:79:7a:34:3d:2e:0c:7f:f6:a5:f5:fa:51:41: 0a:1c:d8:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdBOEYxMTAvBgNVBAUTKDZEOTYwNjg4QjZERTcxNDFBNzIxODk4RTlFMDczRTE2 Nzc4RkVGMzUwHhcNMjUxMDE5MDYxMjQ5WhcNMjUxMDI2MDYxMjQ5WjAYMRYwFAYD VQQDEw02OGY0ODE2MS02NzE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA29d8WvnaN0JdhR3pnpvrqGTZufI9jseFzP2XZ7iQ63SZIppqSa0N04zUcDPP fTYpZC5jb+yVJ95jfrpmvwL0cft4ryX9obljUmMWWDMloZW4Of3mAB3ftInfJg50 hZvnyhhWqx7wc6XuSsc5uRHVUnUSXTgIvOHmDvcJJSKQX8ihAZtikc3wtOdL/wtR RwA78I2XeUxqGZ04cMNxj8IlDQ/DriQpZYozn71l+zf482wNfr0A4NZmL/JQBOCo TDkB7sn710/f7NolI5ruD/pivI5yB9NyrrPcx2iYs8iTCPe5mAKLxSddyZyTn5sb ct4uiiI3Dc6Fg/LNb5Dsuo7kSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM9g6gVA xY1Kpw6mCsJsdxOzSR4AMB8GA1UdIwQYMBaAFG2WBoi23nFBpyGJjp4HPhZ3j+81 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0E4Ri82M0FDRDVGNDU5 REIxMUVFQTczN0ZFMEFDNEY5QUUwMi9iWllHaUxiZWNVR25JWW1PbmdjLUZuZVA3 elUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JaWUdpTGJlY1VHbklZbU9uZ2MtRm5lUDd6VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0E4Ri82M0FDRDVGNDU5REIxMUVFQTczN0ZFMEFDNEY5QUUwMi9iWllHaUxiZWNV R25JWW1PbmdjLUZuZVA3elUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkqddYDmfX/Lf4Z9x/3E4Lg1nO3GxpeMMDnIV5+Z1Z4Vite4R4x6NA CbZyAzQVdejtX6JkcCqnEnsvc4NCzxybCIJRWPgWxZnEb26B7EWN6okD+D090rql tj+UoR0QyxmYvKeMLN8iKPWJ+kJNkB5AVE3awSm7gWBFCe9rzDDa3sYBwxZdqIIH pDoQgLx4hgRa4VdxW/l7g70u1wDmF7Sd+cp4Jj0Vi++BuW2//WYnTH7VzAGAX1QP 8ASk7ztyZRvSivtz+3FkQYoEGg4cmgxF8J7tcGMfk1E/H79HyTkfpGyWOXfhRv95 5+2OkvtwRXl6ND0uDH/2pfX6UUEKHNji -----END CERTIFICATE-----Generated at Mon Oct 20 12:39:05 2025 by rpki-client