$ rpki-client -vvf rpki.apnic.net/member_repository/A919DCE3/BD29C992903A11EB940F285DC4F9AE02/BiJAzedW2VtXd-JnqnsGVPg09JM.mft File: BiJAzedW2VtXd-JnqnsGVPg09JM.mft (raw, json) Hash identifier: 7dDP4RlraZrclal3NSToNrTIcLZ0Ybqp9akyfsxvC6Q= Subject key identifier: 35:8F:A4:D6:45:B9:2C:93:79:1D:4C:16:6B:A4:B0:8F:6D:E5:9C:FE Authority key identifier: 06:22:40:CD:E7:56:D9:5B:57:77:E2:67:AA:7B:06:54:F8:34:F4:93 Certificate issuer: /CN=A919DCE3/serialNumber=062240CDE756D95B5777E267AA7B0654F834F493 Certificate serial: 068B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BiJAzedW2VtXd-JnqnsGVPg09JM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919DCE3/BD29C992903A11EB940F285DC4F9AE02/BiJAzedW2VtXd-JnqnsGVPg09JM.mft Manifest number: 0686 Signing time: Sat 18 Oct 2025 23:55:10 +0000 Manifest this update: Sat 18 Oct 2025 23:55:09 +0000 Manifest next update: Sat 25 Oct 2025 23:55:09 +0000 Files and hashes: 1: BiJAzedW2VtXd-JnqnsGVPg09JM.crl (hash: IbKuRwX1KkFZU7YXPglUc3l8kk1WXRoEk86Zrx6q59U=) 2: E9610376903B11EBB91C8B5DC4F9AE02.roa (hash: 8EJ9t0dHzPuImjiYAPoyaHv+e1oWlijq5dSgwTFlJ+I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919DCE3/BD29C992903A11EB940F285DC4F9AE02/BiJAzedW2VtXd-JnqnsGVPg09JM.crl rsync://rpki.apnic.net/member_repository/A919DCE3/BD29C992903A11EB940F285DC4F9AE02/BiJAzedW2VtXd-JnqnsGVPg09JM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BiJAzedW2VtXd-JnqnsGVPg09JM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:55:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1675 (0x68b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919DCE3, serialNumber=062240CDE756D95B5777E267AA7B0654F834F493 Validity Not Before: Oct 18 23:55:09 2025 GMT Not After : Oct 25 23:55:09 2025 GMT Subject: CN=68f428dd-ac5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:cc:f1:c9:cc:db:ce:e8:4b:55:31:8b:fa:f8: 99:0e:b1:8e:06:16:bb:40:f2:62:b3:ac:d9:65:22: bb:d6:c2:d9:6d:b5:9d:b2:ab:29:01:ca:14:00:33: 62:02:fb:88:51:04:a8:46:0f:e9:b5:6a:30:6c:cb: 71:93:6c:cb:17:ae:0b:2b:03:d9:d0:bc:c4:7c:89: f5:c8:06:90:a8:96:39:8f:a0:ca:a6:0d:8b:ff:cf: 8e:6a:d1:ab:df:b9:25:90:da:1e:a5:3c:5e:81:c8: 33:b1:4a:39:a2:f9:a5:5e:84:53:79:1d:a4:de:9a: 50:00:b2:81:eb:35:05:9b:b8:e6:6f:a9:1e:d7:fb: 56:c0:8c:50:14:17:70:a0:ff:91:22:70:b8:bd:64: a6:7e:e1:9d:2f:3a:3f:7f:f9:29:ec:59:b9:0b:8d: ae:0d:e8:aa:26:5f:04:8e:4c:77:12:5d:bc:6d:ab: 42:4b:78:b2:6f:ba:25:18:92:15:1a:c0:f4:de:af: 4d:36:99:6c:eb:70:cb:7e:d5:d4:eb:7f:4b:5f:31: 31:f8:8b:5f:c4:f2:a4:23:5a:18:72:6d:a7:8e:c6: 13:5b:dd:b1:91:a0:89:ff:e5:3d:a5:9f:55:1e:ce: e9:62:8e:db:a3:98:b6:52:82:1c:31:80:26:28:18: 47:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:8F:A4:D6:45:B9:2C:93:79:1D:4C:16:6B:A4:B0:8F:6D:E5:9C:FE X509v3 Authority Key Identifier: keyid:06:22:40:CD:E7:56:D9:5B:57:77:E2:67:AA:7B:06:54:F8:34:F4:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919DCE3/BD29C992903A11EB940F285DC4F9AE02/BiJAzedW2VtXd-JnqnsGVPg09JM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BiJAzedW2VtXd-JnqnsGVPg09JM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919DCE3/BD29C992903A11EB940F285DC4F9AE02/BiJAzedW2VtXd-JnqnsGVPg09JM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:06:ed:81:ae:03:b2:93:de:d3:64:7a:85:b0:3c:02:84:c0: ad:36:3e:0e:21:31:96:9f:54:bf:a4:bf:ea:b2:11:2d:d3:92: 52:07:73:3f:34:28:32:fa:69:a2:1b:08:31:b4:f7:73:9e:0e: 04:f0:59:f9:df:98:89:23:ef:90:3d:e9:0e:bb:d5:ee:23:aa: 9e:3d:b2:dc:f0:db:a5:0b:4f:a2:4d:86:9d:16:cd:46:0f:01: e0:30:4e:e7:cb:85:45:78:ff:79:fa:e3:fd:a2:b9:24:24:c9: 1e:9a:90:d1:c5:ef:a0:c7:2c:12:e0:11:9e:7b:e1:9f:ec:6a: 42:92:97:39:75:57:ba:16:02:68:a9:1b:fa:00:8a:d0:fa:89: 97:4d:6d:88:8e:16:2c:1d:a0:f9:cc:3a:4c:87:df:32:93:65: c0:5b:48:ef:6a:50:a5:d4:29:24:7a:b6:48:0c:dd:86:4f:1f: a8:9b:8a:a6:53:87:ae:27:1c:28:ac:df:c6:50:4c:39:fd:19: e4:52:48:98:32:54:b5:f6:bc:5d:a2:e3:95:12:15:f3:9b:11: 77:4b:ed:5a:60:eb:3e:be:c1:69:bf:34:7e:95:ae:42:09:52: 59:77:d3:91:5c:a4:02:c4:98:b4:61:08:27:23:66:93:d9:4a: 69:19:22:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OURDRTMxMTAvBgNVBAUTKDA2MjI0MENERTc1NkQ5NUI1Nzc3RTI2N0FBN0IwNjU0 RjgzNEY0OTMwHhcNMjUxMDE4MjM1NTA5WhcNMjUxMDI1MjM1NTA5WjAYMRYwFAYD VQQDEw02OGY0MjhkZC1hYzVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwMzxyczbzuhLVTGL+viZDrGOBha7QPJis6zZZSK71sLZbbWdsqspAcoUADNi AvuIUQSoRg/ptWowbMtxk2zLF64LKwPZ0LzEfIn1yAaQqJY5j6DKpg2L/8+OatGr 37klkNoepTxegcgzsUo5ovmlXoRTeR2k3ppQALKB6zUFm7jmb6ke1/tWwIxQFBdw oP+RInC4vWSmfuGdLzo/f/kp7Fm5C42uDeiqJl8Ejkx3El28batCS3iyb7olGJIV GsD03q9NNpls63DLftXU639LXzEx+ItfxPKkI1oYcm2njsYTW92xkaCJ/+U9pZ9V Hs7pYo7bo5i2UoIcMYAmKBhHHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDWPpNZF uSyTeR1MFmuksI9t5Zz+MB8GA1UdIwQYMBaAFAYiQM3nVtlbV3fiZ6p7BlT4NPST MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RENFMy9CRDI5Qzk5Mjkw M0ExMUVCOTQwRjI4NURDNEY5QUUwMi9CaUpBemVkVzJWdFhkLUpucW5zR1ZQZzA5 Sk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JpSkF6ZWRXMlZ0WGQtSm5xbnNHVlBnMDlKTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RENFMy9CRDI5Qzk5MjkwM0ExMUVCOTQwRjI4NURDNEY5QUUwMi9CaUpBemVkVzJW dFhkLUpucW5zR1ZQZzA5Sk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADBu2BrgOyk97TZHqFsDwChMCtNj4OITGWn1S/pL/qshEt05JSB3M/ NCgy+mmiGwgxtPdzng4E8Fn535iJI++QPekOu9XuI6qePbLc8NulC0+iTYadFs1G DwHgME7ny4VFeP95+uP9orkkJMkempDRxe+gxywS4BGee+Gf7GpCkpc5dVe6FgJo qRv6AIrQ+omXTW2IjhYsHaD5zDpMh98yk2XAW0jvalCl1CkkerZIDN2GTx+om4qm U4euJxworN/GUEw5/RnkUkiYMlS19rxdouOVEhXzmxF3S+1aYOs+vsFpvzR+la5C CVJZd9ORXKQCxJi0YQgnI2aT2UppGSKU -----END CERTIFICATE-----Generated at Mon Oct 20 04:15:07 2025 by rpki-client