$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft File: bifP0YnuRkQx1LkBO8wHWKgCZOY.mft (raw, json) Hash identifier: 10K8F71MDOGw3dAkOtzFdQ1EnnRWe6Z6wf8AEfSYAYg= Subject key identifier: 38:C1:A1:D1:59:0C:45:15:D3:52:69:14:62:54:37:8E:7B:D5:EB:1F Authority key identifier: 6E:27:CF:D1:89:EE:46:44:31:D4:B9:01:3B:CC:07:58:A8:02:64:E6 Certificate issuer: /CN=A9157D13/serialNumber=6E27CFD189EE464431D4B9013BCC0758A80264E6 Certificate serial: 18D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft Manifest number: 18BB Signing time: Sun 20 Jul 2025 16:30:46 +0000 Manifest this update: Sun 20 Jul 2025 16:30:46 +0000 Manifest next update: Sun 27 Jul 2025 16:30:46 +0000 Files and hashes: 1: bifP0YnuRkQx1LkBO8wHWKgCZOY.crl (hash: 4Y94sAxGm2uuRtDNerTGQvZ5YBaV4z8mLF5XH27umzo=) 2: 33E73FAAE50B11EF838B6642C4F9AE02.roa (hash: hGExMUb+w4JyWjME6Pb9a+xtMzWk7NBawSO3YXbXwM4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.crl rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 16:30:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6353 (0x18d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157D13, serialNumber=6E27CFD189EE464431D4B9013BCC0758A80264E6 Validity Not Before: Jul 20 16:30:46 2025 GMT Not After : Jul 27 16:30:46 2025 GMT Subject: CN=687d19b6-2cdb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:3d:91:1f:2d:cd:1e:42:33:e6:91:de:69:52: 3c:4e:56:a5:c3:07:18:25:1a:2b:8b:2b:eb:9a:1e: e6:77:4c:f6:78:e7:ca:e0:24:2b:c5:9b:ce:19:83: 69:11:b5:fd:2b:20:86:fd:e8:30:c3:6e:2a:aa:a9: c7:7b:e5:70:b7:ec:0a:87:d9:6e:c9:0a:ee:09:a2: ab:f9:6c:66:92:54:9e:d6:2f:c1:e0:88:5b:d1:55: 0f:90:6b:10:c0:5a:3a:74:c1:0c:7a:cf:0d:f3:56: 76:c7:7e:80:4f:71:3b:0f:ff:dc:0f:1d:cf:46:e3: 8c:5b:15:03:91:9a:fe:f2:4f:8f:93:66:f5:8a:c9: 29:5b:a4:54:5b:ea:5d:b1:7e:b2:b5:c5:74:97:44: ad:be:04:47:d5:bd:c4:5e:84:1d:ce:82:1b:34:fe: b4:6c:0c:66:97:7f:0d:94:0f:7b:22:36:17:17:99: c8:2e:d5:ba:21:3a:ff:3f:c3:4b:9c:46:ca:e7:e0: 42:e1:48:a1:49:3e:73:88:6b:c2:73:72:65:05:5f: 8d:7c:96:5a:5b:65:90:c2:d3:26:5b:aa:67:58:13: 14:46:ca:13:6c:6e:0c:8c:6c:b7:b0:39:3a:05:53: 55:26:6e:18:49:70:5c:94:70:16:58:81:2c:c9:f6: 0e:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:C1:A1:D1:59:0C:45:15:D3:52:69:14:62:54:37:8E:7B:D5:EB:1F X509v3 Authority Key Identifier: keyid:6E:27:CF:D1:89:EE:46:44:31:D4:B9:01:3B:CC:07:58:A8:02:64:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:85:ea:58:55:0b:e6:4d:58:7b:09:f1:4b:7e:d6:55:88:4b: 31:0c:5b:ed:b4:46:96:75:3e:94:6f:e8:3a:55:54:30:1f:cd: c0:4e:08:9e:4b:2d:88:1f:63:7c:b7:1e:8c:e3:8b:3c:98:19: 73:2c:4e:0f:f3:cd:70:a8:6b:a1:13:a4:88:6e:c3:6f:bd:56: 6a:03:dc:9e:51:f7:8a:14:a7:ac:fa:e9:91:b1:7a:75:c1:41: d1:59:57:49:fe:86:98:69:ff:85:3e:72:8d:ee:b1:69:00:6c: c7:5e:76:23:a1:b4:97:38:23:23:f0:08:65:c7:25:24:b8:27: 41:4e:70:7d:56:be:22:28:4d:92:bc:a2:97:17:a5:a1:b2:bc: 77:23:49:b3:41:ac:89:3b:a4:8f:06:a0:15:52:df:6b:84:79: 7f:46:fc:9b:4f:a6:28:3d:ef:10:6e:32:06:27:46:43:89:52: b6:74:78:6f:1c:11:87:56:82:7b:dd:2a:bf:e2:bd:c3:21:b4: 70:cf:8c:00:64:b3:87:e1:fe:3b:22:86:63:4e:9d:e3:6b:fe: 95:42:f5:24:9d:fc:25:20:d7:b4:70:87:7c:e3:93:7f:b8:b6: 09:71:a1:17:a1:15:6b:5a:b3:75:00:c2:78:59:b5:38:82:dc: 11:7c:e2:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGNEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEMTMxMTAvBgNVBAUTKDZFMjdDRkQxODlFRTQ2NDQzMUQ0QjkwMTNCQ0MwNzU4 QTgwMjY0RTYwHhcNMjUwNzIwMTYzMDQ2WhcNMjUwNzI3MTYzMDQ2WjAYMRYwFAYD VQQDEw02ODdkMTliNi0yY2RiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsz2RHy3NHkIz5pHeaVI8TlalwwcYJRoriyvrmh7md0z2eOfK4CQrxZvOGYNp EbX9KyCG/egww24qqqnHe+Vwt+wKh9luyQruCaKr+WxmklSe1i/B4Ihb0VUPkGsQ wFo6dMEMes8N81Z2x36AT3E7D//cDx3PRuOMWxUDkZr+8k+Pk2b1iskpW6RUW+pd sX6ytcV0l0StvgRH1b3EXoQdzoIbNP60bAxml38NlA97IjYXF5nILtW6ITr/P8NL nEbK5+BC4UihST5ziGvCc3JlBV+NfJZaW2WQwtMmW6pnWBMURsoTbG4MjGy3sDk6 BVNVJm4YSXBclHAWWIEsyfYOIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDjBodFZ DEUV01JpFGJUN4571esfMB8GA1UdIwQYMBaAFG4nz9GJ7kZEMdS5ATvMB1ioAmTm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0QxMy9BQTI1REYxQzk4 RkQxMUU3QTgxNDU1NjBDNEY5QUUwMi9iaWZQMFludVJrUXgxTGtCTzh3SFdLZ0Na T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JpZlAwWW51UmtReDFMa0JPOHdIV0tnQ1pPWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0QxMy9BQTI1REYxQzk4RkQxMUU3QTgxNDU1NjBDNEY5QUUwMi9iaWZQMFludVJr UXgxTGtCTzh3SFdLZ0NaT1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBShepYVQvmTVh7CfFLftZViEsxDFvttEaWdT6Ub+g6VVQwH83ATgie Sy2IH2N8tx6M44s8mBlzLE4P881wqGuhE6SIbsNvvVZqA9yeUfeKFKes+umRsXp1 wUHRWVdJ/oaYaf+FPnKN7rFpAGzHXnYjobSXOCMj8AhlxyUkuCdBTnB9Vr4iKE2S vKKXF6Whsrx3I0mzQayJO6SPBqAVUt9rhHl/RvybT6YoPe8QbjIGJ0ZDiVK2dHhv HBGHVoJ73Sq/4r3DIbRwz4wAZLOH4f47IoZjTp3ja/6VQvUknfwlINe0cId845N/ uLYJcaEXoRVrWrN1AMJ4WbU4gtwRfOIZ -----END CERTIFICATE-----Generated at Mon Jul 21 07:27:22 2025 by rpki-client