$ rpki-client -vvf rpki.apnic.net/member_repository/A9118827/3C7CB4501BE811ECBBA65B50C4F9AE02/bu53G7POfpjbOWDE2C90Kiz36Ek.mft File: bu53G7POfpjbOWDE2C90Kiz36Ek.mft (raw, json) Hash identifier: Va1GRYnom5jT4uYl+gTpWOow+FHsKupqioPY6q/q4+c= Subject key identifier: 1A:FE:27:59:CB:D6:17:3A:F2:25:97:3C:38:57:52:6F:EF:F3:1A:C3 Authority key identifier: 6E:EE:77:1B:B3:CE:7E:98:DB:39:60:C4:D8:2F:74:2A:2C:F7:E8:49 Certificate issuer: /CN=A9118827/serialNumber=6EEE771BB3CE7E98DB3960C4D82F742A2CF7E849 Certificate serial: 0532 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bu53G7POfpjbOWDE2C90Kiz36Ek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118827/3C7CB4501BE811ECBBA65B50C4F9AE02/bu53G7POfpjbOWDE2C90Kiz36Ek.mft Manifest number: 052D Signing time: Sun 02 Nov 2025 23:29:43 +0000 Manifest this update: Sun 02 Nov 2025 23:29:42 +0000 Manifest next update: Sun 09 Nov 2025 23:29:42 +0000 Files and hashes: 1: bu53G7POfpjbOWDE2C90Kiz36Ek.crl (hash: 5WLbOL7QdAJt8yjioQjnE71WTkcVZ2xiUWfv4ZhbGdo=) 2: 95D9A9461BEC11EC97B39812C4F9AE02.roa (hash: VqWOdJpzHU4g7FfrJlbFpwfob9hyB+C2diH5Mhn8hxI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118827/3C7CB4501BE811ECBBA65B50C4F9AE02/bu53G7POfpjbOWDE2C90Kiz36Ek.crl rsync://rpki.apnic.net/member_repository/A9118827/3C7CB4501BE811ECBBA65B50C4F9AE02/bu53G7POfpjbOWDE2C90Kiz36Ek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bu53G7POfpjbOWDE2C90Kiz36Ek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:29:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1330 (0x532) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118827, serialNumber=6EEE771BB3CE7E98DB3960C4D82F742A2CF7E849 Validity Not Before: Nov 2 23:29:42 2025 GMT Not After : Nov 9 23:29:42 2025 GMT Subject: CN=6907e967-fb04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:7b:5f:34:3d:53:1a:c7:5e:66:a4:10:c9:08: e2:d6:a8:9e:aa:c3:30:b2:31:5f:44:b1:c5:44:11: 05:de:49:dc:38:a9:5e:07:cc:fd:4c:68:9a:ac:4d: eb:0c:44:53:aa:bc:eb:5b:60:b1:a2:a6:95:a8:55: e3:b7:84:4b:db:74:6e:b9:23:6d:03:ea:99:1c:24: b6:00:d2:ef:64:2f:92:8b:bc:fb:8a:b7:27:46:1d: a2:a2:3c:71:9d:01:29:50:77:7d:e1:11:f9:a6:e8: cd:6d:d9:b6:f0:7c:2b:d2:6b:35:0b:84:0e:67:65: 74:19:72:c8:7b:86:28:3e:d2:32:02:2e:60:36:6d: 83:30:f8:40:ff:ec:c5:45:0c:6d:0b:1d:bc:8d:96: 07:45:e5:39:b9:af:6b:c1:0d:5c:46:f1:a2:61:15: 96:1c:13:e7:83:e3:4e:5e:dd:97:52:e1:a1:54:bc: c8:55:25:5f:a6:93:c3:fa:b6:9d:b6:f8:e8:59:3e: 77:ef:fb:d8:ef:51:30:c2:84:63:59:39:3c:a3:d8: 7c:db:a6:da:10:fe:ec:eb:7a:5c:20:7d:06:fb:ab: a4:fa:77:31:d2:2c:09:a9:2c:75:73:11:a5:e6:8b: 31:13:45:18:40:24:e4:5b:00:ce:97:02:16:fd:48: 10:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:FE:27:59:CB:D6:17:3A:F2:25:97:3C:38:57:52:6F:EF:F3:1A:C3 X509v3 Authority Key Identifier: keyid:6E:EE:77:1B:B3:CE:7E:98:DB:39:60:C4:D8:2F:74:2A:2C:F7:E8:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118827/3C7CB4501BE811ECBBA65B50C4F9AE02/bu53G7POfpjbOWDE2C90Kiz36Ek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bu53G7POfpjbOWDE2C90Kiz36Ek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118827/3C7CB4501BE811ECBBA65B50C4F9AE02/bu53G7POfpjbOWDE2C90Kiz36Ek.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:67:80:94:72:b9:05:ea:75:7a:e8:50:a7:3b:bc:ec:7d:27: d4:8b:79:56:07:92:b5:f3:7e:6e:2d:a2:5f:81:5b:32:ec:c9: 8a:99:92:6f:1c:e9:52:89:5f:0d:5f:de:37:5d:83:b5:90:cf: 68:03:ad:f4:85:fe:2b:0e:a2:de:98:1c:2d:67:9c:e0:f1:e9: 4a:f8:11:a7:96:eb:94:38:4b:fb:fa:12:64:1d:50:36:37:34: c0:0f:43:a7:5c:94:f4:80:e3:df:9b:7c:1f:4a:55:8c:2d:14: 1c:6c:3a:51:dc:63:91:11:10:cb:9a:05:26:b3:24:69:44:55: a8:e3:ee:d0:64:20:5e:52:05:70:a6:66:fe:93:90:b8:ee:e7: e3:72:c2:ac:ce:6c:09:d9:4d:15:78:c9:7c:73:b2:b3:58:ab: 9d:03:73:9a:8a:a1:1c:e2:b6:36:a4:82:f0:f6:18:36:6e:77: 40:fc:b0:77:26:18:da:e5:19:d5:b8:f8:ba:73:9f:b1:98:77: ed:20:e0:1a:16:79:94:8c:b3:e9:19:20:f9:6e:d1:ef:06:1b: 54:f7:34:64:0a:72:2a:02:60:8f:34:71:39:69:fc:0a:0f:29: cf:d7:ed:02:51:00:ae:5f:38:95:bc:f4:f3:54:d5:ec:28:28: d5:ad:b7:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBTIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg4MjcxMTAvBgNVBAUTKDZFRUU3NzFCQjNDRTdFOThEQjM5NjBDNEQ4MkY3NDJB MkNGN0U4NDkwHhcNMjUxMTAyMjMyOTQyWhcNMjUxMTA5MjMyOTQyWjAYMRYwFAYD VQQDEw02OTA3ZTk2Ny1mYjA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzHtfND1TGsdeZqQQyQji1qieqsMwsjFfRLHFRBEF3kncOKleB8z9TGiarE3r DERTqrzrW2CxoqaVqFXjt4RL23RuuSNtA+qZHCS2ANLvZC+Si7z7ircnRh2iojxx nQEpUHd94RH5pujNbdm28Hwr0ms1C4QOZ2V0GXLIe4YoPtIyAi5gNm2DMPhA/+zF RQxtCx28jZYHReU5ua9rwQ1cRvGiYRWWHBPng+NOXt2XUuGhVLzIVSVfppPD+rad tvjoWT537/vY71EwwoRjWTk8o9h826baEP7s63pcIH0G+6uk+ncx0iwJqSx1cxGl 5osxE0UYQCTkWwDOlwIW/UgQjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBr+J1nL 1hc68iWXPDhXUm/v8xrDMB8GA1UdIwQYMBaAFG7udxuzzn6Y2zlgxNgvdCos9+hJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODgyNy8zQzdDQjQ1MDFC RTgxMUVDQkJBNjVCNTBDNEY5QUUwMi9idTUzRzdQT2ZwamJPV0RFMkM5MEtpejM2 RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J1NTNHN1BPZnBqYk9XREUyQzkwS2l6MzZFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODgyNy8zQzdDQjQ1MDFCRTgxMUVDQkJBNjVCNTBDNEY5QUUwMi9idTUzRzdQT2Zw amJPV0RFMkM5MEtpejM2RWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0Z4CUcrkF6nV66FCnO7zsfSfUi3lWB5K1835uLaJfgVsy7MmKmZJv HOlSiV8NX943XYO1kM9oA630hf4rDqLemBwtZ5zg8elK+BGnluuUOEv7+hJkHVA2 NzTAD0OnXJT0gOPfm3wfSlWMLRQcbDpR3GORERDLmgUmsyRpRFWo4+7QZCBeUgVw pmb+k5C47ufjcsKszmwJ2U0VeMl8c7KzWKudA3OaiqEc4rY2pILw9hg2bndA/LB3 Jhja5RnVuPi6c5+xmHftIOAaFnmUjLPpGSD5btHvBhtU9zRkCnIqAmCPNHE5afwK DynP1+0CUQCuXziVvPTzVNXsKCjVrbfy -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:06 2025 by rpki-client