$ rpki-client -vvf rpki.apnic.net/member_repository/A9118827/3C7CB4501BE811ECBBA65B50C4F9AE02/bu53G7POfpjbOWDE2C90Kiz36Ek.mft File: bu53G7POfpjbOWDE2C90Kiz36Ek.mft (raw, json) Hash identifier: l9B5dFFIKLTQ6HENjntmUMzO+wMtfsx2Mf4JV7UB+Ao= Subject key identifier: 02:DB:C4:62:A9:01:44:8C:A1:6E:EC:1B:B8:E5:1A:D2:B3:DC:2F:A3 Authority key identifier: 6E:EE:77:1B:B3:CE:7E:98:DB:39:60:C4:D8:2F:74:2A:2C:F7:E8:49 Certificate issuer: /CN=A9118827/serialNumber=6EEE771BB3CE7E98DB3960C4D82F742A2CF7E849 Certificate serial: 0518 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bu53G7POfpjbOWDE2C90Kiz36Ek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118827/3C7CB4501BE811ECBBA65B50C4F9AE02/bu53G7POfpjbOWDE2C90Kiz36Ek.mft Manifest number: 0514 Signing time: Tue 16 Sep 2025 23:58:15 +0000 Manifest this update: Tue 16 Sep 2025 23:58:14 +0000 Manifest next update: Tue 23 Sep 2025 23:58:14 +0000 Files and hashes: 1: bu53G7POfpjbOWDE2C90Kiz36Ek.crl (hash: 9thHSNigqWpJNsV55WlF7Qgggk6o2wYvF6OSluOc9/g=) 2: 95D9A9461BEC11EC97B39812C4F9AE02.roa (hash: O7MsLUw+gaoXTG9KiMvLQn/bjyCnjO8H09gMJ3FbG7s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118827/3C7CB4501BE811ECBBA65B50C4F9AE02/bu53G7POfpjbOWDE2C90Kiz36Ek.crl rsync://rpki.apnic.net/member_repository/A9118827/3C7CB4501BE811ECBBA65B50C4F9AE02/bu53G7POfpjbOWDE2C90Kiz36Ek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bu53G7POfpjbOWDE2C90Kiz36Ek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Sep 2025 23:58:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1304 (0x518) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118827, serialNumber=6EEE771BB3CE7E98DB3960C4D82F742A2CF7E849 Validity Not Before: Sep 16 23:58:14 2025 GMT Not After : Sep 23 23:58:14 2025 GMT Subject: CN=68c9f996-3405 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:8d:ef:5e:d6:4f:b7:1d:97:62:fe:58:ac:8a: 6c:d8:8b:2a:6b:a0:be:04:7e:59:b6:d9:39:c3:fb: a8:3e:2f:04:a1:d9:92:f2:c8:19:79:da:ee:8b:0b: 1c:0f:fe:c4:8e:a8:37:48:25:b0:5f:99:a6:51:b3: 94:03:11:d2:be:1d:ba:39:1a:50:92:47:93:09:00: 33:b0:52:35:bd:7d:cc:a3:b6:8b:3a:e0:03:7f:99: 7c:a3:f8:4c:cb:f7:75:c1:fd:18:d3:a2:0c:2f:31: 19:a3:c6:86:05:fa:17:29:46:44:17:13:56:1e:30: 04:1e:16:e0:45:b2:dc:98:22:3c:ec:79:78:30:10: 69:ae:49:36:3c:f8:ce:54:e6:a4:52:50:b6:65:68: 2c:8b:f9:a4:7d:a5:ff:e2:85:2b:c7:b4:6b:93:3a: 88:bb:fd:3b:45:c2:fb:5a:73:dc:07:32:13:0c:24: bf:92:89:58:fd:73:87:00:c8:4d:2a:c0:4b:06:48: b5:fb:bd:c9:24:a4:cf:2b:38:a0:2f:e3:bf:1f:e0: 02:08:b1:08:eb:f3:29:d4:44:89:de:9c:45:66:ab: 54:dc:c5:06:2b:4a:ac:c4:dc:4f:76:73:67:00:70: de:41:b0:0a:f9:2c:13:76:c4:60:ec:9d:27:62:fa: e4:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:DB:C4:62:A9:01:44:8C:A1:6E:EC:1B:B8:E5:1A:D2:B3:DC:2F:A3 X509v3 Authority Key Identifier: keyid:6E:EE:77:1B:B3:CE:7E:98:DB:39:60:C4:D8:2F:74:2A:2C:F7:E8:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118827/3C7CB4501BE811ECBBA65B50C4F9AE02/bu53G7POfpjbOWDE2C90Kiz36Ek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bu53G7POfpjbOWDE2C90Kiz36Ek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118827/3C7CB4501BE811ECBBA65B50C4F9AE02/bu53G7POfpjbOWDE2C90Kiz36Ek.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:08:f6:c8:11:b5:06:63:a5:0d:14:74:d6:4c:df:cc:11:23: 27:bd:cb:49:33:b2:da:d1:ea:c8:32:7b:59:26:8e:2b:e9:f2: ba:c9:ae:14:6c:7f:fc:7a:41:8f:20:c8:be:34:db:fd:81:4a: a3:e3:00:b7:4a:97:91:a2:17:9a:2f:9a:73:02:dc:5b:1d:bd: 22:3f:d1:c5:3c:aa:aa:f2:13:13:a6:c5:1f:60:cb:cd:92:47: b0:ea:49:24:ef:af:88:a0:2d:b1:60:f7:bd:a6:f8:ea:61:66: 90:07:5b:e7:dc:d1:c6:85:e8:19:7b:f7:3b:93:86:76:f2:28: 9f:34:ba:f6:03:ad:4f:67:d6:9e:d8:08:2e:60:c3:80:16:ac: ce:82:ea:8f:5a:61:6d:fc:60:61:84:bf:06:87:45:50:e1:be: 1a:5a:bc:a4:e8:f8:2e:e2:e5:24:5a:c7:aa:13:75:f7:64:33: 29:bb:e9:b5:b7:7b:cd:f3:cc:b5:4e:9f:47:79:ff:3b:af:d5: 45:98:b3:1b:36:e5:ec:35:fc:3f:63:a5:a6:de:9b:50:fe:73: 65:15:dd:82:20:5d:52:ef:95:87:31:0c:5d:9a:3a:e1:0e:8a: b4:62:8c:51:07:27:dc:db:e8:fb:05:26:03:2f:ec:f4:b5:72: 20:2a:e7:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBRgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg4MjcxMTAvBgNVBAUTKDZFRUU3NzFCQjNDRTdFOThEQjM5NjBDNEQ4MkY3NDJB MkNGN0U4NDkwHhcNMjUwOTE2MjM1ODE0WhcNMjUwOTIzMjM1ODE0WjAYMRYwFAYD VQQDEw02OGM5Zjk5Ni0zNDA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwY3vXtZPtx2XYv5YrIps2Isqa6C+BH5Zttk5w/uoPi8EodmS8sgZedruiwsc D/7Ejqg3SCWwX5mmUbOUAxHSvh26ORpQkkeTCQAzsFI1vX3Mo7aLOuADf5l8o/hM y/d1wf0Y06IMLzEZo8aGBfoXKUZEFxNWHjAEHhbgRbLcmCI87Hl4MBBprkk2PPjO VOakUlC2ZWgsi/mkfaX/4oUrx7RrkzqIu/07RcL7WnPcBzITDCS/kolY/XOHAMhN KsBLBki1+73JJKTPKzigL+O/H+ACCLEI6/Mp1ESJ3pxFZqtU3MUGK0qsxNxPdnNn AHDeQbAK+SwTdsRg7J0nYvrkvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFALbxGKp AUSMoW7sG7jlGtKz3C+jMB8GA1UdIwQYMBaAFG7udxuzzn6Y2zlgxNgvdCos9+hJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODgyNy8zQzdDQjQ1MDFC RTgxMUVDQkJBNjVCNTBDNEY5QUUwMi9idTUzRzdQT2ZwamJPV0RFMkM5MEtpejM2 RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J1NTNHN1BPZnBqYk9XREUyQzkwS2l6MzZFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODgyNy8zQzdDQjQ1MDFCRTgxMUVDQkJBNjVCNTBDNEY5QUUwMi9idTUzRzdQT2Zw amJPV0RFMkM5MEtpejM2RWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhCPbIEbUGY6UNFHTWTN/MESMnvctJM7La0erIMntZJo4r6fK6ya4U bH/8ekGPIMi+NNv9gUqj4wC3SpeRoheaL5pzAtxbHb0iP9HFPKqq8hMTpsUfYMvN kkew6kkk76+IoC2xYPe9pvjqYWaQB1vn3NHGhegZe/c7k4Z28iifNLr2A61PZ9ae 2AguYMOAFqzOguqPWmFt/GBhhL8Gh0VQ4b4aWryk6Pgu4uUkWseqE3X3ZDMpu+m1 t3vN88y1Tp9Hef87r9VFmLMbNuXsNfw/Y6Wm3ptQ/nNlFd2CIF1S75WHMQxdmjrh Doq0YoxRByfc2+j7BSYDL+z0tXIgKufM -----END CERTIFICATE-----Generated at Fri Sep 19 00:43:53 2025 by rpki-client