$ rpki-client -vvf rpki.apnic.net/member_repository/A9126B7C/51A9445ADF8811EDAFBF2B7FC4F9AE02/BPB0oLqHgFxQ_HmT1AQQuEoR0vY.mft File: BPB0oLqHgFxQ_HmT1AQQuEoR0vY.mft (raw, json) Hash identifier: sZwVRMEFEnYUb5jRRDBD+ys++WDuD7P2arkdnOI6Dac= Subject key identifier: C9:97:1F:11:07:CB:10:48:7A:ED:10:CA:A1:D7:D6:43:08:F0:51:A5 Authority key identifier: 04:F0:74:A0:BA:87:80:5C:50:FC:79:93:D4:04:10:B8:4A:11:D2:F6 Certificate issuer: /CN=A9126B7C/serialNumber=04F074A0BA87805C50FC7993D40410B84A11D2F6 Certificate serial: 01C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BPB0oLqHgFxQ_HmT1AQQuEoR0vY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9126B7C/51A9445ADF8811EDAFBF2B7FC4F9AE02/BPB0oLqHgFxQ_HmT1AQQuEoR0vY.mft Manifest number: 01BE Signing time: Sun 07 Sep 2025 03:21:45 +0000 Manifest this update: Sun 07 Sep 2025 03:21:45 +0000 Manifest next update: Sun 14 Sep 2025 03:21:45 +0000 Files and hashes: 1: BPB0oLqHgFxQ_HmT1AQQuEoR0vY.crl (hash: y4Uw4F2jr9bng4E/S2YfsV5Hz4x5a6sdwDtYi8MJyZY=) 2: F57CB8F6DF8C11ED9EAE5884C4F9AE02.roa (hash: 5VwQvP2fVpjZvZxgLpSBhfWvfSymTIgG5SpcIoI9Jnk=) 3: F607A6C8DF8C11ED9EAE5884C4F9AE02.roa (hash: OJOp4QsqdIdHyogZJwwwl2CA1RHQVKJeYLhatS2OCss=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9126B7C/51A9445ADF8811EDAFBF2B7FC4F9AE02/BPB0oLqHgFxQ_HmT1AQQuEoR0vY.crl rsync://rpki.apnic.net/member_repository/A9126B7C/51A9445ADF8811EDAFBF2B7FC4F9AE02/BPB0oLqHgFxQ_HmT1AQQuEoR0vY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BPB0oLqHgFxQ_HmT1AQQuEoR0vY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 03:21:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 452 (0x1c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9126B7C, serialNumber=04F074A0BA87805C50FC7993D40410B84A11D2F6 Validity Not Before: Sep 7 03:21:45 2025 GMT Not After : Sep 14 03:21:45 2025 GMT Subject: CN=68bcfa49-0295 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:ad:3b:20:4a:55:06:08:92:41:3c:cf:78:5d: 18:ea:36:43:de:ea:95:62:1c:af:5d:0e:3a:e1:c3: 70:0b:c9:51:17:e9:9e:8c:c5:2c:ce:f0:f9:87:8a: 25:51:81:43:62:57:48:68:d5:ca:d7:eb:5b:f3:70: 6d:49:9b:8e:b2:58:52:2d:4c:ac:93:4a:32:be:9b: 21:39:13:a6:22:00:6c:34:83:6e:e8:05:7c:0a:62: 28:aa:b7:06:87:a5:4a:93:11:29:1d:3a:e2:5f:b2: de:11:a6:0c:00:2c:8c:3a:1f:a9:d2:dc:96:74:2e: c4:55:19:48:44:aa:64:c4:97:b8:a6:a0:7b:e9:7c: f9:8d:ed:9c:86:49:f3:00:b4:31:76:4e:fb:1c:40: 1a:87:5b:e3:2e:76:9f:b4:6b:79:27:ab:a9:43:e2: f1:c1:27:9f:50:af:42:2a:f6:13:6f:de:b4:f0:08: 93:b2:fb:9d:77:54:df:09:71:e4:81:b5:61:dc:f0: bc:b5:3a:a6:ee:45:34:c6:82:41:fb:0a:02:57:e4: 73:f3:46:c1:91:0f:e6:13:d0:5c:e1:a3:37:a7:5e: 9b:66:fa:78:42:85:39:f7:4d:cb:0f:f3:7a:1f:f5: a0:03:4f:3a:55:74:fc:c5:c2:87:e9:a9:da:71:d2: 2c:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:97:1F:11:07:CB:10:48:7A:ED:10:CA:A1:D7:D6:43:08:F0:51:A5 X509v3 Authority Key Identifier: keyid:04:F0:74:A0:BA:87:80:5C:50:FC:79:93:D4:04:10:B8:4A:11:D2:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9126B7C/51A9445ADF8811EDAFBF2B7FC4F9AE02/BPB0oLqHgFxQ_HmT1AQQuEoR0vY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BPB0oLqHgFxQ_HmT1AQQuEoR0vY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126B7C/51A9445ADF8811EDAFBF2B7FC4F9AE02/BPB0oLqHgFxQ_HmT1AQQuEoR0vY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:07:e7:90:fb:ac:5d:71:7b:a7:40:c0:15:bc:2f:06:87:44: 84:08:92:f7:90:4c:ed:3b:b8:f2:e6:9f:d5:25:a6:12:a4:dd: 52:c8:0e:82:12:7a:a7:41:50:7e:dd:5f:2c:c9:06:a3:60:82: 4f:58:51:f1:f7:21:5e:dd:2e:ac:18:7b:22:30:82:9b:1c:6f: e7:2f:3a:5e:42:03:26:36:a1:f7:8c:de:44:4b:f5:14:d2:d1: f1:83:4a:9c:1c:41:21:c6:c7:3a:c4:e8:27:0f:d5:a1:ac:4a: 29:7e:4d:a6:90:4d:87:53:9d:5f:07:ec:2a:88:54:ea:76:90: 09:ab:d1:91:de:de:2f:4c:d2:d5:2b:9a:f3:14:37:a8:3f:12: 1f:eb:1e:5b:25:16:de:5d:69:24:b8:a5:10:fd:f2:79:6e:35: 82:34:71:13:d7:ee:d3:fa:06:24:c5:3b:b8:e7:f5:13:32:f2: 2b:88:cd:2d:78:f4:b4:c7:9c:42:b2:25:a9:2c:b4:a8:48:6f: c2:31:7c:6a:cc:27:3c:8c:81:22:99:f4:55:a3:9c:c7:14:f0: e5:1d:b9:a4:2b:3c:2f:23:71:b6:61:85:30:8b:c0:1b:94:4c: 43:56:7c:44:0b:9e:91:73:e8:e2:dc:52:9d:75:80:93:c0:f5: ef:44:cb:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjZCN0MxMTAvBgNVBAUTKDA0RjA3NEEwQkE4NzgwNUM1MEZDNzk5M0Q0MDQxMEI4 NEExMUQyRjYwHhcNMjUwOTA3MDMyMTQ1WhcNMjUwOTE0MDMyMTQ1WjAYMRYwFAYD VQQDEw02OGJjZmE0OS0wMjk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3K07IEpVBgiSQTzPeF0Y6jZD3uqVYhyvXQ464cNwC8lRF+mejMUszvD5h4ol UYFDYldIaNXK1+tb83BtSZuOslhSLUysk0oyvpshOROmIgBsNINu6AV8CmIoqrcG h6VKkxEpHTriX7LeEaYMACyMOh+p0tyWdC7EVRlIRKpkxJe4pqB76Xz5je2chknz ALQxdk77HEAah1vjLnaftGt5J6upQ+LxwSefUK9CKvYTb9608AiTsvudd1TfCXHk gbVh3PC8tTqm7kU0xoJB+woCV+Rz80bBkQ/mE9Bc4aM3p16bZvp4QoU5903LD/N6 H/WgA086VXT8xcKH6anacdIssQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMmXHxEH yxBIeu0QyqHX1kMI8FGlMB8GA1UdIwQYMBaAFATwdKC6h4BcUPx5k9QEELhKEdL2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNkI3Qy81MUE5NDQ1QURG ODgxMUVEQUZCRjJCN0ZDNEY5QUUwMi9CUEIwb0xxSGdGeFFfSG1UMUFRUXVFb1Iw dlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JQQjBvTHFIZ0Z4UV9IbVQxQVFRdUVvUjB2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NkI3Qy81MUE5NDQ1QURGODgxMUVEQUZCRjJCN0ZDNEY5QUUwMi9CUEIwb0xxSGdG eFFfSG1UMUFRUXVFb1IwdlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwB+eQ+6xdcXunQMAVvC8Gh0SECJL3kEztO7jy5p/VJaYSpN1SyA6C EnqnQVB+3V8syQajYIJPWFHx9yFe3S6sGHsiMIKbHG/nLzpeQgMmNqH3jN5ES/UU 0tHxg0qcHEEhxsc6xOgnD9WhrEopfk2mkE2HU51fB+wqiFTqdpAJq9GR3t4vTNLV K5rzFDeoPxIf6x5bJRbeXWkkuKUQ/fJ5bjWCNHET1+7T+gYkxTu45/UTMvIriM0t ePS0x5xCsiWpLLSoSG/CMXxqzCc8jIEimfRVo5zHFPDlHbmkKzwvI3G2YYUwi8Ab lExDVnxEC56Rc+ji3FKddYCTwPXvRMui -----END CERTIFICATE-----Generated at Sun Sep 7 14:16:17 2025 by rpki-client