$ rpki-client -vvf rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft File: bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft (raw, json) Hash identifier: qOO2fX/uoHiOJUh/FQIUwP7GFNqeydLHXb3mhDBo98Q= Subject key identifier: 00:1A:77:31:5F:2A:EC:46:FB:11:93:30:91:C1:02:3C:A4:84:1D:4C Authority key identifier: 6C:A2:CF:A6:88:BD:F9:E2:D6:56:16:08:67:7A:30:C9:15:24:3D:0C Certificate issuer: /CN=A9148F80/serialNumber=6CA2CFA688BDF9E2D6561608677A30C915243D0C Certificate serial: 06BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKLPpoi9-eLWVhYIZ3owyRUkPQw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft Manifest number: 06B7 Signing time: Thu 18 Sep 2025 22:28:08 +0000 Manifest this update: Thu 18 Sep 2025 22:28:07 +0000 Manifest next update: Thu 25 Sep 2025 22:28:07 +0000 Files and hashes: 1: bKLPpoi9-eLWVhYIZ3owyRUkPQw.crl (hash: dkXOtMPpa+mwXV0Xwf2wrHf8/OS/VaMmxctHzs4oS3M=) 2: 1C93BF747CD011EB9F876E78C4F9AE02.roa (hash: vUduh0w3eSZesFepaO929FwqL1Ap+OkfqL7IQgJ/yu0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.crl rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKLPpoi9-eLWVhYIZ3owyRUkPQw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 22:28:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1726 (0x6be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148F80, serialNumber=6CA2CFA688BDF9E2D6561608677A30C915243D0C Validity Not Before: Sep 18 22:28:07 2025 GMT Not After : Sep 25 22:28:07 2025 GMT Subject: CN=68cc8777-5a38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:35:39:4f:82:c6:88:14:02:f6:35:42:78:70: 48:26:28:ae:5b:d6:81:bd:b3:46:31:94:6c:29:12: 87:61:f5:33:95:b1:ce:df:d4:db:f4:41:e8:06:28: 36:b4:dc:6c:77:73:60:64:ea:b9:e1:0b:b2:43:01: 6d:15:54:c3:62:90:03:bd:3b:b6:56:9a:c1:99:3a: 62:40:a9:d7:1a:b5:33:37:96:ca:2c:5a:46:5c:8a: 02:ba:25:48:94:a8:76:ab:31:84:9d:e0:37:d7:f4: af:d4:52:2e:45:86:8a:ac:82:1a:0a:2b:f5:5e:5e: da:55:05:08:d8:21:ab:ee:09:b8:a8:5f:f9:6a:be: 0f:5c:b5:fa:17:c6:7a:ab:dd:20:05:b4:9f:c5:ec: 88:88:0d:3d:b5:3e:6e:16:ea:9c:e7:e0:d0:d6:03: 6e:ac:36:95:48:08:19:40:a5:b8:31:63:da:77:d2: c3:56:5b:43:fc:ef:9a:b3:ab:4b:9a:0f:46:58:7f: c3:05:44:ba:81:10:b8:eb:a0:a9:70:3f:e1:dc:c3: 99:1f:16:8f:7d:86:a4:a0:d2:86:46:2c:29:b1:a7: 56:5a:3d:9c:93:c9:31:65:dc:ac:50:79:cb:31:b3: de:5c:30:be:59:8f:3d:05:ee:ea:5c:ba:1f:47:73: 4b:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:1A:77:31:5F:2A:EC:46:FB:11:93:30:91:C1:02:3C:A4:84:1D:4C X509v3 Authority Key Identifier: keyid:6C:A2:CF:A6:88:BD:F9:E2:D6:56:16:08:67:7A:30:C9:15:24:3D:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKLPpoi9-eLWVhYIZ3owyRUkPQw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:76:08:b2:9d:c1:2f:d7:58:de:55:b5:e1:3a:23:64:0c:03: 36:e6:16:58:58:4b:44:98:b6:fc:44:89:45:4f:f5:db:82:1d: d9:e6:af:5c:83:fc:73:48:a2:6d:37:ea:22:af:ed:0c:6b:1e: 70:88:f5:ec:aa:1d:97:1e:20:50:7a:7e:ed:1b:77:59:e6:cb: 89:5b:72:fc:45:9b:49:58:37:b7:d6:e8:bd:f9:4a:92:0a:96: 01:1a:58:e0:79:8d:30:3f:e7:77:4c:a2:b2:90:71:e9:59:c6: 54:f7:34:05:13:dd:11:2d:bb:6f:6e:fc:fe:18:82:36:dc:62: d8:0c:cb:2a:7b:8f:08:50:e9:09:57:ec:23:3a:83:93:6c:65: 73:7e:84:5b:e4:6e:df:e7:67:24:71:e0:71:91:7b:f3:6e:c7: 62:c7:03:37:42:ef:74:6c:3c:2a:59:44:8f:6d:af:c3:90:ca: 32:1c:98:82:e1:eb:5c:e9:ce:1c:2c:5b:56:71:be:1d:86:3e: 97:10:54:1d:a9:75:9c:28:16:78:75:48:9d:8d:44:be:4d:3c: 76:df:5a:8f:e9:91:7a:e1:25:66:d5:d4:d6:c1:7a:20:03:09: 1b:ab:5d:96:cd:1a:58:7c:02:ed:96:11:3a:20:28:62:3c:a9: 3a:8c:1f:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBr4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhGODAxMTAvBgNVBAUTKDZDQTJDRkE2ODhCREY5RTJENjU2MTYwODY3N0EzMEM5 MTUyNDNEMEMwHhcNMjUwOTE4MjIyODA3WhcNMjUwOTI1MjIyODA3WjAYMRYwFAYD VQQDEw02OGNjODc3Ny01YTM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmjU5T4LGiBQC9jVCeHBIJiiuW9aBvbNGMZRsKRKHYfUzlbHO39Tb9EHoBig2 tNxsd3NgZOq54QuyQwFtFVTDYpADvTu2VprBmTpiQKnXGrUzN5bKLFpGXIoCuiVI lKh2qzGEneA31/Sv1FIuRYaKrIIaCiv1Xl7aVQUI2CGr7gm4qF/5ar4PXLX6F8Z6 q90gBbSfxeyIiA09tT5uFuqc5+DQ1gNurDaVSAgZQKW4MWPad9LDVltD/O+as6tL mg9GWH/DBUS6gRC466CpcD/h3MOZHxaPfYakoNKGRiwpsadWWj2ck8kxZdysUHnL MbPeXDC+WY89Be7qXLofR3NLnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAAadzFf KuxG+xGTMJHBAjykhB1MMB8GA1UdIwQYMBaAFGyiz6aIvfni1lYWCGd6MMkVJD0M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEY4MC8wNzFERUE0MDdD Q0UxMUVCQkI4ODI5NzZDNEY5QUUwMi9iS0xQcG9pOS1lTFdWaFlJWjNvd3lSVWtQ UXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JLTFBwb2k5LWVMV1ZoWUlaM293eVJVa1BRdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEY4MC8wNzFERUE0MDdDQ0UxMUVCQkI4ODI5NzZDNEY5QUUwMi9iS0xQcG9pOS1l TFdWaFlJWjNvd3lSVWtQUXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABdgiyncEv11jeVbXhOiNkDAM25hZYWEtEmLb8RIlFT/Xbgh3Z5q9c g/xzSKJtN+oir+0Max5wiPXsqh2XHiBQen7tG3dZ5suJW3L8RZtJWDe31ui9+UqS CpYBGljgeY0wP+d3TKKykHHpWcZU9zQFE90RLbtvbvz+GII23GLYDMsqe48IUOkJ V+wjOoOTbGVzfoRb5G7f52ckceBxkXvzbsdixwM3Qu90bDwqWUSPba/DkMoyHJiC 4etc6c4cLFtWcb4dhj6XEFQdqXWcKBZ4dUidjUS+TTx231qP6ZF64SVm1dTWwXog Awkbq12WzRpYfALtlhE6IChiPKk6jB8C -----END CERTIFICATE-----Generated at Fri Sep 19 02:34:34 2025 by rpki-client