$ rpki-client -vvf rpki.apnic.net/member_repository/A915B0C9/0C778CB47D1A11ED8E8BEB82C4F9AE02/BzgX21Kc2-s_-TiuXuCEiOF-TpA.mft File: BzgX21Kc2-s_-TiuXuCEiOF-TpA.mft (raw, json) Hash identifier: rDwcWV/QBGk+jqWklBfG46klgVzCVwbs21vBagEzXDY= Subject key identifier: 54:8D:69:23:35:CE:F6:E1:3D:61:74:D6:2E:34:5B:E1:B7:3F:74:70 Authority key identifier: 07:38:17:DB:52:9C:DB:EB:3F:F9:38:AE:5E:E0:84:88:E1:7E:4E:90 Certificate issuer: /CN=A915B0C9/serialNumber=073817DB529CDBEB3FF938AE5EE08488E17E4E90 Certificate serial: 021C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BzgX21Kc2-s_-TiuXuCEiOF-TpA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B0C9/0C778CB47D1A11ED8E8BEB82C4F9AE02/BzgX21Kc2-s_-TiuXuCEiOF-TpA.mft Manifest number: 0219 Signing time: Sat 25 Oct 2025 05:27:28 +0000 Manifest this update: Sat 25 Oct 2025 05:27:27 +0000 Manifest next update: Sat 01 Nov 2025 05:27:27 +0000 Files and hashes: 1: BzgX21Kc2-s_-TiuXuCEiOF-TpA.crl (hash: tUBJepiTLZyvxPt6mTwp8/TSG7KjW7+ZvfibHmOT3uU=) 2: F0F09EAA7D1D11EDAE0CF917C4F9AE02.roa (hash: /AIOMPF379cdDnZ0oCHY5QGxjdpZh2kab3GCf0LfQ6w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B0C9/0C778CB47D1A11ED8E8BEB82C4F9AE02/BzgX21Kc2-s_-TiuXuCEiOF-TpA.crl rsync://rpki.apnic.net/member_repository/A915B0C9/0C778CB47D1A11ED8E8BEB82C4F9AE02/BzgX21Kc2-s_-TiuXuCEiOF-TpA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BzgX21Kc2-s_-TiuXuCEiOF-TpA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Nov 2025 05:27:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 540 (0x21c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B0C9, serialNumber=073817DB529CDBEB3FF938AE5EE08488E17E4E90 Validity Not Before: Oct 25 05:27:27 2025 GMT Not After : Nov 1 05:27:27 2025 GMT Subject: CN=68fc5fbf-ac11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:ab:39:32:eb:38:51:87:89:67:f8:bf:8f:0a: 14:41:bf:ed:13:9f:82:37:cd:39:d6:b9:80:e5:99: 4d:f1:4b:63:69:26:41:ac:ab:d6:07:52:2e:0f:ef: 79:39:17:bf:56:11:3e:7e:05:bb:b3:2d:2e:fa:27: 9f:0d:45:85:cf:ad:a0:b7:05:83:0f:99:c4:de:e9: 92:de:c6:62:25:19:56:0c:5e:f3:d5:ee:0a:18:43: 8d:72:ac:e4:2f:ee:dc:d3:34:11:bf:af:e0:4a:8b: 5f:fd:c6:e0:26:d3:45:a1:0b:45:1a:a0:f7:1b:11: 23:5d:7e:fc:40:fb:ba:48:42:3e:e5:29:04:8a:e8: 1c:d6:08:ed:a7:14:e4:f7:88:f7:39:00:fc:c9:18: 3d:90:5d:c2:82:e1:82:0c:9d:1a:aa:f7:1f:6e:e6: ee:a4:06:01:7a:17:57:15:df:1c:f5:fc:2e:2d:dd: 2d:f4:ac:bf:e4:ab:51:23:cb:03:7f:d5:66:86:44: 1c:71:d7:a3:08:8c:c4:2d:c0:c8:55:e9:bf:11:b4: c2:e9:ca:81:bf:3f:be:20:1b:42:d7:34:73:28:90: 90:40:ad:72:14:6c:f6:54:f1:8d:8b:55:ad:a2:f7: c2:d3:0e:75:07:9c:95:b0:31:6e:d9:ff:ed:d6:1f: 40:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:8D:69:23:35:CE:F6:E1:3D:61:74:D6:2E:34:5B:E1:B7:3F:74:70 X509v3 Authority Key Identifier: keyid:07:38:17:DB:52:9C:DB:EB:3F:F9:38:AE:5E:E0:84:88:E1:7E:4E:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B0C9/0C778CB47D1A11ED8E8BEB82C4F9AE02/BzgX21Kc2-s_-TiuXuCEiOF-TpA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BzgX21Kc2-s_-TiuXuCEiOF-TpA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B0C9/0C778CB47D1A11ED8E8BEB82C4F9AE02/BzgX21Kc2-s_-TiuXuCEiOF-TpA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:a2:8e:2a:ee:14:cb:65:21:36:8f:d2:6b:ed:b3:66:22:11: 19:3c:60:ce:2f:9d:b1:0b:60:79:9f:f6:8f:ad:bf:29:8e:8b: 38:31:4c:90:76:da:cf:44:0c:d9:13:1d:2d:46:28:63:7d:ac: 3f:f1:35:d0:b2:fe:bd:2f:d5:33:e4:9f:47:55:b9:3b:52:7e: 10:81:90:36:c6:f6:ef:7e:f7:50:fe:a0:9f:87:1e:2c:b0:9c: 8a:74:47:ba:09:6c:11:0c:3c:a0:2b:29:7b:f4:ea:d0:24:ae: ad:63:49:5d:f3:3b:45:c8:45:27:b2:ba:40:9a:c8:db:b6:a4: cd:cf:78:af:dd:f3:63:cc:a0:2d:2d:38:0d:45:83:07:16:29: 4a:38:1c:dc:08:5b:df:73:3a:66:cf:31:b0:95:79:eb:15:51: 85:e6:10:78:7a:4e:39:9d:e4:9f:ed:ac:a0:f6:c2:95:09:f6: 36:4d:da:8c:01:dd:51:67:22:79:38:90:ae:5e:a1:c4:82:1e: c3:72:54:db:3e:32:a2:d6:56:c8:ba:54:d3:ee:d8:ea:49:11: a5:b6:57:c0:04:ba:6a:0b:cd:01:e2:ae:b9:98:73:2e:cb:f8: 75:0a:15:48:87:5a:04:6c:db:08:0b:5b:32:8a:a3:51:c8:2d: 4f:9e:48:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUIwQzkxMTAvBgNVBAUTKDA3MzgxN0RCNTI5Q0RCRUIzRkY5MzhBRTVFRTA4NDg4 RTE3RTRFOTAwHhcNMjUxMDI1MDUyNzI3WhcNMjUxMTAxMDUyNzI3WjAYMRYwFAYD VQQDEw02OGZjNWZiZi1hYzExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnas5Mus4UYeJZ/i/jwoUQb/tE5+CN8051rmA5ZlN8UtjaSZBrKvWB1IuD+95 ORe/VhE+fgW7sy0u+iefDUWFz62gtwWDD5nE3umS3sZiJRlWDF7z1e4KGEONcqzk L+7c0zQRv6/gSotf/cbgJtNFoQtFGqD3GxEjXX78QPu6SEI+5SkEiugc1gjtpxTk 94j3OQD8yRg9kF3CguGCDJ0aqvcfbubupAYBehdXFd8c9fwuLd0t9Ky/5KtRI8sD f9VmhkQccdejCIzELcDIVem/EbTC6cqBvz++IBtC1zRzKJCQQK1yFGz2VPGNi1Wt ovfC0w51B5yVsDFu2f/t1h9AJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFSNaSM1 zvbhPWF01i40W+G3P3RwMB8GA1UdIwQYMBaAFAc4F9tSnNvrP/k4rl7ghIjhfk6Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjBDOS8wQzc3OENCNDdE MUExMUVEOEU4QkVCODJDNEY5QUUwMi9CemdYMjFLYzItc18tVGl1WHVDRWlPRi1U cEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0J6Z1gyMUtjMi1zXy1UaXVYdUNFaU9GLVRwQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QjBDOS8wQzc3OENCNDdEMUExMUVEOEU4QkVCODJDNEY5QUUwMi9CemdYMjFLYzIt c18tVGl1WHVDRWlPRi1UcEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSoo4q7hTLZSE2j9Jr7bNmIhEZPGDOL52xC2B5n/aPrb8pjos4MUyQ dtrPRAzZEx0tRihjfaw/8TXQsv69L9Uz5J9HVbk7Un4QgZA2xvbvfvdQ/qCfhx4s sJyKdEe6CWwRDDygKyl79OrQJK6tY0ld8ztFyEUnsrpAmsjbtqTNz3iv3fNjzKAt LTgNRYMHFilKOBzcCFvfczpmzzGwlXnrFVGF5hB4ek45neSf7ayg9sKVCfY2TdqM Ad1RZyJ5OJCuXqHEgh7DclTbPjKi1lbIulTT7tjqSRGltlfABLpqC80B4q65mHMu y/h1ChVIh1oEbNsIC1syiqNRyC1PnkjJ -----END CERTIFICATE-----Generated at Sun Oct 26 08:48:23 2025 by rpki-client