$ rpki-client -vvf rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft File: bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft (raw, json) Hash identifier: gaJi3p9cZ23j21YsIEbcW9ovmXBQgxVz4S7+mkMPe6M= Subject key identifier: A1:88:F9:28:42:19:7A:09:37:23:08:AF:C3:C4:2C:7A:D9:BF:A6:F1 Authority key identifier: 6D:DE:C6:A1:71:29:23:0E:EE:FE:50:8A:F1:19:62:FB:4C:0F:6F:C2 Certificate issuer: /CN=A9167C9C/serialNumber=6DDEC6A17129230EEEFE508AF11962FB4C0F6FC2 Certificate serial: 05D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bd7GoXEpIw7u_lCK8Rli-0wPb8I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft Manifest number: 05CD Signing time: Tue 04 Nov 2025 23:08:19 +0000 Manifest this update: Tue 04 Nov 2025 23:08:19 +0000 Manifest next update: Tue 11 Nov 2025 23:08:19 +0000 Files and hashes: 1: bd7GoXEpIw7u_lCK8Rli-0wPb8I.crl (hash: bbzz6qA0JZuhViDnS8QXgqi9kCg1TOWe+iLFnpIOFbY=) 2: BF811486DC1E11EBB2C72F52C4F9AE02.roa (hash: tkST3vaKxeiP20POIYCSnEB6Q6omsC/qv/TzKr9coAY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.crl rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bd7GoXEpIw7u_lCK8Rli-0wPb8I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:08:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1490 (0x5d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167C9C, serialNumber=6DDEC6A17129230EEEFE508AF11962FB4C0F6FC2 Validity Not Before: Nov 4 23:08:19 2025 GMT Not After : Nov 11 23:08:19 2025 GMT Subject: CN=690a8763-3b42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:6a:b6:6b:8a:1e:ca:cf:17:d7:0a:5d:e1:fb: b1:d9:23:78:c4:7f:ae:1f:b5:4c:34:d3:fb:a0:64: 25:f3:8b:74:fc:15:14:e2:6f:87:62:db:43:f3:f0: b8:2f:7f:47:1a:55:70:c8:cd:a4:91:b1:48:b1:26: a1:83:e8:13:c0:c5:8f:ed:01:9f:54:14:48:75:09: 0e:e8:f1:9c:8e:66:71:98:e5:0b:68:57:19:85:cb: 41:43:1f:57:2f:cf:c1:0a:66:d6:b8:40:03:97:b5: d4:8d:18:ee:4c:5e:77:a0:9b:1d:1e:eb:e8:b5:3d: 35:19:06:32:64:26:ce:7f:99:d3:44:b3:a9:6f:8f: 81:fe:d0:bb:e0:3a:11:ab:4e:98:2b:f2:bd:c5:03: 5c:71:52:e2:ca:67:7a:86:0b:ba:24:67:4d:e5:c5: 94:7d:fe:5b:60:00:40:4a:b1:51:b4:56:2d:c9:ae: 08:09:fc:6f:c8:3a:70:ea:38:5b:0f:25:c5:33:4e: 1b:c3:71:2f:1b:9b:6c:11:8b:2e:65:5b:76:0e:78: 73:b2:ac:19:1f:0e:6b:ff:73:b0:27:4f:a9:3f:ad: 39:f4:60:96:40:03:a1:d7:53:c2:65:c3:f7:86:02: ca:8e:be:a6:35:c1:f0:6e:33:c6:d0:9b:20:90:c1: 80:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:88:F9:28:42:19:7A:09:37:23:08:AF:C3:C4:2C:7A:D9:BF:A6:F1 X509v3 Authority Key Identifier: keyid:6D:DE:C6:A1:71:29:23:0E:EE:FE:50:8A:F1:19:62:FB:4C:0F:6F:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bd7GoXEpIw7u_lCK8Rli-0wPb8I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:c5:72:f6:a5:95:cb:42:3c:12:96:03:8f:2b:da:73:6a:2a: 67:7a:b3:4c:d4:d4:5c:0d:6b:b4:91:59:5e:9a:ea:77:b5:48: 69:7d:15:35:fb:92:63:1d:71:47:97:4a:a1:2e:11:00:98:56: ff:e7:93:6a:d2:a8:2b:68:c8:6d:c9:68:83:e4:cb:ff:0d:9c: 0d:7e:ec:70:c3:1f:59:e8:e4:84:5e:3e:30:3d:3d:a1:b4:da: 7b:3a:87:3f:1b:2a:72:e3:ed:dc:47:8e:9f:a1:d0:45:69:63: 12:51:ae:f9:c6:b2:f0:18:23:b9:01:63:61:c2:fd:33:2e:b4: 8b:a6:52:9b:3f:53:16:7e:0b:68:70:67:d4:a0:3f:53:5a:e1: 73:95:24:16:40:da:32:84:a1:db:01:ac:70:30:7c:01:83:fe: ad:7f:7f:82:1a:92:57:02:eb:c8:b0:3c:8d:e0:92:06:80:c9: 6f:aa:ea:91:16:f0:81:48:74:a9:ac:c7:d9:d4:02:aa:b0:58: 99:6f:b0:ad:23:52:f9:8d:6b:67:9d:c4:58:9c:60:45:f4:a9: 25:24:e8:92:9d:c9:a1:95:78:53:23:c2:8a:7b:4c:30:a0:b0: 00:50:4f:5a:c3:b9:67:ed:35:ca:fb:9a:82:47:82:43:a4:c0: 05:ac:11:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBdIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDOUMxMTAvBgNVBAUTKDZEREVDNkExNzEyOTIzMEVFRUZFNTA4QUYxMTk2MkZC NEMwRjZGQzIwHhcNMjUxMTA0MjMwODE5WhcNMjUxMTExMjMwODE5WjAYMRYwFAYD VQQDEw02OTBhODc2My0zYjQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqmq2a4oeys8X1wpd4fux2SN4xH+uH7VMNNP7oGQl84t0/BUU4m+HYttD8/C4 L39HGlVwyM2kkbFIsSahg+gTwMWP7QGfVBRIdQkO6PGcjmZxmOULaFcZhctBQx9X L8/BCmbWuEADl7XUjRjuTF53oJsdHuvotT01GQYyZCbOf5nTRLOpb4+B/tC74DoR q06YK/K9xQNccVLiymd6hgu6JGdN5cWUff5bYABASrFRtFYtya4ICfxvyDpw6jhb DyXFM04bw3EvG5tsEYsuZVt2DnhzsqwZHw5r/3OwJ0+pP6059GCWQAOh11PCZcP3 hgLKjr6mNcHwbjPG0JsgkMGAzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKGI+ShC GXoJNyMIr8PELHrZv6bxMB8GA1UdIwQYMBaAFG3exqFxKSMO7v5QivEZYvtMD2/C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0M5Qy85QjZDNDI4MERD MUIxMUVCQTYzNTUwNEVDNEY5QUUwMi9iZDdHb1hFcEl3N3VfbENLOFJsaS0wd1Bi OEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JkN0dvWEVwSXc3dV9sQ0s4UmxpLTB3UGI4SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0M5Qy85QjZDNDI4MERDMUIxMUVCQTYzNTUwNEVDNEY5QUUwMi9iZDdHb1hFcEl3 N3VfbENLOFJsaS0wd1BiOEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOxXL2pZXLQjwSlgOPK9pzaipnerNM1NRcDWu0kVlemup3tUhpfRU1 +5JjHXFHl0qhLhEAmFb/55Nq0qgraMhtyWiD5Mv/DZwNfuxwwx9Z6OSEXj4wPT2h tNp7Ooc/Gypy4+3cR46fodBFaWMSUa75xrLwGCO5AWNhwv0zLrSLplKbP1MWfgto cGfUoD9TWuFzlSQWQNoyhKHbAaxwMHwBg/6tf3+CGpJXAuvIsDyN4JIGgMlvquqR FvCBSHSprMfZ1AKqsFiZb7CtI1L5jWtnncRYnGBF9KklJOiSncmhlXhTI8KKe0ww oLAAUE9aw7ln7TXK+5qCR4JDpMAFrBEf -----END CERTIFICATE-----Generated at Wed Nov 5 18:09:17 2025 by rpki-client