$ rpki-client -vvf rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft File: bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft (raw, json) Hash identifier: ivrwsE3X9tDtLFaZYwgfBcEa5WuyL6hVgWjkhTOt+jQ= Subject key identifier: 99:BB:9E:A6:D7:6A:00:89:54:36:6D:27:31:F2:82:71:4A:AB:6E:EA Authority key identifier: 6D:DE:C6:A1:71:29:23:0E:EE:FE:50:8A:F1:19:62:FB:4C:0F:6F:C2 Certificate issuer: /CN=A9167C9C/serialNumber=6DDEC6A17129230EEEFE508AF11962FB4C0F6FC2 Certificate serial: 05AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bd7GoXEpIw7u_lCK8Rli-0wPb8I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft Manifest number: 05A8 Signing time: Fri 22 Aug 2025 23:21:35 +0000 Manifest this update: Fri 22 Aug 2025 23:21:34 +0000 Manifest next update: Fri 29 Aug 2025 23:21:34 +0000 Files and hashes: 1: bd7GoXEpIw7u_lCK8Rli-0wPb8I.crl (hash: dRzdKhG3WCiIhvaSEiul5qEn/I2Ha3LwxbPncPi4ykg=) 2: BF811486DC1E11EBB2C72F52C4F9AE02.roa (hash: tkST3vaKxeiP20POIYCSnEB6Q6omsC/qv/TzKr9coAY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.crl rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bd7GoXEpIw7u_lCK8Rli-0wPb8I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:21:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1453 (0x5ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167C9C, serialNumber=6DDEC6A17129230EEEFE508AF11962FB4C0F6FC2 Validity Not Before: Aug 22 23:21:34 2025 GMT Not After : Aug 29 23:21:34 2025 GMT Subject: CN=68a8fb7e-09a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:f6:c1:64:80:09:ac:d9:11:4a:e8:9b:00:7f: 30:1e:32:63:f5:14:b2:0b:97:23:da:1b:10:cb:aa: b6:cb:10:a2:d1:cb:ed:9d:9c:1c:1b:64:e8:18:68: 5b:0c:01:ee:9c:d8:1c:e5:7c:f6:3d:39:75:46:0c: 7d:85:06:b4:72:a7:23:20:2b:8e:fe:69:5a:ad:70: c3:00:df:34:87:f0:b7:08:be:0b:22:d7:8e:89:d2: 3f:cd:95:c1:54:df:dc:ca:7c:ec:77:4a:d9:3c:ca: 18:35:2d:3e:cb:9d:95:61:be:5b:cf:c4:25:86:d9: 2a:86:79:b6:59:f0:6a:3a:62:fd:a2:4a:dc:b7:c2: c1:ed:4a:6b:82:dd:0c:e7:ff:bb:0b:c7:16:63:21: 3b:a2:bb:f4:a8:c6:af:9f:f7:9c:f1:81:a3:55:18: a1:2b:65:e8:2f:35:2b:a2:3d:47:be:74:ba:6d:92: bb:86:fc:af:1e:cd:12:4f:5a:bf:a8:b8:bc:86:03: 12:bc:a7:5c:b4:3d:04:75:94:3d:24:70:a8:fa:43: 57:04:63:b0:35:5d:a5:e3:cb:f2:42:39:04:e0:0b: 67:d1:06:91:8d:c7:6d:b7:3d:fb:34:71:6d:00:b9: 1d:ac:ef:98:6b:4f:65:5b:c1:cf:c8:20:18:c2:da: 1c:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:BB:9E:A6:D7:6A:00:89:54:36:6D:27:31:F2:82:71:4A:AB:6E:EA X509v3 Authority Key Identifier: keyid:6D:DE:C6:A1:71:29:23:0E:EE:FE:50:8A:F1:19:62:FB:4C:0F:6F:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bd7GoXEpIw7u_lCK8Rli-0wPb8I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:68:d9:a6:24:f4:28:5d:a9:9d:c5:ad:74:61:d0:93:46:8e: ae:69:e0:5d:21:50:33:ac:80:ea:91:09:15:47:8f:62:f5:ae: 99:50:91:f7:1b:74:1a:69:2f:e4:35:eb:9e:8a:53:ad:fe:d7: 62:be:a6:ea:99:a8:d9:3b:fa:be:6e:82:26:0c:39:ca:65:6b: 2c:90:68:2c:9d:07:ec:1f:dc:db:1c:fd:c8:a9:51:06:05:fb: 79:63:e6:42:32:a2:78:b3:23:e4:05:2a:7a:d3:b3:80:c2:48: ee:6f:97:cb:42:d9:03:72:44:03:ff:b3:d5:94:f3:7c:47:dc: 51:e8:53:93:fb:b0:27:3e:ba:82:83:e3:93:44:73:aa:20:e6: 6b:0f:6c:99:83:7c:7d:33:6b:18:a2:ad:89:ed:ba:03:7d:70: c4:6c:04:8f:3f:25:a0:9b:0f:49:2d:e8:5a:54:80:e3:c4:12: 26:9a:2b:81:1a:d4:f1:be:23:28:9a:e2:26:d9:c9:2c:88:b1: bf:bb:5f:af:07:37:a5:f9:3f:05:de:50:a8:a8:d5:a5:29:4a: 93:cc:30:27:c5:24:25:15:89:34:0b:dd:55:fa:ba:8f:c8:ba: ea:f5:79:28:95:91:f4:84:70:86:57:7b:ec:23:45:24:62:43: a6:8f:ad:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBa0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDOUMxMTAvBgNVBAUTKDZEREVDNkExNzEyOTIzMEVFRUZFNTA4QUYxMTk2MkZC NEMwRjZGQzIwHhcNMjUwODIyMjMyMTM0WhcNMjUwODI5MjMyMTM0WjAYMRYwFAYD VQQDEw02OGE4ZmI3ZS0wOWE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2PbBZIAJrNkRSuibAH8wHjJj9RSyC5cj2hsQy6q2yxCi0cvtnZwcG2ToGGhb DAHunNgc5Xz2PTl1Rgx9hQa0cqcjICuO/mlarXDDAN80h/C3CL4LIteOidI/zZXB VN/cynzsd0rZPMoYNS0+y52VYb5bz8Qlhtkqhnm2WfBqOmL9okrct8LB7Uprgt0M 5/+7C8cWYyE7orv0qMavn/ec8YGjVRihK2XoLzUroj1HvnS6bZK7hvyvHs0ST1q/ qLi8hgMSvKdctD0EdZQ9JHCo+kNXBGOwNV2l48vyQjkE4Atn0QaRjcdttz37NHFt ALkdrO+Ya09lW8HPyCAYwtocjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJm7nqbX agCJVDZtJzHygnFKq27qMB8GA1UdIwQYMBaAFG3exqFxKSMO7v5QivEZYvtMD2/C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0M5Qy85QjZDNDI4MERD MUIxMUVCQTYzNTUwNEVDNEY5QUUwMi9iZDdHb1hFcEl3N3VfbENLOFJsaS0wd1Bi OEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JkN0dvWEVwSXc3dV9sQ0s4UmxpLTB3UGI4SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0M5Qy85QjZDNDI4MERDMUIxMUVCQTYzNTUwNEVDNEY5QUUwMi9iZDdHb1hFcEl3 N3VfbENLOFJsaS0wd1BiOEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHaNmmJPQoXamdxa10YdCTRo6uaeBdIVAzrIDqkQkVR49i9a6ZUJH3 G3QaaS/kNeueilOt/tdivqbqmajZO/q+boImDDnKZWsskGgsnQfsH9zbHP3IqVEG Bft5Y+ZCMqJ4syPkBSp607OAwkjub5fLQtkDckQD/7PVlPN8R9xR6FOT+7AnPrqC g+OTRHOqIOZrD2yZg3x9M2sYoq2J7boDfXDEbASPPyWgmw9JLehaVIDjxBImmiuB GtTxviMomuIm2cksiLG/u1+vBzel+T8F3lCoqNWlKUqTzDAnxSQlFYk0C91V+rqP yLrq9XkolZH0hHCGV3vsI0UkYkOmj60a -----END CERTIFICATE-----Generated at Sun Aug 24 22:14:30 2025 by rpki-client