$ rpki-client -vvf rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.mft File: BPDYqTArIrYOMPRlG4KumZ_3TJs.mft (raw, json) Hash identifier: 0Y/YWvi9RQyuyV1Bp0MdFU252ye+JVLWmTWcl7n6ISo= Subject key identifier: 75:20:7A:B4:F5:85:19:FA:E3:B9:99:4B:AB:AA:41:45:AB:C1:0A:FC Authority key identifier: 04:F0:D8:A9:30:2B:22:B6:0E:30:F4:65:1B:82:AE:99:9F:F7:4C:9B Certificate issuer: /CN=A9171882/serialNumber=04F0D8A9302B22B60E30F4651B82AE999FF74C9B Certificate serial: 0104 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BPDYqTArIrYOMPRlG4KumZ_3TJs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.mft Manifest number: 0102 Signing time: Thu 21 Aug 2025 05:13:50 +0000 Manifest this update: Thu 21 Aug 2025 05:13:49 +0000 Manifest next update: Thu 28 Aug 2025 05:13:49 +0000 Files and hashes: 1: BPDYqTArIrYOMPRlG4KumZ_3TJs.crl (hash: 2npRnfTHNHHRIhkHYFxx9n53hvyf/8Pppc4b52KQXHI=) 2: 08D1870EF0B411EE962EE784C4F9AE02.roa (hash: nrFzYe2K6I+fVS0WsJAv1h0mXVgQBFKENnTmsnUT3Jo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.crl rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BPDYqTArIrYOMPRlG4KumZ_3TJs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 05:13:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 260 (0x104) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171882, serialNumber=04F0D8A9302B22B60E30F4651B82AE999FF74C9B Validity Not Before: Aug 21 05:13:49 2025 GMT Not After : Aug 28 05:13:49 2025 GMT Subject: CN=68a6ab0d-e8a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ca:26:e1:01:4e:4a:c4:4f:aa:cd:84:f5:34: ab:d6:26:30:35:45:1e:7e:df:93:f0:8a:78:1b:cb: 2e:1e:9d:fd:f4:70:42:21:da:51:cb:17:2c:21:e6: c1:89:c7:3b:4b:72:5e:6d:3c:77:d6:06:d1:55:c9: cd:2d:41:90:00:93:e9:94:3d:cd:b6:77:a1:bf:6a: 5f:11:75:c4:ba:2d:a4:e8:78:bc:bf:47:80:c4:b8: 14:45:bd:1c:db:d2:a3:c6:2e:48:9d:a2:0d:56:6b: f4:d3:16:6e:d5:61:64:55:5a:c7:ea:84:55:60:0b: 83:c8:3e:c3:54:fe:19:ca:28:0c:20:c4:b2:31:0a: e3:68:aa:4f:cb:dc:1c:e4:5c:f5:a4:40:36:ea:a3: e0:e9:b2:56:bc:1c:c1:da:6d:17:95:cc:a5:62:ab: ee:19:9f:51:01:b7:16:83:6a:dc:62:19:5c:41:a7: fa:c8:86:47:07:a7:0b:05:98:8b:ad:6f:35:cb:17: d0:9e:6b:15:be:15:85:59:18:c3:7b:75:40:cb:a9: 45:e1:d7:31:81:00:f2:de:b5:15:62:ff:c1:11:a8: d1:3c:4a:69:81:4e:8e:5b:51:18:b1:d3:25:75:4f: 00:d9:6d:fc:4c:8d:fe:fe:54:a3:9b:3e:c9:94:be: ad:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:20:7A:B4:F5:85:19:FA:E3:B9:99:4B:AB:AA:41:45:AB:C1:0A:FC X509v3 Authority Key Identifier: keyid:04:F0:D8:A9:30:2B:22:B6:0E:30:F4:65:1B:82:AE:99:9F:F7:4C:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BPDYqTArIrYOMPRlG4KumZ_3TJs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:94:64:38:b1:32:f6:47:20:5f:9b:90:fb:ba:03:38:74:27: 65:b1:4e:57:74:07:84:41:91:cd:b6:bf:41:42:33:d8:55:7f: 9f:28:00:8b:c4:c3:e2:46:b7:41:10:bf:9f:eb:13:2c:11:23: dd:e1:78:3f:f3:5c:7a:5f:c5:04:1d:47:60:60:cb:2d:48:7d: ce:8e:ee:71:df:0a:41:9b:c6:06:7c:a1:e3:5c:9f:35:e6:23: 97:fa:89:7e:02:b5:89:75:ba:3c:22:5f:1e:17:f7:c3:92:e5: d3:8b:8f:ef:e9:a3:32:70:6e:a7:f4:4f:52:25:a5:09:30:ed: 3f:be:f9:07:28:17:b9:f7:78:52:7d:44:e1:af:0f:30:2e:d8: 95:d9:53:96:5a:fe:35:37:b2:60:75:08:fc:7e:a8:48:5f:ad: 95:30:9f:31:44:da:a3:04:24:a3:60:54:ba:a2:e6:e0:de:5b: b8:4e:1c:25:be:77:ee:21:62:1b:11:c8:5f:40:5f:54:ff:bd: ba:99:92:7e:95:d3:84:d5:30:aa:8a:9b:7b:9a:1a:e0:ad:43: a0:64:83:81:d0:57:3b:24:5c:a7:9a:22:7b:c9:93:84:63:48: fc:f9:e0:b1:2d:50:00:40:49:b3:e8:2b:4f:7c:da:60:39:fa: e0:fb:b1:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE4ODIxMTAvBgNVBAUTKDA0RjBEOEE5MzAyQjIyQjYwRTMwRjQ2NTFCODJBRTk5 OUZGNzRDOUIwHhcNMjUwODIxMDUxMzQ5WhcNMjUwODI4MDUxMzQ5WjAYMRYwFAYD VQQDEw02OGE2YWIwZC1lOGEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw8om4QFOSsRPqs2E9TSr1iYwNUUeft+T8Ip4G8suHp399HBCIdpRyxcsIebB icc7S3JebTx31gbRVcnNLUGQAJPplD3Ntnehv2pfEXXEui2k6Hi8v0eAxLgURb0c 29Kjxi5InaINVmv00xZu1WFkVVrH6oRVYAuDyD7DVP4ZyigMIMSyMQrjaKpPy9wc 5Fz1pEA26qPg6bJWvBzB2m0XlcylYqvuGZ9RAbcWg2rcYhlcQaf6yIZHB6cLBZiL rW81yxfQnmsVvhWFWRjDe3VAy6lF4dcxgQDy3rUVYv/BEajRPEppgU6OW1EYsdMl dU8A2W38TI3+/lSjmz7JlL6taQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHUgerT1 hRn647mZS6uqQUWrwQr8MB8GA1UdIwQYMBaAFATw2KkwKyK2DjD0ZRuCrpmf90yb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTg4Mi9CMjM4QTE4NEYw QjMxMUVFQTRDNzJGODRDNEY5QUUwMi9CUERZcVRBcklyWU9NUFJsRzRLdW1aXzNU SnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JQRFlxVEFySXJZT01QUmxHNEt1bVpfM1RKcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTg4Mi9CMjM4QTE4NEYwQjMxMUVFQTRDNzJGODRDNEY5QUUwMi9CUERZcVRBckly WU9NUFJsRzRLdW1aXzNUSnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0lGQ4sTL2RyBfm5D7ugM4dCdlsU5XdAeEQZHNtr9BQjPYVX+fKACL xMPiRrdBEL+f6xMsESPd4Xg/81x6X8UEHUdgYMstSH3Oju5x3wpBm8YGfKHjXJ81 5iOX+ol+ArWJdbo8Il8eF/fDkuXTi4/v6aMycG6n9E9SJaUJMO0/vvkHKBe593hS fUThrw8wLtiV2VOWWv41N7JgdQj8fqhIX62VMJ8xRNqjBCSjYFS6oubg3lu4Thwl vnfuIWIbEchfQF9U/726mZJ+ldOE1TCqipt7mhrgrUOgZIOB0Fc7JFynmiJ7yZOE Y0j8+eCxLVAAQEmz6CtPfNpgOfrg+7GJ -----END CERTIFICATE-----Generated at Fri Aug 22 16:29:51 2025 by rpki-client