$ rpki-client -vvf rpki.apnic.net/member_repository/A9177B64/ABF9796856BD11EAA503D61CC4F9AE02/BujrLhzBcw8rcm9PAAhEw0U_qlk.mft File: BujrLhzBcw8rcm9PAAhEw0U_qlk.mft (raw, json) Hash identifier: 3pK7CIGiKbHyWexlxJzF1aiW7pKYqobRyjfi+9hsJNA= Subject key identifier: 2A:42:8F:19:B4:61:F0:2A:3E:1B:5F:F0:EC:E1:27:87:CF:8C:89:76 Authority key identifier: 06:E8:EB:2E:1C:C1:73:0F:2B:72:6F:4F:00:08:44:C3:45:3F:AA:59 Certificate issuer: /CN=A9177B64/serialNumber=06E8EB2E1CC1730F2B726F4F000844C3453FAA59 Certificate serial: 0B05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BujrLhzBcw8rcm9PAAhEw0U_qlk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9177B64/ABF9796856BD11EAA503D61CC4F9AE02/BujrLhzBcw8rcm9PAAhEw0U_qlk.mft Manifest number: 0AF5 Signing time: Sun 02 Nov 2025 19:21:35 +0000 Manifest this update: Sun 02 Nov 2025 19:21:34 +0000 Manifest next update: Sun 09 Nov 2025 19:21:34 +0000 Files and hashes: 1: BujrLhzBcw8rcm9PAAhEw0U_qlk.crl (hash: HT/4cTueOAMw9C+Un8jCESbLUrzYIdTKO1Lr4H/N0Xo=) 2: D490B9E456BE11EAA979861EC4F9AE02.roa (hash: WqlB3AyhDDJWUItXT29SZAzjz5ieM7KBaQAcsyIppRw=) 3: D5248EE456BE11EAA979861EC4F9AE02.roa (hash: 3WC7Ax7r9pRLRqTKxZ8M8Papxi0g4q9TQj02VGvjxfc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9177B64/ABF9796856BD11EAA503D61CC4F9AE02/BujrLhzBcw8rcm9PAAhEw0U_qlk.crl rsync://rpki.apnic.net/member_repository/A9177B64/ABF9796856BD11EAA503D61CC4F9AE02/BujrLhzBcw8rcm9PAAhEw0U_qlk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BujrLhzBcw8rcm9PAAhEw0U_qlk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:21:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2821 (0xb05) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9177B64, serialNumber=06E8EB2E1CC1730F2B726F4F000844C3453FAA59 Validity Not Before: Nov 2 19:21:34 2025 GMT Not After : Nov 9 19:21:34 2025 GMT Subject: CN=6907af3e-ac0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:1a:a5:f8:8e:48:61:55:2b:b2:57:bd:0c:04: 6e:34:2b:3c:84:e9:c0:0b:8b:bf:26:71:8a:3b:b6: b4:c5:38:ba:c6:c7:56:4c:08:5d:9f:0e:80:c0:f0: fc:f4:71:88:e2:e7:82:dc:e9:9a:87:64:32:87:a6: 0a:a1:df:b9:65:63:2c:cd:6e:6d:0f:ef:d0:4f:71: cc:ac:29:6e:8b:9f:f6:65:2c:76:90:8b:a9:91:77: ce:12:1c:0b:ae:e4:0f:29:e9:9c:61:5c:e2:b7:30: 90:45:20:87:13:27:5d:bd:06:df:37:ba:6a:6a:89: 60:3a:df:2f:3c:b3:85:97:9a:59:21:ab:90:19:ab: 74:e0:f0:0b:70:88:6e:29:c2:cf:3a:31:2a:e3:2d: c6:19:58:ce:66:d5:d9:24:9e:02:48:8c:e4:ca:5e: 61:87:31:8f:ba:65:c8:2e:01:58:ba:44:7d:6a:14: 03:92:9f:37:56:d8:5e:fd:ed:75:3b:a5:08:b7:f6: 4c:96:f1:61:96:87:07:f9:40:28:7f:16:bf:e5:9c: 9a:f2:aa:31:80:89:be:20:e9:b0:7d:40:f9:23:4c: 29:69:d6:b4:86:6b:0b:b6:6f:d9:a3:26:dd:7a:7c: 5f:6d:e0:c3:ef:1d:59:3e:90:05:2e:04:3e:8c:32: a6:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:42:8F:19:B4:61:F0:2A:3E:1B:5F:F0:EC:E1:27:87:CF:8C:89:76 X509v3 Authority Key Identifier: keyid:06:E8:EB:2E:1C:C1:73:0F:2B:72:6F:4F:00:08:44:C3:45:3F:AA:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9177B64/ABF9796856BD11EAA503D61CC4F9AE02/BujrLhzBcw8rcm9PAAhEw0U_qlk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BujrLhzBcw8rcm9PAAhEw0U_qlk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9177B64/ABF9796856BD11EAA503D61CC4F9AE02/BujrLhzBcw8rcm9PAAhEw0U_qlk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:e6:b1:fd:db:7a:ff:ac:46:08:1d:4f:31:8a:ab:86:ec:2e: 08:24:d5:d7:5b:c2:eb:16:0e:a9:a9:f0:1f:ab:94:b5:0b:c8: f5:24:1a:0a:87:0b:44:47:6a:9f:56:38:1d:3d:72:35:be:be: 4d:ca:97:2f:e7:e0:c6:b4:0d:09:17:fb:af:a7:46:29:55:30: 03:47:5d:2c:d6:08:0e:fa:9e:c1:30:9a:e9:9e:88:e5:a2:07: 35:6e:da:1f:d7:78:85:6c:c0:d9:29:e9:01:8f:bb:30:37:94: e8:8d:e7:b1:b3:bf:ad:67:1d:f0:f5:a3:7f:96:31:ab:fa:51: d5:f9:8b:88:5f:5f:93:62:a9:a3:be:73:37:6c:2e:6a:f5:a1: ea:80:ef:5b:8f:d0:51:c8:fd:39:5f:02:25:43:e5:59:a6:2b: fc:b8:2f:1e:f9:bc:11:c6:b5:e3:9b:f7:be:55:73:39:81:20: 33:c5:60:75:45:44:0a:d5:8d:ca:46:19:e9:41:ba:d1:d3:e8: 36:74:01:4a:6a:b4:45:d0:87:33:4c:ef:98:2b:b4:57:12:0f: 68:ce:d3:99:10:0d:f3:fa:05:91:35:bd:f6:ca:be:5f:4c:65: 68:e6:e6:7b:13:86:af:ce:7f:2d:f2:87:c9:18:46:3d:6c:5e: da:2f:1d:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCwUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzdCNjQxMTAvBgNVBAUTKDA2RThFQjJFMUNDMTczMEYyQjcyNkY0RjAwMDg0NEMz NDUzRkFBNTkwHhcNMjUxMTAyMTkyMTM0WhcNMjUxMTA5MTkyMTM0WjAYMRYwFAYD VQQDEw02OTA3YWYzZS1hYzBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmxql+I5IYVUrsle9DARuNCs8hOnAC4u/JnGKO7a0xTi6xsdWTAhdnw6AwPD8 9HGI4ueC3Omah2Qyh6YKod+5ZWMszW5tD+/QT3HMrClui5/2ZSx2kIupkXfOEhwL ruQPKemcYVzitzCQRSCHEyddvQbfN7pqaolgOt8vPLOFl5pZIauQGat04PALcIhu KcLPOjEq4y3GGVjOZtXZJJ4CSIzkyl5hhzGPumXILgFYukR9ahQDkp83Vthe/e11 O6UIt/ZMlvFhlocH+UAofxa/5Zya8qoxgIm+IOmwfUD5I0wpada0hmsLtm/Zoybd enxfbeDD7x1ZPpAFLgQ+jDKmiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCpCjxm0 YfAqPhtf8OzhJ4fPjIl2MB8GA1UdIwQYMBaAFAbo6y4cwXMPK3JvTwAIRMNFP6pZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3N0I2NC9BQkY5Nzk2ODU2 QkQxMUVBQTUwM0Q2MUNDNEY5QUUwMi9CdWpyTGh6QmN3OHJjbTlQQUFoRXcwVV9x bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0J1anJMaHpCY3c4cmNtOVBBQWhFdzBVX3Fsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 N0I2NC9BQkY5Nzk2ODU2QkQxMUVBQTUwM0Q2MUNDNEY5QUUwMi9CdWpyTGh6QmN3 OHJjbTlQQUFoRXcwVV9xbGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAN5rH923r/rEYIHU8xiquG7C4IJNXXW8LrFg6pqfAfq5S1C8j1JBoK hwtER2qfVjgdPXI1vr5Nypcv5+DGtA0JF/uvp0YpVTADR10s1ggO+p7BMJrpnojl ogc1btof13iFbMDZKekBj7swN5Tojeexs7+tZx3w9aN/ljGr+lHV+YuIX1+TYqmj vnM3bC5q9aHqgO9bj9BRyP05XwIlQ+VZpiv8uC8e+bwRxrXjm/e+VXM5gSAzxWB1 RUQK1Y3KRhnpQbrR0+g2dAFKarRF0IczTO+YK7RXEg9oztOZEA3z+gWRNb32yr5f TGVo5uZ7E4avzn8t8ofJGEY9bF7aLx1w -----END CERTIFICATE-----Generated at Tue Nov 4 08:31:17 2025 by rpki-client