$ rpki-client -vvf rpki.apnic.net/member_repository/A9177B64/ABF9796856BD11EAA503D61CC4F9AE02/BujrLhzBcw8rcm9PAAhEw0U_qlk.mft File: BujrLhzBcw8rcm9PAAhEw0U_qlk.mft (raw, json) Hash identifier: Xr8BJEBdPBoRCQmwQ5tX9criiZm68Rq5EcEVbXM5SMU= Subject key identifier: E2:3C:74:EE:D2:78:F2:12:CA:A5:86:5A:0F:C2:E3:75:E8:25:9E:2E Authority key identifier: 06:E8:EB:2E:1C:C1:73:0F:2B:72:6F:4F:00:08:44:C3:45:3F:AA:59 Certificate issuer: /CN=A9177B64/serialNumber=06E8EB2E1CC1730F2B726F4F000844C3453FAA59 Certificate serial: 0ADF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BujrLhzBcw8rcm9PAAhEw0U_qlk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9177B64/ABF9796856BD11EAA503D61CC4F9AE02/BujrLhzBcw8rcm9PAAhEw0U_qlk.mft Manifest number: 0ACF Signing time: Wed 20 Aug 2025 19:32:47 +0000 Manifest this update: Wed 20 Aug 2025 19:32:47 +0000 Manifest next update: Wed 27 Aug 2025 19:32:47 +0000 Files and hashes: 1: BujrLhzBcw8rcm9PAAhEw0U_qlk.crl (hash: BQgPah7ps5ifnT39w9Pg30F+/hpngGT0KKI9n3kegdg=) 2: D490B9E456BE11EAA979861EC4F9AE02.roa (hash: WqlB3AyhDDJWUItXT29SZAzjz5ieM7KBaQAcsyIppRw=) 3: D5248EE456BE11EAA979861EC4F9AE02.roa (hash: 3WC7Ax7r9pRLRqTKxZ8M8Papxi0g4q9TQj02VGvjxfc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9177B64/ABF9796856BD11EAA503D61CC4F9AE02/BujrLhzBcw8rcm9PAAhEw0U_qlk.crl rsync://rpki.apnic.net/member_repository/A9177B64/ABF9796856BD11EAA503D61CC4F9AE02/BujrLhzBcw8rcm9PAAhEw0U_qlk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BujrLhzBcw8rcm9PAAhEw0U_qlk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 19:32:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2783 (0xadf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9177B64, serialNumber=06E8EB2E1CC1730F2B726F4F000844C3453FAA59 Validity Not Before: Aug 20 19:32:47 2025 GMT Not After : Aug 27 19:32:47 2025 GMT Subject: CN=68a622df-ec86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:59:2a:02:80:5d:9d:c6:bc:03:8c:7e:20:66: 06:8b:d2:50:7b:22:2e:81:58:64:4c:0b:35:d1:e1: 5b:a0:70:43:fb:4d:04:b7:02:55:e5:56:89:bb:d3: dc:e6:97:f0:02:12:b3:82:aa:21:95:93:6c:9c:2c: 04:5b:60:c3:43:ec:b7:c2:92:4c:f5:54:22:b9:72: e0:fa:89:18:2f:06:22:a0:35:a4:cb:4a:00:4e:5e: 7c:d4:f4:3b:df:3d:fe:e1:fd:17:15:53:d4:18:de: 7a:be:12:aa:72:d5:25:a2:c2:2b:7d:b5:0d:3d:ad: ba:2b:52:ab:78:4b:cf:70:06:4e:74:93:70:55:70: e9:4d:cc:16:c4:10:89:b5:72:24:86:54:95:c4:66: 3f:7d:26:b5:b7:36:df:0b:27:5e:83:c6:2a:ae:6c: a7:97:97:e3:62:bf:d4:93:b5:f4:a8:cd:b0:28:f4: c7:37:8d:28:eb:c2:0d:05:9f:41:bc:2a:c5:2f:04: cd:60:91:1b:ab:db:c6:e8:6f:b4:89:ed:0b:de:08: 9c:03:9d:fd:5f:c5:82:25:f9:55:9e:f0:b2:d7:00: 9f:d2:b3:fb:fe:23:cc:ee:60:5b:11:d6:86:16:dd: 4c:e7:c1:da:8f:40:58:25:b7:8c:3f:59:19:95:10: 14:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:3C:74:EE:D2:78:F2:12:CA:A5:86:5A:0F:C2:E3:75:E8:25:9E:2E X509v3 Authority Key Identifier: keyid:06:E8:EB:2E:1C:C1:73:0F:2B:72:6F:4F:00:08:44:C3:45:3F:AA:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9177B64/ABF9796856BD11EAA503D61CC4F9AE02/BujrLhzBcw8rcm9PAAhEw0U_qlk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BujrLhzBcw8rcm9PAAhEw0U_qlk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9177B64/ABF9796856BD11EAA503D61CC4F9AE02/BujrLhzBcw8rcm9PAAhEw0U_qlk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:04:8e:eb:c0:2d:5d:fb:ce:2e:29:59:75:e6:f5:1d:a9:7f: 8c:18:27:43:34:48:17:20:45:58:a2:84:e6:bc:e8:70:ab:d2: 68:09:49:b0:2c:1c:31:7c:96:f3:55:97:78:30:ef:7c:0e:57: bc:09:d2:47:cd:52:86:74:67:79:ca:39:45:98:6b:70:01:35: 36:35:93:07:da:f8:5c:e7:13:dd:e1:21:79:e6:a2:f2:b9:32: bf:5b:ef:35:a4:4e:99:38:90:0c:12:6e:fa:6b:1f:f8:3d:bc: 88:02:68:a6:5b:83:a8:79:a5:d4:f1:fe:88:b5:6d:1d:ae:df: 0d:5e:6c:7e:89:27:bc:0e:46:e5:11:e8:9d:9f:0b:61:d4:7c: c0:1d:e7:06:00:76:f6:41:46:2d:9a:65:e2:92:e9:6e:1e:a1: 31:43:5b:ac:72:46:36:39:00:4e:45:20:f9:f2:eb:15:10:6d: a3:9e:6b:cc:db:16:27:f1:f5:31:63:9f:42:3f:5d:b0:b3:32: 91:08:6d:f8:44:28:cf:a8:26:7c:28:4a:ed:1e:a6:6e:d8:a2: 47:97:f0:45:cf:11:9e:ea:f4:f1:34:b4:59:bc:57:95:79:27: 55:08:37:2d:8f:50:d6:52:9e:69:a5:28:05:47:b8:64:f2:ab: a2:fc:bb:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCt8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzdCNjQxMTAvBgNVBAUTKDA2RThFQjJFMUNDMTczMEYyQjcyNkY0RjAwMDg0NEMz NDUzRkFBNTkwHhcNMjUwODIwMTkzMjQ3WhcNMjUwODI3MTkzMjQ3WjAYMRYwFAYD VQQDEw02OGE2MjJkZi1lYzg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtVkqAoBdnca8A4x+IGYGi9JQeyIugVhkTAs10eFboHBD+00EtwJV5VaJu9Pc 5pfwAhKzgqohlZNsnCwEW2DDQ+y3wpJM9VQiuXLg+okYLwYioDWky0oATl581PQ7 3z3+4f0XFVPUGN56vhKqctUlosIrfbUNPa26K1KreEvPcAZOdJNwVXDpTcwWxBCJ tXIkhlSVxGY/fSa1tzbfCydeg8Yqrmynl5fjYr/Uk7X0qM2wKPTHN40o68INBZ9B vCrFLwTNYJEbq9vG6G+0ie0L3gicA539X8WCJflVnvCy1wCf0rP7/iPM7mBbEdaG Ft1M58Haj0BYJbeMP1kZlRAU8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOI8dO7S ePISyqWGWg/C43XoJZ4uMB8GA1UdIwQYMBaAFAbo6y4cwXMPK3JvTwAIRMNFP6pZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3N0I2NC9BQkY5Nzk2ODU2 QkQxMUVBQTUwM0Q2MUNDNEY5QUUwMi9CdWpyTGh6QmN3OHJjbTlQQUFoRXcwVV9x bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0J1anJMaHpCY3c4cmNtOVBBQWhFdzBVX3Fsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 N0I2NC9BQkY5Nzk2ODU2QkQxMUVBQTUwM0Q2MUNDNEY5QUUwMi9CdWpyTGh6QmN3 OHJjbTlQQUFoRXcwVV9xbGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLBI7rwC1d+84uKVl15vUdqX+MGCdDNEgXIEVYooTmvOhwq9JoCUmw LBwxfJbzVZd4MO98Dle8CdJHzVKGdGd5yjlFmGtwATU2NZMH2vhc5xPd4SF55qLy uTK/W+81pE6ZOJAMEm76ax/4PbyIAmimW4OoeaXU8f6ItW0drt8NXmx+iSe8Dkbl Eeidnwth1HzAHecGAHb2QUYtmmXikuluHqExQ1usckY2OQBORSD58usVEG2jnmvM 2xYn8fUxY59CP12wszKRCG34RCjPqCZ8KErtHqZu2KJHl/BFzxGe6vTxNLRZvFeV eSdVCDctj1DWUp5ppSgFR7hk8qui/Lvo -----END CERTIFICATE-----Generated at Fri Aug 22 16:38:26 2025 by rpki-client