$ rpki-client -vvf rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.mft File: BL27YPamYNHS0BJzSQ_PCcw1m3M.mft (raw, json) Hash identifier: QfQ8MCknqFNQ+InSE1zF5cGhqTJOhCpYsfuArch4hMA= Subject key identifier: C8:B1:A4:D8:9C:37:B8:04:6E:00:31:B1:93:D8:F6:52:8E:FC:0F:21 Authority key identifier: 04:BD:BB:60:F6:A6:60:D1:D2:D0:12:73:49:0F:CF:09:CC:35:9B:73 Certificate issuer: /CN=A917C59F/serialNumber=04BDBB60F6A660D1D2D01273490FCF09CC359B73 Certificate serial: 08C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BL27YPamYNHS0BJzSQ_PCcw1m3M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.mft Manifest number: 08B9 Signing time: Thu 18 Sep 2025 20:44:34 +0000 Manifest this update: Thu 18 Sep 2025 20:44:34 +0000 Manifest next update: Thu 25 Sep 2025 20:44:34 +0000 Files and hashes: 1: BL27YPamYNHS0BJzSQ_PCcw1m3M.crl (hash: s3PG0UEHDMu4riU/2s6jTUCuu7fn0Q7OkSjOefJuk/M=) 2: 12482BA205A211ED81E44F6DC4F9AE02.roa (hash: XF3b1tsv84dWcHXBpSW6CLzdc6x4da3e9vI5g3fw1j4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.crl rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BL27YPamYNHS0BJzSQ_PCcw1m3M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 20:44:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2242 (0x8c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C59F, serialNumber=04BDBB60F6A660D1D2D01273490FCF09CC359B73 Validity Not Before: Sep 18 20:44:34 2025 GMT Not After : Sep 25 20:44:34 2025 GMT Subject: CN=68cc6f32-512e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:ac:cb:77:b1:32:e5:1f:a2:57:73:c6:05:ee: f2:14:a5:c6:23:5d:9e:d1:63:76:31:eb:e2:b5:31: 96:9d:80:8e:00:c8:5f:88:c1:7e:51:33:5f:82:a7: 69:d1:66:ee:e8:8a:c1:6c:97:2e:7c:91:3b:5e:43: 42:ac:27:a0:e4:50:22:17:73:c6:ee:39:8f:95:6f: f7:51:13:9b:62:73:83:a8:7a:e3:70:70:00:04:0e: 35:eb:67:7d:19:ff:a7:79:b5:fb:9e:4f:1c:e1:9e: 36:b4:12:d5:eb:c5:02:eb:e1:5d:4c:01:cd:17:82: 84:a5:5c:32:98:08:38:4a:49:f7:33:51:92:d2:2c: b9:b7:16:ff:5f:e4:8f:bf:94:ae:ea:2b:d7:bb:17: 00:2b:a1:84:f7:4b:e5:68:ad:b5:6e:d6:14:5a:86: a5:68:7b:ef:e4:36:bc:8c:48:49:bc:b7:bf:d8:41: 66:df:75:26:70:72:51:c6:10:50:cf:91:e6:cc:bf: d4:f1:ad:e7:de:fa:ad:d2:ba:77:ed:e8:1b:0f:90: cf:ef:ea:a7:49:50:f5:8a:62:31:85:d5:2a:d7:16: f2:ad:a4:19:fc:cf:ea:c1:39:51:f1:c2:f0:f4:8d: f0:16:21:8a:c4:3e:0e:83:63:11:10:d8:57:f8:d7: 25:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:B1:A4:D8:9C:37:B8:04:6E:00:31:B1:93:D8:F6:52:8E:FC:0F:21 X509v3 Authority Key Identifier: keyid:04:BD:BB:60:F6:A6:60:D1:D2:D0:12:73:49:0F:CF:09:CC:35:9B:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BL27YPamYNHS0BJzSQ_PCcw1m3M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d1:c3:fc:90:cf:5a:4d:25:5b:90:14:b7:07:ec:96:c1:ce:2c: f7:83:a5:23:fd:7f:65:63:40:b0:40:42:8c:9e:12:7d:ee:92: b9:2e:98:9b:88:c2:af:98:ae:43:24:67:81:6f:ed:95:26:79: 09:1f:de:d6:82:7c:5c:2e:a1:ab:11:8c:fa:7e:28:7b:4d:b1: ef:a5:55:9d:67:d5:3e:a8:69:60:98:bd:20:b6:5c:3d:5f:29: b6:18:f8:83:18:c4:e9:73:c5:4a:54:c8:1f:71:1a:ae:b8:0b: 6a:4b:58:56:52:a2:37:eb:37:d4:79:4b:0f:12:e9:77:bf:2c: e5:04:6c:8f:c2:b9:ee:43:88:8c:9f:91:f0:56:14:a9:86:67: c9:b4:a2:a0:62:7b:c7:db:cb:6c:cb:1d:5c:74:34:8b:b7:fa: a4:1b:37:0e:2b:5b:aa:85:fc:f9:19:63:36:8d:33:7d:2c:1e: d5:a7:5c:b0:45:87:46:ba:05:4a:b6:80:a1:03:d3:56:35:80: 1a:cb:67:39:f9:9b:7a:38:88:fa:ef:c6:7c:46:e9:0e:e6:c5: 7c:1a:cb:86:75:26:e4:50:64:3f:6d:03:48:c6:1d:5d:ba:76: a1:98:26:61:50:e9:f8:99:d3:cd:65:2c:5b:37:9b:4a:92:08: de:44:26:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M1OUYxMTAvBgNVBAUTKDA0QkRCQjYwRjZBNjYwRDFEMkQwMTI3MzQ5MEZDRjA5 Q0MzNTlCNzMwHhcNMjUwOTE4MjA0NDM0WhcNMjUwOTI1MjA0NDM0WjAYMRYwFAYD VQQDEw02OGNjNmYzMi01MTJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA26zLd7Ey5R+iV3PGBe7yFKXGI12e0WN2MevitTGWnYCOAMhfiMF+UTNfgqdp 0Wbu6IrBbJcufJE7XkNCrCeg5FAiF3PG7jmPlW/3URObYnODqHrjcHAABA4162d9 Gf+nebX7nk8c4Z42tBLV68UC6+FdTAHNF4KEpVwymAg4Skn3M1GS0iy5txb/X+SP v5Su6ivXuxcAK6GE90vlaK21btYUWoalaHvv5Da8jEhJvLe/2EFm33UmcHJRxhBQ z5HmzL/U8a3n3vqt0rp37egbD5DP7+qnSVD1imIxhdUq1xbyraQZ/M/qwTlR8cLw 9I3wFiGKxD4Og2MRENhX+NcluwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMixpNic N7gEbgAxsZPY9lKO/A8hMB8GA1UdIwQYMBaAFAS9u2D2pmDR0tASc0kPzwnMNZtz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzU5Ri80MjVFODkwMkMx NDQxMUVBOTFGMDNBNkZDNEY5QUUwMi9CTDI3WVBhbVlOSFMwQkp6U1FfUENjdzFt M00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JMMjdZUGFtWU5IUzBCSnpTUV9QQ2N3MW0zTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzU5Ri80MjVFODkwMkMxNDQxMUVBOTFGMDNBNkZDNEY5QUUwMi9CTDI3WVBhbVlO SFMwQkp6U1FfUENjdzFtM00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDRw/yQz1pNJVuQFLcH7JbBziz3g6Uj/X9lY0CwQEKMnhJ97pK5Lpib iMKvmK5DJGeBb+2VJnkJH97WgnxcLqGrEYz6fih7TbHvpVWdZ9U+qGlgmL0gtlw9 Xym2GPiDGMTpc8VKVMgfcRquuAtqS1hWUqI36zfUeUsPEul3vyzlBGyPwrnuQ4iM n5HwVhSphmfJtKKgYnvH28tsyx1cdDSLt/qkGzcOK1uqhfz5GWM2jTN9LB7Vp1yw RYdGugVKtoChA9NWNYAay2c5+Zt6OIj678Z8RukO5sV8GsuGdSbkUGQ/bQNIxh1d unahmCZhUOn4mdPNZSxbN5tKkgjeRCb+ -----END CERTIFICATE-----Generated at Fri Sep 19 16:10:42 2025 by rpki-client