$ rpki-client -vvf rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.mft File: bZYGiLbecUGnIYmOngc-FneP7zU.mft (raw, json) Hash identifier: yCbVfv/Z1Keq9anlQGr5BZwN77s3rx9FbjeSRBpe3B4= Subject key identifier: FB:ED:28:48:FC:A7:0E:02:CE:32:B3:E5:8C:AE:A2:44:17:5F:F7:C4 Authority key identifier: 6D:96:06:88:B6:DE:71:41:A7:21:89:8E:9E:07:3E:16:77:8F:EF:35 Certificate issuer: /CN=A9197A8F/serialNumber=6D960688B6DE7141A721898E9E073E16778FEF35 Certificate serial: 016D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bZYGiLbecUGnIYmOngc-FneP7zU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.mft Manifest number: 0169 Signing time: Thu 21 Aug 2025 04:03:23 +0000 Manifest this update: Thu 21 Aug 2025 04:03:22 +0000 Manifest next update: Thu 28 Aug 2025 04:03:22 +0000 Files and hashes: 1: bZYGiLbecUGnIYmOngc-FneP7zU.crl (hash: 5eGehY50vGMTtNkUpYRGvfxP/qMTz7wShjfsFOQUjnA=) 2: A663285A59DE11EE85CFCB12C4F9AE02.roa (hash: X/pG7qc3+7qr+qWCl38L4oCPzOU3+0jR+niOHWQizTQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.crl rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bZYGiLbecUGnIYmOngc-FneP7zU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 04:03:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 365 (0x16d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197A8F, serialNumber=6D960688B6DE7141A721898E9E073E16778FEF35 Validity Not Before: Aug 21 04:03:22 2025 GMT Not After : Aug 28 04:03:22 2025 GMT Subject: CN=68a69a8a-2d63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:04:3b:91:b1:94:95:78:07:a4:6c:90:73:11: ee:bb:06:2d:97:52:1c:43:d6:cf:e4:60:2a:a3:5b: 1a:df:d6:d3:1e:c8:4a:2c:a6:9d:d8:d3:bd:7e:c6: cf:93:c0:ef:62:ba:68:5c:cf:3c:05:2f:c2:ad:ec: bd:a8:ea:90:29:62:72:1d:1a:c9:73:07:24:15:f7: c7:08:56:34:19:f4:47:de:db:72:d9:f9:23:b4:2c: 98:f8:38:98:c2:db:07:2a:31:37:1a:99:55:67:ef: c5:ad:9c:64:7b:ca:7e:af:d9:33:c1:a3:36:41:26: 2e:5f:74:d8:12:57:bd:d0:71:56:47:83:34:b9:91: e8:c6:88:e6:a5:ea:8e:bc:65:23:2f:ad:65:20:ea: de:a9:ab:ea:2b:37:21:34:1e:ba:96:f6:10:75:bf: ae:05:8f:40:1b:bc:97:75:ad:91:2c:c2:d3:1c:b5: 92:93:a3:5f:1e:81:ea:b2:ae:b8:ac:6e:f0:88:95: c1:9f:45:0f:9d:64:99:80:b9:d9:3c:ab:4f:8d:8e: 54:99:f1:02:b1:e0:9b:71:49:51:d8:75:a2:99:d7: 56:a3:69:14:3d:9e:d1:5e:53:f3:86:79:14:8a:23: ec:a2:f2:d8:19:59:6c:46:54:3e:aa:6a:38:87:ee: d6:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:ED:28:48:FC:A7:0E:02:CE:32:B3:E5:8C:AE:A2:44:17:5F:F7:C4 X509v3 Authority Key Identifier: keyid:6D:96:06:88:B6:DE:71:41:A7:21:89:8E:9E:07:3E:16:77:8F:EF:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bZYGiLbecUGnIYmOngc-FneP7zU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:af:3c:bf:95:b5:ad:50:00:2b:94:be:be:1c:77:0a:b6:c2: 0b:52:63:42:8f:a9:f2:9a:8e:b4:47:2b:14:7e:58:7a:ac:d1: 5d:90:83:c9:c0:59:f1:a2:c8:d4:9d:e1:af:43:d2:f1:0d:6b: de:84:42:dc:b7:80:f2:b3:2d:79:ba:0a:60:68:38:a7:c9:ef: 1f:30:11:14:3d:bb:f4:13:1a:4e:70:c8:ce:85:9c:fb:ca:52: b9:54:e4:b7:07:e1:d7:c3:ea:b1:32:9f:f4:e3:00:3c:81:2f: 1e:ba:4d:53:f5:b9:34:30:46:b6:58:e1:45:f6:10:4c:b4:46: 06:30:4b:6f:44:7a:49:d2:36:26:7a:b3:72:91:c3:17:0d:a2: a3:f4:11:5f:c6:2c:51:51:70:4f:4c:cc:4e:75:3a:09:60:a1: 64:25:7e:f3:59:29:78:16:0a:f3:df:d3:2d:ea:bf:4d:7c:aa: bf:d0:f7:99:64:44:43:d3:68:d5:20:4e:fc:46:60:b3:45:ea: 2c:13:5b:21:b0:18:2e:c8:20:52:1e:82:d3:c7:c7:3a:64:dc: ab:d7:4d:d1:f3:a4:e1:c9:62:a6:d9:c0:4a:5b:1a:15:f5:66: db:45:ca:7b:2b:ce:b1:e9:29:a8:79:00:5a:f6:32:08:65:ee: 9e:3f:b6:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAW0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdBOEYxMTAvBgNVBAUTKDZEOTYwNjg4QjZERTcxNDFBNzIxODk4RTlFMDczRTE2 Nzc4RkVGMzUwHhcNMjUwODIxMDQwMzIyWhcNMjUwODI4MDQwMzIyWjAYMRYwFAYD VQQDEw02OGE2OWE4YS0yZDYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8QQ7kbGUlXgHpGyQcxHuuwYtl1IcQ9bP5GAqo1sa39bTHshKLKad2NO9fsbP k8DvYrpoXM88BS/Crey9qOqQKWJyHRrJcwckFffHCFY0GfRH3tty2fkjtCyY+DiY wtsHKjE3GplVZ+/FrZxke8p+r9kzwaM2QSYuX3TYEle90HFWR4M0uZHoxojmpeqO vGUjL61lIOreqavqKzchNB66lvYQdb+uBY9AG7yXda2RLMLTHLWSk6NfHoHqsq64 rG7wiJXBn0UPnWSZgLnZPKtPjY5UmfECseCbcUlR2HWimddWo2kUPZ7RXlPzhnkU iiPsovLYGVlsRlQ+qmo4h+7W7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPvtKEj8 pw4CzjKz5YyuokQXX/fEMB8GA1UdIwQYMBaAFG2WBoi23nFBpyGJjp4HPhZ3j+81 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0E4Ri82M0FDRDVGNDU5 REIxMUVFQTczN0ZFMEFDNEY5QUUwMi9iWllHaUxiZWNVR25JWW1PbmdjLUZuZVA3 elUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JaWUdpTGJlY1VHbklZbU9uZ2MtRm5lUDd6VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0E4Ri82M0FDRDVGNDU5REIxMUVFQTczN0ZFMEFDNEY5QUUwMi9iWllHaUxiZWNV R25JWW1PbmdjLUZuZVA3elUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPrzy/lbWtUAArlL6+HHcKtsILUmNCj6nymo60RysUflh6rNFdkIPJ wFnxosjUneGvQ9LxDWvehELct4Dysy15ugpgaDinye8fMBEUPbv0ExpOcMjOhZz7 ylK5VOS3B+HXw+qxMp/04wA8gS8euk1T9bk0MEa2WOFF9hBMtEYGMEtvRHpJ0jYm erNykcMXDaKj9BFfxixRUXBPTMxOdToJYKFkJX7zWSl4Fgrz39Mt6r9NfKq/0PeZ ZERD02jVIE78RmCzReosE1shsBguyCBSHoLTx8c6ZNyr103R86ThyWKm2cBKWxoV 9WbbRcp7K86x6SmoeQBa9jIIZe6eP7bo -----END CERTIFICATE-----Generated at Fri Aug 22 16:25:11 2025 by rpki-client