$ rpki-client -vvf rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.mft File: bZYGiLbecUGnIYmOngc-FneP7zU.mft (raw, json) Hash identifier: Be8NC0h7gY3dvmkLGf2OVgui0xp2Eq8/NlfihsccSY0= Subject key identifier: 29:A0:40:0C:3F:56:89:F6:26:D2:69:78:0C:52:D4:1D:AC:E8:31:C8 Authority key identifier: 6D:96:06:88:B6:DE:71:41:A7:21:89:8E:9E:07:3E:16:77:8F:EF:35 Certificate issuer: /CN=A9197A8F/serialNumber=6D960688B6DE7141A721898E9E073E16778FEF35 Certificate serial: 0192 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bZYGiLbecUGnIYmOngc-FneP7zU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.mft Manifest number: 018E Signing time: Mon 03 Nov 2025 03:31:11 +0000 Manifest this update: Mon 03 Nov 2025 03:31:10 +0000 Manifest next update: Mon 10 Nov 2025 03:31:10 +0000 Files and hashes: 1: bZYGiLbecUGnIYmOngc-FneP7zU.crl (hash: WxITcPiAz0o5GMkFX7oX1BVBPMT9lR2tqd/M3TigOkQ=) 2: A663285A59DE11EE85CFCB12C4F9AE02.roa (hash: X/pG7qc3+7qr+qWCl38L4oCPzOU3+0jR+niOHWQizTQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.crl rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bZYGiLbecUGnIYmOngc-FneP7zU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:31:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 402 (0x192) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197A8F, serialNumber=6D960688B6DE7141A721898E9E073E16778FEF35 Validity Not Before: Nov 3 03:31:10 2025 GMT Not After : Nov 10 03:31:10 2025 GMT Subject: CN=690821fe-83cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:6b:8b:0e:b0:70:ed:cd:ac:06:b1:8e:4a:d2: d1:5e:f2:fe:3e:d7:27:8a:2d:51:a2:c5:a0:b8:0c: 5c:29:27:73:e7:e4:a0:c5:03:d6:c2:01:46:49:fa: 87:a0:41:fb:7d:58:87:d8:2a:6c:80:c7:4c:89:15: d3:19:50:fd:21:13:05:fb:5b:c7:ef:0b:c5:06:f1: fb:a7:b8:df:bf:96:5d:3d:b9:f6:22:b1:12:b6:ba: 48:8b:f4:9c:b4:2c:1e:f2:e8:00:3a:bb:c9:24:11: 3d:5f:ec:9a:70:d7:1c:fd:b2:88:b4:f7:55:1e:0a: 64:89:e8:37:68:76:a9:6a:19:7c:c8:e2:54:17:44: 0a:59:cb:f1:5d:0e:5e:f4:07:06:7d:f7:2a:06:4b: 11:d4:4f:c9:10:67:3c:bc:ab:2b:52:86:74:6c:06: b4:23:a6:49:df:bf:81:a3:0d:23:5d:89:93:76:26: a3:4a:cf:6a:75:8f:8e:4f:6f:3b:3a:bf:8f:c2:ca: 8e:1f:47:3f:5a:5a:c3:a5:8c:5d:52:64:c9:e5:a1: 00:6c:a4:95:f0:20:99:a5:d3:2f:4f:d6:51:f6:ca: f2:15:0a:fe:a2:98:8d:ec:5c:ee:c0:3f:87:01:00: 98:0c:5f:c8:60:f8:3e:c0:6b:dd:8d:0b:a3:3b:09: 57:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:A0:40:0C:3F:56:89:F6:26:D2:69:78:0C:52:D4:1D:AC:E8:31:C8 X509v3 Authority Key Identifier: keyid:6D:96:06:88:B6:DE:71:41:A7:21:89:8E:9E:07:3E:16:77:8F:EF:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bZYGiLbecUGnIYmOngc-FneP7zU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ca:de:68:92:27:bd:04:97:04:7e:17:6a:5a:36:fd:89:c5:45: d0:f2:a1:a2:31:e1:a6:02:83:1f:45:54:e3:2b:21:97:6b:37: fb:4a:74:95:86:41:0d:82:b1:9d:78:e7:b9:0e:f2:7d:d0:65: 85:03:5d:c6:a6:aa:70:58:d6:0e:ec:33:96:79:49:c5:dc:77: ef:d9:fa:0b:d4:4e:a9:ce:92:e1:f8:82:73:58:aa:b1:63:2a: d3:9e:26:c5:a3:33:a4:b0:04:27:15:b0:67:ca:12:dd:ae:0a: 13:87:6b:bb:7b:fd:51:5b:6f:85:31:4f:d1:03:10:2c:80:45: 79:f8:66:e0:9b:a2:7e:d0:ac:e8:60:1a:11:24:a1:94:ff:28: ee:aa:02:b9:37:12:70:91:68:b2:d3:a6:83:a7:f2:8d:e0:f2: 5c:f2:57:98:02:8e:27:6e:7f:77:28:cd:04:36:99:90:e7:02: 11:4e:8a:c2:48:8d:d0:b9:7b:b5:70:6c:7f:24:8b:4d:18:55: a5:0a:a1:5a:6e:d2:b1:55:9e:54:fd:cf:f8:9d:b3:65:6d:01: b2:62:f2:aa:81:e9:dd:4c:cc:5d:c2:ef:a9:b0:1b:d6:18:81: e9:d8:14:24:b4:fb:30:84:e7:0d:0d:6a:b9:12:85:65:98:96: 8b:c0:ef:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdBOEYxMTAvBgNVBAUTKDZEOTYwNjg4QjZERTcxNDFBNzIxODk4RTlFMDczRTE2 Nzc4RkVGMzUwHhcNMjUxMTAzMDMzMTEwWhcNMjUxMTEwMDMzMTEwWjAYMRYwFAYD VQQDEw02OTA4MjFmZS04M2NiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0muLDrBw7c2sBrGOStLRXvL+Ptcnii1RosWguAxcKSdz5+SgxQPWwgFGSfqH oEH7fViH2CpsgMdMiRXTGVD9IRMF+1vH7wvFBvH7p7jfv5ZdPbn2IrEStrpIi/Sc tCwe8ugAOrvJJBE9X+yacNcc/bKItPdVHgpkieg3aHapahl8yOJUF0QKWcvxXQ5e 9AcGffcqBksR1E/JEGc8vKsrUoZ0bAa0I6ZJ37+Bow0jXYmTdiajSs9qdY+OT287 Or+PwsqOH0c/WlrDpYxdUmTJ5aEAbKSV8CCZpdMvT9ZR9sryFQr+opiN7FzuwD+H AQCYDF/IYPg+wGvdjQujOwlX7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCmgQAw/ Von2JtJpeAxS1B2s6DHIMB8GA1UdIwQYMBaAFG2WBoi23nFBpyGJjp4HPhZ3j+81 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0E4Ri82M0FDRDVGNDU5 REIxMUVFQTczN0ZFMEFDNEY5QUUwMi9iWllHaUxiZWNVR25JWW1PbmdjLUZuZVA3 elUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JaWUdpTGJlY1VHbklZbU9uZ2MtRm5lUDd6VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0E4Ri82M0FDRDVGNDU5REIxMUVFQTczN0ZFMEFDNEY5QUUwMi9iWllHaUxiZWNV R25JWW1PbmdjLUZuZVA3elUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDK3miSJ70ElwR+F2paNv2JxUXQ8qGiMeGmAoMfRVTjKyGXazf7SnSV hkENgrGdeOe5DvJ90GWFA13GpqpwWNYO7DOWeUnF3Hfv2foL1E6pzpLh+IJzWKqx YyrTnibFozOksAQnFbBnyhLdrgoTh2u7e/1RW2+FMU/RAxAsgEV5+Gbgm6J+0Kzo YBoRJKGU/yjuqgK5NxJwkWiy06aDp/KN4PJc8leYAo4nbn93KM0ENpmQ5wIRTorC SI3QuXu1cGx/JItNGFWlCqFabtKxVZ5U/c/4nbNlbQGyYvKqgendTMxdwu+psBvW GIHp2BQktPswhOcNDWq5EoVlmJaLwO// -----END CERTIFICATE-----Generated at Wed Nov 5 05:21:28 2025 by rpki-client