$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD468/5B4A33C68C8F11EDBC8A6114C4F9AE02/7Tl4HnyiYyxUt_riJU4h8Bugdoc.mft File: 7Tl4HnyiYyxUt_riJU4h8Bugdoc.mft (raw, json) Hash identifier: nutH4jpfpdQ171PxvZ+DKJX484rrkCjdK3PSlDQlgXo= Subject key identifier: 17:1B:37:33:3C:B3:A4:C7:9B:86:BE:C1:E0:53:D5:82:7C:C3:BB:1D Authority key identifier: ED:39:78:1E:7C:A2:63:2C:54:B7:FA:E2:25:4E:21:F0:1B:A0:76:87 Certificate issuer: /CN=A91DD468/serialNumber=ED39781E7CA2632C54B7FAE2254E21F01BA07687 Certificate serial: 0216 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Tl4HnyiYyxUt_riJU4h8Bugdoc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD468/5B4A33C68C8F11EDBC8A6114C4F9AE02/7Tl4HnyiYyxUt_riJU4h8Bugdoc.mft Manifest number: 0212 Signing time: Wed 05 Nov 2025 02:20:47 +0000 Manifest this update: Wed 05 Nov 2025 02:20:47 +0000 Manifest next update: Wed 12 Nov 2025 02:20:47 +0000 Files and hashes: 1: 7Tl4HnyiYyxUt_riJU4h8Bugdoc.crl (hash: bD2eSczOF+y33t0Qg/m67Zle7ECLkrJPBbDtb/Jyb9U=) 2: 3FF7C9468C9211ED8D052619C4F9AE02.roa (hash: ysct5SJFLL7r4JAj2CVHZLqepb6TuRQ99etQZMCmjWU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD468/5B4A33C68C8F11EDBC8A6114C4F9AE02/7Tl4HnyiYyxUt_riJU4h8Bugdoc.crl rsync://rpki.apnic.net/member_repository/A91DD468/5B4A33C68C8F11EDBC8A6114C4F9AE02/7Tl4HnyiYyxUt_riJU4h8Bugdoc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Tl4HnyiYyxUt_riJU4h8Bugdoc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 534 (0x216) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD468, serialNumber=ED39781E7CA2632C54B7FAE2254E21F01BA07687 Validity Not Before: Nov 5 02:20:47 2025 GMT Not After : Nov 12 02:20:47 2025 GMT Subject: CN=690ab47f-6a3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:aa:b0:60:3b:53:d0:81:6a:cd:33:29:77:d7: df:63:11:5b:fc:3c:3b:e7:e1:a4:92:58:b5:08:87: ed:c9:1c:25:7e:3c:cf:e2:96:c5:4b:2b:35:74:7d: d4:de:da:50:0c:5c:22:33:85:02:fe:dc:0a:df:56: 56:84:1b:07:4f:19:49:45:7d:f4:74:9b:bd:ab:d7: 43:5f:22:de:7b:72:ee:ab:ff:ae:03:84:98:b7:9b: be:a6:5b:04:a4:21:80:d9:f0:8a:f2:f0:6d:a0:f3: 55:95:68:cb:02:1e:ed:23:d4:85:5d:cd:69:76:94: e2:c0:8c:6d:8e:57:3a:52:a6:1e:85:99:7f:8a:c4: b1:a5:25:06:c8:df:9c:91:ae:90:e4:e2:e2:11:cb: ac:d9:86:ca:a0:aa:87:36:86:c8:1f:fc:ef:03:ff: 0f:ab:34:02:bc:88:5a:d2:3d:98:92:11:1c:74:c8: 95:c7:27:1b:7e:20:ee:5d:90:bf:7c:23:77:e7:f4: 32:c0:c1:12:50:28:8d:9e:2a:c9:91:c7:2c:33:09: 64:9c:d8:11:20:ec:94:32:e9:c4:68:0c:8e:66:58: 92:07:60:a7:33:ab:6d:dc:9c:4f:ff:5b:a9:a3:54: c5:f2:cd:44:54:11:ad:b5:74:09:77:d0:1b:51:9e: 86:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:1B:37:33:3C:B3:A4:C7:9B:86:BE:C1:E0:53:D5:82:7C:C3:BB:1D X509v3 Authority Key Identifier: keyid:ED:39:78:1E:7C:A2:63:2C:54:B7:FA:E2:25:4E:21:F0:1B:A0:76:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD468/5B4A33C68C8F11EDBC8A6114C4F9AE02/7Tl4HnyiYyxUt_riJU4h8Bugdoc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Tl4HnyiYyxUt_riJU4h8Bugdoc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD468/5B4A33C68C8F11EDBC8A6114C4F9AE02/7Tl4HnyiYyxUt_riJU4h8Bugdoc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:a9:1d:cb:25:a8:62:54:24:d6:c6:36:2d:f0:92:b9:3a:c0: f8:06:a9:58:f1:5b:d8:39:f6:72:39:68:7b:b8:5f:27:16:ab: d7:14:97:59:69:d7:56:29:6a:58:03:10:57:74:4f:a5:3a:56: 7b:a7:7e:f4:d6:3e:06:e1:d3:1b:e4:8e:aa:50:c5:39:2f:71: 0c:3d:68:4b:10:a0:0d:59:77:6a:71:5e:96:27:67:f4:2c:e3: b0:b2:af:69:e7:08:8e:6c:e7:69:93:33:94:fe:d7:47:8e:51: 5b:63:f8:c1:a1:84:57:2e:46:80:76:18:7f:d1:0d:98:89:60: 47:89:3e:5c:1d:b2:02:ae:95:d4:02:0b:a3:78:79:c0:9c:7e: d3:01:d9:a9:9a:ec:c5:67:e3:47:92:b7:60:57:e5:bf:e6:9c: 87:b0:35:5c:be:04:4f:73:fe:a3:ed:6f:de:a6:49:24:56:74: 6a:12:19:60:5e:97:91:1d:d7:b4:76:6c:03:22:0b:6d:4a:2a: 1c:de:57:75:7c:47:24:2e:3d:c7:80:c0:35:18:02:00:16:39: be:c3:93:ab:cc:16:9e:67:1f:33:2e:c8:44:88:44:13:f2:9d: 6b:18:7c:68:ee:13:78:70:07:20:39:04:f8:b7:1a:73:0d:63: 38:e7:03:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ0NjgxMTAvBgNVBAUTKEVEMzk3ODFFN0NBMjYzMkM1NEI3RkFFMjI1NEUyMUYw MUJBMDc2ODcwHhcNMjUxMTA1MDIyMDQ3WhcNMjUxMTEyMDIyMDQ3WjAYMRYwFAYD VQQDEw02OTBhYjQ3Zi02YTNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm6qwYDtT0IFqzTMpd9ffYxFb/Dw75+Gkkli1CIftyRwlfjzP4pbFSys1dH3U 3tpQDFwiM4UC/twK31ZWhBsHTxlJRX30dJu9q9dDXyLee3Luq/+uA4SYt5u+plsE pCGA2fCK8vBtoPNVlWjLAh7tI9SFXc1pdpTiwIxtjlc6UqYehZl/isSxpSUGyN+c ka6Q5OLiEcus2YbKoKqHNobIH/zvA/8PqzQCvIha0j2YkhEcdMiVxycbfiDuXZC/ fCN35/QywMESUCiNnirJkccsMwlknNgRIOyUMunEaAyOZliSB2CnM6tt3JxP/1up o1TF8s1EVBGttXQJd9AbUZ6GcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBcbNzM8 s6THm4a+weBT1YJ8w7sdMB8GA1UdIwQYMBaAFO05eB58omMsVLf64iVOIfAboHaH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDQ2OC81QjRBMzNDNjhD OEYxMUVEQkM4QTYxMTRDNEY5QUUwMi83VGw0SG55aVl5eFV0X3JpSlU0aDhCdWdk b2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdUbDRIbnlpWXl4VXRfcmlKVTRoOEJ1Z2RvYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDQ2OC81QjRBMzNDNjhDOEYxMUVEQkM4QTYxMTRDNEY5QUUwMi83VGw0SG55aVl5 eFV0X3JpSlU0aDhCdWdkb2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6qR3LJahiVCTWxjYt8JK5OsD4BqlY8VvYOfZyOWh7uF8nFqvXFJdZ addWKWpYAxBXdE+lOlZ7p3701j4G4dMb5I6qUMU5L3EMPWhLEKANWXdqcV6WJ2f0 LOOwsq9p5wiObOdpkzOU/tdHjlFbY/jBoYRXLkaAdhh/0Q2YiWBHiT5cHbICrpXU AgujeHnAnH7TAdmpmuzFZ+NHkrdgV+W/5pyHsDVcvgRPc/6j7W/epkkkVnRqEhlg XpeRHde0dmwDIgttSioc3ld1fEckLj3HgMA1GAIAFjm+w5OrzBaeZx8zLshEiEQT 8p1rGHxo7hN4cAcgOQT4txpzDWM45wPw -----END CERTIFICATE-----Generated at Wed Nov 5 07:55:10 2025 by rpki-client