$ rpki-client -vvf rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.mft File: BdJLO4oiJ7b-6S3NJdVL8F7oaMo.mft (raw, json) Hash identifier: 5yXDZRcjKNyWU6ClrLdVW66owr+60j3Ino2aB+RPc20= Subject key identifier: E8:C2:1F:CB:DE:A4:8D:A0:BB:D9:42:ED:63:D9:DA:F0:6F:89:84:D9 Authority key identifier: 05:D2:4B:3B:8A:22:27:B6:FE:E9:2D:CD:25:D5:4B:F0:5E:E8:68:CA Certificate issuer: /CN=A9157724/serialNumber=05D24B3B8A2227B6FEE92DCD25D54BF05EE868CA Certificate serial: 0172 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.mft Manifest number: 016C Signing time: Mon 03 Nov 2025 03:59:50 +0000 Manifest this update: Mon 03 Nov 2025 03:59:50 +0000 Manifest next update: Mon 10 Nov 2025 03:59:50 +0000 Files and hashes: 1: BdJLO4oiJ7b-6S3NJdVL8F7oaMo.crl (hash: TcKiePp8AulzLESeWBjzqx6M0Fx6+S1yi/B2QC2TVoY=) 2: 6063C75CB6E411EE94471D14C4F9AE02.roa (hash: 5GVQ1bIBa+U3v3tASIB7alCOpvULFOKmUN8ptv6R1ws=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.crl rsync://rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:59:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 370 (0x172) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157724, serialNumber=05D24B3B8A2227B6FEE92DCD25D54BF05EE868CA Validity Not Before: Nov 3 03:59:50 2025 GMT Not After : Nov 10 03:59:50 2025 GMT Subject: CN=690828b6-97b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:42:10:17:ac:ae:b1:f7:2a:49:02:97:1f:57: f7:13:b5:73:38:0e:a2:7a:a6:c1:9d:06:a9:92:97: 31:42:9c:a4:9d:c3:46:0b:b6:7d:66:cd:9b:04:9d: 99:c1:7c:da:a1:4e:22:3a:72:02:8e:75:19:5f:66: 6b:78:82:3f:93:32:3c:de:ea:9d:f0:5e:4f:3f:9f: 7a:02:e9:1d:c4:fb:1e:e8:4b:1b:e6:55:88:53:75: 47:fd:4d:d7:3d:c8:05:1b:e6:c6:65:fa:60:0f:3a: e3:dc:dc:77:b3:f0:c2:db:01:70:8d:a0:c3:99:19: 13:05:f8:1c:4c:53:b2:2f:29:91:87:dd:a3:eb:3c: b1:2c:83:7b:15:48:e6:a9:52:5d:c0:b5:1e:c5:86: 12:4c:ee:8b:51:18:ef:e7:ce:a2:7e:29:82:27:d6: 09:5a:0c:ae:8f:f1:01:76:60:0c:37:07:35:a1:6f: b0:6c:5f:52:5e:3a:0b:62:48:da:58:48:f5:47:fd: c5:91:28:3e:b1:49:44:a6:85:03:e0:40:40:b6:32: 70:52:00:02:ab:c6:8e:f2:2e:5f:d7:bb:f0:51:01: 1d:eb:3a:4e:5b:22:a5:45:65:76:14:3c:c8:43:47: 56:3e:23:c4:48:47:d8:6e:98:35:bd:de:03:bc:36: 51:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:C2:1F:CB:DE:A4:8D:A0:BB:D9:42:ED:63:D9:DA:F0:6F:89:84:D9 X509v3 Authority Key Identifier: keyid:05:D2:4B:3B:8A:22:27:B6:FE:E9:2D:CD:25:D5:4B:F0:5E:E8:68:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:31:d8:79:54:4e:af:0d:7c:4b:05:33:44:55:cb:7a:8c:ac: fe:3e:09:46:0e:bc:e1:49:4f:a6:6b:4b:df:d7:1f:ba:92:05: e0:a0:32:84:bb:1f:e1:fd:76:04:1e:ce:11:a9:d2:94:f5:8f: 8a:83:6a:85:c2:d1:5c:40:cc:4d:63:7f:9a:5a:13:0f:c6:3a: e1:ae:26:b3:49:09:f0:78:b4:aa:b5:79:97:5e:65:13:32:ee: 3f:65:dc:42:04:d5:b5:d9:e9:75:8b:67:90:fe:50:3c:b9:95: 59:92:82:ed:a6:e1:a7:1a:56:6f:53:ae:cb:bc:2a:e4:bc:d0: 8e:33:74:b5:7a:14:bb:13:0d:2e:40:41:75:de:a2:ea:ef:61: 8d:4d:44:d4:c7:93:fd:3d:0b:95:22:f1:42:7f:40:28:72:49: fa:78:0b:03:67:82:dd:7f:08:c6:5d:07:3b:e7:e1:8b:7f:3f: 1f:1e:71:55:42:a8:0d:ce:fe:33:8f:b4:1a:87:81:90:62:bd: e0:bc:13:22:77:b3:b7:71:1c:7f:3f:53:61:35:3c:b2:f6:47: b6:20:71:2f:b9:b0:f9:87:7b:e9:7e:b1:90:d6:2e:33:27:d8: ac:cb:9c:78:9e:f3:50:e4:eb:52:71:de:05:ac:58:47:45:a1: d1:03:88:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc3MjQxMTAvBgNVBAUTKDA1RDI0QjNCOEEyMjI3QjZGRUU5MkRDRDI1RDU0QkYw NUVFODY4Q0EwHhcNMjUxMTAzMDM1OTUwWhcNMjUxMTEwMDM1OTUwWjAYMRYwFAYD VQQDEw02OTA4MjhiNi05N2I5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsEIQF6yusfcqSQKXH1f3E7VzOA6ieqbBnQapkpcxQpykncNGC7Z9Zs2bBJ2Z wXzaoU4iOnICjnUZX2ZreII/kzI83uqd8F5PP596AukdxPse6Esb5lWIU3VH/U3X PcgFG+bGZfpgDzrj3Nx3s/DC2wFwjaDDmRkTBfgcTFOyLymRh92j6zyxLIN7FUjm qVJdwLUexYYSTO6LURjv586ifimCJ9YJWgyuj/EBdmAMNwc1oW+wbF9SXjoLYkja WEj1R/3FkSg+sUlEpoUD4EBAtjJwUgACq8aO8i5f17vwUQEd6zpOWyKlRWV2FDzI Q0dWPiPESEfYbpg1vd4DvDZRIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOjCH8ve pI2gu9lC7WPZ2vBviYTZMB8GA1UdIwQYMBaAFAXSSzuKIie2/uktzSXVS/Be6GjK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzcyNC9ENzM5ODcyODk1 ODcxMUVFQUQzQkIyNjJDNEY5QUUwMi9CZEpMTzRvaUo3Yi02UzNOSmRWTDhGN29h TW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JkSkxPNG9pSjdiLTZTM05KZFZMOEY3b2FNby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzcyNC9ENzM5ODcyODk1ODcxMUVFQUQzQkIyNjJDNEY5QUUwMi9CZEpMTzRvaUo3 Yi02UzNOSmRWTDhGN29hTW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOMdh5VE6vDXxLBTNEVct6jKz+PglGDrzhSU+ma0vf1x+6kgXgoDKE ux/h/XYEHs4RqdKU9Y+Kg2qFwtFcQMxNY3+aWhMPxjrhriazSQnweLSqtXmXXmUT Mu4/ZdxCBNW12el1i2eQ/lA8uZVZkoLtpuGnGlZvU67LvCrkvNCOM3S1ehS7Ew0u QEF13qLq72GNTUTUx5P9PQuVIvFCf0Aockn6eAsDZ4LdfwjGXQc75+GLfz8fHnFV QqgNzv4zj7Qah4GQYr3gvBMid7O3cRx/P1NhNTyy9ke2IHEvubD5h3vpfrGQ1i4z J9isy5x4nvNQ5OtScd4FrFhHRaHRA4ja -----END CERTIFICATE-----Generated at Tue Nov 4 12:32:57 2025 by rpki-client