$ rpki-client -vvf rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.mft File: BdJLO4oiJ7b-6S3NJdVL8F7oaMo.mft (raw, json) Hash identifier: I4HnUfgmLbXy0wJxEsf+eKnXDHJxNFYAg2P3ek+/F20= Subject key identifier: 56:36:05:23:BF:6F:3E:4B:9F:5B:24:2F:67:03:21:89:EE:26:57:D2 Authority key identifier: 05:D2:4B:3B:8A:22:27:B6:FE:E9:2D:CD:25:D5:4B:F0:5E:E8:68:CA Certificate issuer: /CN=A9157724/serialNumber=05D24B3B8A2227B6FEE92DCD25D54BF05EE868CA Certificate serial: 0146 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.mft Manifest number: 0140 Signing time: Thu 07 Aug 2025 04:58:04 +0000 Manifest this update: Thu 07 Aug 2025 04:58:04 +0000 Manifest next update: Thu 14 Aug 2025 04:58:04 +0000 Files and hashes: 1: BdJLO4oiJ7b-6S3NJdVL8F7oaMo.crl (hash: RZGMA214c/W3O4wiJ+8DUgiAORV7V6mVbwM/364XKQc=) 2: 6063C75CB6E411EE94471D14C4F9AE02.roa (hash: 5GVQ1bIBa+U3v3tASIB7alCOpvULFOKmUN8ptv6R1ws=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.crl rsync://rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 04:58:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 326 (0x146) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157724, serialNumber=05D24B3B8A2227B6FEE92DCD25D54BF05EE868CA Validity Not Before: Aug 7 04:58:04 2025 GMT Not After : Aug 14 04:58:04 2025 GMT Subject: CN=6894325c-0afa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ff:8b:6c:f4:85:06:56:0a:36:c8:7e:8b:77: 30:da:96:c8:31:43:ef:25:9d:bb:c4:0e:45:4f:c6: d8:89:6d:f0:c1:cf:e1:96:89:b9:04:35:7a:4c:10: e0:78:f7:4e:79:c4:e8:43:69:16:0d:66:68:fa:c6: 41:29:3c:13:98:2a:7a:3a:ee:ab:f0:03:6b:51:7b: b4:a3:2c:0f:7d:b9:8c:7b:91:90:f1:23:63:83:ad: a5:d6:e3:72:15:d8:f6:17:47:ae:53:8a:81:35:f2: b1:ae:33:70:cc:37:d0:32:7d:a6:d9:fa:fe:dc:78: 2d:49:d5:a2:18:66:2c:11:92:8d:62:08:02:ed:0e: e7:5e:e0:b0:9e:1e:27:13:4e:a9:08:d4:48:a1:53: 03:ea:88:eb:fc:69:c5:ab:15:43:a3:4f:26:b5:d6: 0f:96:7d:f9:3f:50:4a:b2:49:bb:3f:f0:7a:03:9f: 83:68:a2:67:44:a0:0a:23:34:20:8d:31:81:86:c7: 91:97:5d:ae:9a:68:de:8b:9c:20:22:11:6c:29:6e: b3:1b:63:7f:37:d0:bb:4a:7f:e8:83:a6:8e:9d:51: 90:a5:92:b1:39:da:bc:b2:37:3f:19:8e:bf:9c:ba: 25:5b:b8:17:b4:4d:b8:ab:69:42:62:04:0f:61:a5: 30:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:36:05:23:BF:6F:3E:4B:9F:5B:24:2F:67:03:21:89:EE:26:57:D2 X509v3 Authority Key Identifier: keyid:05:D2:4B:3B:8A:22:27:B6:FE:E9:2D:CD:25:D5:4B:F0:5E:E8:68:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:7f:9f:58:9a:77:d0:4c:b9:97:58:4d:33:cc:41:04:e7:32: c6:87:fb:50:79:41:28:7d:cb:81:ca:64:12:36:7a:f7:29:81: 75:1d:60:2c:01:83:fb:74:cb:bf:01:b1:d9:69:21:6a:91:74: 22:28:3a:3d:37:c7:29:f2:0b:c0:f2:ec:b6:9d:15:28:39:9a: cb:23:6a:d5:52:7f:0e:46:a5:12:c1:8d:c6:91:1d:d3:79:e1: 52:fa:7c:a1:d9:17:08:79:79:f8:9b:98:2f:da:b8:ff:58:93: 04:8b:5f:85:81:dd:0e:73:c5:ae:3b:cc:45:51:3c:c9:7b:2b: 34:51:92:71:f2:25:ba:16:86:7c:30:e1:57:db:f7:9e:6f:d8: fe:55:f9:e2:d8:15:e6:fa:59:b1:c0:b9:09:0d:4b:95:64:b1: 9d:67:b8:57:df:c0:fd:aa:87:df:54:04:39:14:14:2d:f2:0e: f5:6c:c6:4c:c2:cc:4a:70:df:eb:ee:f5:78:88:6f:b9:a3:ce: 5d:00:41:d3:b6:db:57:fb:99:7e:4c:7c:e6:70:50:ed:c8:77: 74:78:50:0a:6f:6c:cd:8a:a0:06:70:05:69:50:a3:7b:a3:28: 97:96:8d:b3:79:03:ce:e2:de:d3:25:43:fd:26:9e:f9:79:f7: 8c:fd:28:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc3MjQxMTAvBgNVBAUTKDA1RDI0QjNCOEEyMjI3QjZGRUU5MkRDRDI1RDU0QkYw NUVFODY4Q0EwHhcNMjUwODA3MDQ1ODA0WhcNMjUwODE0MDQ1ODA0WjAYMRYwFAYD VQQDEw02ODk0MzI1Yy0wYWZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvP+LbPSFBlYKNsh+i3cw2pbIMUPvJZ27xA5FT8bYiW3wwc/hlom5BDV6TBDg ePdOecToQ2kWDWZo+sZBKTwTmCp6Ou6r8ANrUXu0oywPfbmMe5GQ8SNjg62l1uNy Fdj2F0euU4qBNfKxrjNwzDfQMn2m2fr+3HgtSdWiGGYsEZKNYggC7Q7nXuCwnh4n E06pCNRIoVMD6ojr/GnFqxVDo08mtdYPln35P1BKskm7P/B6A5+DaKJnRKAKIzQg jTGBhseRl12ummjei5wgIhFsKW6zG2N/N9C7Sn/og6aOnVGQpZKxOdq8sjc/GY6/ nLolW7gXtE24q2lCYgQPYaUweQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFY2BSO/ bz5Ln1skL2cDIYnuJlfSMB8GA1UdIwQYMBaAFAXSSzuKIie2/uktzSXVS/Be6GjK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzcyNC9ENzM5ODcyODk1 ODcxMUVFQUQzQkIyNjJDNEY5QUUwMi9CZEpMTzRvaUo3Yi02UzNOSmRWTDhGN29h TW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JkSkxPNG9pSjdiLTZTM05KZFZMOEY3b2FNby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzcyNC9ENzM5ODcyODk1ODcxMUVFQUQzQkIyNjJDNEY5QUUwMi9CZEpMTzRvaUo3 Yi02UzNOSmRWTDhGN29hTW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqf59YmnfQTLmXWE0zzEEE5zLGh/tQeUEofcuBymQSNnr3KYF1HWAs AYP7dMu/AbHZaSFqkXQiKDo9N8cp8gvA8uy2nRUoOZrLI2rVUn8ORqUSwY3GkR3T eeFS+nyh2RcIeXn4m5gv2rj/WJMEi1+Fgd0Oc8WuO8xFUTzJeys0UZJx8iW6FoZ8 MOFX2/eeb9j+Vfni2BXm+lmxwLkJDUuVZLGdZ7hX38D9qoffVAQ5FBQt8g71bMZM wsxKcN/r7vV4iG+5o85dAEHTtttX+5l+THzmcFDtyHd0eFAKb2zNiqAGcAVpUKN7 oyiXlo2zeQPO4t7TJUP9Jp75efeM/SjK -----END CERTIFICATE-----Generated at Fri Aug 8 12:55:16 2025 by rpki-client