$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft File: bifP0YnuRkQx1LkBO8wHWKgCZOY.mft (raw, json) Hash identifier: 79fhwBZ/FqmVDpuhYJfVRYmmh+0sk00AR0ghdvaHQk4= Subject key identifier: 6E:FE:5D:A9:E1:3D:81:3B:65:29:F5:E1:23:E0:9C:E0:04:28:9F:51 Authority key identifier: 6E:27:CF:D1:89:EE:46:44:31:D4:B9:01:3B:CC:07:58:A8:02:64:E6 Certificate issuer: /CN=A9157D13/serialNumber=6E27CFD189EE464431D4B9013BCC0758A80264E6 Certificate serial: 18D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft Manifest number: 18C3 Signing time: Mon 04 Aug 2025 16:38:16 +0000 Manifest this update: Mon 04 Aug 2025 16:38:16 +0000 Manifest next update: Mon 11 Aug 2025 16:38:16 +0000 Files and hashes: 1: bifP0YnuRkQx1LkBO8wHWKgCZOY.crl (hash: 43fSUAUyE+O/m8FVEydZyUFx3i0DV3hcmnushXblFII=) 2: 33E73FAAE50B11EF838B6642C4F9AE02.roa (hash: hGExMUb+w4JyWjME6Pb9a+xtMzWk7NBawSO3YXbXwM4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.crl rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 16:38:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6361 (0x18d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157D13, serialNumber=6E27CFD189EE464431D4B9013BCC0758A80264E6 Validity Not Before: Aug 4 16:38:16 2025 GMT Not After : Aug 11 16:38:16 2025 GMT Subject: CN=6890e1f8-0e1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:fd:94:0a:0c:aa:ad:ae:af:5c:81:3a:52:b9: 58:54:8f:4a:72:fe:9a:27:5f:e3:7c:57:72:bd:2f: 6a:08:13:99:11:fa:48:db:d6:b5:c4:c6:aa:2c:b7: 36:55:fe:8f:49:58:db:52:bf:7c:b2:0f:92:65:bf: d8:b3:31:4a:ad:87:dd:79:ce:c6:8e:3f:e1:43:01: f0:70:d7:86:5b:9a:82:0c:91:30:70:0f:87:85:8b: 9b:88:84:9f:38:ca:5b:87:e6:3f:3d:55:3b:54:fb: c6:fd:23:75:58:0b:df:3b:bf:be:26:75:5c:7b:7a: 28:fc:3f:d5:d7:7c:de:e0:09:86:20:02:b3:23:bb: 53:78:e7:c6:88:d9:9a:7e:ec:d9:36:3d:7e:16:f2: 16:c5:6d:ac:9e:1a:6e:a9:07:31:c9:5f:8d:1e:66: e2:9a:14:9d:07:9a:75:ab:4c:f3:b3:97:70:0e:7f: 5b:68:80:57:e3:75:09:3e:f4:0c:3c:8d:c7:c6:5c: 0c:61:be:6e:f2:41:a1:2c:04:65:ee:ee:98:b1:9d: f1:bb:bb:b9:0c:ac:71:7f:9b:5b:ae:b2:a2:64:f1: b3:0f:be:4f:6b:16:ca:7d:84:f6:fe:a7:61:b5:99: e0:4d:c2:88:07:9f:bf:69:97:63:f8:87:fc:a4:55: a3:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:FE:5D:A9:E1:3D:81:3B:65:29:F5:E1:23:E0:9C:E0:04:28:9F:51 X509v3 Authority Key Identifier: keyid:6E:27:CF:D1:89:EE:46:44:31:D4:B9:01:3B:CC:07:58:A8:02:64:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:5a:99:e8:3c:fd:37:7b:a1:21:9e:5e:6d:21:57:9f:f8:d8: 07:c1:a9:16:69:2f:c5:13:ed:db:e8:76:8d:e3:12:da:1c:79: f2:be:13:12:09:24:4a:92:f9:90:99:fc:9c:1d:e4:5f:85:c1: 96:cd:84:2d:78:c0:ef:b9:5a:84:fd:3a:ba:dc:e2:d8:bb:06: 81:80:0e:93:d5:38:a6:e2:cc:19:ff:34:27:a5:f0:98:72:24: c5:ea:69:bc:fc:e3:1d:af:39:6f:30:aa:dc:13:c8:c2:46:c0: 6e:f1:6e:66:c4:57:e8:4e:ce:17:87:54:1f:8c:8e:f6:8d:84: 6f:c6:86:0a:c8:2c:62:29:d8:5c:03:24:49:d4:97:2c:9e:46: 77:f8:0f:8d:73:5c:d6:05:51:cd:15:15:58:d7:2d:81:49:c0: 59:03:13:98:f2:bf:f2:b7:29:0a:53:5f:c7:c4:6e:ef:46:7c: d2:7a:93:87:6a:f3:bc:cd:8b:a3:75:d0:90:67:28:e9:e1:9b: 9b:d1:76:ad:84:41:f7:1f:0f:5d:f7:c9:1b:25:31:a0:f9:1e: 9f:7d:53:ed:97:63:75:a7:31:1b:2a:de:43:e8:45:bb:71:19: fc:56:0a:f4:fe:e5:f1:41:cb:00:9a:7b:2b:ed:47:76:08:39: 7c:8c:60:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGNkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEMTMxMTAvBgNVBAUTKDZFMjdDRkQxODlFRTQ2NDQzMUQ0QjkwMTNCQ0MwNzU4 QTgwMjY0RTYwHhcNMjUwODA0MTYzODE2WhcNMjUwODExMTYzODE2WjAYMRYwFAYD VQQDEw02ODkwZTFmOC0wZTFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3v2UCgyqra6vXIE6UrlYVI9Kcv6aJ1/jfFdyvS9qCBOZEfpI29a1xMaqLLc2 Vf6PSVjbUr98sg+SZb/YszFKrYfdec7Gjj/hQwHwcNeGW5qCDJEwcA+HhYubiISf OMpbh+Y/PVU7VPvG/SN1WAvfO7++JnVce3oo/D/V13ze4AmGIAKzI7tTeOfGiNma fuzZNj1+FvIWxW2snhpuqQcxyV+NHmbimhSdB5p1q0zzs5dwDn9baIBX43UJPvQM PI3HxlwMYb5u8kGhLARl7u6YsZ3xu7u5DKxxf5tbrrKiZPGzD75PaxbKfYT2/qdh tZngTcKIB5+/aZdj+If8pFWjdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG7+Xanh PYE7ZSn14SPgnOAEKJ9RMB8GA1UdIwQYMBaAFG4nz9GJ7kZEMdS5ATvMB1ioAmTm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0QxMy9BQTI1REYxQzk4 RkQxMUU3QTgxNDU1NjBDNEY5QUUwMi9iaWZQMFludVJrUXgxTGtCTzh3SFdLZ0Na T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JpZlAwWW51UmtReDFMa0JPOHdIV0tnQ1pPWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0QxMy9BQTI1REYxQzk4RkQxMUU3QTgxNDU1NjBDNEY5QUUwMi9iaWZQMFludVJr UXgxTGtCTzh3SFdLZ0NaT1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBWpnoPP03e6Ehnl5tIVef+NgHwakWaS/FE+3b6HaN4xLaHHnyvhMS CSRKkvmQmfycHeRfhcGWzYQteMDvuVqE/Tq63OLYuwaBgA6T1Tim4swZ/zQnpfCY ciTF6mm8/OMdrzlvMKrcE8jCRsBu8W5mxFfoTs4Xh1QfjI72jYRvxoYKyCxiKdhc AyRJ1JcsnkZ3+A+Nc1zWBVHNFRVY1y2BScBZAxOY8r/ytykKU1/HxG7vRnzSepOH avO8zYujddCQZyjp4Zub0XathEH3Hw9d98kbJTGg+R6ffVPtl2N1pzEbKt5D6EW7 cRn8Vgr0/uXxQcsAmnsr7Ud2CDl8jGBX -----END CERTIFICATE-----Generated at Tue Aug 5 17:23:49 2025 by rpki-client