$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft File: bifP0YnuRkQx1LkBO8wHWKgCZOY.mft (raw, json) Hash identifier: KftD+eV8oZURG878nbwuYgzjeqoHxs2A8F/EjJRPeTE= Subject key identifier: 58:21:55:5F:2A:9B:DA:3C:D6:DC:BE:F7:78:16:8A:5F:88:13:CD:95 Authority key identifier: 6E:27:CF:D1:89:EE:46:44:31:D4:B9:01:3B:CC:07:58:A8:02:64:E6 Certificate issuer: /CN=A9157D13/serialNumber=6E27CFD189EE464431D4B9013BCC0758A80264E6 Certificate serial: 1908 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft Manifest number: 18F2 Signing time: Tue 04 Nov 2025 16:33:22 +0000 Manifest this update: Tue 04 Nov 2025 16:33:21 +0000 Manifest next update: Tue 11 Nov 2025 16:33:21 +0000 Files and hashes: 1: bifP0YnuRkQx1LkBO8wHWKgCZOY.crl (hash: MG61Va34vafBISX9eSf+gyp++6ny5UPMLjeJUfyJQUU=) 2: 33E73FAAE50B11EF838B6642C4F9AE02.roa (hash: hGExMUb+w4JyWjME6Pb9a+xtMzWk7NBawSO3YXbXwM4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.crl rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:33:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6408 (0x1908) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157D13, serialNumber=6E27CFD189EE464431D4B9013BCC0758A80264E6 Validity Not Before: Nov 4 16:33:21 2025 GMT Not After : Nov 11 16:33:21 2025 GMT Subject: CN=690a2ad1-b225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:5e:57:c3:98:e9:6f:27:1a:7c:93:7d:03:f0: 74:e8:a4:2a:ca:72:84:be:31:5b:a2:4b:18:57:e1: bd:f3:79:dc:bd:db:7e:c6:10:cc:58:7b:a1:11:66: 61:84:7a:a5:98:29:c0:7e:b7:87:da:e6:fd:52:c8: 76:f4:2f:14:1f:6a:fe:97:93:e0:bd:00:14:19:ba: d6:38:63:53:d0:4c:8f:93:22:46:48:fe:2f:5c:bf: f9:bb:bd:b9:4f:78:95:8e:6d:7e:f9:fc:59:6c:2b: 24:8a:8d:22:cb:6b:51:d3:61:b9:94:6e:5d:1c:d4: df:d2:47:0a:26:9f:77:fc:1b:ac:bc:ae:d3:70:48: 6d:23:8c:3d:a9:84:b2:7f:15:5f:3b:5f:1e:dc:a4: f1:00:4f:b1:6e:46:42:9a:3c:df:96:16:29:7f:b6: b4:e2:09:9f:ee:2f:5d:16:6d:b1:b9:24:cc:70:03: 57:b9:98:bc:7c:86:77:05:76:6d:ab:48:78:87:3c: ff:1f:f8:e8:02:2f:58:8e:2f:dd:b3:90:2a:4b:ce: a1:dc:a5:76:ab:7c:06:9e:1a:5a:d8:ab:4f:09:a4: cb:17:34:0c:6c:f0:fd:50:dd:8b:a5:2a:0a:a5:f8: 0b:db:50:50:f9:fb:0f:6e:6e:b9:ef:29:48:d4:ad: c9:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:21:55:5F:2A:9B:DA:3C:D6:DC:BE:F7:78:16:8A:5F:88:13:CD:95 X509v3 Authority Key Identifier: keyid:6E:27:CF:D1:89:EE:46:44:31:D4:B9:01:3B:CC:07:58:A8:02:64:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:29:5c:47:a5:14:57:8b:28:3a:54:f7:8b:63:30:d3:f9:ab: 05:ed:78:8e:11:77:63:ff:6a:45:8e:68:15:f4:40:39:2f:9c: ed:20:b5:a7:f7:8a:5c:81:31:e1:81:aa:fa:08:13:39:cb:a6: 51:6b:e1:2e:5f:9c:0a:81:ab:91:68:1a:94:68:15:4d:8d:6f: b1:86:a6:62:65:d0:80:02:78:f9:c3:f2:ea:a6:98:15:c9:b6: 4a:86:cc:1f:ee:71:5a:15:db:e0:63:05:29:12:0a:9d:65:f8: d9:0f:22:28:ce:3a:83:28:9a:d1:ea:ff:d6:a4:35:73:71:6b: 26:a8:e3:54:b1:d3:2b:92:77:70:9a:64:2c:30:82:19:7d:94: 2a:61:72:2a:70:0f:39:47:58:29:f6:f2:b6:74:68:1e:15:10: b3:b8:58:bb:69:21:46:cb:39:f8:fc:98:14:30:ec:e4:5c:35: c5:b5:ba:af:49:27:e2:f7:65:54:36:52:bf:82:05:69:08:b4: 14:9e:20:f0:b2:1d:52:a3:e6:22:7c:a3:de:2f:33:a7:9e:5b: 92:63:23:7a:30:76:de:df:21:e6:8d:8d:f0:eb:7b:f3:b3:01: a2:44:ca:b5:cd:7e:b6:e9:5d:f4:57:25:c3:2c:d0:d4:60:a4: 2d:46:b5:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEMTMxMTAvBgNVBAUTKDZFMjdDRkQxODlFRTQ2NDQzMUQ0QjkwMTNCQ0MwNzU4 QTgwMjY0RTYwHhcNMjUxMTA0MTYzMzIxWhcNMjUxMTExMTYzMzIxWjAYMRYwFAYD VQQDEw02OTBhMmFkMS1iMjI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuF5Xw5jpbycafJN9A/B06KQqynKEvjFboksYV+G983ncvdt+xhDMWHuhEWZh hHqlmCnAfreH2ub9Ush29C8UH2r+l5PgvQAUGbrWOGNT0EyPkyJGSP4vXL/5u725 T3iVjm1++fxZbCskio0iy2tR02G5lG5dHNTf0kcKJp93/BusvK7TcEhtI4w9qYSy fxVfO18e3KTxAE+xbkZCmjzflhYpf7a04gmf7i9dFm2xuSTMcANXuZi8fIZ3BXZt q0h4hzz/H/joAi9Yji/ds5AqS86h3KV2q3wGnhpa2KtPCaTLFzQMbPD9UN2LpSoK pfgL21BQ+fsPbm657ylI1K3J/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFghVV8q m9o81ty+93gWil+IE82VMB8GA1UdIwQYMBaAFG4nz9GJ7kZEMdS5ATvMB1ioAmTm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0QxMy9BQTI1REYxQzk4 RkQxMUU3QTgxNDU1NjBDNEY5QUUwMi9iaWZQMFludVJrUXgxTGtCTzh3SFdLZ0Na T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JpZlAwWW51UmtReDFMa0JPOHdIV0tnQ1pPWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0QxMy9BQTI1REYxQzk4RkQxMUU3QTgxNDU1NjBDNEY5QUUwMi9iaWZQMFludVJr UXgxTGtCTzh3SFdLZ0NaT1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3KVxHpRRXiyg6VPeLYzDT+asF7XiOEXdj/2pFjmgV9EA5L5ztILWn 94pcgTHhgar6CBM5y6ZRa+EuX5wKgauRaBqUaBVNjW+xhqZiZdCAAnj5w/LqppgV ybZKhswf7nFaFdvgYwUpEgqdZfjZDyIozjqDKJrR6v/WpDVzcWsmqONUsdMrkndw mmQsMIIZfZQqYXIqcA85R1gp9vK2dGgeFRCzuFi7aSFGyzn4/JgUMOzkXDXFtbqv SSfi92VUNlK/ggVpCLQUniDwsh1So+YifKPeLzOnnluSYyN6MHbe3yHmjY3w63vz swGiRMq1zX626V30VyXDLNDUYKQtRrVg -----END CERTIFICATE-----Generated at Wed Nov 5 02:43:38 2025 by rpki-client