$ rpki-client -vvf rpki.apnic.net/member_repository/A915B0C9/0C778CB47D1A11ED8E8BEB82C4F9AE02/BzgX21Kc2-s_-TiuXuCEiOF-TpA.mft File: BzgX21Kc2-s_-TiuXuCEiOF-TpA.mft (raw, json) Hash identifier: pnR3WUZhCCxI4l7iGPOrn/gWHUSnE13KVDmCC5B0OJ8= Subject key identifier: DD:6D:F0:C0:DA:BA:E4:FB:74:67:69:E2:CA:A5:16:68:6E:C0:26:28 Authority key identifier: 07:38:17:DB:52:9C:DB:EB:3F:F9:38:AE:5E:E0:84:88:E1:7E:4E:90 Certificate issuer: /CN=A915B0C9/serialNumber=073817DB529CDBEB3FF938AE5EE08488E17E4E90 Certificate serial: 01F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BzgX21Kc2-s_-TiuXuCEiOF-TpA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B0C9/0C778CB47D1A11ED8E8BEB82C4F9AE02/BzgX21Kc2-s_-TiuXuCEiOF-TpA.mft Manifest number: 01F3 Signing time: Sat 09 Aug 2025 02:54:19 +0000 Manifest this update: Sat 09 Aug 2025 02:54:18 +0000 Manifest next update: Sat 16 Aug 2025 02:54:18 +0000 Files and hashes: 1: BzgX21Kc2-s_-TiuXuCEiOF-TpA.crl (hash: s+WhWK84oOlkSiQKWkAnqG+T71MRFMW4//8VQmZ31bw=) 2: F0F09EAA7D1D11EDAE0CF917C4F9AE02.roa (hash: /AIOMPF379cdDnZ0oCHY5QGxjdpZh2kab3GCf0LfQ6w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B0C9/0C778CB47D1A11ED8E8BEB82C4F9AE02/BzgX21Kc2-s_-TiuXuCEiOF-TpA.crl rsync://rpki.apnic.net/member_repository/A915B0C9/0C778CB47D1A11ED8E8BEB82C4F9AE02/BzgX21Kc2-s_-TiuXuCEiOF-TpA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BzgX21Kc2-s_-TiuXuCEiOF-TpA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 502 (0x1f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B0C9, serialNumber=073817DB529CDBEB3FF938AE5EE08488E17E4E90 Validity Not Before: Aug 9 02:54:18 2025 GMT Not After : Aug 16 02:54:18 2025 GMT Subject: CN=6896b85a-3eb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:60:dc:24:a8:c2:92:f7:9e:f9:a2:87:93:2a: d2:7e:7f:52:29:3e:7a:39:7b:16:24:f9:fc:b4:8e: fc:23:5f:21:d4:9f:30:6e:a8:cd:f2:48:30:8f:9a: b9:3a:9b:a5:1b:59:d9:c7:64:55:e8:f9:a7:cf:91: 73:d5:d2:d8:33:02:de:af:5c:37:e3:50:48:0d:80: 3c:a7:88:8c:f4:02:50:a4:dd:65:52:5f:0e:29:a4: 60:ea:af:05:79:48:1a:a7:63:70:57:db:00:cb:a9: bd:5d:85:ea:ae:d3:19:c5:02:0d:e0:6f:19:18:57: 60:bc:cd:13:6f:0f:01:71:65:35:47:12:8f:a8:fa: b4:fe:88:ae:9c:18:d4:22:34:39:a2:0f:0b:a0:4d: af:db:ae:83:bf:5d:10:17:3d:07:57:78:14:c9:c7: e0:88:8e:a0:42:15:2b:c1:92:df:ac:42:f3:38:f8: 5c:65:57:88:bd:ce:86:45:84:d4:40:bf:73:29:55: 85:d6:82:2e:15:41:de:ac:0f:0d:e4:30:92:1e:7c: a9:2d:43:fe:c0:a0:a5:76:78:5e:54:8c:79:eb:e2: e2:f1:b3:00:83:10:50:07:92:f3:5b:b0:81:72:d6: eb:c2:f6:01:47:9b:04:ae:d8:f6:fd:25:51:b0:92: 3f:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:6D:F0:C0:DA:BA:E4:FB:74:67:69:E2:CA:A5:16:68:6E:C0:26:28 X509v3 Authority Key Identifier: keyid:07:38:17:DB:52:9C:DB:EB:3F:F9:38:AE:5E:E0:84:88:E1:7E:4E:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B0C9/0C778CB47D1A11ED8E8BEB82C4F9AE02/BzgX21Kc2-s_-TiuXuCEiOF-TpA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BzgX21Kc2-s_-TiuXuCEiOF-TpA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B0C9/0C778CB47D1A11ED8E8BEB82C4F9AE02/BzgX21Kc2-s_-TiuXuCEiOF-TpA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:f7:37:4f:07:2e:a3:af:a3:56:46:25:61:5a:83:ad:79:c1: 53:00:96:69:4e:3b:6c:0f:dd:13:f0:45:eb:dc:16:a9:1e:45: 39:79:f5:5e:a1:43:9f:55:5b:ef:92:ab:4b:75:f0:c2:83:1b: 6a:47:b1:35:02:8d:fc:fb:30:a9:6f:ff:ab:d4:d0:7c:47:e8: 83:d5:95:f6:53:fe:3a:88:8a:e8:4d:1a:ed:63:79:c1:3c:e5: a2:a6:97:1f:f0:dc:cb:8c:b6:e8:e1:d3:10:be:6f:00:5c:63: 2c:a0:b3:3a:e3:a0:28:85:55:60:da:c1:a0:73:52:99:88:77: b7:a3:cc:15:0c:7d:69:2d:5a:d3:bd:d5:b6:d4:17:c0:f2:ff: c9:30:46:b6:bf:85:82:79:e7:fb:23:38:4c:db:d5:a4:bd:60: fb:bc:3c:d9:9d:3b:52:e8:3e:cb:ae:d0:44:46:e9:60:97:7e: 03:17:a9:94:9d:28:c7:38:b5:83:8e:a3:96:6f:3d:2b:ce:80: de:9b:ef:14:ac:b6:a7:89:41:ee:32:46:71:19:fd:da:5c:64: 73:d4:7b:9e:3c:ba:d6:f7:9b:ec:5b:95:85:a0:bf:b8:94:ac: 7d:ed:3b:e0:dc:74:19:53:1b:e8:ad:26:0d:3c:51:86:b4:d6: e7:53:79:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUIwQzkxMTAvBgNVBAUTKDA3MzgxN0RCNTI5Q0RCRUIzRkY5MzhBRTVFRTA4NDg4 RTE3RTRFOTAwHhcNMjUwODA5MDI1NDE4WhcNMjUwODE2MDI1NDE4WjAYMRYwFAYD VQQDEw02ODk2Yjg1YS0zZWI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsmDcJKjCkvee+aKHkyrSfn9SKT56OXsWJPn8tI78I18h1J8wbqjN8kgwj5q5 OpulG1nZx2RV6Pmnz5Fz1dLYMwLer1w341BIDYA8p4iM9AJQpN1lUl8OKaRg6q8F eUgap2NwV9sAy6m9XYXqrtMZxQIN4G8ZGFdgvM0Tbw8BcWU1RxKPqPq0/oiunBjU IjQ5og8LoE2v266Dv10QFz0HV3gUycfgiI6gQhUrwZLfrELzOPhcZVeIvc6GRYTU QL9zKVWF1oIuFUHerA8N5DCSHnypLUP+wKCldnheVIx56+Li8bMAgxBQB5LzW7CB ctbrwvYBR5sErtj2/SVRsJI/twIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN1t8MDa uuT7dGdp4sqlFmhuwCYoMB8GA1UdIwQYMBaAFAc4F9tSnNvrP/k4rl7ghIjhfk6Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjBDOS8wQzc3OENCNDdE MUExMUVEOEU4QkVCODJDNEY5QUUwMi9CemdYMjFLYzItc18tVGl1WHVDRWlPRi1U cEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0J6Z1gyMUtjMi1zXy1UaXVYdUNFaU9GLVRwQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QjBDOS8wQzc3OENCNDdEMUExMUVEOEU4QkVCODJDNEY5QUUwMi9CemdYMjFLYzIt c18tVGl1WHVDRWlPRi1UcEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDB9zdPBy6jr6NWRiVhWoOtecFTAJZpTjtsD90T8EXr3BapHkU5efVe oUOfVVvvkqtLdfDCgxtqR7E1Ao38+zCpb/+r1NB8R+iD1ZX2U/46iIroTRrtY3nB POWippcf8NzLjLbo4dMQvm8AXGMsoLM646AohVVg2sGgc1KZiHe3o8wVDH1pLVrT vdW21BfA8v/JMEa2v4WCeef7IzhM29WkvWD7vDzZnTtS6D7LrtBERulgl34DF6mU nSjHOLWDjqOWbz0rzoDem+8UrLaniUHuMkZxGf3aXGRz1HuePLrW95vsW5WFoL+4 lKx97Tvg3HQZUxvorSYNPFGGtNbnU3nM -----END CERTIFICATE-----Generated at Sun Aug 10 05:50:00 2025 by rpki-client