$ rpki-client -vvf rpki.apnic.net/member_repository/A915B0C9/0C778CB47D1A11ED8E8BEB82C4F9AE02/BzgX21Kc2-s_-TiuXuCEiOF-TpA.mft File: BzgX21Kc2-s_-TiuXuCEiOF-TpA.mft (raw, json) Hash identifier: YR9TYpf09R0NMAdU/X1zZ8IYus/9+Ffc4ZGdqHIxdM4= Subject key identifier: 1A:97:67:6A:99:57:86:F2:33:67:2F:96:BE:CA:F6:BC:9F:E2:00:57 Authority key identifier: 07:38:17:DB:52:9C:DB:EB:3F:F9:38:AE:5E:E0:84:88:E1:7E:4E:90 Certificate issuer: /CN=A915B0C9/serialNumber=073817DB529CDBEB3FF938AE5EE08488E17E4E90 Certificate serial: 0225 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BzgX21Kc2-s_-TiuXuCEiOF-TpA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B0C9/0C778CB47D1A11ED8E8BEB82C4F9AE02/BzgX21Kc2-s_-TiuXuCEiOF-TpA.mft Manifest number: 0221 Signing time: Wed 05 Nov 2025 02:15:49 +0000 Manifest this update: Wed 05 Nov 2025 02:15:49 +0000 Manifest next update: Wed 12 Nov 2025 02:15:49 +0000 Files and hashes: 1: BzgX21Kc2-s_-TiuXuCEiOF-TpA.crl (hash: y/fWxUX9kkfTECnB/kbtJo6njg6t96ugobh6YrRvOkA=) 2: F0F09EAA7D1D11EDAE0CF917C4F9AE02.roa (hash: UfEQHpbIkG4N2xJZlQdcj3CUM9IauXhIw+vNgpLvVqs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B0C9/0C778CB47D1A11ED8E8BEB82C4F9AE02/BzgX21Kc2-s_-TiuXuCEiOF-TpA.crl rsync://rpki.apnic.net/member_repository/A915B0C9/0C778CB47D1A11ED8E8BEB82C4F9AE02/BzgX21Kc2-s_-TiuXuCEiOF-TpA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BzgX21Kc2-s_-TiuXuCEiOF-TpA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:15:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 549 (0x225) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B0C9, serialNumber=073817DB529CDBEB3FF938AE5EE08488E17E4E90 Validity Not Before: Nov 5 02:15:49 2025 GMT Not After : Nov 12 02:15:49 2025 GMT Subject: CN=690ab355-1885 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:20:5f:08:1d:b4:79:b9:93:46:c5:04:47:6a: c7:2e:f8:47:99:50:e6:f2:6b:2a:9c:43:05:68:da: 44:9e:b1:0f:8e:a5:db:98:bc:06:b2:20:31:52:fc: 69:8e:14:fa:07:b8:d0:bb:d9:03:10:7e:bb:a4:94: 66:96:26:44:fe:88:58:9c:c3:09:89:88:91:93:20: 0b:85:dc:11:d1:df:a0:8e:09:2f:5b:c3:e0:90:c0: 51:2e:55:52:ca:c0:44:c1:28:9a:e1:40:4f:63:6b: 04:11:e7:ec:0d:d6:41:ff:dd:74:f4:29:5f:0b:e6: 49:8b:51:bc:e6:bb:a0:3e:37:93:df:b4:eb:d0:58: f8:08:1e:76:19:b4:75:3c:99:11:ed:82:58:ba:61: 4f:5f:c5:80:f2:66:35:ba:c6:a3:8f:db:8c:9b:6b: 4f:f2:08:28:79:2e:ee:db:43:fb:df:46:d5:47:75: 00:15:d6:bd:33:3c:50:ae:ce:0b:a2:f2:e2:de:93: a5:3f:89:d1:ff:fe:01:47:23:39:af:a3:1a:6c:48: 0c:4a:85:90:b1:f7:2c:90:68:68:bd:2f:5f:0d:64: bb:08:a5:1b:60:90:e3:a9:d0:7b:63:80:05:10:dd: d5:80:0b:56:63:34:3f:2b:d0:b9:7d:8f:eb:1d:1e: cf:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:97:67:6A:99:57:86:F2:33:67:2F:96:BE:CA:F6:BC:9F:E2:00:57 X509v3 Authority Key Identifier: keyid:07:38:17:DB:52:9C:DB:EB:3F:F9:38:AE:5E:E0:84:88:E1:7E:4E:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B0C9/0C778CB47D1A11ED8E8BEB82C4F9AE02/BzgX21Kc2-s_-TiuXuCEiOF-TpA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BzgX21Kc2-s_-TiuXuCEiOF-TpA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B0C9/0C778CB47D1A11ED8E8BEB82C4F9AE02/BzgX21Kc2-s_-TiuXuCEiOF-TpA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:13:bc:2a:d2:dc:8e:92:d1:ed:c6:7e:66:b0:42:60:95:30: e7:0a:cd:20:c4:ee:f4:d6:f1:d0:4d:fd:cf:50:a0:8f:12:70: 4a:0a:78:7f:03:ea:79:fd:8b:20:37:90:37:22:b5:3f:87:ad: 18:ac:cb:2c:26:bd:a4:ba:97:86:df:5f:c2:65:6e:a2:61:85: 57:02:0d:ad:d2:9f:ff:68:cc:b6:19:af:8e:84:b1:1f:ec:8e: ff:4d:4f:14:70:fc:35:d6:47:6d:be:db:13:e3:c4:67:a8:63: b4:fb:80:b6:74:f1:da:9e:51:81:c3:94:50:dc:70:47:20:1c: d3:df:84:d8:23:bb:65:94:4e:d1:55:19:5a:04:7c:d3:2c:da: d5:35:ad:7b:c6:26:70:79:be:7f:f4:aa:12:81:53:ac:51:19: 3d:9c:df:00:8d:22:43:d2:79:38:2e:37:66:6b:12:1d:ff:76: d1:44:84:61:c1:60:5f:f1:ae:dd:1f:24:5f:cf:b4:c8:46:51: 1b:e0:35:d9:ed:80:0b:94:7c:b2:b6:8d:fa:ad:ac:ae:f9:48: 03:f2:c4:b6:92:50:14:de:c7:94:5c:fa:e8:9e:80:fa:9b:a4: 6a:95:21:8b:1f:84:49:57:ee:71:c0:db:f6:03:cb:1b:30:68: ff:f5:0e:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUIwQzkxMTAvBgNVBAUTKDA3MzgxN0RCNTI5Q0RCRUIzRkY5MzhBRTVFRTA4NDg4 RTE3RTRFOTAwHhcNMjUxMTA1MDIxNTQ5WhcNMjUxMTEyMDIxNTQ5WjAYMRYwFAYD VQQDEw02OTBhYjM1NS0xODg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5yBfCB20ebmTRsUER2rHLvhHmVDm8msqnEMFaNpEnrEPjqXbmLwGsiAxUvxp jhT6B7jQu9kDEH67pJRmliZE/ohYnMMJiYiRkyALhdwR0d+gjgkvW8PgkMBRLlVS ysBEwSia4UBPY2sEEefsDdZB/9109ClfC+ZJi1G85rugPjeT37Tr0Fj4CB52GbR1 PJkR7YJYumFPX8WA8mY1usajj9uMm2tP8ggoeS7u20P730bVR3UAFda9MzxQrs4L ovLi3pOlP4nR//4BRyM5r6MabEgMSoWQsfcskGhovS9fDWS7CKUbYJDjqdB7Y4AF EN3VgAtWYzQ/K9C5fY/rHR7PfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBqXZ2qZ V4byM2cvlr7K9ryf4gBXMB8GA1UdIwQYMBaAFAc4F9tSnNvrP/k4rl7ghIjhfk6Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjBDOS8wQzc3OENCNDdE MUExMUVEOEU4QkVCODJDNEY5QUUwMi9CemdYMjFLYzItc18tVGl1WHVDRWlPRi1U cEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0J6Z1gyMUtjMi1zXy1UaXVYdUNFaU9GLVRwQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QjBDOS8wQzc3OENCNDdEMUExMUVEOEU4QkVCODJDNEY5QUUwMi9CemdYMjFLYzIt c18tVGl1WHVDRWlPRi1UcEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrE7wq0tyOktHtxn5msEJglTDnCs0gxO701vHQTf3PUKCPEnBKCnh/ A+p5/YsgN5A3IrU/h60YrMssJr2kupeG31/CZW6iYYVXAg2t0p//aMy2Ga+OhLEf 7I7/TU8UcPw11kdtvtsT48RnqGO0+4C2dPHanlGBw5RQ3HBHIBzT34TYI7tllE7R VRlaBHzTLNrVNa17xiZweb5/9KoSgVOsURk9nN8AjSJD0nk4LjdmaxId/3bRRIRh wWBf8a7dHyRfz7TIRlEb4DXZ7YALlHyyto36rayu+UgD8sS2klAU3seUXPronoD6 m6RqlSGLH4RJV+5xwNv2A8sbMGj/9Q56 -----END CERTIFICATE-----Generated at Wed Nov 5 19:48:53 2025 by rpki-client