$ rpki-client -vvf rpki.apnic.net/member_repository/A9196C96/A8AE0F94904611EBBB84B227C4F9AE02/BGJ9zJuAhC1DY3HEzcc9Gat-Xbs.mft File: BGJ9zJuAhC1DY3HEzcc9Gat-Xbs.mft (raw, json) Hash identifier: bFP7hpvHc6KoJ5RPlwn7xs7JC1/fmaujSEedkmGk8+0= Subject key identifier: 59:8A:48:D5:51:FC:E6:EE:61:91:6F:18:C3:78:DB:13:E2:1C:81:3D Authority key identifier: 04:62:7D:CC:9B:80:84:2D:43:63:71:C4:CD:C7:3D:19:AB:7E:5D:BB Certificate issuer: /CN=A9196C96/serialNumber=04627DCC9B80842D436371C4CDC73D19AB7E5DBB Certificate serial: 0668 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BGJ9zJuAhC1DY3HEzcc9Gat-Xbs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196C96/A8AE0F94904611EBBB84B227C4F9AE02/BGJ9zJuAhC1DY3HEzcc9Gat-Xbs.mft Manifest number: 0663 Signing time: Tue 12 Aug 2025 22:53:16 +0000 Manifest this update: Tue 12 Aug 2025 22:53:15 +0000 Manifest next update: Tue 19 Aug 2025 22:53:15 +0000 Files and hashes: 1: BGJ9zJuAhC1DY3HEzcc9Gat-Xbs.crl (hash: eeSqag/ONNnxKILXpkNFz9QFJalJLZ7/6GcW3ZwQKg4=) 2: D49D6040912311EB9DCD2A33C4F9AE02.roa (hash: aGdwS0nqIDPQmrDed9aL2d/6MVOmtEOC5VWnxIsYspE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196C96/A8AE0F94904611EBBB84B227C4F9AE02/BGJ9zJuAhC1DY3HEzcc9Gat-Xbs.crl rsync://rpki.apnic.net/member_repository/A9196C96/A8AE0F94904611EBBB84B227C4F9AE02/BGJ9zJuAhC1DY3HEzcc9Gat-Xbs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BGJ9zJuAhC1DY3HEzcc9Gat-Xbs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 22:53:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1640 (0x668) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196C96, serialNumber=04627DCC9B80842D436371C4CDC73D19AB7E5DBB Validity Not Before: Aug 12 22:53:15 2025 GMT Not After : Aug 19 22:53:15 2025 GMT Subject: CN=689bc5db-aea6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:3a:61:5a:b8:48:ca:d1:92:d0:e2:6c:86:7e: 59:d2:88:23:22:d8:d1:ee:db:7c:41:86:70:7f:85: 96:b9:4f:0b:b2:d1:da:04:d2:1e:ec:a4:84:9c:39: a0:16:6c:7e:2d:ba:79:b2:72:1f:4a:32:5e:3f:96: d9:c0:a1:bd:87:6a:a3:84:73:82:89:e4:75:c2:fd: c2:1b:b0:55:74:6d:04:77:cb:b2:de:bb:e8:1c:68: b8:14:fc:4b:b9:fd:17:88:86:3b:97:aa:e2:dc:17: 00:f5:a6:87:ca:69:02:77:25:07:30:67:fe:0f:7b: c1:d0:d1:3a:e2:9d:83:a5:ef:83:ab:99:77:e2:1a: bf:b5:6c:59:11:02:cd:ba:dd:73:02:ac:9f:dc:45: b7:2f:a6:ae:6c:0c:df:2a:18:fc:71:c8:db:ed:17: d2:8d:c4:8e:c1:c3:86:05:6a:3a:38:fb:89:c4:3e: 7e:65:6e:36:e4:80:87:b0:9b:e4:5a:93:6d:49:99: 6d:cd:d7:61:99:e3:12:8c:4b:83:73:70:71:8d:2d: 3b:d3:5c:60:7a:ba:31:06:bd:98:5c:4b:c9:bb:a4: 92:28:b8:20:86:5e:86:1d:fb:c1:5f:63:48:fe:b6: f7:51:28:af:0e:c4:ff:46:0e:a9:93:fa:ff:10:19: ce:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:8A:48:D5:51:FC:E6:EE:61:91:6F:18:C3:78:DB:13:E2:1C:81:3D X509v3 Authority Key Identifier: keyid:04:62:7D:CC:9B:80:84:2D:43:63:71:C4:CD:C7:3D:19:AB:7E:5D:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196C96/A8AE0F94904611EBBB84B227C4F9AE02/BGJ9zJuAhC1DY3HEzcc9Gat-Xbs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BGJ9zJuAhC1DY3HEzcc9Gat-Xbs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196C96/A8AE0F94904611EBBB84B227C4F9AE02/BGJ9zJuAhC1DY3HEzcc9Gat-Xbs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:06:fc:24:97:05:39:20:94:23:a7:db:cd:bc:e8:5a:b7:84: 83:c6:a6:4b:a0:e3:d7:ca:43:87:dc:b9:0f:7b:00:0c:eb:c0: e7:ca:0d:12:53:9c:a5:7f:68:b8:1d:85:ca:0d:e5:4e:1f:aa: 56:30:90:24:16:d1:62:ff:3d:1b:18:59:ec:6d:92:e2:2d:ed: 4b:85:17:ac:61:c1:67:0f:8a:7e:66:2c:90:0f:d0:63:fa:79: 7b:5d:4e:20:f8:b6:dc:6d:39:da:90:a6:82:d3:87:ea:01:67: 54:1d:cc:82:c4:a2:15:b3:ec:e1:b7:b1:2f:c2:43:48:12:24: 2d:ff:92:a5:02:7c:61:46:67:60:c8:7e:99:aa:f5:60:e6:21: 03:8d:03:d8:ef:50:be:c9:7b:f1:f3:6d:69:4b:54:ee:3a:c6: 0d:51:c1:d5:5b:7e:8a:b7:64:be:83:b5:73:5a:87:cd:58:20: 81:2a:a4:a4:5d:3e:ea:2a:07:1f:09:c5:23:df:7c:7c:ee:b3: 89:99:07:37:17:50:7b:2e:52:b9:cd:95:1b:de:28:aa:c9:e0: ed:20:76:67:3e:65:3a:61:64:23:bc:4e:2e:c9:a5:55:9f:1e: 8f:b8:39:ea:37:71:c4:2f:36:5b:e5:c2:79:46:6a:a1:a3:56: 06:da:43:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZDOTYxMTAvBgNVBAUTKDA0NjI3RENDOUI4MDg0MkQ0MzYzNzFDNENEQzczRDE5 QUI3RTVEQkIwHhcNMjUwODEyMjI1MzE1WhcNMjUwODE5MjI1MzE1WjAYMRYwFAYD VQQDEw02ODliYzVkYi1hZWE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApDphWrhIytGS0OJshn5Z0ogjItjR7tt8QYZwf4WWuU8LstHaBNIe7KSEnDmg Fmx+Lbp5snIfSjJeP5bZwKG9h2qjhHOCieR1wv3CG7BVdG0Ed8uy3rvoHGi4FPxL uf0XiIY7l6ri3BcA9aaHymkCdyUHMGf+D3vB0NE64p2Dpe+Dq5l34hq/tWxZEQLN ut1zAqyf3EW3L6aubAzfKhj8ccjb7RfSjcSOwcOGBWo6OPuJxD5+ZW425ICHsJvk WpNtSZltzddhmeMSjEuDc3BxjS0701xgeroxBr2YXEvJu6SSKLgghl6GHfvBX2NI /rb3USivDsT/Rg6pk/r/EBnOLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFmKSNVR /ObuYZFvGMN42xPiHIE9MB8GA1UdIwQYMBaAFARifcybgIQtQ2NxxM3HPRmrfl27 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkM5Ni9BOEFFMEY5NDkw NDYxMUVCQkI4NEIyMjdDNEY5QUUwMi9CR0o5ekp1QWhDMURZM0hFemNjOUdhdC1Y YnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JHSjl6SnVBaEMxRFkzSEV6Y2M5R2F0LVhicy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NkM5Ni9BOEFFMEY5NDkwNDYxMUVCQkI4NEIyMjdDNEY5QUUwMi9CR0o5ekp1QWhD MURZM0hFemNjOUdhdC1YYnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFBvwklwU5IJQjp9vNvOhat4SDxqZLoOPXykOH3LkPewAM68Dnyg0S U5ylf2i4HYXKDeVOH6pWMJAkFtFi/z0bGFnsbZLiLe1LhResYcFnD4p+ZiyQD9Bj +nl7XU4g+LbcbTnakKaC04fqAWdUHcyCxKIVs+zht7EvwkNIEiQt/5KlAnxhRmdg yH6ZqvVg5iEDjQPY71C+yXvx821pS1TuOsYNUcHVW36Kt2S+g7VzWofNWCCBKqSk XT7qKgcfCcUj33x87rOJmQc3F1B7LlK5zZUb3iiqyeDtIHZnPmU6YWQjvE4uyaVV nx6PuDnqN3HELzZb5cJ5Rmqho1YG2kOX -----END CERTIFICATE-----Generated at Wed Aug 13 05:33:43 2025 by rpki-client