$ rpki-client -vvf rpki.apnic.net/member_repository/A911D415/64B7762E67BA11EEA912DE37C4F9AE02/baLnsgc31v3aKTEYAyM4Tcf4AXI.mft File: baLnsgc31v3aKTEYAyM4Tcf4AXI.mft (raw, json) Hash identifier: y01++ugMhMdyVOBjXjQqi8eXH29Tr1E5DioKUgi03xw= Subject key identifier: D8:FA:10:3E:27:52:50:97:D7:34:94:CC:21:B7:9B:A6:61:72:8B:4A Authority key identifier: 6D:A2:E7:B2:07:37:D6:FD:DA:29:31:18:03:23:38:4D:C7:F8:01:72 Certificate issuer: /CN=A911D415/serialNumber=6DA2E7B20737D6FDDA2931180323384DC7F80172 Certificate serial: 015B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baLnsgc31v3aKTEYAyM4Tcf4AXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D415/64B7762E67BA11EEA912DE37C4F9AE02/baLnsgc31v3aKTEYAyM4Tcf4AXI.mft Manifest number: 0158 Signing time: Sat 09 Aug 2025 04:29:20 +0000 Manifest this update: Sat 09 Aug 2025 04:29:19 +0000 Manifest next update: Sat 16 Aug 2025 04:29:19 +0000 Files and hashes: 1: baLnsgc31v3aKTEYAyM4Tcf4AXI.crl (hash: TCKyiVyCceMI4kwaHy3Z3batXqr9CxmCmRt8A3GdOzc=) 2: B2B7B96067BA11EE99370352C4F9AE02.roa (hash: P/WWt5eI8v2C+zoec4Zd9OnVnDcSJ3bbXF6r7+A0KgE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D415/64B7762E67BA11EEA912DE37C4F9AE02/baLnsgc31v3aKTEYAyM4Tcf4AXI.crl rsync://rpki.apnic.net/member_repository/A911D415/64B7762E67BA11EEA912DE37C4F9AE02/baLnsgc31v3aKTEYAyM4Tcf4AXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baLnsgc31v3aKTEYAyM4Tcf4AXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 347 (0x15b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D415, serialNumber=6DA2E7B20737D6FDDA2931180323384DC7F80172 Validity Not Before: Aug 9 04:29:19 2025 GMT Not After : Aug 16 04:29:19 2025 GMT Subject: CN=6896cea0-dfcc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:0e:ce:43:66:b8:2f:a9:e5:63:46:06:d2:34: 67:6a:a9:68:81:53:16:44:a9:d3:d3:e5:3a:4a:e9: c7:a8:23:0b:8c:f7:7e:5b:f5:b1:0f:21:9d:60:32: 33:79:a3:28:4a:4f:e3:9e:b2:91:df:91:b8:23:81: 84:85:50:5c:ed:ae:11:87:b3:5c:4f:3f:7d:68:4e: e2:f3:76:eb:bc:54:5d:59:60:91:ba:41:f7:af:4b: 06:ae:14:17:45:75:d6:07:58:11:7d:f5:92:04:b4: 17:90:14:a8:f2:cb:98:a6:19:8f:c9:7f:9a:84:f1: 9b:e7:3c:f8:1d:2b:77:c4:4b:21:42:7a:9f:1b:43: 23:42:ef:d7:b0:67:ed:15:a6:ad:80:44:4e:f7:1d: 67:85:bc:de:fb:88:ed:c0:29:11:33:d0:49:c7:a7: 44:cf:14:71:11:33:4f:3c:a4:98:39:4d:11:7a:ab: 6d:7f:d8:97:6f:ed:23:50:a2:f0:fe:8e:ef:ac:14: bc:17:61:c1:f2:92:2f:c5:b0:19:e3:e4:72:98:b3: 17:19:a8:e5:b0:ff:11:ce:53:7c:2e:b5:56:da:93: 1d:02:2b:04:3e:60:1f:da:c0:bf:d3:4d:7b:52:49: 07:e1:3a:a6:8f:99:4b:f4:47:c1:62:29:6b:5d:4b: 9f:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:FA:10:3E:27:52:50:97:D7:34:94:CC:21:B7:9B:A6:61:72:8B:4A X509v3 Authority Key Identifier: keyid:6D:A2:E7:B2:07:37:D6:FD:DA:29:31:18:03:23:38:4D:C7:F8:01:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D415/64B7762E67BA11EEA912DE37C4F9AE02/baLnsgc31v3aKTEYAyM4Tcf4AXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baLnsgc31v3aKTEYAyM4Tcf4AXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D415/64B7762E67BA11EEA912DE37C4F9AE02/baLnsgc31v3aKTEYAyM4Tcf4AXI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:d7:76:fb:84:22:89:81:25:93:c9:27:d3:00:e9:e4:2b:5b: d5:9f:d6:95:b8:74:b0:11:d2:30:5b:b7:75:cf:d3:97:8c:ec: e9:25:bf:d5:30:35:24:6c:02:6a:b5:64:02:b3:b4:93:71:05: 64:fe:37:3b:6c:a9:f1:f2:3d:8c:85:0a:53:91:77:f2:ba:61: 70:97:35:bc:30:8c:e9:00:ff:86:68:57:81:d7:bc:c3:e4:47: 48:28:6a:ca:94:ce:23:ff:92:b3:6e:13:a6:c2:ac:db:d0:8b: 0e:6d:e1:61:80:6c:56:95:1f:2c:06:79:24:ad:92:03:38:87: f6:9d:5a:d8:e5:03:c4:bb:87:69:2a:aa:78:85:eb:37:56:f6: 0e:5b:85:bc:49:88:7d:d0:a7:21:b9:6c:dd:5a:4b:22:3f:65: ed:3f:93:60:13:35:62:83:ad:86:f3:3c:01:38:22:bd:ae:f2: b7:5d:7b:fa:b1:af:8b:88:50:84:a0:2a:ad:e7:cc:f5:4d:89: 94:e8:47:26:6c:0e:23:3a:a9:f1:eb:14:c6:37:77:e7:34:24: 4c:97:1d:7a:8d:78:3d:11:91:73:14:47:19:aa:80:2f:15:92: 5c:ab:f2:dc:c2:f7:e9:d3:07:22:a7:4d:93:b9:e5:2c:5e:8e: 7f:52:08:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQ0MTUxMTAvBgNVBAUTKDZEQTJFN0IyMDczN0Q2RkREQTI5MzExODAzMjMzODRE QzdGODAxNzIwHhcNMjUwODA5MDQyOTE5WhcNMjUwODE2MDQyOTE5WjAYMRYwFAYD VQQDEw02ODk2Y2VhMC1kZmNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5A7OQ2a4L6nlY0YG0jRnaqlogVMWRKnT0+U6SunHqCMLjPd+W/WxDyGdYDIz eaMoSk/jnrKR35G4I4GEhVBc7a4Rh7NcTz99aE7i83brvFRdWWCRukH3r0sGrhQX RXXWB1gRffWSBLQXkBSo8suYphmPyX+ahPGb5zz4HSt3xEshQnqfG0MjQu/XsGft FaatgERO9x1nhbze+4jtwCkRM9BJx6dEzxRxETNPPKSYOU0Reqttf9iXb+0jUKLw /o7vrBS8F2HB8pIvxbAZ4+RymLMXGajlsP8RzlN8LrVW2pMdAisEPmAf2sC/0017 UkkH4Tqmj5lL9EfBYilrXUufSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNj6ED4n UlCX1zSUzCG3m6ZhcotKMB8GA1UdIwQYMBaAFG2i57IHN9b92ikxGAMjOE3H+AFy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDQxNS82NEI3NzYyRTY3 QkExMUVFQTkxMkRFMzdDNEY5QUUwMi9iYUxuc2djMzF2M2FLVEVZQXlNNFRjZjRB WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JhTG5zZ2MzMXYzYUtURVlBeU00VGNmNEFYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDQxNS82NEI3NzYyRTY3QkExMUVFQTkxMkRFMzdDNEY5QUUwMi9iYUxuc2djMzF2 M2FLVEVZQXlNNFRjZjRBWEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBt13b7hCKJgSWTySfTAOnkK1vVn9aVuHSwEdIwW7d1z9OXjOzpJb/V MDUkbAJqtWQCs7STcQVk/jc7bKnx8j2MhQpTkXfyumFwlzW8MIzpAP+GaFeB17zD 5EdIKGrKlM4j/5KzbhOmwqzb0IsObeFhgGxWlR8sBnkkrZIDOIf2nVrY5QPEu4dp Kqp4hes3VvYOW4W8SYh90KchuWzdWksiP2XtP5NgEzVig62G8zwBOCK9rvK3XXv6 sa+LiFCEoCqt58z1TYmU6EcmbA4jOqnx6xTGN3fnNCRMlx16jXg9EZFzFEcZqoAv FZJcq/Lcwvfp0wcip02TueUsXo5/UgiU -----END CERTIFICATE-----Generated at Sun Aug 10 14:00:53 2025 by rpki-client