$ rpki-client -vvf rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.mft File: BkbFIpHVzU30oP94Z4T89Sg0YyQ.mft (raw, json) Hash identifier: UTconH5Dub8aZjLdHrhq1V74PUUGqM6yLSFaK81jcLY= Subject key identifier: 71:3C:52:48:D3:DA:69:9E:D4:46:64:BD:DF:CC:B3:33:4E:CF:60:55 Authority key identifier: 06:46:C5:22:91:D5:CD:4D:F4:A0:FF:78:67:84:FC:F5:28:34:63:24 Certificate issuer: /CN=A9122905/serialNumber=0646C52291D5CD4DF4A0FF786784FCF528346324 Certificate serial: 023E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BkbFIpHVzU30oP94Z4T89Sg0YyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.mft Manifest number: 023B Signing time: Sat 09 Aug 2025 02:24:44 +0000 Manifest this update: Sat 09 Aug 2025 02:24:44 +0000 Manifest next update: Sat 16 Aug 2025 02:24:44 +0000 Files and hashes: 1: BkbFIpHVzU30oP94Z4T89Sg0YyQ.crl (hash: C/bZ/LXulYr1/6Q3VpUPz3qNZgOWayOnpngDcgGrfb8=) 2: 8BFE9EA6335911EDBC60AC44C4F9AE02.roa (hash: PkaRAOyxeuH2U7UkwpCaJHtr/yLJ/iuQhH7B44HKa84=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.crl rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BkbFIpHVzU30oP94Z4T89Sg0YyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 574 (0x23e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122905, serialNumber=0646C52291D5CD4DF4A0FF786784FCF528346324 Validity Not Before: Aug 9 02:24:44 2025 GMT Not After : Aug 16 02:24:44 2025 GMT Subject: CN=6896b16c-7a85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ff:3a:f5:cb:ac:a3:16:98:0c:58:7a:e9:15: 9e:da:ab:17:bc:0b:27:4c:3c:3c:47:60:89:1f:0b: 81:20:8f:b5:24:94:5b:5a:3b:5d:c9:c2:0a:4f:a6: ff:37:6e:fa:9e:24:a9:f6:fe:6f:20:0b:de:97:e3: e5:81:6b:c4:70:99:76:78:25:52:57:b4:26:63:3b: f3:01:5d:c4:88:81:1b:f6:56:1f:8e:e5:73:00:eb: cd:d2:72:79:fb:7d:ff:3e:aa:34:06:27:89:59:e7: 10:30:df:a0:00:0a:ba:95:4e:8c:d2:b3:75:0b:42: 58:74:ed:9b:6f:77:f6:be:ec:8a:06:ea:4b:fa:4e: bb:3f:ca:c0:14:63:bc:a5:50:8f:3c:a4:02:9a:9d: 2b:28:48:44:15:94:09:11:11:95:80:14:cc:3c:45: e1:fd:d1:c1:0f:1a:e6:4a:24:d5:f0:c9:c7:e9:fd: fe:55:97:69:ba:9e:11:5b:32:b5:e8:77:1e:30:97: 9f:f6:4e:0c:fd:f0:e7:ce:ff:92:a4:f5:7c:6f:d9: a7:18:16:fb:46:a0:3a:d3:52:33:16:8b:f5:6c:b8: ca:47:c6:97:c1:a1:5d:1c:ed:40:bc:af:0b:2e:ea: 4a:4e:ee:9e:d4:0f:4d:54:8b:c3:4f:01:8a:4b:20: 9e:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:3C:52:48:D3:DA:69:9E:D4:46:64:BD:DF:CC:B3:33:4E:CF:60:55 X509v3 Authority Key Identifier: keyid:06:46:C5:22:91:D5:CD:4D:F4:A0:FF:78:67:84:FC:F5:28:34:63:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BkbFIpHVzU30oP94Z4T89Sg0YyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:3d:66:b0:df:1d:71:c7:7e:88:ea:1e:2c:a6:66:74:f2:89: 02:4e:4b:92:4a:af:86:ad:4e:be:21:b2:b5:cf:51:c8:79:96: 1b:0f:e5:ad:7e:aa:04:6b:e1:c7:13:2f:0c:60:22:d0:67:19: 4a:c4:7f:93:99:0b:e5:62:41:20:8d:cb:34:00:3b:dd:62:30: 58:68:67:f6:23:ac:b7:16:36:ca:cc:e7:de:1d:44:51:58:48: 6c:dd:1c:05:70:4f:22:b3:aa:1e:54:f8:ea:0e:36:18:76:69: 92:43:71:eb:9c:c0:12:57:14:2e:04:b1:3c:cd:e2:d5:26:1b: 50:e3:b4:a1:fc:10:23:e1:af:96:56:ea:5b:a8:c4:29:5a:9a: 9f:b9:f9:7c:f2:4c:87:fe:71:8c:f0:5a:31:89:be:3c:d5:78: 8e:18:f6:11:cb:8b:47:00:65:74:74:33:2a:96:61:61:0d:27: 4a:8a:a5:3c:26:38:12:9c:c1:4a:30:b7:00:44:b3:05:c6:23: 5a:d9:82:07:02:23:a7:7e:a4:38:b6:30:96:d2:03:f3:7d:3e: 69:78:20:3f:8a:3f:58:27:96:bd:04:77:0f:c7:c7:95:2a:ad: d6:1d:f1:8c:5f:b6:ac:ec:07:75:9a:b1:8c:9c:8b:85:81:c7: 5b:b3:c3:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAj4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjI5MDUxMTAvBgNVBAUTKDA2NDZDNTIyOTFENUNENERGNEEwRkY3ODY3ODRGQ0Y1 MjgzNDYzMjQwHhcNMjUwODA5MDIyNDQ0WhcNMjUwODE2MDIyNDQ0WjAYMRYwFAYD VQQDEw02ODk2YjE2Yy03YTg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvP869cusoxaYDFh66RWe2qsXvAsnTDw8R2CJHwuBII+1JJRbWjtdycIKT6b/ N276niSp9v5vIAvel+PlgWvEcJl2eCVSV7QmYzvzAV3EiIEb9lYfjuVzAOvN0nJ5 +33/Pqo0BieJWecQMN+gAAq6lU6M0rN1C0JYdO2bb3f2vuyKBupL+k67P8rAFGO8 pVCPPKQCmp0rKEhEFZQJERGVgBTMPEXh/dHBDxrmSiTV8MnH6f3+VZdpup4RWzK1 6HceMJef9k4M/fDnzv+SpPV8b9mnGBb7RqA601IzFov1bLjKR8aXwaFdHO1AvK8L LupKTu6e1A9NVIvDTwGKSyCeqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHE8UkjT 2mme1EZkvd/MszNOz2BVMB8GA1UdIwQYMBaAFAZGxSKR1c1N9KD/eGeE/PUoNGMk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjkwNS8xMUVCMDg2QTMz NTUxMUVEOTQzRkE1M0JDNEY5QUUwMi9Ca2JGSXBIVnpVMzBvUDk0WjRUODlTZzBZ eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JrYkZJcEhWelUzMG9QOTRaNFQ4OVNnMFl5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MjkwNS8xMUVCMDg2QTMzNTUxMUVEOTQzRkE1M0JDNEY5QUUwMi9Ca2JGSXBIVnpV MzBvUDk0WjRUODlTZzBZeVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDAPWaw3x1xx36I6h4spmZ08okCTkuSSq+GrU6+IbK1z1HIeZYbD+Wt fqoEa+HHEy8MYCLQZxlKxH+TmQvlYkEgjcs0ADvdYjBYaGf2I6y3FjbKzOfeHURR WEhs3RwFcE8is6oeVPjqDjYYdmmSQ3HrnMASVxQuBLE8zeLVJhtQ47Sh/BAj4a+W VupbqMQpWpqfufl88kyH/nGM8Foxib481XiOGPYRy4tHAGV0dDMqlmFhDSdKiqU8 JjgSnMFKMLcARLMFxiNa2YIHAiOnfqQ4tjCW0gPzfT5peCA/ij9YJ5a9BHcPx8eV Kq3WHfGMX7as7Ad1mrGMnIuFgcdbs8Nh -----END CERTIFICATE-----Generated at Sun Aug 10 18:15:20 2025 by rpki-client