$ rpki-client -vvf rpki.apnic.net/member_repository/A912391D/B571CCBE0EE111ED84674C0EC4F9AE02/BWvvRscxWDfrrepBeAueQaP7fqA.mft File: BWvvRscxWDfrrepBeAueQaP7fqA.mft (raw, json) Hash identifier: 4oh86xPUOYyL8zj10PEa5KLdgsgta5VeHQEH3D3/DH8= Subject key identifier: DF:A0:A2:88:B1:03:F9:7F:D4:49:D9:07:B2:E0:59:1A:4B:0C:59:A2 Authority key identifier: 05:6B:EF:46:C7:31:58:37:EB:AD:EA:41:78:0B:9E:41:A3:FB:7E:A0 Certificate issuer: /CN=A912391D/serialNumber=056BEF46C7315837EBADEA41780B9E41A3FB7EA0 Certificate serial: 029C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BWvvRscxWDfrrepBeAueQaP7fqA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912391D/B571CCBE0EE111ED84674C0EC4F9AE02/BWvvRscxWDfrrepBeAueQaP7fqA.mft Manifest number: 0298 Signing time: Sat 09 Aug 2025 02:08:56 +0000 Manifest this update: Sat 09 Aug 2025 02:08:56 +0000 Manifest next update: Sat 16 Aug 2025 02:08:56 +0000 Files and hashes: 1: BWvvRscxWDfrrepBeAueQaP7fqA.crl (hash: VS7nInbELe3lolT+L9zAHgYg6Zlh2QyklJXfiQMe4U8=) 2: 207B27560EE411EDA32ABE0FC4F9AE02.roa (hash: 6uwFx8/ukSzKKH+6QOFIRRiywJ0AdBaXItyBqWPv0ck=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912391D/B571CCBE0EE111ED84674C0EC4F9AE02/BWvvRscxWDfrrepBeAueQaP7fqA.crl rsync://rpki.apnic.net/member_repository/A912391D/B571CCBE0EE111ED84674C0EC4F9AE02/BWvvRscxWDfrrepBeAueQaP7fqA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BWvvRscxWDfrrepBeAueQaP7fqA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 668 (0x29c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912391D, serialNumber=056BEF46C7315837EBADEA41780B9E41A3FB7EA0 Validity Not Before: Aug 9 02:08:56 2025 GMT Not After : Aug 16 02:08:56 2025 GMT Subject: CN=6896adb8-a558 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ac:96:24:a0:4e:ee:a1:66:7d:b9:ec:b9:cd: 59:3f:3e:27:20:8e:2e:37:68:75:5d:3e:f2:f3:61: 45:c4:03:f2:2b:bf:19:10:6b:11:92:56:90:c1:e4: 50:6f:46:e8:ce:8e:15:44:53:a5:1c:33:6a:47:fa: 45:a9:6e:5e:1a:35:fe:4a:df:99:73:d0:f3:e3:f0: eb:ed:79:6d:b1:1c:3b:27:95:0b:a9:e7:ab:0c:96: 18:01:b2:dd:2c:80:03:b3:9f:dd:33:82:72:e3:72: be:13:0d:b3:a9:38:96:44:1b:8f:0b:cb:fa:82:e3: 14:39:ad:2d:09:e0:fd:6b:14:eb:59:0c:c8:a9:73: 7d:73:d8:45:d5:eb:18:c1:80:7d:9a:69:90:e0:33: 17:be:4e:5a:16:3f:72:bd:33:0e:65:0f:b1:85:1a: a7:4d:61:9b:0d:7d:f4:93:6d:4c:68:c0:b5:7c:9c: 0a:18:4e:f6:89:b7:40:40:e9:9d:ba:25:3a:1c:04: 8f:5d:66:3d:8e:fa:79:29:da:ef:e6:96:21:a7:e7: 92:0a:b6:17:86:1e:c2:97:b8:b0:ca:4e:ec:a3:fa: 88:23:a1:41:c6:0f:00:f7:27:e2:75:9b:6d:23:1d: 58:c3:d6:fb:ab:05:78:4a:4c:d8:58:65:e6:4d:0c: 93:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:A0:A2:88:B1:03:F9:7F:D4:49:D9:07:B2:E0:59:1A:4B:0C:59:A2 X509v3 Authority Key Identifier: keyid:05:6B:EF:46:C7:31:58:37:EB:AD:EA:41:78:0B:9E:41:A3:FB:7E:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912391D/B571CCBE0EE111ED84674C0EC4F9AE02/BWvvRscxWDfrrepBeAueQaP7fqA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BWvvRscxWDfrrepBeAueQaP7fqA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912391D/B571CCBE0EE111ED84674C0EC4F9AE02/BWvvRscxWDfrrepBeAueQaP7fqA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:0f:07:fc:29:53:51:c7:fb:ce:e6:94:3b:d6:c6:3c:8b:41: 96:25:33:f9:53:14:25:4a:82:17:11:68:f7:62:02:6a:92:9f: 8f:49:61:1a:11:7e:af:d9:19:85:f9:12:26:9c:e2:d0:8e:9d: 3c:96:ab:d5:15:57:72:35:d5:04:14:bf:58:28:50:5f:98:e5: 71:08:c5:bc:ad:c7:b8:ab:d4:b0:5a:02:62:b8:da:72:1a:3c: 1e:d0:f3:c4:9a:f8:0b:ea:86:21:fd:5e:01:5a:9f:a2:b1:a6: cd:fa:93:83:48:a2:3e:11:99:0d:87:0d:e8:be:d7:42:dc:25: 4c:df:82:21:ed:58:54:f2:43:fe:d8:ec:0e:63:19:a9:61:44: 17:12:59:f6:d9:6c:d2:0a:6b:99:d4:85:bb:60:b8:d5:6b:fd: e1:b6:eb:d6:fb:e3:52:a2:81:72:c5:73:ec:ec:87:05:66:72: cf:00:07:ff:27:27:1b:cb:34:d5:2c:c4:b0:b6:fa:91:65:1d: 03:3f:a4:13:c1:12:7b:6b:7e:c0:df:f2:83:30:fe:02:15:f2: 3a:ac:1c:8f:33:3b:a7:4f:fb:2c:d2:56:ee:ab:78:9e:3e:d3: 2e:f7:2d:1c:c9:a5:ea:b6:7c:7e:d0:09:43:10:40:6e:42:a4: ce:16:6a:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM5MUQxMTAvBgNVBAUTKDA1NkJFRjQ2QzczMTU4MzdFQkFERUE0MTc4MEI5RTQx QTNGQjdFQTAwHhcNMjUwODA5MDIwODU2WhcNMjUwODE2MDIwODU2WjAYMRYwFAYD VQQDEw02ODk2YWRiOC1hNTU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwKyWJKBO7qFmfbnsuc1ZPz4nII4uN2h1XT7y82FFxAPyK78ZEGsRklaQweRQ b0bozo4VRFOlHDNqR/pFqW5eGjX+St+Zc9Dz4/Dr7XltsRw7J5ULqeerDJYYAbLd LIADs5/dM4Jy43K+Ew2zqTiWRBuPC8v6guMUOa0tCeD9axTrWQzIqXN9c9hF1esY wYB9mmmQ4DMXvk5aFj9yvTMOZQ+xhRqnTWGbDX30k21MaMC1fJwKGE72ibdAQOmd uiU6HASPXWY9jvp5Kdrv5pYhp+eSCrYXhh7Cl7iwyk7so/qII6FBxg8A9yfidZtt Ix1Yw9b7qwV4SkzYWGXmTQyTQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN+gooix A/l/1EnZB7LgWRpLDFmiMB8GA1UdIwQYMBaAFAVr70bHMVg3663qQXgLnkGj+36g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzkxRC9CNTcxQ0NCRTBF RTExMUVEODQ2NzRDMEVDNEY5QUUwMi9CV3Z2UnNjeFdEZnJyZXBCZUF1ZVFhUDdm cUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JXdnZSc2N4V0RmcnJlcEJlQXVlUWFQN2ZxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzkxRC9CNTcxQ0NCRTBFRTExMUVEODQ2NzRDMEVDNEY5QUUwMi9CV3Z2UnNjeFdE ZnJyZXBCZUF1ZVFhUDdmcUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXDwf8KVNRx/vO5pQ71sY8i0GWJTP5UxQlSoIXEWj3YgJqkp+PSWEa EX6v2RmF+RImnOLQjp08lqvVFVdyNdUEFL9YKFBfmOVxCMW8rce4q9SwWgJiuNpy Gjwe0PPEmvgL6oYh/V4BWp+isabN+pODSKI+EZkNhw3ovtdC3CVM34Ih7VhU8kP+ 2OwOYxmpYUQXEln22WzSCmuZ1IW7YLjVa/3htuvW++NSooFyxXPs7IcFZnLPAAf/ JycbyzTVLMSwtvqRZR0DP6QTwRJ7a37A3/KDMP4CFfI6rByPMzunT/ss0lbuq3ie PtMu9y0cyaXqtnx+0AlDEEBuQqTOFmoG -----END CERTIFICATE-----Generated at Sun Aug 10 04:26:49 2025 by rpki-client