$ rpki-client -vvf rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft File: bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft (raw, json) Hash identifier: fAb7d/yDKkcuIB/F/ldgBXZODTOEqpO85XO2ynOBads= Subject key identifier: 8B:A8:60:A1:00:14:03:83:8B:79:13:8E:18:16:E6:A0:7F:CC:B6:56 Authority key identifier: 6D:CE:52:F9:A2:28:CB:F6:F3:0C:D5:5D:43:38:4D:12:68:48:7B:65 Certificate issuer: /CN=A91240E6/serialNumber=6DCE52F9A228CBF6F30CD55D43384D1268487B65 Certificate serial: 263F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bc5S-aIoy_bzDNVdQzhNEmhIe2U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft Manifest number: 2626 Signing time: Fri 08 Aug 2025 15:46:38 +0000 Manifest this update: Fri 08 Aug 2025 15:46:37 +0000 Manifest next update: Fri 15 Aug 2025 15:46:37 +0000 Files and hashes: 1: bc5S-aIoy_bzDNVdQzhNEmhIe2U.crl (hash: TKlzX2bfJyiS6Er6U+Lp5qXlqDCsrj3K925NFoanTqs=) 2: 8A721F4EB10C11E5BB6B2A16C4F9AE02.roa (hash: mvyjt+3dRIE1/Krz/XL4fNVu3c2fcm82NTuO/MfHBcQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.crl rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bc5S-aIoy_bzDNVdQzhNEmhIe2U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9791 (0x263f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91240E6, serialNumber=6DCE52F9A228CBF6F30CD55D43384D1268487B65 Validity Not Before: Aug 8 15:46:37 2025 GMT Not After : Aug 15 15:46:37 2025 GMT Subject: CN=68961bde-fd65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:e9:d3:37:a5:4f:ec:aa:89:46:ff:23:17:b2: 0b:8d:88:78:97:ce:e8:fc:44:0a:6f:b1:a0:a3:1c: d8:86:48:cb:7f:81:25:a0:00:f8:ff:eb:78:cd:87: 28:ca:62:fc:af:8f:78:94:76:c3:1c:4d:34:84:2e: fc:e5:a5:a6:38:a6:f2:f6:51:06:f9:c9:18:04:fa: ab:28:7b:67:ca:ab:36:e4:76:14:37:5f:5d:91:f2: 3e:5f:b1:0f:d0:30:97:69:62:78:dc:70:2f:cf:d3: c9:6b:d4:01:02:92:49:ec:16:11:cd:b7:80:f2:67: 24:a1:0a:4e:52:dc:72:59:55:91:ca:a8:02:a0:0f: 52:5f:ad:c7:95:35:33:76:58:eb:d6:5b:18:19:0c: a4:9a:f8:e9:e6:e5:30:61:d8:63:21:b2:01:f3:f9: d1:0a:c7:af:4f:3a:e8:a7:73:35:83:89:5d:0a:97: 06:c9:4b:9b:13:59:62:29:81:bf:d3:ca:62:39:56: 1d:9e:41:5e:0e:18:6c:d5:5e:9d:68:0b:f9:86:59: 1f:19:ca:ca:47:7c:1b:ba:36:09:54:7a:3d:62:e4: fd:4f:a1:ca:8c:55:28:0e:93:11:67:ee:08:0e:bd: bd:da:e8:47:9b:4d:cb:c8:68:36:82:ac:eb:21:5d: d6:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:A8:60:A1:00:14:03:83:8B:79:13:8E:18:16:E6:A0:7F:CC:B6:56 X509v3 Authority Key Identifier: keyid:6D:CE:52:F9:A2:28:CB:F6:F3:0C:D5:5D:43:38:4D:12:68:48:7B:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bc5S-aIoy_bzDNVdQzhNEmhIe2U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:91:a0:ef:fb:a4:30:81:89:bc:42:2e:7c:4f:40:4d:f9:6c: 8a:ae:2a:bf:66:46:e9:4b:60:1b:2c:ba:8c:a2:db:36:f9:4d: b3:f5:3a:11:a4:de:f4:4a:51:ce:ff:9a:55:e5:69:2f:34:43: 1d:28:18:15:60:2e:ed:3c:30:c8:74:34:c0:66:c3:7b:4a:1b: 02:a7:e4:ed:b5:ca:f2:35:5e:42:bf:06:dc:41:8f:a2:e3:f7: cf:d4:6d:9b:22:39:50:ce:bd:66:5e:df:fa:33:4d:12:28:36: 50:a5:1c:a3:cf:2e:09:fc:7e:7e:f1:0b:c1:7c:c8:06:ae:75: 05:49:d9:bf:24:5a:8c:34:cc:0c:f4:68:eb:75:e4:0b:05:df: 2e:19:33:15:01:4b:50:eb:bc:6a:24:d1:6d:dc:8a:ba:b7:d4: 27:b5:11:6a:ec:c7:c3:34:17:8f:29:87:96:60:52:5e:da:ae: 17:9e:2d:02:68:30:48:90:9d:7f:23:30:91:0f:74:c9:70:58: 92:68:3b:9f:94:0b:f1:e4:88:54:a2:90:25:3d:5f:92:78:35: f8:c5:09:66:56:52:11:fa:48:c1:99:e1:78:d3:2c:a4:65:ff: 61:ef:99:7d:f0:5e:5a:42:7f:76:b8:9d:13:d0:ec:81:3b:23: 82:d1:24:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJj8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQwRTYxMTAvBgNVBAUTKDZEQ0U1MkY5QTIyOENCRjZGMzBDRDU1RDQzMzg0RDEy Njg0ODdCNjUwHhcNMjUwODA4MTU0NjM3WhcNMjUwODE1MTU0NjM3WjAYMRYwFAYD VQQDEw02ODk2MWJkZS1mZDY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnunTN6VP7KqJRv8jF7ILjYh4l87o/EQKb7GgoxzYhkjLf4EloAD4/+t4zYco ymL8r494lHbDHE00hC785aWmOKby9lEG+ckYBPqrKHtnyqs25HYUN19dkfI+X7EP 0DCXaWJ43HAvz9PJa9QBApJJ7BYRzbeA8mckoQpOUtxyWVWRyqgCoA9SX63HlTUz dljr1lsYGQykmvjp5uUwYdhjIbIB8/nRCsevTzrop3M1g4ldCpcGyUubE1liKYG/ 08piOVYdnkFeDhhs1V6daAv5hlkfGcrKR3wbujYJVHo9YuT9T6HKjFUoDpMRZ+4I Dr292uhHm03LyGg2gqzrIV3WaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIuoYKEA FAODi3kTjhgW5qB/zLZWMB8GA1UdIwQYMBaAFG3OUvmiKMv28wzVXUM4TRJoSHtl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDBFNi82NjA3NDJDOEZE MjExMUU0ODhBQjBDMzRDNEY5QUUwMi9iYzVTLWFJb3lfYnpETlZkUXpoTkVtaEll MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JjNVMtYUlveV9iekROVmRRemhORW1oSWUyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NDBFNi82NjA3NDJDOEZEMjExMUU0ODhBQjBDMzRDNEY5QUUwMi9iYzVTLWFJb3lf YnpETlZkUXpoTkVtaEllMlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7kaDv+6QwgYm8Qi58T0BN+WyKriq/ZkbpS2AbLLqMots2+U2z9ToR pN70SlHO/5pV5WkvNEMdKBgVYC7tPDDIdDTAZsN7ShsCp+TttcryNV5CvwbcQY+i 4/fP1G2bIjlQzr1mXt/6M00SKDZQpRyjzy4J/H5+8QvBfMgGrnUFSdm/JFqMNMwM 9GjrdeQLBd8uGTMVAUtQ67xqJNFt3Iq6t9QntRFq7MfDNBePKYeWYFJe2q4Xni0C aDBIkJ1/IzCRD3TJcFiSaDuflAvx5IhUopAlPV+SeDX4xQlmVlIR+kjBmeF40yyk Zf9h75l98F5aQn92uJ0T0OyBOyOC0SSk -----END CERTIFICATE-----Generated at Sun Aug 10 16:05:16 2025 by rpki-client