$ rpki-client -vvf rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft File: BN7ay9uvpcHBT5KBe5b39QMQCig.mft (raw, json) Hash identifier: 6zCrAdZ19JUnu+ci6QFpidFPGB7dXdLgWXHnBp8FKZU= Subject key identifier: 72:A2:2D:DE:FF:AE:1C:F5:D6:98:7C:70:02:FF:9E:31:77:52:28:B6 Authority key identifier: 04:DE:DA:CB:DB:AF:A5:C1:C1:4F:92:81:7B:96:F7:F5:03:10:0A:28 Certificate issuer: /CN=A912DD36/serialNumber=04DEDACBDBAFA5C1C14F92817B96F7F503100A28 Certificate serial: E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft Manifest number: DD Signing time: Sat 09 Aug 2025 05:55:30 +0000 Manifest this update: Sat 09 Aug 2025 05:55:29 +0000 Manifest next update: Sat 16 Aug 2025 05:55:29 +0000 Files and hashes: 1: BN7ay9uvpcHBT5KBe5b39QMQCig.crl (hash: Zpt0BuOj1xpa3bxVHPUfM/BmZ1Cy1uftYQw6oATv+EY=) 2: 09EC8E16662211EFB6FA446CC4F9AE02.roa (hash: urnxskxc6j+If6xUlVvxOJwYlSVOMo9w2F7g3T2GGgM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.crl rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 224 (0xe0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DD36, serialNumber=04DEDACBDBAFA5C1C14F92817B96F7F503100A28 Validity Not Before: Aug 9 05:55:29 2025 GMT Not After : Aug 16 05:55:29 2025 GMT Subject: CN=6896e2d2-334a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:6d:3a:12:bb:d5:35:be:cb:15:9c:52:b3:75: 6a:16:24:80:aa:a1:fc:00:88:c8:bd:6d:68:dc:55: 69:a5:8e:43:5b:7d:cd:7b:f4:19:75:84:2a:d4:ab: e6:39:f5:47:7e:3f:bb:44:30:de:d7:31:bc:fc:48: 7e:85:48:45:93:48:06:6e:3a:fe:e3:fa:7a:39:9a: 7d:01:30:34:cd:93:8b:79:30:45:6e:87:43:5f:26: a0:74:81:a8:44:ab:49:91:89:22:29:e6:54:81:86: 54:63:88:d0:6c:f5:54:80:74:72:a0:83:84:82:fb: c8:ea:91:89:7a:01:65:d5:ab:5a:ca:b0:e5:ef:41: 23:4e:34:65:60:ab:40:51:a7:96:a8:74:29:92:54: c2:78:3a:06:5a:d5:4e:59:8b:eb:f9:0a:4d:84:5f: 5b:48:49:42:2e:b6:9a:d0:18:19:19:1a:0b:a2:7c: 5c:a6:b5:a1:71:d9:7f:e7:3e:39:f8:75:63:e4:9d: ea:e2:2d:11:fb:6a:78:ca:8d:53:0f:e0:32:0a:6e: 59:0b:82:26:65:08:1b:bf:48:5a:b5:34:8b:cf:c5: 7d:b1:1e:e3:ac:aa:8e:88:fb:1e:0c:09:9d:0d:14: 62:1d:76:e4:29:b8:43:d7:e5:3f:6c:51:2d:a9:79: 84:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:A2:2D:DE:FF:AE:1C:F5:D6:98:7C:70:02:FF:9E:31:77:52:28:B6 X509v3 Authority Key Identifier: keyid:04:DE:DA:CB:DB:AF:A5:C1:C1:4F:92:81:7B:96:F7:F5:03:10:0A:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:66:35:3f:f1:43:25:71:56:3f:31:f9:4b:03:a9:25:8f:e1: 9e:cf:eb:0d:20:39:a4:25:3b:25:d2:fd:d2:fb:25:88:ef:cb: 77:fd:0d:7a:1b:82:5d:e9:43:d4:fd:79:14:e5:8f:e9:6a:cb: 6e:b4:8e:60:dc:cc:36:e0:88:e2:49:c2:75:2a:bb:b0:97:63: 7c:ee:7a:77:a3:da:02:ad:80:e6:86:65:c6:2a:f8:3b:22:54: 15:b0:70:57:92:7d:52:b0:3f:1d:ee:0e:da:b4:af:79:9b:20: 2e:cc:12:64:a0:e2:be:34:cc:b1:8d:35:b9:7f:83:06:ba:4a: fa:31:7e:a7:61:49:97:e8:13:20:15:57:24:bb:01:12:1d:39: 17:b8:82:e4:6a:01:c7:0c:5b:cd:83:19:e3:1b:04:bf:d6:67: 46:f6:14:83:79:f0:4d:db:a0:92:cb:8e:01:34:36:78:92:2a: 3a:58:94:55:b0:69:bf:2f:e9:35:8b:ac:17:69:0f:04:16:37: 72:c7:49:05:9f:ae:72:c5:6e:b4:90:2d:99:24:59:11:fc:81: cf:ef:c2:db:61:60:1c:78:e9:fc:33:6b:08:aa:21:05:88:59: c8:e0:d3:e8:b9:8c:c3:8a:ef:6b:9d:28:ab:64:b0:77:c5:05: e2:9e:7c:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkREMzYxMTAvBgNVBAUTKDA0REVEQUNCREJBRkE1QzFDMTRGOTI4MTdCOTZGN0Y1 MDMxMDBBMjgwHhcNMjUwODA5MDU1NTI5WhcNMjUwODE2MDU1NTI5WjAYMRYwFAYD VQQDEw02ODk2ZTJkMi0zMzRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6206ErvVNb7LFZxSs3VqFiSAqqH8AIjIvW1o3FVppY5DW33Ne/QZdYQq1Kvm OfVHfj+7RDDe1zG8/Eh+hUhFk0gGbjr+4/p6OZp9ATA0zZOLeTBFbodDXyagdIGo RKtJkYkiKeZUgYZUY4jQbPVUgHRyoIOEgvvI6pGJegFl1atayrDl70EjTjRlYKtA UaeWqHQpklTCeDoGWtVOWYvr+QpNhF9bSElCLraa0BgZGRoLonxcprWhcdl/5z45 +HVj5J3q4i0R+2p4yo1TD+AyCm5ZC4ImZQgbv0hatTSLz8V9sR7jrKqOiPseDAmd DRRiHXbkKbhD1+U/bFEtqXmEtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHKiLd7/ rhz11ph8cAL/njF3Uii2MB8GA1UdIwQYMBaAFATe2svbr6XBwU+SgXuW9/UDEAoo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREQzNi83RjQwMjNGMjI1 MzIxMUVGQkM5MzIxMUFDNEY5QUUwMi9CTjdheTl1dnBjSEJUNUtCZTViMzlRTVFD aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JON2F5OXV2cGNIQlQ1S0JlNWIzOVFNUUNpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REQzNi83RjQwMjNGMjI1MzIxMUVGQkM5MzIxMUFDNEY5QUUwMi9CTjdheTl1dnBj SEJUNUtCZTViMzlRTVFDaWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwZjU/8UMlcVY/MflLA6klj+Gez+sNIDmkJTsl0v3S+yWI78t3/Q16 G4Jd6UPU/XkU5Y/pastutI5g3Mw24IjiScJ1Kruwl2N87np3o9oCrYDmhmXGKvg7 IlQVsHBXkn1SsD8d7g7atK95myAuzBJkoOK+NMyxjTW5f4MGukr6MX6nYUmX6BMg FVckuwESHTkXuILkagHHDFvNgxnjGwS/1mdG9hSDefBN26CSy44BNDZ4kio6WJRV sGm/L+k1i6wXaQ8EFjdyx0kFn65yxW60kC2ZJFkR/IHP78LbYWAceOn8M2sIqiEF iFnI4NPouYzDiu9rnSirZLB3xQXinnxI -----END CERTIFICATE-----Generated at Sun Aug 10 04:57:22 2025 by rpki-client