$ rpki-client -vvf rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft File: bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft (raw, json) Hash identifier: i2VJ0hswCtw8T2HMWomsrv6nBx8EyV056TelCLdMZms= Subject key identifier: 35:D6:7B:16:5D:3A:5F:37:BD:75:E8:C8:70:B4:7A:45:1C:30:CC:B7 Authority key identifier: 6C:A2:CF:A6:88:BD:F9:E2:D6:56:16:08:67:7A:30:C9:15:24:3D:0C Certificate issuer: /CN=A9148F80/serialNumber=6CA2CFA688BDF9E2D6561608677A30C915243D0C Certificate serial: 06A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKLPpoi9-eLWVhYIZ3owyRUkPQw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft Manifest number: 06A2 Signing time: Fri 08 Aug 2025 22:39:10 +0000 Manifest this update: Fri 08 Aug 2025 22:39:10 +0000 Manifest next update: Fri 15 Aug 2025 22:39:10 +0000 Files and hashes: 1: bKLPpoi9-eLWVhYIZ3owyRUkPQw.crl (hash: gDP/p5/KNiTs/P6M46cm58xnTEVjHmbKsJ7KvoAzKNs=) 2: 1C93BF747CD011EB9F876E78C4F9AE02.roa (hash: vUduh0w3eSZesFepaO929FwqL1Ap+OkfqL7IQgJ/yu0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.crl rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKLPpoi9-eLWVhYIZ3owyRUkPQw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1705 (0x6a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148F80, serialNumber=6CA2CFA688BDF9E2D6561608677A30C915243D0C Validity Not Before: Aug 8 22:39:10 2025 GMT Not After : Aug 15 22:39:10 2025 GMT Subject: CN=68967c8e-c835 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:03:ff:84:a7:d7:d0:a4:0b:6a:47:7b:a1:4b: 55:b5:71:29:32:43:24:60:54:30:c8:3e:34:0d:2a: 7e:2c:88:8c:66:e7:93:b6:a0:08:d5:54:c8:3c:e7: ae:cf:01:20:d7:92:df:94:b9:cf:08:46:5b:5c:57: 5b:f6:77:fe:af:03:97:7c:a1:28:42:39:31:5c:32: a0:9b:d4:11:46:fa:25:eb:21:f1:ed:4c:6f:19:7b: f1:dd:08:fd:fc:29:1d:a1:89:6f:9b:49:73:4b:34: aa:50:fa:25:b1:99:a1:af:c3:61:d9:cd:f5:23:92: 4b:d3:c1:38:f5:e9:3e:ea:3a:f8:38:79:58:f2:a7: cb:0e:78:67:92:d3:3b:94:58:87:f1:4c:ed:c2:16: c5:8d:8c:a0:95:ee:89:cd:c1:2e:48:ae:e8:b1:d3: e8:1f:aa:8d:7b:c1:25:8e:4c:ee:3b:5e:7c:30:b2: d6:f6:17:5e:58:01:fd:62:22:f3:e6:3d:ba:d1:4f: e6:79:79:0c:ff:71:8d:3c:4d:ef:59:f1:7e:9b:99: af:06:8d:72:ba:66:ce:c3:93:62:38:0a:00:98:ba: d2:a6:0e:a7:33:ee:5f:c7:17:b9:37:0e:b5:57:f6: 99:4e:23:3e:17:93:2e:9b:a8:97:d7:e7:f2:e1:97: ed:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:D6:7B:16:5D:3A:5F:37:BD:75:E8:C8:70:B4:7A:45:1C:30:CC:B7 X509v3 Authority Key Identifier: keyid:6C:A2:CF:A6:88:BD:F9:E2:D6:56:16:08:67:7A:30:C9:15:24:3D:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKLPpoi9-eLWVhYIZ3owyRUkPQw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:23:29:00:5c:03:09:b6:f4:de:af:83:b8:90:e3:be:9d:f9: 64:bb:45:57:e0:77:a8:f1:33:9e:9c:ed:34:d8:4f:20:72:9b: cf:a9:73:2a:b8:d6:c5:ce:d9:8d:51:c8:31:ca:f3:2e:ec:b0: 2f:ab:6d:96:52:4d:80:ee:98:97:92:be:fe:0b:9f:d1:32:f0: a7:f1:ae:3d:b4:a2:18:36:82:32:02:fe:4d:bf:2e:9f:97:e3: 68:cf:58:04:2e:e9:a9:8a:65:3d:70:c5:7c:3f:1b:0b:23:e8: ba:ef:7b:0a:a2:0e:ba:2f:22:6f:a7:1f:e4:d3:ae:f6:1a:47: 36:7b:6a:f9:5f:a1:d0:17:92:b1:b8:b1:7d:0a:b1:3c:d1:f7: 76:2d:d6:28:eb:0f:34:3d:46:3d:be:7f:72:09:de:62:a6:a1: 3b:45:a6:78:c8:1c:cd:90:0d:2d:a0:8e:03:c1:59:f3:f3:4a: c5:b6:f0:8a:a3:bf:63:43:13:f0:93:e3:ec:80:5f:80:ad:86: 05:0a:34:3f:7c:cd:f8:21:0a:a9:97:c0:8e:28:0a:af:ff:4b: 9d:8d:cd:e3:70:2a:77:8a:4e:9c:26:42:c0:e5:bc:57:70:89: 28:44:0f:35:89:4a:5b:56:42:6e:bd:cd:24:5a:b1:c2:fc:c6: d6:09:50:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhGODAxMTAvBgNVBAUTKDZDQTJDRkE2ODhCREY5RTJENjU2MTYwODY3N0EzMEM5 MTUyNDNEMEMwHhcNMjUwODA4MjIzOTEwWhcNMjUwODE1MjIzOTEwWjAYMRYwFAYD VQQDEw02ODk2N2M4ZS1jODM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4gP/hKfX0KQLakd7oUtVtXEpMkMkYFQwyD40DSp+LIiMZueTtqAI1VTIPOeu zwEg15LflLnPCEZbXFdb9nf+rwOXfKEoQjkxXDKgm9QRRvol6yHx7UxvGXvx3Qj9 /CkdoYlvm0lzSzSqUPolsZmhr8Nh2c31I5JL08E49ek+6jr4OHlY8qfLDnhnktM7 lFiH8UztwhbFjYygle6JzcEuSK7osdPoH6qNe8EljkzuO158MLLW9hdeWAH9YiLz 5j260U/meXkM/3GNPE3vWfF+m5mvBo1yumbOw5NiOAoAmLrSpg6nM+5fxxe5Nw61 V/aZTiM+F5Mum6iX1+fy4ZftpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDXWexZd Ol83vXXoyHC0ekUcMMy3MB8GA1UdIwQYMBaAFGyiz6aIvfni1lYWCGd6MMkVJD0M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEY4MC8wNzFERUE0MDdD Q0UxMUVCQkI4ODI5NzZDNEY5QUUwMi9iS0xQcG9pOS1lTFdWaFlJWjNvd3lSVWtQ UXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JLTFBwb2k5LWVMV1ZoWUlaM293eVJVa1BRdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEY4MC8wNzFERUE0MDdDQ0UxMUVCQkI4ODI5NzZDNEY5QUUwMi9iS0xQcG9pOS1l TFdWaFlJWjNvd3lSVWtQUXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChIykAXAMJtvTer4O4kOO+nflku0VX4Heo8TOenO002E8gcpvPqXMq uNbFztmNUcgxyvMu7LAvq22WUk2A7piXkr7+C5/RMvCn8a49tKIYNoIyAv5Nvy6f l+Noz1gELumpimU9cMV8PxsLI+i673sKog66LyJvpx/k0672Gkc2e2r5X6HQF5Kx uLF9CrE80fd2LdYo6w80PUY9vn9yCd5ipqE7RaZ4yBzNkA0toI4DwVnz80rFtvCK o79jQxPwk+PsgF+ArYYFCjQ/fM34IQqpl8COKAqv/0udjc3jcCp3ik6cJkLA5bxX cIkoRA81iUpbVkJuvc0kWrHC/MbWCVAr -----END CERTIFICATE-----Generated at Sun Aug 10 05:50:42 2025 by rpki-client