$ rpki-client -vvf rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.mft File: BSmF8r4ox5507_TbTHFCKEVHc1w.mft (raw, json) Hash identifier: mGyzBqr+hzlFLv3lHRDFfb1KZ/jWp4ZGaEHWGIQHxmU= Subject key identifier: D5:84:01:CB:E3:CE:6A:9F:A9:8D:33:51:A9:AC:08:40:F6:B3:E6:5C Authority key identifier: 05:29:85:F2:BE:28:C7:9E:74:EF:F4:DB:4C:71:42:28:45:47:73:5C Certificate issuer: /CN=A9151A79/serialNumber=052985F2BE28C79E74EFF4DB4C7142284547735C Certificate serial: 01AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BSmF8r4ox5507_TbTHFCKEVHc1w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.mft Manifest number: 01A7 Signing time: Sat 09 Aug 2025 03:40:30 +0000 Manifest this update: Sat 09 Aug 2025 03:40:30 +0000 Manifest next update: Sat 16 Aug 2025 03:40:30 +0000 Files and hashes: 1: BSmF8r4ox5507_TbTHFCKEVHc1w.crl (hash: tueBYgI5ndPB7AayVkb+DPaabG9duXhfWD1Yh3cRJf4=) 2: A799F54AF1F111EE9D899046C4F9AE02.roa (hash: Q3/I4xZV8CvWyhr+A+P9zzW5K8pcc6S3V6pLPjC2BoQ=) 3: EA22589E373C11F0909EF25DC4F9AE02.roa (hash: pK7K0oDGB09OEHam5uLFYf312YyVDqFKY5nBRiwk3eo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.crl rsync://rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BSmF8r4ox5507_TbTHFCKEVHc1w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 431 (0x1af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151A79, serialNumber=052985F2BE28C79E74EFF4DB4C7142284547735C Validity Not Before: Aug 9 03:40:30 2025 GMT Not After : Aug 16 03:40:30 2025 GMT Subject: CN=6896c32e-2e17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:c6:9c:bb:b0:31:9b:86:2f:35:58:ed:63:be: ce:2f:47:ed:cf:f6:fc:74:7f:a9:a7:1c:a1:63:e5: 02:81:2a:18:2b:a0:e9:0f:29:0d:22:f5:3f:47:ec: 9d:e6:d1:c0:eb:50:9e:1f:b0:f6:4e:62:8e:92:6d: 83:f3:83:ef:4c:4b:b2:ad:a6:a9:ca:1d:8c:04:56: aa:7e:f9:1c:e2:39:21:1a:d2:21:ef:d8:24:f2:ae: 64:11:d6:2d:d7:99:34:8b:c3:4a:09:1c:9b:33:18: e9:0d:4f:f0:87:74:c0:a3:43:26:a5:0b:84:ee:4d: f0:c3:aa:6f:e8:d8:1d:ce:27:06:5e:18:8a:2b:29: 49:ee:b5:fe:82:ac:2e:0f:65:b1:8d:cb:04:76:47: 8d:c2:c2:d3:0e:47:d7:02:87:88:51:f3:74:08:db: ba:98:93:eb:7f:79:93:5f:b6:c6:0a:65:66:be:a5: 37:e1:de:5f:20:ae:0a:bc:48:c5:1d:f2:06:3f:19: 47:bd:3b:fa:37:a0:19:0c:6a:14:e0:64:b4:41:dc: 50:59:cf:f7:0b:74:6d:3a:71:4d:b0:a4:e5:85:47: 85:c6:d1:c2:63:3d:16:d2:d8:88:b8:bc:f6:c4:5a: d3:b2:40:4f:bb:ff:b4:19:91:a2:3b:54:e3:2e:84: cb:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:84:01:CB:E3:CE:6A:9F:A9:8D:33:51:A9:AC:08:40:F6:B3:E6:5C X509v3 Authority Key Identifier: keyid:05:29:85:F2:BE:28:C7:9E:74:EF:F4:DB:4C:71:42:28:45:47:73:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BSmF8r4ox5507_TbTHFCKEVHc1w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:78:cd:63:ea:5e:f4:db:9f:39:22:4e:2e:3b:40:c5:bb:35: 8b:59:d7:aa:88:72:6d:28:7f:ba:fb:ba:b2:73:5b:f7:e9:a0: 27:70:47:c6:b0:c2:e8:c7:0f:6c:67:12:3c:96:97:cf:8e:f1: 7e:48:83:37:ee:62:fa:75:72:3c:82:58:55:13:9e:8c:bd:f1: 12:1f:30:6a:c0:ae:48:7e:ff:5f:41:05:2e:27:f5:1f:4e:15: 42:3c:98:ef:30:a8:24:6e:45:36:04:b3:ab:74:d5:99:d1:d6: c7:0f:a4:a8:b4:2e:8c:fc:d6:c1:47:e3:fc:0b:43:75:55:03: bb:1f:20:fa:44:e9:6b:3e:f2:87:b0:d7:80:5d:db:6d:22:f0: 8b:f5:dc:10:94:b2:c5:3c:b4:99:70:da:99:60:6d:43:69:b0: be:21:05:b6:c0:25:45:49:2f:d1:8e:0d:5b:96:cb:15:c7:d7: ec:ec:81:d0:86:86:fe:b9:3e:e9:ca:76:a1:ef:73:e4:de:4e: 7f:32:e6:32:83:10:56:b4:d6:d6:6f:b9:f5:d3:42:b9:a6:1d: f4:db:ee:8d:c1:b0:dc:93:06:bd:48:b4:81:e4:9d:8a:4b:42: e3:5d:01:ef:c7:9e:2e:8a:c8:9e:3b:f3:7a:ce:1e:84:56:f6: de:c7:37:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAa8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTFBNzkxMTAvBgNVBAUTKDA1Mjk4NUYyQkUyOEM3OUU3NEVGRjREQjRDNzE0MjI4 NDU0NzczNUMwHhcNMjUwODA5MDM0MDMwWhcNMjUwODE2MDM0MDMwWjAYMRYwFAYD VQQDEw02ODk2YzMyZS0yZTE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAssacu7Axm4YvNVjtY77OL0ftz/b8dH+ppxyhY+UCgSoYK6DpDykNIvU/R+yd 5tHA61CeH7D2TmKOkm2D84PvTEuyraapyh2MBFaqfvkc4jkhGtIh79gk8q5kEdYt 15k0i8NKCRybMxjpDU/wh3TAo0MmpQuE7k3ww6pv6NgdzicGXhiKKylJ7rX+gqwu D2WxjcsEdkeNwsLTDkfXAoeIUfN0CNu6mJPrf3mTX7bGCmVmvqU34d5fIK4KvEjF HfIGPxlHvTv6N6AZDGoU4GS0QdxQWc/3C3RtOnFNsKTlhUeFxtHCYz0W0tiIuLz2 xFrTskBPu/+0GZGiO1TjLoTL4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNWEAcvj zmqfqY0zUamsCED2s+ZcMB8GA1UdIwQYMBaAFAUphfK+KMeedO/020xxQihFR3Nc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MUE3OS9ENENBMTVDMEY5 NDcxMUVEODhDMTg3NDZDNEY5QUUwMi9CU21GOHI0b3g1NTA3X1RiVEhGQ0tFVkhj MXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JTbUY4cjRveDU1MDdfVGJUSEZDS0VWSGMxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MUE3OS9ENENBMTVDMEY5NDcxMUVEODhDMTg3NDZDNEY5QUUwMi9CU21GOHI0b3g1 NTA3X1RiVEhGQ0tFVkhjMXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5eM1j6l702585Ik4uO0DFuzWLWdeqiHJtKH+6+7qyc1v36aAncEfG sMLoxw9sZxI8lpfPjvF+SIM37mL6dXI8glhVE56MvfESHzBqwK5Ifv9fQQUuJ/Uf ThVCPJjvMKgkbkU2BLOrdNWZ0dbHD6SotC6M/NbBR+P8C0N1VQO7HyD6ROlrPvKH sNeAXdttIvCL9dwQlLLFPLSZcNqZYG1DabC+IQW2wCVFSS/Rjg1blssVx9fs7IHQ hob+uT7pynah73Pk3k5/MuYygxBWtNbWb7n100K5ph302+6NwbDckwa9SLSB5J2K S0LjXQHvx54uisieO/N6zh6EVvbexzcY -----END CERTIFICATE-----Generated at Sun Aug 10 13:57:59 2025 by rpki-client