$ rpki-client -vvf rpki.apnic.net/member_repository/A915418F/75B90D24AFB811EAA76E5E7BC4F9AE02/0ba-fNUVRYE-wxdmgHrN2YepD98.mft File: 0ba-fNUVRYE-wxdmgHrN2YepD98.mft (raw, json) Hash identifier: Y/Id2e1pTtc6y/Q0xYszbwxLQAX15kAS23kbSEN384Q= Subject key identifier: 31:C2:65:23:8A:97:6F:D3:3F:2A:F9:3C:73:48:B9:0C:7E:3F:F8:99 Authority key identifier: D1:B6:BE:7C:D5:15:45:81:3E:C3:17:66:80:7A:CD:D9:87:A9:0F:DF Certificate issuer: /CN=A915418F/serialNumber=D1B6BE7CD51545813EC31766807ACDD987A90FDF Certificate serial: 0911 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0ba-fNUVRYE-wxdmgHrN2YepD98.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915418F/75B90D24AFB811EAA76E5E7BC4F9AE02/0ba-fNUVRYE-wxdmgHrN2YepD98.mft Manifest number: 0904 Signing time: Fri 08 Aug 2025 20:41:42 +0000 Manifest this update: Fri 08 Aug 2025 20:41:41 +0000 Manifest next update: Fri 15 Aug 2025 20:41:41 +0000 Files and hashes: 1: 0ba-fNUVRYE-wxdmgHrN2YepD98.crl (hash: gy/+O09zBX7fDawUOdzGGFdqqBDZ7fEOyx+LWdnAQeA=) 2: 3BEF1820AFBA11EA8449B980C4F9AE02.roa (hash: bj4egIAAlTEUd+3GyfnPFN1nOaWoeA00wwzQy3Jloew=) 3: F4757B1018C811EB94A5327AC4F9AE02.roa (hash: j+7FuDdUw+7PzuykOYS3riW81hh3FFiLyNobRrPETRw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915418F/75B90D24AFB811EAA76E5E7BC4F9AE02/0ba-fNUVRYE-wxdmgHrN2YepD98.crl rsync://rpki.apnic.net/member_repository/A915418F/75B90D24AFB811EAA76E5E7BC4F9AE02/0ba-fNUVRYE-wxdmgHrN2YepD98.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0ba-fNUVRYE-wxdmgHrN2YepD98.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2321 (0x911) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915418F, serialNumber=D1B6BE7CD51545813EC31766807ACDD987A90FDF Validity Not Before: Aug 8 20:41:41 2025 GMT Not After : Aug 15 20:41:41 2025 GMT Subject: CN=68966106-cf2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:f7:fa:9a:00:59:29:63:fc:90:a8:1c:48:ad: fc:ca:24:cb:57:82:d9:ee:2c:b8:b2:9a:af:c7:13: de:f1:41:d7:c5:ab:3a:6a:ac:f7:6d:9f:99:08:9b: 36:fd:13:cf:97:37:8e:cd:f5:02:b0:d1:e8:4b:73: 26:40:32:d4:f9:4e:9b:d3:5d:a3:00:25:9e:08:4c: 10:05:45:e2:10:25:67:7d:75:71:c3:3f:91:e9:7b: c3:a1:1a:bc:0f:34:ab:43:e3:eb:d3:67:44:2d:01: 2c:88:71:ba:6c:9a:96:c8:58:46:32:ae:38:c5:70: ba:2b:dc:d5:82:ef:96:60:98:ce:56:4f:2a:c2:90: eb:d1:9f:8c:1c:73:5e:a6:7b:28:08:6f:78:fb:46: 4b:15:29:a9:6e:a8:32:13:1f:ad:a5:7e:45:9a:2e: b9:94:af:00:88:a2:f6:d5:41:dc:71:0d:19:2a:a7: bd:59:75:8b:67:9d:a8:d6:3e:c4:97:14:3e:0c:09: 77:a5:9e:6f:8d:3b:1d:6d:42:22:5b:0b:e3:33:27: 04:77:78:88:dd:5b:76:f8:21:d6:64:16:2a:98:26: 54:29:80:ab:ed:60:57:59:0e:0b:91:d3:7c:79:78: d8:da:04:0e:a6:40:a9:dd:35:77:2c:63:85:c4:1d: 13:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:C2:65:23:8A:97:6F:D3:3F:2A:F9:3C:73:48:B9:0C:7E:3F:F8:99 X509v3 Authority Key Identifier: keyid:D1:B6:BE:7C:D5:15:45:81:3E:C3:17:66:80:7A:CD:D9:87:A9:0F:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915418F/75B90D24AFB811EAA76E5E7BC4F9AE02/0ba-fNUVRYE-wxdmgHrN2YepD98.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0ba-fNUVRYE-wxdmgHrN2YepD98.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915418F/75B90D24AFB811EAA76E5E7BC4F9AE02/0ba-fNUVRYE-wxdmgHrN2YepD98.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:6d:16:2a:b9:4e:cc:c1:f2:9f:99:7d:72:2c:b0:4e:80:0a: 4d:1f:39:2e:c4:69:2c:73:fd:e2:fe:f7:36:21:d3:fb:f2:05: 4f:c1:2a:5f:70:19:02:fe:4d:5f:70:3e:80:17:4d:84:8a:4a: dd:ac:8e:7e:79:ad:65:3f:e2:c1:c2:07:58:74:9b:fd:1c:2f: 57:41:59:eb:08:3b:ed:e8:f2:d2:39:1b:e8:fc:d4:36:a4:5e: 1e:8d:d3:55:85:25:76:a1:11:e6:33:f1:4d:25:4d:7b:50:fa: 96:8d:0b:d9:24:35:17:55:b6:4d:e1:2b:e1:64:f9:5e:62:70: f9:b6:43:5a:64:38:ef:c2:1f:71:f0:a8:a1:f1:d4:dd:97:07: 1b:bf:9a:f9:a9:89:bd:d8:b6:cf:1e:45:96:e2:d1:b8:d6:97: 76:c3:e8:df:6c:a0:09:ac:a8:5b:2e:f4:c9:23:1e:51:25:18: d0:ff:2a:80:58:5b:60:23:42:0a:d1:59:46:76:dc:c3:a4:23: 38:44:f7:06:cc:05:4b:47:a5:e7:a4:a2:99:b7:07:f7:11:23: d4:7c:e8:fa:4b:00:66:cd:80:d9:c9:b9:4a:e1:28:91:4e:a6: 07:5f:9f:dc:f0:bb:68:ad:bc:3e:8e:46:fa:e4:49:28:43:89: 46:12:97:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQxOEYxMTAvBgNVBAUTKEQxQjZCRTdDRDUxNTQ1ODEzRUMzMTc2NjgwN0FDREQ5 ODdBOTBGREYwHhcNMjUwODA4MjA0MTQxWhcNMjUwODE1MjA0MTQxWjAYMRYwFAYD VQQDEw02ODk2NjEwNi1jZjJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Pf6mgBZKWP8kKgcSK38yiTLV4LZ7iy4spqvxxPe8UHXxas6aqz3bZ+ZCJs2 /RPPlzeOzfUCsNHoS3MmQDLU+U6b012jACWeCEwQBUXiECVnfXVxwz+R6XvDoRq8 DzSrQ+Pr02dELQEsiHG6bJqWyFhGMq44xXC6K9zVgu+WYJjOVk8qwpDr0Z+MHHNe pnsoCG94+0ZLFSmpbqgyEx+tpX5Fmi65lK8AiKL21UHccQ0ZKqe9WXWLZ52o1j7E lxQ+DAl3pZ5vjTsdbUIiWwvjMycEd3iI3Vt2+CHWZBYqmCZUKYCr7WBXWQ4LkdN8 eXjY2gQOpkCp3TV3LGOFxB0TgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDHCZSOK l2/TPyr5PHNIuQx+P/iZMB8GA1UdIwQYMBaAFNG2vnzVFUWBPsMXZoB6zdmHqQ/f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDE4Ri83NUI5MEQyNEFG QjgxMUVBQTc2RTVFN0JDNEY5QUUwMi8wYmEtZk5VVlJZRS13eGRtZ0hyTjJZZXBE OTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBiYS1mTlVWUllFLXd4ZG1nSHJOMlllcEQ5OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDE4Ri83NUI5MEQyNEFGQjgxMUVBQTc2RTVFN0JDNEY5QUUwMi8wYmEtZk5VVlJZ RS13eGRtZ0hyTjJZZXBEOTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTbRYquU7MwfKfmX1yLLBOgApNHzkuxGksc/3i/vc2IdP78gVPwSpf cBkC/k1fcD6AF02EikrdrI5+ea1lP+LBwgdYdJv9HC9XQVnrCDvt6PLSORvo/NQ2 pF4ejdNVhSV2oRHmM/FNJU17UPqWjQvZJDUXVbZN4SvhZPleYnD5tkNaZDjvwh9x 8Kih8dTdlwcbv5r5qYm92LbPHkWW4tG41pd2w+jfbKAJrKhbLvTJIx5RJRjQ/yqA WFtgI0IK0VlGdtzDpCM4RPcGzAVLR6XnpKKZtwf3ESPUfOj6SwBmzYDZyblK4SiR TqYHX5/c8Ltorbw+jkb65EkoQ4lGEpfF -----END CERTIFICATE-----Generated at Sun Aug 10 03:47:12 2025 by rpki-client