$ rpki-client -vvf rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.mft File: BfhBmvmqMYTqsf-HQkpq4zz3MsQ.mft (raw, json) Hash identifier: uQRJb64OnSuHE8Oz4Tj85YXclDUd9pQsO92A47agAQE= Subject key identifier: EB:2F:A2:4F:B3:6A:2F:EB:29:52:34:57:E7:AD:BF:98:35:4C:AE:00 Authority key identifier: 05:F8:41:9A:F9:AA:31:84:EA:B1:FF:87:42:4A:6A:E3:3C:F7:32:C4 Certificate issuer: /CN=A915E575/serialNumber=05F8419AF9AA3184EAB1FF87424A6AE33CF732C4 Certificate serial: 03DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.mft Manifest number: 03DB Signing time: Sat 09 Aug 2025 01:04:59 +0000 Manifest this update: Sat 09 Aug 2025 01:04:59 +0000 Manifest next update: Sat 16 Aug 2025 01:04:59 +0000 Files and hashes: 1: BfhBmvmqMYTqsf-HQkpq4zz3MsQ.crl (hash: 8asjLHh4YOvfjCLo3HMeu8DXt8IoWPseoE2elYzFXmc=) 2: D86008008FAA11ECB0728B0FC4F9AE02.roa (hash: RsMIAFkbpydCDPohis69ldhzmBpnzB7IY6eRBCKfLas=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.crl rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 991 (0x3df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E575, serialNumber=05F8419AF9AA3184EAB1FF87424A6AE33CF732C4 Validity Not Before: Aug 9 01:04:59 2025 GMT Not After : Aug 16 01:04:59 2025 GMT Subject: CN=68969ebb-62f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:fd:7d:1f:a8:e5:91:de:ac:00:4d:96:21:02: 66:6f:56:32:47:5b:be:83:3e:26:ba:55:21:5b:54: 9b:44:eb:66:65:bc:23:36:bf:5f:6f:b5:78:b3:20: 15:6d:e8:77:72:bb:26:db:a5:54:4f:ff:e1:b6:5c: 74:ea:e9:f5:e9:3a:21:4a:a4:45:c0:63:72:10:0c: fb:50:57:cb:73:dc:12:46:1c:61:d3:0d:2c:e1:9b: bb:eb:ca:0b:28:33:eb:e7:d2:b7:3a:9a:fc:43:f7: 0d:ea:7c:14:fe:25:1a:24:fc:ee:13:cb:cc:49:e6: 73:80:f4:65:69:9d:86:a2:d5:e9:0d:4d:a6:31:ad: 3f:d6:70:c1:d0:21:bd:ad:50:31:30:15:92:b2:31: f7:13:3f:59:85:cc:63:fc:b7:0a:33:bd:d5:73:5c: d0:b6:45:37:42:e8:1b:14:f8:56:77:e7:ae:7a:d3: 99:24:3a:e0:db:43:7f:b4:bd:03:c5:75:56:5c:1b: e3:74:db:b3:3f:12:f2:72:1f:f4:6c:66:b4:14:1b: 7a:d6:d1:5e:59:da:93:da:5a:eb:fe:d4:7e:18:d4: 00:1f:2e:66:da:8b:61:d6:66:5f:bf:af:81:95:db: e7:bd:20:d0:d6:f4:e8:b1:14:b7:9d:6d:0c:a8:9a: 22:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:2F:A2:4F:B3:6A:2F:EB:29:52:34:57:E7:AD:BF:98:35:4C:AE:00 X509v3 Authority Key Identifier: keyid:05:F8:41:9A:F9:AA:31:84:EA:B1:FF:87:42:4A:6A:E3:3C:F7:32:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:09:d6:6d:7d:95:39:b8:3a:07:f0:00:d8:57:e3:f5:a9:e8: 43:63:c5:7f:1d:f8:c4:b6:63:8d:73:69:f8:90:f2:a1:8f:29: f2:55:93:41:54:93:1f:1a:69:f4:47:f9:7d:ad:f8:98:f5:57: 6e:26:e0:63:fd:8f:67:f6:5b:8d:c7:72:d9:71:45:4e:0c:3a: 25:73:3b:54:d4:07:33:be:90:66:c1:7c:29:6f:b9:76:56:3c: 08:d0:aa:23:65:61:40:81:a1:fd:56:2e:ee:ff:b5:34:79:7b: 4b:8a:e9:52:67:58:fa:af:6c:b4:15:7d:52:cd:84:9e:71:a6: 24:c3:bb:22:a2:db:93:ec:13:b2:02:3b:f2:45:e1:14:4b:1a: 59:e0:a2:b3:7c:d8:5c:f7:c3:89:fe:24:9b:19:81:2e:ec:91: 4a:ca:08:6b:05:3e:3f:c3:cf:36:65:4c:ef:b7:38:68:9e:90: 87:5f:79:85:76:b6:5f:6b:a5:d0:be:ad:f4:71:1b:11:65:88: 88:72:9a:61:ef:a9:73:7c:9b:5d:7e:61:12:73:82:29:08:71: 58:7b:a4:4e:2f:ce:c0:29:b1:77:a1:19:d0:3f:bb:27:80:95: 62:38:88:1c:8d:63:fb:ff:b4:ab:3d:98:04:43:de:8d:b2:d4: d5:9d:d7:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA98wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUU1NzUxMTAvBgNVBAUTKDA1Rjg0MTlBRjlBQTMxODRFQUIxRkY4NzQyNEE2QUUz M0NGNzMyQzQwHhcNMjUwODA5MDEwNDU5WhcNMjUwODE2MDEwNDU5WjAYMRYwFAYD VQQDEw02ODk2OWViYi02MmY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAof19H6jlkd6sAE2WIQJmb1YyR1u+gz4mulUhW1SbROtmZbwjNr9fb7V4syAV beh3crsm26VUT//htlx06un16TohSqRFwGNyEAz7UFfLc9wSRhxh0w0s4Zu768oL KDPr59K3Opr8Q/cN6nwU/iUaJPzuE8vMSeZzgPRlaZ2GotXpDU2mMa0/1nDB0CG9 rVAxMBWSsjH3Ez9Zhcxj/LcKM73Vc1zQtkU3QugbFPhWd+euetOZJDrg20N/tL0D xXVWXBvjdNuzPxLych/0bGa0FBt61tFeWdqT2lrr/tR+GNQAHy5m2oth1mZfv6+B ldvnvSDQ1vTosRS3nW0MqJoiTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOsvok+z ai/rKVI0V+etv5g1TK4AMB8GA1UdIwQYMBaAFAX4QZr5qjGE6rH/h0JKauM89zLE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTU3NS9GMEIyNDIxNDhG QTYxMUVDOUMzOTc3NjJDNEY5QUUwMi9CZmhCbXZtcU1ZVHFzZi1IUWtwcTR6ejNN c1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JmaEJtdm1xTVlUcXNmLUhRa3BxNHp6M01zUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RTU3NS9GMEIyNDIxNDhGQTYxMUVDOUMzOTc3NjJDNEY5QUUwMi9CZmhCbXZtcU1Z VHFzZi1IUWtwcTR6ejNNc1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApCdZtfZU5uDoH8ADYV+P1qehDY8V/HfjEtmONc2n4kPKhjynyVZNB VJMfGmn0R/l9rfiY9VduJuBj/Y9n9luNx3LZcUVODDolcztU1AczvpBmwXwpb7l2 VjwI0KojZWFAgaH9Vi7u/7U0eXtLiulSZ1j6r2y0FX1SzYSecaYkw7siotuT7BOy AjvyReEUSxpZ4KKzfNhc98OJ/iSbGYEu7JFKyghrBT4/w882ZUzvtzhonpCHX3mF drZfa6XQvq30cRsRZYiIcpph76lzfJtdfmESc4IpCHFYe6ROL87AKbF3oRnQP7sn gJViOIgcjWP7/7SrPZgEQ96NstTVndds -----END CERTIFICATE-----Generated at Sun Aug 10 18:16:03 2025 by rpki-client