$ rpki-client -vvf rpki.apnic.net/member_repository/A91643F8/F790CC5A7C6A11EF9A688857C4F9AE02/bbZgfaaV3QngKYA6L_JiWtiDguM.mft File: bbZgfaaV3QngKYA6L_JiWtiDguM.mft (raw, json) Hash identifier: L1ryU8uxZnsvNMWPAM46g01Boh8impq2ChrsMANo1PU= Subject key identifier: D1:D9:D6:54:ED:D3:50:E3:41:55:7E:39:11:45:73:56:DE:C1:79:22 Authority key identifier: 6D:B6:60:7D:A6:95:DD:09:E0:29:80:3A:2F:F2:62:5A:D8:83:82:E3 Certificate issuer: /CN=A91643F8/serialNumber=6DB6607DA695DD09E029803A2FF2625AD88382E3 Certificate serial: AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bbZgfaaV3QngKYA6L_JiWtiDguM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91643F8/F790CC5A7C6A11EF9A688857C4F9AE02/bbZgfaaV3QngKYA6L_JiWtiDguM.mft Manifest number: A7 Signing time: Sat 09 Aug 2025 06:39:58 +0000 Manifest this update: Sat 09 Aug 2025 06:39:58 +0000 Manifest next update: Sat 16 Aug 2025 06:39:58 +0000 Files and hashes: 1: bbZgfaaV3QngKYA6L_JiWtiDguM.crl (hash: zojLjCRViXRmVKFIqDSnJaeeXoj6mtLwagQFMvqa0IU=) 2: F2F0E3FE882E11EFB58CD069C4F9AE02.roa (hash: LLMFfpd/hOZPtrpRcrn1k8tmtQOd8WCmuw0OVbODbIo=) 3: 50A6B6427C6B11EFAB9AB658C4F9AE02.roa (hash: BsH1QXXdR63B8qNDLxP6migCbs5bygzeNgwy6naNCOQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91643F8/F790CC5A7C6A11EF9A688857C4F9AE02/bbZgfaaV3QngKYA6L_JiWtiDguM.crl rsync://rpki.apnic.net/member_repository/A91643F8/F790CC5A7C6A11EF9A688857C4F9AE02/bbZgfaaV3QngKYA6L_JiWtiDguM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bbZgfaaV3QngKYA6L_JiWtiDguM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 172 (0xac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91643F8, serialNumber=6DB6607DA695DD09E029803A2FF2625AD88382E3 Validity Not Before: Aug 9 06:39:58 2025 GMT Not After : Aug 16 06:39:58 2025 GMT Subject: CN=6896ed3e-c8eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:88:2d:08:e8:93:de:1f:e4:52:81:f2:7b:ba: a1:39:c8:c9:25:92:e4:20:89:c5:1e:60:50:9f:52: be:e5:61:59:fd:c3:41:17:a7:01:af:50:44:2c:64: ef:e0:34:d0:a3:7f:c6:20:98:ec:54:12:32:46:25: c0:e8:66:3b:3f:c0:82:d7:bb:a8:9a:18:13:cf:b0: 03:c4:8b:ac:4d:cc:ed:d7:3b:b0:83:07:fb:bb:95: fb:48:52:67:96:6d:9a:ca:e1:a0:62:d1:ed:cd:70: 3d:a8:97:da:15:b0:19:78:81:eb:cd:af:d5:fa:14: e8:84:43:a3:f2:f6:f2:03:95:72:59:e9:03:ea:b0: 63:e4:57:fc:e8:69:f8:8a:b0:93:30:e8:65:bd:21: 86:8c:fe:ec:d6:7d:69:85:97:95:09:42:fb:f2:6e: 82:0a:e8:27:2d:0d:e0:aa:1b:00:31:f6:55:ed:32: d7:21:18:74:c9:ca:ca:c1:5b:51:23:3e:9f:ad:9f: f0:12:9d:8f:48:45:31:cc:07:f0:0d:67:c4:0f:fe: a9:9b:c2:20:cf:86:fe:c8:fb:af:25:51:9d:88:ee: b0:20:a5:3e:9f:ef:27:4b:b4:00:80:6d:33:3e:07: 68:03:97:a4:c4:e7:c8:62:04:95:48:fa:77:b1:00: 52:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:D9:D6:54:ED:D3:50:E3:41:55:7E:39:11:45:73:56:DE:C1:79:22 X509v3 Authority Key Identifier: keyid:6D:B6:60:7D:A6:95:DD:09:E0:29:80:3A:2F:F2:62:5A:D8:83:82:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91643F8/F790CC5A7C6A11EF9A688857C4F9AE02/bbZgfaaV3QngKYA6L_JiWtiDguM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bbZgfaaV3QngKYA6L_JiWtiDguM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91643F8/F790CC5A7C6A11EF9A688857C4F9AE02/bbZgfaaV3QngKYA6L_JiWtiDguM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:7e:ad:02:ae:fe:bb:bb:aa:d8:f8:2e:c4:78:66:fc:d6:60: a3:c1:7e:1a:ce:34:e4:67:49:f4:0a:a3:3b:71:32:14:ed:2b: 95:a7:69:70:21:84:a2:8c:1a:fb:f6:64:f4:ac:38:1a:35:af: d7:ad:63:bb:6d:64:78:2a:70:2d:3a:f7:ce:b1:98:b4:1c:6b: 08:53:9d:52:75:3a:dc:fc:47:92:54:f2:bc:0a:5d:68:ca:d2: 7e:75:d3:86:81:8b:f4:97:85:82:01:5a:79:7b:84:93:34:ed: 8f:54:ae:81:76:45:50:df:b3:fe:d0:16:7e:0f:6f:db:29:ed: 88:38:d2:8b:23:b2:40:46:cd:b7:f0:f2:3c:c0:07:c5:19:12: 6f:7e:9c:b2:dd:9d:ac:f3:3c:60:cc:62:49:db:b8:31:1d:8a: b1:c7:f1:30:0e:38:e5:c9:ba:d2:02:c5:26:d3:51:0e:ba:78: 05:c4:40:3e:0f:8a:3f:69:0a:db:91:64:3b:9e:f1:18:bb:3f: 64:f7:ff:1c:7a:32:1e:ce:3b:50:9f:3c:7f:0d:4c:b2:09:de: 2a:76:ae:26:a8:b7:69:fb:3d:97:f0:c2:46:91:49:9b:31:82: 14:8c:9c:1f:06:95:01:81:51:77:b1:35:33:94:dc:cf:cd:f2: 12:07:a6:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQzRjgxMTAvBgNVBAUTKDZEQjY2MDdEQTY5NUREMDlFMDI5ODAzQTJGRjI2MjVB RDg4MzgyRTMwHhcNMjUwODA5MDYzOTU4WhcNMjUwODE2MDYzOTU4WjAYMRYwFAYD VQQDEw02ODk2ZWQzZS1jOGViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt4gtCOiT3h/kUoHye7qhOcjJJZLkIInFHmBQn1K+5WFZ/cNBF6cBr1BELGTv 4DTQo3/GIJjsVBIyRiXA6GY7P8CC17uomhgTz7ADxIusTczt1zuwgwf7u5X7SFJn lm2ayuGgYtHtzXA9qJfaFbAZeIHrza/V+hTohEOj8vbyA5VyWekD6rBj5Ff86Gn4 irCTMOhlvSGGjP7s1n1phZeVCUL78m6CCugnLQ3gqhsAMfZV7TLXIRh0ycrKwVtR Iz6frZ/wEp2PSEUxzAfwDWfED/6pm8Igz4b+yPuvJVGdiO6wIKU+n+8nS7QAgG0z PgdoA5ekxOfIYgSVSPp3sQBS9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNHZ1lTt 01DjQVV+ORFFc1bewXkiMB8GA1UdIwQYMBaAFG22YH2mld0J4CmAOi/yYlrYg4Lj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDNGOC9GNzkwQ0M1QTdD NkExMUVGOUE2ODg4NTdDNEY5QUUwMi9iYlpnZmFhVjNRbmdLWUE2TF9KaVd0aURn dU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JiWmdmYWFWM1FuZ0tZQTZMX0ppV3RpRGd1TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NDNGOC9GNzkwQ0M1QTdDNkExMUVGOUE2ODg4NTdDNEY5QUUwMi9iYlpnZmFhVjNR bmdLWUE2TF9KaVd0aURndU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjfq0Crv67u6rY+C7EeGb81mCjwX4azjTkZ0n0CqM7cTIU7SuVp2lw IYSijBr79mT0rDgaNa/XrWO7bWR4KnAtOvfOsZi0HGsIU51SdTrc/EeSVPK8Cl1o ytJ+ddOGgYv0l4WCAVp5e4STNO2PVK6BdkVQ37P+0BZ+D2/bKe2IONKLI7JARs23 8PI8wAfFGRJvfpyy3Z2s8zxgzGJJ27gxHYqxx/EwDjjlybrSAsUm01EOungFxEA+ D4o/aQrbkWQ7nvEYuz9k9/8cejIezjtQnzx/DUyyCd4qdq4mqLdp+z2X8MJGkUmb MYIUjJwfBpUBgVF3sTUzlNzPzfISB6bo -----END CERTIFICATE-----Generated at Sun Aug 10 18:56:08 2025 by rpki-client