$ rpki-client -vvf rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.mft File: BL27YPamYNHS0BJzSQ_PCcw1m3M.mft (raw, json) Hash identifier: 0AJREjkoiXpaJQtVTEse3uQj3H1ptSJseL0GjZfj/GU= Subject key identifier: 4A:3B:E3:D1:67:21:34:43:9A:02:C0:52:52:2C:C6:5A:3C:6C:42:27 Authority key identifier: 04:BD:BB:60:F6:A6:60:D1:D2:D0:12:73:49:0F:CF:09:CC:35:9B:73 Certificate issuer: /CN=A917C59F/serialNumber=04BDBB60F6A660D1D2D01273490FCF09CC359B73 Certificate serial: 08AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BL27YPamYNHS0BJzSQ_PCcw1m3M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.mft Manifest number: 08A4 Signing time: Fri 08 Aug 2025 20:54:07 +0000 Manifest this update: Fri 08 Aug 2025 20:54:06 +0000 Manifest next update: Fri 15 Aug 2025 20:54:06 +0000 Files and hashes: 1: BL27YPamYNHS0BJzSQ_PCcw1m3M.crl (hash: TtSEhZMROGVP5Dmd3BcApsEG+E1BEeqcAeQRa0/JGjA=) 2: 12482BA205A211ED81E44F6DC4F9AE02.roa (hash: XF3b1tsv84dWcHXBpSW6CLzdc6x4da3e9vI5g3fw1j4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.crl rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BL27YPamYNHS0BJzSQ_PCcw1m3M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2221 (0x8ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C59F, serialNumber=04BDBB60F6A660D1D2D01273490FCF09CC359B73 Validity Not Before: Aug 8 20:54:06 2025 GMT Not After : Aug 15 20:54:06 2025 GMT Subject: CN=689663ee-9384 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ef:35:2d:06:7f:7d:0c:d5:c6:aa:8d:17:19: ba:c3:3d:7e:e8:78:7b:91:e7:6a:ef:af:7d:ca:2e: 76:c4:e2:b7:f0:19:06:89:5e:89:d9:70:f2:45:6d: 1e:61:27:3c:a2:ae:1e:80:cf:74:aa:01:e5:68:06: 76:18:dc:39:45:c8:85:47:d1:18:ab:3b:0b:1f:66: 45:5d:24:42:16:df:0f:ef:c2:2e:70:a2:1c:0b:bf: d5:9e:d0:12:11:d1:1f:c2:62:79:19:75:bf:db:7b: 2c:80:6a:4a:79:c1:2a:a8:3a:7e:56:79:b5:52:91: 2a:f7:a6:d0:7f:04:fc:e8:1a:5e:8e:91:56:4e:98: de:8e:50:93:b8:ae:92:dd:5d:73:be:aa:e3:83:06: 7f:c0:37:24:ac:34:e5:95:99:2f:40:32:db:89:e7: 31:f2:b8:a9:19:6c:2c:97:6c:b4:02:46:bd:cc:c6: 09:55:81:27:40:c6:17:6f:db:d1:ca:23:36:d2:02: b6:2a:0c:d1:3d:5f:82:ac:bd:8e:06:aa:50:07:7c: 52:e1:32:37:5d:56:d4:e5:7e:1d:e0:c5:40:9c:ec: 22:e4:07:91:84:96:2c:71:90:a0:26:29:e1:a1:c4: 07:4a:44:cf:90:e7:95:c1:9d:25:55:d8:61:3f:a8: 56:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:3B:E3:D1:67:21:34:43:9A:02:C0:52:52:2C:C6:5A:3C:6C:42:27 X509v3 Authority Key Identifier: keyid:04:BD:BB:60:F6:A6:60:D1:D2:D0:12:73:49:0F:CF:09:CC:35:9B:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BL27YPamYNHS0BJzSQ_PCcw1m3M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:81:83:f5:4f:b0:94:19:f5:f3:ad:c6:8c:8c:85:09:76:90: df:25:fe:ec:2c:8f:82:f3:f3:38:86:9c:d2:e1:b8:e9:f9:91: 80:8a:fe:81:21:c6:42:2e:96:c0:5c:7c:67:a8:70:a5:75:9c: 3f:4e:48:49:34:2c:d2:04:6e:a1:41:8c:3f:65:27:e7:b7:11: 64:38:19:13:af:ac:ba:db:94:56:35:a0:bc:87:7a:5c:81:e9: 8a:f9:2c:80:c9:74:03:e2:3c:df:f2:35:17:49:b1:60:d7:87: a2:2d:ca:04:50:84:80:bd:a4:38:cf:8d:a1:3d:76:c8:17:ff: a8:af:79:83:eb:ee:3c:84:4c:c5:34:f5:70:a9:01:56:09:7e: ac:3f:b8:57:5a:79:06:19:fe:de:d1:87:87:25:2e:c6:fb:78: 49:50:9e:29:cc:f6:f5:e1:c4:6d:39:a0:2b:68:d3:3e:98:31: 4d:61:6c:44:1e:63:63:be:63:bb:31:21:50:7c:3a:b4:2c:61: d0:77:fc:c6:84:01:ea:32:67:fe:e5:67:57:8e:8b:f4:91:29: 16:66:1c:7f:52:de:7f:d5:47:fa:f3:4d:c7:76:23:3d:5b:a2: db:c9:8e:fe:8d:f5:f6:f4:e1:78:f8:f8:d2:63:df:aa:8c:ba: c7:6f:12:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M1OUYxMTAvBgNVBAUTKDA0QkRCQjYwRjZBNjYwRDFEMkQwMTI3MzQ5MEZDRjA5 Q0MzNTlCNzMwHhcNMjUwODA4MjA1NDA2WhcNMjUwODE1MjA1NDA2WjAYMRYwFAYD VQQDEw02ODk2NjNlZS05Mzg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvu81LQZ/fQzVxqqNFxm6wz1+6Hh7kedq7699yi52xOK38BkGiV6J2XDyRW0e YSc8oq4egM90qgHlaAZ2GNw5RciFR9EYqzsLH2ZFXSRCFt8P78IucKIcC7/VntAS EdEfwmJ5GXW/23ssgGpKecEqqDp+Vnm1UpEq96bQfwT86BpejpFWTpjejlCTuK6S 3V1zvqrjgwZ/wDckrDTllZkvQDLbiecx8ripGWwsl2y0Aka9zMYJVYEnQMYXb9vR yiM20gK2KgzRPV+CrL2OBqpQB3xS4TI3XVbU5X4d4MVAnOwi5AeRhJYscZCgJinh ocQHSkTPkOeVwZ0lVdhhP6hWvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEo749Fn ITRDmgLAUlIsxlo8bEInMB8GA1UdIwQYMBaAFAS9u2D2pmDR0tASc0kPzwnMNZtz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzU5Ri80MjVFODkwMkMx NDQxMUVBOTFGMDNBNkZDNEY5QUUwMi9CTDI3WVBhbVlOSFMwQkp6U1FfUENjdzFt M00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JMMjdZUGFtWU5IUzBCSnpTUV9QQ2N3MW0zTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzU5Ri80MjVFODkwMkMxNDQxMUVBOTFGMDNBNkZDNEY5QUUwMi9CTDI3WVBhbVlO SFMwQkp6U1FfUENjdzFtM00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+gYP1T7CUGfXzrcaMjIUJdpDfJf7sLI+C8/M4hpzS4bjp+ZGAiv6B IcZCLpbAXHxnqHCldZw/TkhJNCzSBG6hQYw/ZSfntxFkOBkTr6y625RWNaC8h3pc gemK+SyAyXQD4jzf8jUXSbFg14eiLcoEUISAvaQ4z42hPXbIF/+or3mD6+48hEzF NPVwqQFWCX6sP7hXWnkGGf7e0YeHJS7G+3hJUJ4pzPb14cRtOaAraNM+mDFNYWxE HmNjvmO7MSFQfDq0LGHQd/zGhAHqMmf+5WdXjov0kSkWZhx/Ut5/1Uf6803HdiM9 W6LbyY7+jfX29OF4+PjSY9+qjLrHbxIc -----END CERTIFICATE-----Generated at Sun Aug 10 03:51:24 2025 by rpki-client