$ rpki-client -vvf rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.mft File: bBH4O5qMvdIVMt3w6mHek4jRPGs.mft (raw, json) Hash identifier: GLY1dsDUCX6JgiXK6IvJk6GvmjaCYE5jehCS/PyFe9k= Subject key identifier: D8:21:80:FD:79:E3:E4:9A:A7:DC:C3:B6:BF:47:80:82:0B:CA:27:B3 Authority key identifier: 6C:11:F8:3B:9A:8C:BD:D2:15:32:DD:F0:EA:61:DE:93:88:D1:3C:6B Certificate issuer: /CN=A917D958/serialNumber=6C11F83B9A8CBDD21532DDF0EA61DE9388D13C6B Certificate serial: 7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBH4O5qMvdIVMt3w6mHek4jRPGs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.mft Manifest number: 7F Signing time: Sat 09 Aug 2025 07:11:18 +0000 Manifest this update: Sat 09 Aug 2025 07:11:18 +0000 Manifest next update: Sat 16 Aug 2025 07:11:18 +0000 Files and hashes: 1: bBH4O5qMvdIVMt3w6mHek4jRPGs.crl (hash: neMssthrl1+3o4tdenDdK338LzYv1697d8Mz7Zb+uXc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.crl rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBH4O5qMvdIVMt3w6mHek4jRPGs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 127 (0x7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D958, serialNumber=6C11F83B9A8CBDD21532DDF0EA61DE9388D13C6B Validity Not Before: Aug 9 07:11:18 2025 GMT Not After : Aug 16 07:11:18 2025 GMT Subject: CN=6896f496-8a33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:ee:9a:15:5e:4a:a0:57:f5:2f:a6:a7:03:3b: a4:bd:eb:78:bb:01:0f:a4:d2:f0:37:85:36:8d:a1: f6:f0:10:a9:31:50:1b:ad:24:a1:b5:51:87:99:ec: fb:77:c3:2d:e6:cf:b8:7d:6f:3d:f2:c5:2e:4d:85: 55:22:a1:58:b4:c0:f3:33:cc:37:02:41:45:18:ae: 6e:67:6c:ce:75:e1:05:2f:cd:e6:d0:c8:74:5b:1e: 2d:6c:27:16:82:00:ae:07:60:47:8e:a5:d6:c6:67: cc:5e:14:f3:09:56:a1:60:4a:8c:1d:73:08:bb:48: 9e:b1:d3:58:6c:ec:89:d0:5a:16:5c:90:67:4d:3d: a4:fc:52:53:e3:fe:51:6e:6c:a2:1c:6a:c2:2d:2f: d4:13:80:82:8f:c1:b5:19:b3:a8:83:02:27:88:0a: 9d:41:69:ba:3e:c2:b8:0c:1b:7a:a0:4f:06:4d:6b: c9:19:4d:88:19:fc:02:bb:af:cc:4a:db:c0:55:45: 52:c7:11:33:78:2e:a4:ae:76:88:e2:02:17:18:8c: 39:33:c5:82:36:12:80:05:d8:62:70:9f:d5:ef:f8: ee:22:4b:c2:bc:df:9e:fa:d0:fb:15:8e:45:01:85: f5:fd:c4:0c:54:83:ab:a5:19:cb:f2:fa:f2:40:3c: 0d:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:21:80:FD:79:E3:E4:9A:A7:DC:C3:B6:BF:47:80:82:0B:CA:27:B3 X509v3 Authority Key Identifier: keyid:6C:11:F8:3B:9A:8C:BD:D2:15:32:DD:F0:EA:61:DE:93:88:D1:3C:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBH4O5qMvdIVMt3w6mHek4jRPGs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:8f:35:34:c6:a1:a7:48:b6:94:65:da:86:e9:a5:3c:07:98: 9a:27:8c:a2:d7:d5:61:e5:a2:fe:25:25:54:70:46:bb:0d:90: 06:b1:55:7c:32:61:83:d1:d2:e1:da:79:23:62:46:f6:97:e1: 82:a4:7d:4e:00:93:53:64:8f:d9:e0:08:20:cf:0d:3e:20:9f: 6b:1f:23:44:b3:8e:a7:32:bf:df:ad:ee:de:0b:67:11:eb:e1: d0:3f:f4:4a:38:bb:90:9f:67:7f:4b:bb:04:2d:40:29:3d:c7: 40:a9:76:de:a0:58:45:66:5f:21:f2:db:bb:f3:a6:52:1b:b0: c9:92:7b:8b:b1:b8:16:5d:f1:19:f2:cf:b2:e1:fe:cc:65:85: 77:b7:ec:b5:08:6e:2f:da:6a:cc:ef:d9:b7:8e:ac:31:b7:b9: fb:7d:2b:45:fb:a7:88:0b:6f:12:22:d3:c4:8e:70:b2:3b:58: d0:d6:c3:b2:a8:ec:11:67:20:2d:3e:20:90:21:e3:d6:74:72: 3e:fc:5e:a2:06:cb:6d:fa:42:45:28:a6:59:5c:f7:eb:d9:6f: d7:3a:a4:2a:47:76:e1:7c:2b:95:59:23:2b:eb:1a:f4:25:e2: 1c:8c:73:0e:93:3c:6a:bb:25:63:a6:98:f3:c0:13:aa:01:96: 2e:61:4f:24 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RDk1ODExMC8GA1UEBRMoNkMxMUY4M0I5QThDQkREMjE1MzJEREYwRUE2MURFOTM4 OEQxM0M2QjAeFw0yNTA4MDkwNzExMThaFw0yNTA4MTYwNzExMThaMBgxFjAUBgNV BAMTDTY4OTZmNDk2LThhMzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDU7poVXkqgV/UvpqcDO6S963i7AQ+k0vA3hTaNofbwEKkxUButJKG1UYeZ7Pt3 wy3mz7h9bz3yxS5NhVUioVi0wPMzzDcCQUUYrm5nbM514QUvzebQyHRbHi1sJxaC AK4HYEeOpdbGZ8xeFPMJVqFgSowdcwi7SJ6x01hs7InQWhZckGdNPaT8UlPj/lFu bKIcasItL9QTgIKPwbUZs6iDAieICp1Babo+wrgMG3qgTwZNa8kZTYgZ/AK7r8xK 28BVRVLHETN4LqSudojiAhcYjDkzxYI2EoAF2GJwn9Xv+O4iS8K835760PsVjkUB hfX9xAxUg6ulGcvy+vJAPA3bAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU2CGA/Xnj 5Jqn3MO2v0eAggvKJ7MwHwYDVR0jBBgwFoAUbBH4O5qMvdIVMt3w6mHek4jRPGsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdEOTU4LzZGNjI4Mzg4QjM5 QjExRUY4MEY2NDM1RUM0RjlBRTAyL2JCSDRPNXFNdmRJVk10M3c2bUhlazRqUlBH cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYkJINE81cU12ZElWTXQzdzZtSGVrNGpSUEdzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdE OTU4LzZGNjI4Mzg4QjM5QjExRUY4MEY2NDM1RUM0RjlBRTAyL2JCSDRPNXFNdmRJ Vk10M3c2bUhlazRqUlBHcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALCPNTTGoadItpRl2obppTwHmJonjKLX1WHlov4lJVRwRrsNkAaxVXwy YYPR0uHaeSNiRvaX4YKkfU4Ak1Nkj9ngCCDPDT4gn2sfI0Szjqcyv9+t7t4LZxHr 4dA/9Eo4u5CfZ39LuwQtQCk9x0Cpdt6gWEVmXyHy27vzplIbsMmSe4uxuBZd8Rny z7Lh/sxlhXe37LUIbi/aaszv2beOrDG3uft9K0X7p4gLbxIi08SOcLI7WNDWw7Ko 7BFnIC0+IJAh49Z0cj78XqIGy236QkUopllc9+vZb9c6pCpHduF8K5VZIyvrGvQl 4hyMcw6TPGq7JWOmmPPAE6oBli5hTyQ= -----END CERTIFICATE-----Generated at Sun Aug 10 18:14:54 2025 by rpki-client