$ rpki-client -vvf rpki.apnic.net/member_repository/A91859C2/E7C0223E9F4211EB922D354FC4F9AE02/Bzzm268iYrP6YRXW_6ezNCFe-g0.mft File: Bzzm268iYrP6YRXW_6ezNCFe-g0.mft (raw, json) Hash identifier: LGTHFLn/1FEt6BXuKqiFBPJNV6AZpD5oiA2h2CpKqHU= Subject key identifier: C0:D0:B4:86:F6:01:A5:AC:13:4E:5E:9D:D8:43:AC:3F:8E:10:2D:AB Authority key identifier: 07:3C:E6:DB:AF:22:62:B3:FA:61:15:D6:FF:A7:B3:34:21:5E:FA:0D Certificate issuer: /CN=A91859C2/serialNumber=073CE6DBAF2262B3FA6115D6FFA7B334215EFA0D Certificate serial: 0642 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bzzm268iYrP6YRXW_6ezNCFe-g0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91859C2/E7C0223E9F4211EB922D354FC4F9AE02/Bzzm268iYrP6YRXW_6ezNCFe-g0.mft Manifest number: 063D Signing time: Fri 08 Aug 2025 23:07:15 +0000 Manifest this update: Fri 08 Aug 2025 23:07:14 +0000 Manifest next update: Fri 15 Aug 2025 23:07:14 +0000 Files and hashes: 1: Bzzm268iYrP6YRXW_6ezNCFe-g0.crl (hash: VDjAFOxaCjv4mM94gGW6+C3EjMtlzSGMb8IQOM2z0i4=) 2: A80223709F4411EB92132051C4F9AE02.roa (hash: ZURzq5MNTYtgjtpZ673W988Pjm4b5QiAz5gyz+eygEs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91859C2/E7C0223E9F4211EB922D354FC4F9AE02/Bzzm268iYrP6YRXW_6ezNCFe-g0.crl rsync://rpki.apnic.net/member_repository/A91859C2/E7C0223E9F4211EB922D354FC4F9AE02/Bzzm268iYrP6YRXW_6ezNCFe-g0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bzzm268iYrP6YRXW_6ezNCFe-g0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1602 (0x642) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91859C2, serialNumber=073CE6DBAF2262B3FA6115D6FFA7B334215EFA0D Validity Not Before: Aug 8 23:07:14 2025 GMT Not After : Aug 15 23:07:14 2025 GMT Subject: CN=68968322-450c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:59:72:23:53:e6:59:a1:8a:e3:68:f2:07:9f: ee:aa:32:19:12:b8:f5:64:f6:68:ec:d4:9d:af:1f: 21:83:db:a8:3f:26:46:3e:1e:f8:ca:c7:db:8b:b0: 76:4c:54:a0:0c:1c:55:43:59:5b:8b:c7:d9:e6:04: 77:bb:5d:b7:fd:18:66:57:e8:bd:19:b1:0d:36:92: fb:53:15:7b:20:11:8b:23:e4:3b:d5:fd:09:68:1e: 44:7d:2c:0d:68:d5:37:42:f8:6d:93:76:68:28:e1: 0d:be:c5:ab:dc:68:1a:e3:c0:4a:e0:ef:6f:08:48: ef:14:9a:10:4a:b9:61:5f:4c:d3:5d:7f:2b:32:e3: 73:bc:45:e6:97:60:98:f3:26:4f:15:5e:76:d6:e1: 27:bf:be:26:6a:82:bf:9c:35:7c:cc:87:5f:58:46: b1:64:c7:7b:b6:69:c8:f7:59:25:c1:95:05:ed:e6: 11:48:2b:b5:bc:9f:31:2f:bf:a4:22:aa:36:1f:bd: d8:be:22:43:19:5f:de:6b:6a:55:f9:64:e2:c6:ca: 05:b4:f2:9f:cf:ec:9c:fb:2d:5b:84:79:90:16:c0: d8:91:9f:4e:77:36:85:a5:3d:01:5c:7d:68:09:36: 78:54:b8:17:ad:fe:1c:b9:b4:3d:30:bc:d1:42:48: ce:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:D0:B4:86:F6:01:A5:AC:13:4E:5E:9D:D8:43:AC:3F:8E:10:2D:AB X509v3 Authority Key Identifier: keyid:07:3C:E6:DB:AF:22:62:B3:FA:61:15:D6:FF:A7:B3:34:21:5E:FA:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91859C2/E7C0223E9F4211EB922D354FC4F9AE02/Bzzm268iYrP6YRXW_6ezNCFe-g0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bzzm268iYrP6YRXW_6ezNCFe-g0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91859C2/E7C0223E9F4211EB922D354FC4F9AE02/Bzzm268iYrP6YRXW_6ezNCFe-g0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:4e:5a:c4:fb:48:2a:e8:18:f0:23:d6:e8:80:24:4c:e4:35: fb:0f:4e:98:07:25:1e:6f:49:ca:70:41:3f:1b:88:ce:04:68: 9e:a3:93:5c:d5:ba:02:63:5a:50:93:fc:51:9b:93:dc:82:a9: bd:c4:8b:20:07:e7:87:30:80:44:ee:18:ca:96:77:52:fe:bb: c7:90:3a:5a:b5:4e:18:c5:12:1a:e7:9b:93:e2:ae:4c:e1:0e: 82:d9:92:e6:85:56:2e:d4:d4:25:86:50:52:45:9b:65:1f:fb: 14:43:8d:75:49:ed:ae:75:a0:25:38:ad:13:ed:6f:12:05:0a: ce:2d:52:97:ad:7f:09:ed:b2:29:60:91:62:c4:b0:e1:bd:56: 71:9e:2a:42:88:67:64:a1:5f:bd:2f:6b:f2:33:b9:7e:04:d8: f6:4d:1a:b2:d8:11:50:31:bf:d4:a7:3e:09:c8:8d:4f:ae:d5: b1:a8:db:b8:dc:0c:7e:9a:dd:9c:52:4c:41:dd:3a:09:f7:da: 66:54:0a:51:16:c4:ef:56:b2:ae:07:c0:f9:aa:b5:91:45:fa: 3a:8a:c8:6e:ce:36:6f:4d:ec:7e:65:b4:31:29:2b:21:3c:a2: 49:9d:92:3b:62:72:64:f5:e8:43:2e:e3:5b:f6:4c:a8:85:38: 11:2b:25:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU5QzIxMTAvBgNVBAUTKDA3M0NFNkRCQUYyMjYyQjNGQTYxMTVENkZGQTdCMzM0 MjE1RUZBMEQwHhcNMjUwODA4MjMwNzE0WhcNMjUwODE1MjMwNzE0WjAYMRYwFAYD VQQDEw02ODk2ODMyMi00NTBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwVlyI1PmWaGK42jyB5/uqjIZErj1ZPZo7NSdrx8hg9uoPyZGPh74ysfbi7B2 TFSgDBxVQ1lbi8fZ5gR3u123/RhmV+i9GbENNpL7UxV7IBGLI+Q71f0JaB5EfSwN aNU3Qvhtk3ZoKOENvsWr3Gga48BK4O9vCEjvFJoQSrlhX0zTXX8rMuNzvEXml2CY 8yZPFV521uEnv74maoK/nDV8zIdfWEaxZMd7tmnI91klwZUF7eYRSCu1vJ8xL7+k Iqo2H73YviJDGV/ea2pV+WTixsoFtPKfz+yc+y1bhHmQFsDYkZ9OdzaFpT0BXH1o CTZ4VLgXrf4cubQ9MLzRQkjOJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMDQtIb2 AaWsE05endhDrD+OEC2rMB8GA1UdIwQYMBaAFAc85tuvImKz+mEV1v+nszQhXvoN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTlDMi9FN0MwMjIzRTlG NDIxMUVCOTIyRDM1NEZDNEY5QUUwMi9CenptMjY4aVlyUDZZUlhXXzZlek5DRmUt ZzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0J6em0yNjhpWXJQNllSWFdfNmV6TkNGZS1nMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTlDMi9FN0MwMjIzRTlGNDIxMUVCOTIyRDM1NEZDNEY5QUUwMi9CenptMjY4aVly UDZZUlhXXzZlek5DRmUtZzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArTlrE+0gq6BjwI9bogCRM5DX7D06YByUeb0nKcEE/G4jOBGieo5Nc 1boCY1pQk/xRm5Pcgqm9xIsgB+eHMIBE7hjKlndS/rvHkDpatU4YxRIa55uT4q5M 4Q6C2ZLmhVYu1NQlhlBSRZtlH/sUQ411Se2udaAlOK0T7W8SBQrOLVKXrX8J7bIp YJFixLDhvVZxnipCiGdkoV+9L2vyM7l+BNj2TRqy2BFQMb/Upz4JyI1PrtWxqNu4 3Ax+mt2cUkxB3ToJ99pmVApRFsTvVrKuB8D5qrWRRfo6ishuzjZvTex+ZbQxKSsh PKJJnZI7YnJk9ehDLuNb9kyohTgRKyVu -----END CERTIFICATE-----Generated at Sun Aug 10 05:35:17 2025 by rpki-client