$ rpki-client -vvf rpki.apnic.net/member_repository/A91912DD/DB4A6CFC10D311EA9BD1A55DC4F9AE02/BRnee0hmA7e6W2bauYkgP98ttJQ.mft File: BRnee0hmA7e6W2bauYkgP98ttJQ.mft (raw, json) Hash identifier: ah0H7cNMyVWbJlRc5iPwpYAUkHlckIIlB3YRqCk1bj8= Subject key identifier: FC:0B:E4:85:E0:F2:D0:B6:21:76:75:FA:15:EB:5B:7C:4C:CC:7F:F0 Authority key identifier: 05:19:DE:7B:48:66:03:B7:BA:5B:66:DA:B9:89:20:3F:DF:2D:B4:94 Certificate issuer: /CN=A91912DD/serialNumber=0519DE7B486603B7BA5B66DAB989203FDF2DB494 Certificate serial: 0C36 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/BRnee0hmA7e6W2bauYkgP98ttJQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91912DD/DB4A6CFC10D311EA9BD1A55DC4F9AE02/BRnee0hmA7e6W2bauYkgP98ttJQ.mft Manifest number: 0C2F Signing time: Sun 10 Aug 2025 16:39:21 +0000 Manifest this update: Sun 10 Aug 2025 16:39:20 +0000 Manifest next update: Sun 17 Aug 2025 16:39:20 +0000 Files and hashes: 1: BRnee0hmA7e6W2bauYkgP98ttJQ.crl (hash: lNH2o8JHvV07mInbuWYG1hOO732KhF3fEsGbwJ+MfJY=) 2: 05BE20062C5811EAA90F4B0EC4F9AE02.roa (hash: KZLdlP1OQSAqnUANoQynhHKfuaNstAKbyzLi1TUSbtw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91912DD/DB4A6CFC10D311EA9BD1A55DC4F9AE02/BRnee0hmA7e6W2bauYkgP98ttJQ.crl rsync://rpki.apnic.net/member_repository/A91912DD/DB4A6CFC10D311EA9BD1A55DC4F9AE02/BRnee0hmA7e6W2bauYkgP98ttJQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/BRnee0hmA7e6W2bauYkgP98ttJQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3126 (0xc36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91912DD, serialNumber=0519DE7B486603B7BA5B66DAB989203FDF2DB494 Validity Not Before: Aug 10 16:39:20 2025 GMT Not After : Aug 17 16:39:20 2025 GMT Subject: CN=6898cb39-0437 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:4a:5e:ec:b5:66:c1:e3:2d:c6:8d:15:c8:26: 39:dc:00:6b:8b:c7:a6:7a:fb:6c:ec:c8:b4:06:67: d0:26:1e:cc:ce:9a:66:66:d2:bf:0d:6e:3c:e6:e6: a5:d8:5a:ea:d1:22:73:2e:92:a4:b4:d2:1d:40:2f: 7c:8f:e9:e8:f9:f9:2e:02:26:cb:37:2e:a3:23:be: 12:dc:48:18:7d:3f:84:d9:a7:4d:a1:be:79:83:16: 26:37:a5:49:18:6f:86:b0:19:41:bd:03:f6:28:c3: 51:59:12:25:c0:56:1b:a7:0c:81:15:c6:fe:f9:3b: 52:b1:3e:11:a0:3c:87:b2:d7:a0:3b:83:d8:22:83: 8e:a6:4d:70:69:81:e3:45:fd:92:00:93:65:0f:a9: f1:ff:0d:7f:74:fd:30:51:eb:3c:34:44:44:1b:3b: be:32:9b:bb:0c:00:47:ff:51:11:de:9d:8d:10:fc: 3c:81:1f:9b:03:54:74:9e:d4:f1:e0:36:96:a7:5b: fb:43:4f:88:cf:d7:a8:6a:e1:93:83:2f:34:c2:db: 05:e7:98:01:8d:7a:70:9a:04:35:2b:ef:f8:e4:91: 62:da:63:56:66:9c:a4:b0:b3:5b:09:cc:48:e1:cb: 96:37:e9:bc:ce:11:29:f2:30:5c:6f:fe:89:f9:43: 78:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:0B:E4:85:E0:F2:D0:B6:21:76:75:FA:15:EB:5B:7C:4C:CC:7F:F0 X509v3 Authority Key Identifier: keyid:05:19:DE:7B:48:66:03:B7:BA:5B:66:DA:B9:89:20:3F:DF:2D:B4:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91912DD/DB4A6CFC10D311EA9BD1A55DC4F9AE02/BRnee0hmA7e6W2bauYkgP98ttJQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/BRnee0hmA7e6W2bauYkgP98ttJQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91912DD/DB4A6CFC10D311EA9BD1A55DC4F9AE02/BRnee0hmA7e6W2bauYkgP98ttJQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:12:1b:0e:3a:ac:ad:c8:9c:5a:d1:c5:6f:26:e2:9f:89:9f: f0:7b:8b:48:95:dd:ac:08:f0:27:91:4f:6e:c6:2e:25:a8:55: 6d:78:a6:9c:22:98:ea:fc:7f:f4:99:42:d1:a1:c8:61:d9:dd: 6d:f0:f8:45:46:47:fb:94:97:ef:6e:d4:04:1b:cd:45:a5:83: b8:6e:cd:13:fd:19:50:ce:61:ea:5e:83:90:08:c2:a8:ae:fe: 95:33:a5:6a:ec:f9:35:b0:dc:ed:e5:27:69:c2:6f:fc:2e:88: 4c:50:f2:e2:8c:fa:18:07:15:f4:cb:91:e1:0a:23:a9:39:c4: ce:ad:a0:97:22:d0:0e:3f:ce:58:69:10:ea:82:06:c5:b0:5e: 17:00:e8:db:20:55:af:1a:58:6b:4d:a1:8e:3d:48:a6:0f:c0: c7:a2:15:ad:19:85:b7:8f:be:5b:72:4e:cd:7f:49:65:7a:44: 65:f9:6a:e4:58:59:bc:4f:e8:de:9d:a5:4a:6e:30:60:5b:dd: 10:8b:66:f0:f7:d1:4a:74:5c:49:95:01:a9:4d:26:4f:54:ab: b7:51:b3:02:e5:e6:50:58:e6:b8:92:8d:39:0a:b3:68:51:db: d2:ac:f8:85:bf:65:6b:29:b3:2b:da:2d:09:2d:e0:65:43:aa: b7:c0:74:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDDYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTEyREQxMTAvBgNVBAUTKDA1MTlERTdCNDg2NjAzQjdCQTVCNjZEQUI5ODkyMDNG REYyREI0OTQwHhcNMjUwODEwMTYzOTIwWhcNMjUwODE3MTYzOTIwWjAYMRYwFAYD VQQDEw02ODk4Y2IzOS0wNDM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0kpe7LVmweMtxo0VyCY53ABri8emevts7Mi0BmfQJh7MzppmZtK/DW485ual 2Frq0SJzLpKktNIdQC98j+no+fkuAibLNy6jI74S3EgYfT+E2adNob55gxYmN6VJ GG+GsBlBvQP2KMNRWRIlwFYbpwyBFcb++TtSsT4RoDyHstegO4PYIoOOpk1waYHj Rf2SAJNlD6nx/w1/dP0wUes8NEREGzu+Mpu7DABH/1ER3p2NEPw8gR+bA1R0ntTx 4DaWp1v7Q0+Iz9eoauGTgy80wtsF55gBjXpwmgQ1K+/45JFi2mNWZpyksLNbCcxI 4cuWN+m8zhEp8jBcb/6J+UN4YwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPwL5IXg 8tC2IXZ1+hXrW3xMzH/wMB8GA1UdIwQYMBaAFAUZ3ntIZgO3ultm2rmJID/fLbSU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTJERC9EQjRBNkNGQzEw RDMxMUVBOUJEMUE1NURDNEY5QUUwMi9CUm5lZTBobUE3ZTZXMmJhdVlrZ1A5OHR0 SlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0JSbmVlMGhtQTdlNlcyYmF1WWtnUDk4dHRKUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MTJERC9EQjRBNkNGQzEwRDMxMUVBOUJEMUE1NURDNEY5QUUwMi9CUm5lZTBobUE3 ZTZXMmJhdVlrZ1A5OHR0SlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxEhsOOqytyJxa0cVvJuKfiZ/we4tIld2sCPAnkU9uxi4lqFVteKac Ipjq/H/0mULRochh2d1t8PhFRkf7lJfvbtQEG81FpYO4bs0T/RlQzmHqXoOQCMKo rv6VM6Vq7Pk1sNzt5Sdpwm/8LohMUPLijPoYBxX0y5HhCiOpOcTOraCXItAOP85Y aRDqggbFsF4XAOjbIFWvGlhrTaGOPUimD8DHohWtGYW3j75bck7Nf0llekRl+Wrk WFm8T+jenaVKbjBgW90Qi2bw99FKdFxJlQGpTSZPVKu3UbMC5eZQWOa4ko05CrNo UdvSrPiFv2VrKbMr2i0JLeBlQ6q3wHR/ -----END CERTIFICATE-----Generated at Mon Aug 11 12:52:34 2025 by rpki-client