$ rpki-client -vvf rpki.apnic.net/member_repository/A91995D5/163B1E7C2AAE11E9AA574E4EC4F9AE02/bywgdVh2TqtQ74UGb3hZDOWxxWE.mft File: bywgdVh2TqtQ74UGb3hZDOWxxWE.mft (raw, json) Hash identifier: +X2+HOJCXtoY8DkOVugspf5j5DFzKvATYNauIRh6S/I= Subject key identifier: 13:40:D4:F2:BC:56:CC:0F:37:A3:BB:2D:F5:CB:60:24:7F:EC:B6:75 Authority key identifier: 6F:2C:20:75:58:76:4E:AB:50:EF:85:06:6F:78:59:0C:E5:B1:C5:61 Certificate issuer: /CN=A91995D5/serialNumber=6F2C207558764EAB50EF85066F78590CE5B1C561 Certificate serial: 10C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bywgdVh2TqtQ74UGb3hZDOWxxWE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91995D5/163B1E7C2AAE11E9AA574E4EC4F9AE02/bywgdVh2TqtQ74UGb3hZDOWxxWE.mft Manifest number: 10BF Signing time: Sun 10 Aug 2025 17:18:58 +0000 Manifest this update: Sun 10 Aug 2025 17:18:57 +0000 Manifest next update: Sun 17 Aug 2025 17:18:57 +0000 Files and hashes: 1: bywgdVh2TqtQ74UGb3hZDOWxxWE.crl (hash: 1R9I3XjrBztPOhT5QFvCviVLaiPr9DetTimQLFn8/Do=) 2: ADA9DA3C2AAE11E9BEFAEF4EC4F9AE02.roa (hash: NcGX1+0f22h9EnvK4Hf3V559zCSmDIlERyuyLCtuDE0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91995D5/163B1E7C2AAE11E9AA574E4EC4F9AE02/bywgdVh2TqtQ74UGb3hZDOWxxWE.crl rsync://rpki.apnic.net/member_repository/A91995D5/163B1E7C2AAE11E9AA574E4EC4F9AE02/bywgdVh2TqtQ74UGb3hZDOWxxWE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bywgdVh2TqtQ74UGb3hZDOWxxWE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4295 (0x10c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91995D5, serialNumber=6F2C207558764EAB50EF85066F78590CE5B1C561 Validity Not Before: Aug 10 17:18:57 2025 GMT Not After : Aug 17 17:18:57 2025 GMT Subject: CN=6898d481-02e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:dc:48:b9:05:3c:5f:ca:db:c1:c1:73:0c:0d: b9:82:a5:eb:a8:34:50:49:75:d1:8e:b0:f7:ec:36: c4:c1:81:dd:81:a5:6d:2d:ee:7d:03:03:35:1d:4f: db:4e:9c:9d:c5:0a:77:05:7d:cf:90:23:79:d0:da: 7f:70:90:28:87:cd:41:8f:9b:6e:cc:c1:32:b2:52: 4e:03:55:1b:3e:db:e1:71:ce:c8:29:6d:58:a6:0f: 48:0b:be:89:85:ae:11:e8:49:fc:c9:ee:d6:40:a9: 8e:df:7c:d4:72:31:1f:eb:ae:b4:43:a5:68:d1:4e: 76:70:ab:af:75:12:a1:85:11:1e:9e:29:19:55:3f: e9:33:08:24:f5:ec:eb:f5:66:80:e3:67:45:af:68: 5c:e1:b0:da:66:de:98:b1:19:1b:77:78:f9:86:fd: 2b:fc:e4:6c:64:3d:6d:c6:29:a8:65:d9:fa:15:63: c3:a9:4c:68:1b:4c:01:47:d9:db:62:7f:11:85:d1: 1b:8b:03:60:9b:8e:7f:ac:79:5f:e5:5c:38:00:f6: 3c:28:1e:23:e3:ce:a1:c9:49:13:13:cc:94:4c:fa: c8:ad:0d:da:0b:ff:8a:ff:15:e3:73:a9:70:2f:73: f3:fd:a4:70:db:f5:2e:d1:e2:82:f6:8c:8b:3c:55: bf:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:40:D4:F2:BC:56:CC:0F:37:A3:BB:2D:F5:CB:60:24:7F:EC:B6:75 X509v3 Authority Key Identifier: keyid:6F:2C:20:75:58:76:4E:AB:50:EF:85:06:6F:78:59:0C:E5:B1:C5:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91995D5/163B1E7C2AAE11E9AA574E4EC4F9AE02/bywgdVh2TqtQ74UGb3hZDOWxxWE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bywgdVh2TqtQ74UGb3hZDOWxxWE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91995D5/163B1E7C2AAE11E9AA574E4EC4F9AE02/bywgdVh2TqtQ74UGb3hZDOWxxWE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:c4:b6:a4:01:98:eb:7c:55:fd:9d:58:da:1d:7d:82:e7:7e: f8:6c:d6:c3:5c:3a:7d:a7:4c:95:00:b4:8d:ac:dc:f5:21:ee: f8:c5:9f:b8:e1:9d:ac:dd:d8:70:85:1b:2c:e6:ec:47:13:4c: 2d:18:29:8d:ca:a4:6b:f6:aa:3b:54:16:f9:6d:98:05:48:6a: a4:f5:3d:8e:01:ab:f6:b4:2e:e8:f2:16:a2:da:35:7c:4b:3e: d9:cc:e6:bb:7e:a3:02:6d:9b:b3:04:a2:da:bc:96:4e:61:ca: 62:b2:d8:eb:4a:1f:41:52:b8:52:4e:f9:e1:1e:c7:61:de:e2: 6f:61:f6:0a:1d:31:47:40:d4:03:8b:26:74:2f:10:f2:e1:58: 4b:ca:d7:35:35:c0:9a:f1:77:a8:0f:42:9e:e3:1a:1e:f7:29: 89:78:ac:0d:b4:0a:62:2d:4d:db:2e:01:95:47:f5:5c:80:51: 7b:72:89:77:7e:39:36:4a:ee:df:31:50:32:da:31:b3:69:50: 98:cf:6a:4a:f9:75:c0:14:e7:52:27:1c:d2:7b:8c:a4:87:44: d9:be:e0:57:bb:f8:2c:c6:ee:9f:15:bb:53:8a:cb:ae:b8:c2: 26:3c:17:45:6e:b0:30:04:42:ff:7a:84:b0:fb:d3:fd:b1:67: 16:ae:57:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk1RDUxMTAvBgNVBAUTKDZGMkMyMDc1NTg3NjRFQUI1MEVGODUwNjZGNzg1OTBD RTVCMUM1NjEwHhcNMjUwODEwMTcxODU3WhcNMjUwODE3MTcxODU3WjAYMRYwFAYD VQQDEw02ODk4ZDQ4MS0wMmU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1NxIuQU8X8rbwcFzDA25gqXrqDRQSXXRjrD37DbEwYHdgaVtLe59AwM1HU/b TpydxQp3BX3PkCN50Np/cJAoh81Bj5tuzMEyslJOA1UbPtvhcc7IKW1Ypg9IC76J ha4R6En8ye7WQKmO33zUcjEf6660Q6Vo0U52cKuvdRKhhREenikZVT/pMwgk9ezr 9WaA42dFr2hc4bDaZt6YsRkbd3j5hv0r/ORsZD1tximoZdn6FWPDqUxoG0wBR9nb Yn8RhdEbiwNgm45/rHlf5Vw4APY8KB4j486hyUkTE8yUTPrIrQ3aC/+K/xXjc6lw L3Pz/aRw2/Uu0eKC9oyLPFW/RwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBNA1PK8 VswPN6O7LfXLYCR/7LZ1MB8GA1UdIwQYMBaAFG8sIHVYdk6rUO+FBm94WQzlscVh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTVENS8xNjNCMUU3QzJB QUUxMUU5QUE1NzRFNEVDNEY5QUUwMi9ieXdnZFZoMlRxdFE3NFVHYjNoWkRPV3h4 V0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J5d2dkVmgyVHF0UTc0VUdiM2haRE9XeHhXRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTVENS8xNjNCMUU3QzJBQUUxMUU5QUE1NzRFNEVDNEY5QUUwMi9ieXdnZFZoMlRx dFE3NFVHYjNoWkRPV3h4V0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaxLakAZjrfFX9nVjaHX2C5374bNbDXDp9p0yVALSNrNz1Ie74xZ+4 4Z2s3dhwhRss5uxHE0wtGCmNyqRr9qo7VBb5bZgFSGqk9T2OAav2tC7o8hai2jV8 Sz7ZzOa7fqMCbZuzBKLavJZOYcpistjrSh9BUrhSTvnhHsdh3uJvYfYKHTFHQNQD iyZ0LxDy4VhLytc1NcCa8XeoD0Ke4xoe9ymJeKwNtApiLU3bLgGVR/VcgFF7col3 fjk2Su7fMVAy2jGzaVCYz2pK+XXAFOdSJxzSe4ykh0TZvuBXu/gsxu6fFbtTisuu uMImPBdFbrAwBEL/eoSw+9P9sWcWrle7 -----END CERTIFICATE-----Generated at Mon Aug 11 07:29:35 2025 by rpki-client