$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3526/A13C55CE98B611EE8B490487C4F9AE02/Bf0tUZ1AyyCJN7-KjkY-bYQswH0.mft File: Bf0tUZ1AyyCJN7-KjkY-bYQswH0.mft (raw, json) Hash identifier: KFpEYFjROK5YyzWEVknNZVtyhZWY5jL9R8eRKVQ6/oc= Subject key identifier: BC:3F:03:40:3B:F7:CB:13:10:E0:C4:F0:9E:46:E3:7E:45:22:AA:1F Authority key identifier: 05:FD:2D:51:9D:40:CB:20:89:37:BF:8A:8E:46:3E:6D:84:2C:C0:7D Certificate issuer: /CN=A91A3526/serialNumber=05FD2D519D40CB208937BF8A8E463E6D842CC07D Certificate serial: 0143 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bf0tUZ1AyyCJN7-KjkY-bYQswH0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3526/A13C55CE98B611EE8B490487C4F9AE02/Bf0tUZ1AyyCJN7-KjkY-bYQswH0.mft Manifest number: 013C Signing time: Mon 11 Aug 2025 04:38:15 +0000 Manifest this update: Mon 11 Aug 2025 04:38:15 +0000 Manifest next update: Mon 18 Aug 2025 04:38:15 +0000 Files and hashes: 1: Bf0tUZ1AyyCJN7-KjkY-bYQswH0.crl (hash: 73tHw9ukaOwWsDIKNOY71DttHq5jEpR2WFXsY1HUdnY=) 2: 134D519098B711EE99FD1F09C4F9AE02.roa (hash: vJ2YKh1qvo6z7EsNb01ZnfIC7WfZlHkFbVKbRaXaFP0=) 3: 13E4471298B711EE99FD1F09C4F9AE02.roa (hash: /ZzSx5BufcsBFJm8hzU4SO+vyDuIxcR/d9CCuElSRT0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3526/A13C55CE98B611EE8B490487C4F9AE02/Bf0tUZ1AyyCJN7-KjkY-bYQswH0.crl rsync://rpki.apnic.net/member_repository/A91A3526/A13C55CE98B611EE8B490487C4F9AE02/Bf0tUZ1AyyCJN7-KjkY-bYQswH0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bf0tUZ1AyyCJN7-KjkY-bYQswH0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 04:38:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 323 (0x143) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3526, serialNumber=05FD2D519D40CB208937BF8A8E463E6D842CC07D Validity Not Before: Aug 11 04:38:15 2025 GMT Not After : Aug 18 04:38:15 2025 GMT Subject: CN=689973b7-d375 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e1:a5:2a:cb:67:0a:a3:d3:8a:92:e4:47:17: c9:dd:89:09:85:44:72:2f:42:87:46:c0:3f:4d:f2: 42:e4:98:f4:01:69:81:10:e1:3e:bf:c4:b3:79:d3: 90:6e:9c:79:2c:7b:b0:6d:be:f7:59:e9:3b:78:a7: bd:b5:b8:12:ba:83:1f:dc:e7:7f:f3:52:16:ef:d1: 57:d3:c5:51:87:13:fa:1a:59:8c:95:b4:03:63:c9: fb:40:87:0c:fd:f1:f0:ef:ad:7e:23:41:7b:74:50: ba:ac:c4:1e:f1:2c:cd:24:43:94:28:83:d1:c2:93: 40:22:15:46:2e:2f:30:cf:c4:ed:22:a0:95:f5:79: 29:c3:91:fb:e1:6c:60:6a:4b:97:10:32:ed:34:87: 40:66:49:00:58:91:ba:98:77:88:cb:6e:1d:3d:07: 82:cb:b6:f5:e6:a2:73:42:32:20:3a:96:82:41:77: b8:f0:32:9f:7a:e4:4c:34:a2:6e:a5:48:f9:51:fb: 4e:7d:04:3c:fa:52:3e:30:8c:ab:51:a0:b5:9d:95: 81:d8:be:7d:76:d7:0b:18:f8:ef:e8:39:97:c3:76: a3:18:20:fe:7b:a9:f6:70:57:4c:a0:c3:63:a6:7c: 93:dd:91:49:7e:86:2c:d2:98:2a:5e:4e:a9:e9:64: 11:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:3F:03:40:3B:F7:CB:13:10:E0:C4:F0:9E:46:E3:7E:45:22:AA:1F X509v3 Authority Key Identifier: keyid:05:FD:2D:51:9D:40:CB:20:89:37:BF:8A:8E:46:3E:6D:84:2C:C0:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3526/A13C55CE98B611EE8B490487C4F9AE02/Bf0tUZ1AyyCJN7-KjkY-bYQswH0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bf0tUZ1AyyCJN7-KjkY-bYQswH0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3526/A13C55CE98B611EE8B490487C4F9AE02/Bf0tUZ1AyyCJN7-KjkY-bYQswH0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:62:03:a9:3c:80:c2:60:54:05:79:1f:2a:da:0e:c5:05:d9: 19:23:51:91:49:39:64:61:3b:72:19:ea:b2:47:9a:e7:ca:31: 83:c0:a6:f2:2f:dd:dd:6a:04:a5:4c:e5:e2:43:7a:8f:4c:fd: 7e:c1:3e:98:07:b2:82:e7:b0:5c:e8:77:d9:84:b4:e4:19:6c: 55:66:e1:17:6d:12:16:bb:4a:eb:d3:5d:17:8e:e0:0a:c4:98: 5c:33:46:f2:b6:1c:99:7e:dd:9d:fb:81:ca:99:bc:3d:86:e5: c5:74:ef:17:3c:bd:a7:50:78:aa:10:cf:c7:47:7d:32:c2:4f: cb:70:41:c3:0d:db:32:98:02:ce:31:47:bd:e1:4a:13:bf:e9: b4:7c:6d:78:be:6f:2e:7f:f3:c0:07:bc:68:51:41:53:28:9e: e1:04:45:9b:12:bb:6f:1f:fd:18:d8:1a:da:a6:1a:b6:65:89: c7:eb:5f:6e:cf:0a:0a:bd:08:e9:93:ea:91:cd:e0:85:e5:b0: 84:f8:d0:c9:99:83:08:7c:0a:65:5e:c3:28:c1:6d:f5:7d:cf: ea:39:08:a5:c8:ad:fa:9f:12:93:68:ad:9b:b3:3f:f8:bb:50: ef:27:13:74:7b:58:f9:3e:fa:67:61:ae:5f:18:33:f2:33:36: e5:9a:41:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM1MjYxMTAvBgNVBAUTKDA1RkQyRDUxOUQ0MENCMjA4OTM3QkY4QThFNDYzRTZE ODQyQ0MwN0QwHhcNMjUwODExMDQzODE1WhcNMjUwODE4MDQzODE1WjAYMRYwFAYD VQQDEw02ODk5NzNiNy1kMzc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwuGlKstnCqPTipLkRxfJ3YkJhURyL0KHRsA/TfJC5Jj0AWmBEOE+v8SzedOQ bpx5LHuwbb73Wek7eKe9tbgSuoMf3Od/81IW79FX08VRhxP6GlmMlbQDY8n7QIcM /fHw761+I0F7dFC6rMQe8SzNJEOUKIPRwpNAIhVGLi8wz8TtIqCV9Xkpw5H74Wxg akuXEDLtNIdAZkkAWJG6mHeIy24dPQeCy7b15qJzQjIgOpaCQXe48DKfeuRMNKJu pUj5UftOfQQ8+lI+MIyrUaC1nZWB2L59dtcLGPjv6DmXw3ajGCD+e6n2cFdMoMNj pnyT3ZFJfoYs0pgqXk6p6WQRjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLw/A0A7 98sTEODE8J5G435FIqofMB8GA1UdIwQYMBaAFAX9LVGdQMsgiTe/io5GPm2ELMB9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzUyNi9BMTNDNTVDRTk4 QjYxMUVFOEI0OTA0ODdDNEY5QUUwMi9CZjB0VVoxQXl5Q0pONy1LamtZLWJZUXN3 SDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JmMHRVWjFBeXlDSk43LUtqa1ktYllRc3dIMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzUyNi9BMTNDNTVDRTk4QjYxMUVFOEI0OTA0ODdDNEY5QUUwMi9CZjB0VVoxQXl5 Q0pONy1LamtZLWJZUXN3SDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5YgOpPIDCYFQFeR8q2g7FBdkZI1GRSTlkYTtyGeqyR5rnyjGDwKby L93dagSlTOXiQ3qPTP1+wT6YB7KC57Bc6HfZhLTkGWxVZuEXbRIWu0rr010XjuAK xJhcM0bythyZft2d+4HKmbw9huXFdO8XPL2nUHiqEM/HR30ywk/LcEHDDdsymALO MUe94UoTv+m0fG14vm8uf/PAB7xoUUFTKJ7hBEWbErtvH/0Y2Braphq2ZYnH619u zwoKvQjpk+qRzeCF5bCE+NDJmYMIfAplXsMowW31fc/qOQilyK36nxKTaK2bsz/4 u1DvJxN0e1j5PvpnYa5fGDPyMzblmkHn -----END CERTIFICATE-----Generated at Wed Aug 13 02:49:18 2025 by rpki-client