$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8CD2/043C6AF4D8E511EB80685D5FC4F9AE02/bjPVE5klw9tNCFk3zmms03vqeU0.mft File: bjPVE5klw9tNCFk3zmms03vqeU0.mft (raw, json) Hash identifier: zrpaGLgc6BAIXQCiARWGmg1D+W6ZwlJcgDXTTzNkT2s= Subject key identifier: C1:6F:E3:F7:81:48:63:A4:1E:38:95:15:65:29:F7:F3:2E:35:C5:D8 Authority key identifier: 6E:33:D5:13:99:25:C3:DB:4D:08:59:37:CE:69:AC:D3:7B:EA:79:4D Certificate issuer: /CN=A91A8CD2/serialNumber=6E33D5139925C3DB4D085937CE69ACD37BEA794D Certificate serial: 05AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bjPVE5klw9tNCFk3zmms03vqeU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8CD2/043C6AF4D8E511EB80685D5FC4F9AE02/bjPVE5klw9tNCFk3zmms03vqeU0.mft Manifest number: 05A6 Signing time: Sat 02 Aug 2025 23:34:27 +0000 Manifest this update: Sat 02 Aug 2025 23:34:27 +0000 Manifest next update: Sat 09 Aug 2025 23:34:27 +0000 Files and hashes: 1: bjPVE5klw9tNCFk3zmms03vqeU0.crl (hash: HbLOa4DQwG8i9Xg4HhsrucZ+EFlkmDCv199OAcnwbp8=) 2: 5D10DEF0D8E811EB8ACD3C66C4F9AE02.roa (hash: /8hy3Bbn1TLOvORzZ60crKTvCR9C6tYBcsWimqCiQa8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8CD2/043C6AF4D8E511EB80685D5FC4F9AE02/bjPVE5klw9tNCFk3zmms03vqeU0.crl rsync://rpki.apnic.net/member_repository/A91A8CD2/043C6AF4D8E511EB80685D5FC4F9AE02/bjPVE5klw9tNCFk3zmms03vqeU0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bjPVE5klw9tNCFk3zmms03vqeU0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 23:34:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1451 (0x5ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8CD2, serialNumber=6E33D5139925C3DB4D085937CE69ACD37BEA794D Validity Not Before: Aug 2 23:34:27 2025 GMT Not After : Aug 9 23:34:27 2025 GMT Subject: CN=688ea083-3fb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:df:b9:1b:ef:2c:72:25:bb:b2:27:97:3c:b0: 0f:d7:3f:d8:99:12:6a:5c:a8:d6:d8:5b:c3:7f:92: 21:0a:0c:88:65:6f:6b:4c:ab:02:0e:3e:5f:f2:14: dc:10:de:0f:48:0a:64:8e:23:86:7a:fa:2b:ce:4c: 77:7b:96:f9:6b:c5:e8:4b:e1:0a:3e:ba:7f:22:32: 15:f7:bf:e9:3e:26:0b:6a:3d:6f:9f:a8:9d:f6:e2: 8a:5e:50:42:f4:b3:a5:63:e9:82:ea:d7:7b:2d:62: b8:b1:6e:7e:e1:b8:59:e6:7b:1a:43:1c:9f:97:ee: 11:8e:c8:35:4d:c2:95:f2:4f:3e:bd:59:be:f8:03: 59:19:6b:4d:58:4d:77:47:20:fd:8c:9a:d5:25:24: ec:01:da:23:c5:ef:5a:cd:69:fd:fe:71:a5:19:4d: 5f:ae:2d:77:41:44:95:b4:78:80:f6:84:74:ac:e8: 27:35:e7:a6:b6:e2:3d:1e:9a:47:bc:eb:5c:1d:ef: 3c:0e:5f:3f:8d:4f:26:bb:ec:df:b5:5b:cd:73:68: 0a:81:ae:28:6d:fc:ef:04:be:af:b3:d8:0d:c4:e2: c0:e7:6c:14:9f:ac:50:2c:49:aa:65:02:86:25:b5: e2:2f:c9:e7:06:11:87:cc:57:19:e3:11:04:48:73: 7d:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:6F:E3:F7:81:48:63:A4:1E:38:95:15:65:29:F7:F3:2E:35:C5:D8 X509v3 Authority Key Identifier: keyid:6E:33:D5:13:99:25:C3:DB:4D:08:59:37:CE:69:AC:D3:7B:EA:79:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8CD2/043C6AF4D8E511EB80685D5FC4F9AE02/bjPVE5klw9tNCFk3zmms03vqeU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bjPVE5klw9tNCFk3zmms03vqeU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8CD2/043C6AF4D8E511EB80685D5FC4F9AE02/bjPVE5klw9tNCFk3zmms03vqeU0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:17:d0:77:cd:3b:a2:a3:69:89:ae:f0:bb:17:5d:d3:2a:94: 40:a2:c0:eb:db:66:45:a1:c4:c8:96:3c:7a:fa:f3:6a:8e:f7: e6:dd:ba:6f:11:6d:b0:e7:ff:2f:94:42:e3:68:19:0d:2e:de: ae:c8:0e:32:77:a8:8b:a6:d4:e8:69:ed:4b:a7:28:7d:88:ba: 05:5c:bc:b9:0d:4a:e3:ae:2f:15:c9:38:4a:da:da:a9:6a:ec: 95:1d:ec:61:36:e4:b3:34:dc:2f:e3:57:81:17:42:60:43:c6: 7c:30:89:60:35:fd:b9:69:04:54:1c:1f:6a:93:2f:65:e4:3f: ae:10:b5:cc:1a:2f:6c:f2:c8:5f:cc:e9:df:0b:fe:c4:62:89: 91:86:43:a4:cb:7f:82:da:89:f4:a2:9b:57:62:1d:82:ff:1d: d9:0f:11:eb:75:14:af:ff:27:a4:90:06:91:f0:e8:78:1c:19: b7:06:80:6b:18:e0:ff:a3:0d:24:06:47:6c:ec:16:04:c3:95: 50:02:11:f8:47:91:85:dc:d3:56:9e:4c:2f:32:5b:4f:bd:12: 7e:de:1f:cf:df:82:fa:93:90:2b:d1:a2:05:fe:41:3f:da:d0: 48:c1:4a:ab:16:5d:4d:e4:1f:a1:a1:f0:9c:f8:1f:69:ae:b9: b7:5d:43:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBaswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThDRDIxMTAvBgNVBAUTKDZFMzNENTEzOTkyNUMzREI0RDA4NTkzN0NFNjlBQ0Qz N0JFQTc5NEQwHhcNMjUwODAyMjMzNDI3WhcNMjUwODA5MjMzNDI3WjAYMRYwFAYD VQQDEw02ODhlYTA4My0zZmI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr9+5G+8sciW7sieXPLAP1z/YmRJqXKjW2FvDf5IhCgyIZW9rTKsCDj5f8hTc EN4PSApkjiOGevorzkx3e5b5a8XoS+EKPrp/IjIV97/pPiYLaj1vn6id9uKKXlBC 9LOlY+mC6td7LWK4sW5+4bhZ5nsaQxyfl+4Rjsg1TcKV8k8+vVm++ANZGWtNWE13 RyD9jJrVJSTsAdojxe9azWn9/nGlGU1fri13QUSVtHiA9oR0rOgnNeemtuI9HppH vOtcHe88Dl8/jU8mu+zftVvNc2gKga4obfzvBL6vs9gNxOLA52wUn6xQLEmqZQKG JbXiL8nnBhGHzFcZ4xEESHN9zQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMFv4/eB SGOkHjiVFWUp9/MuNcXYMB8GA1UdIwQYMBaAFG4z1ROZJcPbTQhZN85prNN76nlN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOENEMi8wNDNDNkFGNEQ4 RTUxMUVCODA2ODVENUZDNEY5QUUwMi9ialBWRTVrbHc5dE5DRmszem1tczAzdnFl VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JqUFZFNWtsdzl0TkNGazN6bW1zMDN2cWVVMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OENEMi8wNDNDNkFGNEQ4RTUxMUVCODA2ODVENUZDNEY5QUUwMi9ialBWRTVrbHc5 dE5DRmszem1tczAzdnFlVTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJF9B3zTuio2mJrvC7F13TKpRAosDr22ZFocTIljx6+vNqjvfm3bpv EW2w5/8vlELjaBkNLt6uyA4yd6iLptToae1Lpyh9iLoFXLy5DUrjri8VyThK2tqp auyVHexhNuSzNNwv41eBF0JgQ8Z8MIlgNf25aQRUHB9qky9l5D+uELXMGi9s8shf zOnfC/7EYomRhkOky3+C2on0optXYh2C/x3ZDxHrdRSv/yekkAaR8Oh4HBm3BoBr GOD/ow0kBkds7BYEw5VQAhH4R5GF3NNWnkwvMltPvRJ+3h/P34L6k5Ar0aIF/kE/ 2tBIwUqrFl1N5B+hofCc+B9prrm3XUMB -----END CERTIFICATE-----Generated at Mon Aug 4 15:34:20 2025 by rpki-client