$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft File: bzPCWtM2F4RBLEKweYYz0Dslvso.mft (raw, json) Hash identifier: EZZe4Gld7aNrt0QESR0xCMUvaA2YL9fdeeqPLZnIm9c= Subject key identifier: 4F:DF:5C:4E:95:7A:92:1E:60:D7:EC:93:B1:A9:0B:7F:CF:75:66:B4 Authority key identifier: 6F:33:C2:5A:D3:36:17:84:41:2C:42:B0:79:86:33:D0:3B:25:BE:CA Certificate issuer: /CN=A91AB027/serialNumber=6F33C25AD3361784412C42B0798633D03B25BECA Certificate serial: 0F55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bzPCWtM2F4RBLEKweYYz0Dslvso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft Manifest number: 0F4C Signing time: Sat 02 Aug 2025 17:46:25 +0000 Manifest this update: Sat 02 Aug 2025 17:46:25 +0000 Manifest next update: Sat 09 Aug 2025 17:46:25 +0000 Files and hashes: 1: bzPCWtM2F4RBLEKweYYz0Dslvso.crl (hash: JInh4KpyDAV0V7H07USvaY62VfV7fT02g2iTN76Ph0Q=) 2: 62C1F5587ACD11E9AC0A867BC4F9AE02.roa (hash: zJtFuv9ERKF2VcP0kXnp4PcKZFEJbjxQnX3bWZEEZas=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.crl rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bzPCWtM2F4RBLEKweYYz0Dslvso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 17:46:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3925 (0xf55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB027, serialNumber=6F33C25AD3361784412C42B0798633D03B25BECA Validity Not Before: Aug 2 17:46:25 2025 GMT Not After : Aug 9 17:46:25 2025 GMT Subject: CN=688e4ef1-754c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:ee:d7:e1:23:8e:c1:6a:6b:0c:b3:ae:da:c5: e6:92:d9:04:19:9d:83:db:1e:dd:5f:b1:03:80:82: 4c:03:8b:e4:04:3c:84:d2:a5:95:04:f9:db:0b:55: 8f:5c:e8:94:b4:8a:f8:5f:39:33:0f:46:89:f4:2d: 71:de:b6:82:9f:49:f6:66:eb:e7:cc:91:1e:8a:98: 3c:44:07:6e:29:19:82:0f:a9:56:b5:be:78:1d:6b: 60:63:d7:62:cb:a4:c9:b7:c4:77:d1:3c:6b:d1:3f: f1:2f:7f:8a:17:a0:be:7e:70:c1:8a:bd:f9:90:30: ca:1c:15:1b:2c:60:21:87:5f:f2:c7:08:56:f3:c1: e2:82:bf:e7:cc:d0:79:09:58:1c:0b:8a:45:da:2e: e1:38:86:21:3b:c9:f1:6e:a1:f4:eb:bb:61:5f:1f: 53:56:b1:d7:c1:03:26:5e:64:3c:39:69:95:b4:8a: 9a:c3:61:08:6b:40:e5:05:20:96:ab:6e:6c:ff:36: bb:59:d7:a1:c5:8a:8a:81:65:c9:54:03:bc:82:b5: 5c:cc:ca:f2:65:99:99:72:88:af:b2:36:9f:e3:59: 55:9b:f4:46:51:6b:57:a3:c0:a0:1e:23:6d:8a:c3: 9e:8a:19:c2:cf:55:28:51:06:4f:f9:67:09:db:c5: c3:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:DF:5C:4E:95:7A:92:1E:60:D7:EC:93:B1:A9:0B:7F:CF:75:66:B4 X509v3 Authority Key Identifier: keyid:6F:33:C2:5A:D3:36:17:84:41:2C:42:B0:79:86:33:D0:3B:25:BE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bzPCWtM2F4RBLEKweYYz0Dslvso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:24:9a:eb:30:36:50:be:a7:2d:67:0f:9c:bd:24:da:22:1b: f8:47:05:1d:53:23:2e:27:e3:1a:48:d0:04:8b:7e:15:19:f9: 7a:e4:e1:bb:32:7e:d1:ff:e6:6d:af:8b:75:b7:bd:18:bf:5e: bb:f3:f7:61:eb:e0:5b:76:f5:c1:1c:96:c6:1e:7c:a6:8c:43: 3e:f1:8b:b6:11:d4:db:de:9f:0f:e3:ff:4c:96:88:5f:29:2d: 7d:35:a7:20:7b:8f:d8:9d:99:c6:0b:d9:48:9f:73:6b:35:12: 47:74:c9:90:6d:1d:b0:47:44:db:5a:58:0e:0f:d8:fe:18:72: b1:c8:95:e8:90:2e:6f:8a:ba:ec:0c:f5:24:03:47:3d:f7:20: bc:e7:f9:b3:e0:80:8a:3d:f4:e7:64:79:41:1c:6d:bf:d3:82: 8b:56:a5:74:44:ee:47:c5:89:06:a0:65:42:16:04:af:b6:c8: ca:d5:f1:70:9c:c0:c1:45:68:6a:28:cc:6b:83:9e:f5:96:11: e1:80:a4:3f:df:fc:b4:a9:0d:3f:06:90:47:27:51:99:34:20: e1:75:22:ed:c1:a7:ac:07:51:d7:c9:db:ae:dd:8b:7b:7e:7b: 6f:83:20:92:19:42:04:3a:74:f2:ed:16:38:27:19:62:83:1c: ea:75:39:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD1UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIwMjcxMTAvBgNVBAUTKDZGMzNDMjVBRDMzNjE3ODQ0MTJDNDJCMDc5ODYzM0Qw M0IyNUJFQ0EwHhcNMjUwODAyMTc0NjI1WhcNMjUwODA5MTc0NjI1WjAYMRYwFAYD VQQDEw02ODhlNGVmMS03NTRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1e7X4SOOwWprDLOu2sXmktkEGZ2D2x7dX7EDgIJMA4vkBDyE0qWVBPnbC1WP XOiUtIr4XzkzD0aJ9C1x3raCn0n2ZuvnzJEeipg8RAduKRmCD6lWtb54HWtgY9di y6TJt8R30Txr0T/xL3+KF6C+fnDBir35kDDKHBUbLGAhh1/yxwhW88Higr/nzNB5 CVgcC4pF2i7hOIYhO8nxbqH067thXx9TVrHXwQMmXmQ8OWmVtIqaw2EIa0DlBSCW q25s/za7WdehxYqKgWXJVAO8grVczMryZZmZcoivsjaf41lVm/RGUWtXo8CgHiNt isOeihnCz1UoUQZP+WcJ28XD5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE/fXE6V epIeYNfsk7GpC3/PdWa0MB8GA1UdIwQYMBaAFG8zwlrTNheEQSxCsHmGM9A7Jb7K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjAyNy82OEY3NTkxMDcz NDYxMUU5QUQ1NjFCNDdDNEY5QUUwMi9ielBDV3RNMkY0UkJMRUt3ZVlZejBEc2x2 c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J6UENXdE0yRjRSQkxFS3dlWVl6MERzbHZzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjAyNy82OEY3NTkxMDczNDYxMUU5QUQ1NjFCNDdDNEY5QUUwMi9ielBDV3RNMkY0 UkJMRUt3ZVlZejBEc2x2c28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbJJrrMDZQvqctZw+cvSTaIhv4RwUdUyMuJ+MaSNAEi34VGfl65OG7 Mn7R/+Ztr4t1t70Yv1678/dh6+BbdvXBHJbGHnymjEM+8Yu2EdTb3p8P4/9Mlohf KS19Nacge4/YnZnGC9lIn3NrNRJHdMmQbR2wR0TbWlgOD9j+GHKxyJXokC5virrs DPUkA0c99yC85/mz4ICKPfTnZHlBHG2/04KLVqV0RO5HxYkGoGVCFgSvtsjK1fFw nMDBRWhqKMxrg571lhHhgKQ/3/y0qQ0/BpBHJ1GZNCDhdSLtwaesB1HXyduu3Yt7 fntvgyCSGUIEOnTy7RY4JxligxzqdTmP -----END CERTIFICATE-----Generated at Mon Aug 4 11:24:35 2025 by rpki-client