$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4873/56A5B2AE38E711EF844B4F65C4F9AE02/bdB1wHDNGUBcCU1NPUvaFjQM7vw.mft File: bdB1wHDNGUBcCU1NPUvaFjQM7vw.mft (raw, json) Hash identifier: v+yUFuchiRZfXPvnvOFSWmG5dyfdxzsQ5J5ORRxkgc8= Subject key identifier: 05:9D:36:5A:95:92:D3:14:1E:A4:64:D6:03:0C:CE:BF:B7:BD:38:18 Authority key identifier: 6D:D0:75:C0:70:CD:19:40:5C:09:4D:4D:3D:4B:DA:16:34:0C:EE:FC Certificate issuer: /CN=A91B4873/serialNumber=6DD075C070CD19405C094D4D3D4BDA16340CEEFC Certificate serial: CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bdB1wHDNGUBcCU1NPUvaFjQM7vw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4873/56A5B2AE38E711EF844B4F65C4F9AE02/bdB1wHDNGUBcCU1NPUvaFjQM7vw.mft Manifest number: CE Signing time: Sat 09 Aug 2025 06:04:21 +0000 Manifest this update: Sat 09 Aug 2025 06:04:20 +0000 Manifest next update: Sat 16 Aug 2025 06:04:20 +0000 Files and hashes: 1: bdB1wHDNGUBcCU1NPUvaFjQM7vw.crl (hash: DXLZCFRE4A5Xzk4dXUxPrHOaJU1s+tuc3fQOoPI61VY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4873/56A5B2AE38E711EF844B4F65C4F9AE02/bdB1wHDNGUBcCU1NPUvaFjQM7vw.crl rsync://rpki.apnic.net/member_repository/A91B4873/56A5B2AE38E711EF844B4F65C4F9AE02/bdB1wHDNGUBcCU1NPUvaFjQM7vw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bdB1wHDNGUBcCU1NPUvaFjQM7vw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 206 (0xce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4873, serialNumber=6DD075C070CD19405C094D4D3D4BDA16340CEEFC Validity Not Before: Aug 9 06:04:20 2025 GMT Not After : Aug 16 06:04:20 2025 GMT Subject: CN=6896e4e4-71ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:fd:48:22:4b:74:5a:66:55:81:10:da:b1:80: 9d:b1:d1:32:f0:f2:23:c9:b2:7a:67:6d:97:ff:62: 53:b5:4c:d1:d2:3f:54:d8:b2:ee:95:d9:51:5d:d5: bd:f2:02:e8:00:1b:ec:92:eb:db:f2:d3:15:3c:33: bc:5d:41:7a:b6:79:6b:0c:52:18:f5:ce:2e:ba:43: ff:43:98:1a:52:63:2c:67:9e:d8:29:d8:8c:72:08: 23:67:0a:97:8b:bc:65:93:94:28:6b:c5:14:e7:01: 79:8b:ca:39:7b:0a:96:8e:13:cf:67:3b:be:ef:2c: 4b:43:0c:93:4b:b3:ec:fb:62:56:27:3f:fd:48:7f: 40:aa:68:cb:a8:1a:d5:c4:fe:12:6b:59:28:b6:f5: 2c:a3:56:c0:13:71:e3:18:d4:32:eb:e9:66:c8:d9: 05:7c:62:ff:11:7d:0e:17:29:0b:72:0f:8a:4d:16: 78:e3:e7:68:f7:b5:a5:0a:96:89:b5:c5:36:18:52: 73:3c:33:7c:f4:c2:5b:74:c5:f7:8b:26:0f:ed:de: c5:f3:8b:10:9f:32:d3:d6:ec:81:fc:ca:d7:13:a1: 7d:6b:78:19:5f:b9:9e:cc:b6:fb:cd:0d:e1:3f:2b: da:95:d5:e3:25:b9:12:09:24:18:29:e2:eb:e1:f2: 99:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:9D:36:5A:95:92:D3:14:1E:A4:64:D6:03:0C:CE:BF:B7:BD:38:18 X509v3 Authority Key Identifier: keyid:6D:D0:75:C0:70:CD:19:40:5C:09:4D:4D:3D:4B:DA:16:34:0C:EE:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4873/56A5B2AE38E711EF844B4F65C4F9AE02/bdB1wHDNGUBcCU1NPUvaFjQM7vw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bdB1wHDNGUBcCU1NPUvaFjQM7vw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4873/56A5B2AE38E711EF844B4F65C4F9AE02/bdB1wHDNGUBcCU1NPUvaFjQM7vw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:df:81:21:9a:d8:63:b6:a0:79:40:cd:31:63:9b:8f:be:2e: 1e:c7:58:f4:bf:0a:10:27:ae:b5:c2:22:7c:b1:30:68:02:bf: e0:b0:8d:29:88:61:7d:12:08:38:7f:5b:ef:7a:97:92:1c:f6: 9d:be:c9:30:2b:2d:dc:25:c5:ea:92:db:64:46:3e:93:ae:99: 53:77:b2:39:17:a7:ac:8f:40:63:95:63:7a:16:5a:c1:b5:37: 42:87:e3:24:0d:fd:e0:c7:a2:97:cb:9f:4d:5a:5a:24:92:13: 1e:a3:33:90:1d:ee:69:70:32:a9:58:8a:76:d5:7c:b8:b5:0f: a3:7a:76:a3:f0:6e:50:56:97:d2:a2:e7:5c:eb:ef:dd:56:63: 2a:df:13:1d:11:9a:de:5c:0e:c4:fb:a4:97:15:f5:aa:d1:8f: 83:84:83:8c:46:53:8e:72:8e:1a:26:6f:ba:9b:29:1d:9e:a3: ee:81:ee:bf:08:73:53:dc:c2:f4:0e:d0:7b:1d:de:e8:f6:b3: 06:fb:7e:35:b7:65:6d:9f:4c:ba:c1:c0:2f:3d:22:ac:6c:92: 29:35:0c:97:1c:27:7d:ca:93:e4:76:eb:31:6d:50:31:7b:c6: ad:54:52:1f:5d:20:41:6e:d2:80:8e:56:ba:22:63:6f:7b:58: e9:6a:99:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ4NzMxMTAvBgNVBAUTKDZERDA3NUMwNzBDRDE5NDA1QzA5NEQ0RDNENEJEQTE2 MzQwQ0VFRkMwHhcNMjUwODA5MDYwNDIwWhcNMjUwODE2MDYwNDIwWjAYMRYwFAYD VQQDEw02ODk2ZTRlNC03MWVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAov1IIkt0WmZVgRDasYCdsdEy8PIjybJ6Z22X/2JTtUzR0j9U2LLuldlRXdW9 8gLoABvskuvb8tMVPDO8XUF6tnlrDFIY9c4uukP/Q5gaUmMsZ57YKdiMcggjZwqX i7xlk5Qoa8UU5wF5i8o5ewqWjhPPZzu+7yxLQwyTS7Ps+2JWJz/9SH9AqmjLqBrV xP4Sa1kotvUso1bAE3HjGNQy6+lmyNkFfGL/EX0OFykLcg+KTRZ44+do97WlCpaJ tcU2GFJzPDN89MJbdMX3iyYP7d7F84sQnzLT1uyB/MrXE6F9a3gZX7mezLb7zQ3h PyvaldXjJbkSCSQYKeLr4fKZ4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAWdNlqV ktMUHqRk1gMMzr+3vTgYMB8GA1UdIwQYMBaAFG3QdcBwzRlAXAlNTT1L2hY0DO78 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDg3My81NkE1QjJBRTM4 RTcxMUVGODQ0QjRGNjVDNEY5QUUwMi9iZEIxd0hETkdVQmNDVTFOUFV2YUZqUU03 dncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JkQjF3SEROR1VCY0NVMU5QVXZhRmpRTTd2dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDg3My81NkE1QjJBRTM4RTcxMUVGODQ0QjRGNjVDNEY5QUUwMi9iZEIxd0hETkdV QmNDVTFOUFV2YUZqUU03dncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAB34EhmthjtqB5QM0xY5uPvi4ex1j0vwoQJ661wiJ8sTBoAr/gsI0p iGF9Egg4f1vvepeSHPadvskwKy3cJcXqkttkRj6TrplTd7I5F6esj0BjlWN6FlrB tTdCh+MkDf3gx6KXy59NWlokkhMeozOQHe5pcDKpWIp21Xy4tQ+jenaj8G5QVpfS oudc6+/dVmMq3xMdEZreXA7E+6SXFfWq0Y+DhIOMRlOOco4aJm+6mykdnqPuge6/ CHNT3ML0DtB7Hd7o9rMG+341t2Vtn0y6wcAvPSKsbJIpNQyXHCd9ypPkdusxbVAx e8atVFIfXSBBbtKAjla6ImNve1jpapnD -----END CERTIFICATE-----Generated at Mon Aug 11 01:53:13 2025 by rpki-client