$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4AA0/1041E5EAE2C311EAB818D17FC4F9AE02/BM9X8qf_ynLAdGioxtXyRRf_Rrk.mft File: BM9X8qf_ynLAdGioxtXyRRf_Rrk.mft (raw, json) Hash identifier: UykqLrHSF2faFlKWMUCfFAC/iu4CEHg+lB3ttRD6BmU= Subject key identifier: 50:F0:76:BD:98:0B:90:E9:41:E9:5D:32:FB:57:61:90:00:91:CC:8D Authority key identifier: 04:CF:57:F2:A7:FF:CA:72:C0:74:68:A8:C6:D5:F2:45:17:FF:46:B9 Certificate issuer: /CN=A91B4AA0/serialNumber=04CF57F2A7FFCA72C07468A8C6D5F24517FF46B9 Certificate serial: 0830 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BM9X8qf_ynLAdGioxtXyRRf_Rrk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4AA0/1041E5EAE2C311EAB818D17FC4F9AE02/BM9X8qf_ynLAdGioxtXyRRf_Rrk.mft Manifest number: 0825 Signing time: Wed 06 Aug 2025 21:09:04 +0000 Manifest this update: Wed 06 Aug 2025 21:09:04 +0000 Manifest next update: Wed 13 Aug 2025 21:09:04 +0000 Files and hashes: 1: BM9X8qf_ynLAdGioxtXyRRf_Rrk.crl (hash: NYkIOD9oSj46EeKFrocH5/C1aVa3USEsfHDMVw18zWE=) 2: 02F863F6C09211EC8950E57AC4F9AE02.roa (hash: YNUo90dPfw7aNa6aT24Mb69b4ZpufKscErkIIX/bwoA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4AA0/1041E5EAE2C311EAB818D17FC4F9AE02/BM9X8qf_ynLAdGioxtXyRRf_Rrk.crl rsync://rpki.apnic.net/member_repository/A91B4AA0/1041E5EAE2C311EAB818D17FC4F9AE02/BM9X8qf_ynLAdGioxtXyRRf_Rrk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BM9X8qf_ynLAdGioxtXyRRf_Rrk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 21:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2096 (0x830) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4AA0, serialNumber=04CF57F2A7FFCA72C07468A8C6D5F24517FF46B9 Validity Not Before: Aug 6 21:09:04 2025 GMT Not After : Aug 13 21:09:04 2025 GMT Subject: CN=6893c470-5a3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:b0:f9:b2:67:b5:97:f5:b7:f0:77:9b:49:73: ba:70:ea:38:b1:3d:9f:38:b3:0c:3e:90:30:30:02: 32:dd:36:d5:0e:6a:7b:00:e2:ce:2d:0a:7d:8f:2a: 17:82:fa:e7:48:8c:43:7b:76:5d:45:bc:44:c5:0a: 6e:bf:60:13:77:47:40:43:8b:82:49:2d:e5:f2:ab: a5:10:eb:42:b3:8a:bd:02:e7:63:98:56:6e:af:cc: bb:6b:6d:d2:39:7c:d6:65:fd:28:58:1d:22:ab:eb: c2:5f:f6:16:bc:28:53:58:f8:d7:6b:5b:a2:59:1e: 32:8b:27:d8:a3:95:d0:8a:8d:c8:ed:9e:1b:81:5d: 96:06:b1:4f:ed:ab:56:72:4f:c3:8c:e4:8e:fe:d9: 1e:7a:42:bb:c7:08:a4:4b:bb:38:6b:94:5f:ea:4a: 68:63:73:4d:5c:6e:0d:53:e3:4e:85:ae:17:bd:b4: 56:23:6b:a1:ad:ea:69:54:3d:ca:58:23:ad:16:c8: 9b:81:90:cd:25:13:f8:5f:9a:dd:c9:fb:40:11:8e: f9:3b:39:2d:db:e4:b2:1d:80:b0:9a:a2:d1:19:c7: ec:c0:d3:a4:66:58:c9:d4:d7:f6:d6:c4:ec:97:80: 54:34:5b:a0:d3:04:47:14:9c:07:92:8a:e0:5e:4b: 4a:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:F0:76:BD:98:0B:90:E9:41:E9:5D:32:FB:57:61:90:00:91:CC:8D X509v3 Authority Key Identifier: keyid:04:CF:57:F2:A7:FF:CA:72:C0:74:68:A8:C6:D5:F2:45:17:FF:46:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4AA0/1041E5EAE2C311EAB818D17FC4F9AE02/BM9X8qf_ynLAdGioxtXyRRf_Rrk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BM9X8qf_ynLAdGioxtXyRRf_Rrk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4AA0/1041E5EAE2C311EAB818D17FC4F9AE02/BM9X8qf_ynLAdGioxtXyRRf_Rrk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:41:b1:ff:eb:2b:2f:5c:45:2d:da:3f:36:cc:05:ec:d5:a5: b0:8e:9c:89:65:2d:ad:6b:a4:b7:b7:d8:42:ce:94:25:b4:8a: 58:f2:9c:ee:81:5a:98:5b:56:c9:0b:d5:13:60:fd:14:0d:18: 71:35:e6:25:ac:a2:5b:4d:f1:06:6b:eb:9e:4e:80:af:42:c9: 84:88:40:b4:32:4a:2c:09:c2:0b:36:ed:f2:93:27:df:4c:63: b0:93:3e:f3:b7:94:7c:81:b1:2e:91:74:35:4b:2f:89:3a:41: c7:e4:54:03:0f:8a:6d:e4:e7:f9:d8:0a:59:cf:5b:1c:37:06: ac:d6:11:37:b9:f5:2f:da:84:09:bb:98:c2:d8:a3:3d:9b:9c: 1f:52:40:26:19:fe:ce:5c:58:76:e0:b8:39:cc:22:40:2c:1e: 0c:18:fd:21:bd:96:d1:de:04:67:b1:fc:26:8b:54:be:4b:56: 49:96:55:73:9f:b1:b6:93:e2:05:fe:d1:ce:a9:27:83:6b:bc: b9:d1:0b:55:61:88:f8:a9:08:8d:94:f3:4c:57:db:0b:fa:45: e6:d7:12:be:f7:61:6f:b5:3f:b9:f5:95:95:cd:3e:ea:02:13: 26:5b:13:6a:75:15:e8:23:21:8f:e5:6f:1a:1d:d6:83:ce:a0: 18:36:3e:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjRBQTAxMTAvBgNVBAUTKDA0Q0Y1N0YyQTdGRkNBNzJDMDc0NjhBOEM2RDVGMjQ1 MTdGRjQ2QjkwHhcNMjUwODA2MjEwOTA0WhcNMjUwODEzMjEwOTA0WjAYMRYwFAYD VQQDEw02ODkzYzQ3MC01YTNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwLD5sme1l/W38HebSXO6cOo4sT2fOLMMPpAwMAIy3TbVDmp7AOLOLQp9jyoX gvrnSIxDe3ZdRbxExQpuv2ATd0dAQ4uCSS3l8qulEOtCs4q9AudjmFZur8y7a23S OXzWZf0oWB0iq+vCX/YWvChTWPjXa1uiWR4yiyfYo5XQio3I7Z4bgV2WBrFP7atW ck/DjOSO/tkeekK7xwikS7s4a5Rf6kpoY3NNXG4NU+NOha4XvbRWI2uhreppVD3K WCOtFsibgZDNJRP4X5rdyftAEY75Ozkt2+SyHYCwmqLRGcfswNOkZljJ1Nf21sTs l4BUNFug0wRHFJwHkorgXktK1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFDwdr2Y C5DpQeldMvtXYZAAkcyNMB8GA1UdIwQYMBaAFATPV/Kn/8pywHRoqMbV8kUX/0a5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNEFBMC8xMDQxRTVFQUUy QzMxMUVBQjgxOEQxN0ZDNEY5QUUwMi9CTTlYOHFmX3luTEFkR2lveHRYeVJSZl9S cmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JNOVg4cWZfeW5MQWRHaW94dFh5UlJmX1Jyay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NEFBMC8xMDQxRTVFQUUyQzMxMUVBQjgxOEQxN0ZDNEY5QUUwMi9CTTlYOHFmX3lu TEFkR2lveHRYeVJSZl9ScmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvQbH/6ysvXEUt2j82zAXs1aWwjpyJZS2ta6S3t9hCzpQltIpY8pzu gVqYW1bJC9UTYP0UDRhxNeYlrKJbTfEGa+ueToCvQsmEiEC0MkosCcILNu3ykyff TGOwkz7zt5R8gbEukXQ1Sy+JOkHH5FQDD4pt5Of52ApZz1scNwas1hE3ufUv2oQJ u5jC2KM9m5wfUkAmGf7OXFh24Lg5zCJALB4MGP0hvZbR3gRnsfwmi1S+S1ZJllVz n7G2k+IF/tHOqSeDa7y50QtVYYj4qQiNlPNMV9sL+kXm1xK+92FvtT+59ZWVzT7q AhMmWxNqdRXoIyGP5W8aHdaDzqAYNj6e -----END CERTIFICATE-----Generated at Fri Aug 8 13:05:11 2025 by rpki-client