$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.mft File: BAiuYP82i4xPzZMY6lKlnIcolJw.mft (raw, json) Hash identifier: Y7sE3T4nDyiIqz29gIX2kY954aEpYfoYeUwWOBqQFo4= Subject key identifier: 09:CA:B2:79:1D:E1:74:86:AD:D7:8C:37:CB:42:EE:99:D9:EF:6D:07 Authority key identifier: 04:08:AE:60:FF:36:8B:8C:4F:CD:93:18:EA:52:A5:9C:87:28:94:9C Certificate issuer: /CN=A91BA0AE/serialNumber=0408AE60FF368B8C4FCD9318EA52A59C8728949C Certificate serial: 0884 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BAiuYP82i4xPzZMY6lKlnIcolJw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.mft Manifest number: 0A76 Signing time: Fri 08 Aug 2025 20:59:19 +0000 Manifest this update: Fri 08 Aug 2025 20:59:19 +0000 Manifest next update: Fri 15 Aug 2025 20:59:19 +0000 Files and hashes: 1: BAiuYP82i4xPzZMY6lKlnIcolJw.crl (hash: 4Im0g6c+mGMnx+qEx7QmVGLUDRapXjidV/tW9BgF+n0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.crl rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BAiuYP82i4xPzZMY6lKlnIcolJw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2180 (0x884) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA0AE, serialNumber=0408AE60FF368B8C4FCD9318EA52A59C8728949C Validity Not Before: Aug 8 20:59:19 2025 GMT Not After : Aug 15 20:59:19 2025 GMT Subject: CN=68966527-7a79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:0e:41:d6:11:bd:d2:5f:86:78:99:aa:a1:a1: a1:69:e9:a0:52:b1:33:7a:30:72:85:ae:3a:05:6f: 09:51:a7:5a:c3:ab:96:73:cf:6c:b5:2e:30:70:ae: 37:a9:ea:91:6e:b7:d9:10:0e:c4:6a:7b:bf:bc:bb: 74:6c:f5:c8:27:25:1a:65:a8:0f:5c:2f:e5:0b:d1: 2a:45:7c:e6:67:bd:9f:29:4c:3f:ad:2b:3b:1d:cf: 27:c2:55:63:75:95:fc:cd:9b:2a:3d:e7:3b:f2:32: 3c:3d:f1:23:34:dd:85:33:ff:3e:b5:2c:52:67:15: 05:0d:5e:6f:cf:12:0e:d9:85:80:3a:d6:e7:f9:f7: 7f:d2:f2:07:58:b2:24:8a:0c:e8:d9:8d:eb:a4:84: 5c:7c:bd:5c:40:10:dd:5e:18:6b:2c:4d:c3:b9:8f: 3b:a0:12:00:84:4e:3b:73:ac:64:82:49:42:b0:e9: 1a:61:c9:e0:66:a7:58:bc:40:74:f6:28:21:50:d1: 4e:d0:b2:7f:cf:87:50:93:dc:f7:e4:80:04:16:1b: f9:bc:4c:94:78:ca:f8:2e:72:bd:e0:7a:fa:a9:fb: 5a:72:4b:63:12:77:19:ab:0f:4e:e6:2b:81:33:63: fb:8a:03:f6:79:04:88:7c:04:e2:ff:e5:06:27:5e: b4:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:CA:B2:79:1D:E1:74:86:AD:D7:8C:37:CB:42:EE:99:D9:EF:6D:07 X509v3 Authority Key Identifier: keyid:04:08:AE:60:FF:36:8B:8C:4F:CD:93:18:EA:52:A5:9C:87:28:94:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BAiuYP82i4xPzZMY6lKlnIcolJw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ce:86:c2:42:8a:fe:4f:5d:a3:a5:f5:22:a0:e9:23:33:78:f9: 1a:72:41:ab:b8:4e:e9:2b:8f:85:55:a6:42:6e:6a:6c:0a:1d: 61:57:1e:51:a4:58:1f:b5:ec:4f:9c:c3:a7:07:96:3f:69:6e: 61:04:bd:84:b5:e8:75:ca:9f:88:64:e0:c4:ed:da:41:9b:4a: 42:af:c7:17:50:a3:72:83:e6:d7:51:06:eb:be:6d:b1:26:5f: dd:00:38:f6:ad:ea:f3:cb:aa:00:4c:3f:fa:4f:a4:0b:29:6f: f4:90:ec:74:45:b6:3f:b3:04:16:0a:8a:66:c2:e7:6a:61:01: 9c:41:e0:66:7f:ec:d3:26:5d:fd:99:12:f1:fd:6b:c9:82:66: d5:f0:a4:bb:96:30:a8:96:5f:5b:9a:d4:d5:76:dc:c9:fb:e3: 6d:ac:4a:12:db:55:b0:eb:9e:39:64:c1:79:e4:7e:20:65:b1: ca:c4:e8:40:c6:52:cc:81:81:6e:5f:4c:d8:d1:a6:e7:db:6e: 4d:9e:75:06:99:59:d6:32:48:b5:12:6f:58:69:89:6e:a4:af: b8:29:53:55:c9:98:a9:98:ad:fd:67:05:62:49:27:13:18:db: 42:29:57:24:35:f2:79:46:0f:e8:3a:5d:d3:f0:12:5a:fe:91: 8d:5c:0d:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCIQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkEwQUUxMTAvBgNVBAUTKDA0MDhBRTYwRkYzNjhCOEM0RkNEOTMxOEVBNTJBNTlD ODcyODk0OUMwHhcNMjUwODA4MjA1OTE5WhcNMjUwODE1MjA1OTE5WjAYMRYwFAYD VQQDEw02ODk2NjUyNy03YTc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsw5B1hG90l+GeJmqoaGhaemgUrEzejByha46BW8JUadaw6uWc89stS4wcK43 qeqRbrfZEA7Eanu/vLt0bPXIJyUaZagPXC/lC9EqRXzmZ72fKUw/rSs7Hc8nwlVj dZX8zZsqPec78jI8PfEjNN2FM/8+tSxSZxUFDV5vzxIO2YWAOtbn+fd/0vIHWLIk igzo2Y3rpIRcfL1cQBDdXhhrLE3DuY87oBIAhE47c6xkgklCsOkaYcngZqdYvEB0 9ighUNFO0LJ/z4dQk9z35IAEFhv5vEyUeMr4LnK94Hr6qftacktjEncZqw9O5iuB M2P7igP2eQSIfATi/+UGJ1603QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAnKsnkd 4XSGrdeMN8tC7pnZ720HMB8GA1UdIwQYMBaAFAQIrmD/NouMT82TGOpSpZyHKJSc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTBBRS8zN0VCMEM2NkM5 NjQxMUVBQTEwNkU4NTlDNEY5QUUwMi9CQWl1WVA4Mmk0eFB6Wk1ZNmxLbG5JY29s SncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JBaXVZUDgyaTR4UHpaTVk2bEtsbkljb2xKdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTBBRS8zN0VCMEM2NkM5NjQxMUVBQTEwNkU4NTlDNEY5QUUwMi9CQWl1WVA4Mmk0 eFB6Wk1ZNmxLbG5JY29sSncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDOhsJCiv5PXaOl9SKg6SMzePkackGruE7pK4+FVaZCbmpsCh1hVx5R pFgftexPnMOnB5Y/aW5hBL2Eteh1yp+IZODE7dpBm0pCr8cXUKNyg+bXUQbrvm2x Jl/dADj2rerzy6oATD/6T6QLKW/0kOx0RbY/swQWCopmwudqYQGcQeBmf+zTJl39 mRLx/WvJgmbV8KS7ljColl9bmtTVdtzJ++NtrEoS21Ww6545ZMF55H4gZbHKxOhA xlLMgYFuX0zY0abn225NnnUGmVnWMki1Em9YaYlupK+4KVNVyZipmK39ZwViSScT GNtCKVckNfJ5Rg/oOl3T8BJa/pGNXA0r -----END CERTIFICATE-----Generated at Sat Aug 9 15:14:19 2025 by rpki-client