$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.mft File: Bg9-d8AKy-CGjcC4_KI9Sl8H13o.mft (raw, json) Hash identifier: 3/LuvvhyQBWCuoAnSjCFegAH/B1+QIjpff1BxocSEmE= Subject key identifier: 37:80:58:68:7C:2A:C2:B2:AD:D8:F6:7D:06:8A:43:D0:FD:FC:EB:68 Authority key identifier: 06:0F:7E:77:C0:0A:CB:E0:86:8D:C0:B8:FC:A2:3D:4A:5F:07:D7:7A Certificate issuer: /CN=A91BBA80/serialNumber=060F7E77C00ACBE0868DC0B8FCA23D4A5F07D77A Certificate serial: 0CD4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.mft Manifest number: 0C9C Signing time: Fri 08 Aug 2025 18:38:26 +0000 Manifest this update: Fri 08 Aug 2025 18:38:25 +0000 Manifest next update: Fri 15 Aug 2025 18:38:25 +0000 Files and hashes: 1: Bg9-d8AKy-CGjcC4_KI9Sl8H13o.crl (hash: +kU2rJ4VF3py0JFgwvqMc1iy0qCv3cfZvjqAEYnsJH0=) 2: 12561046368911EEA0CB766BC4F9AE02.roa (hash: ZsNiLxfxjjXIOR9efOK6g19RpsthQOBE4XYCmM1hnq8=) 3: 21A9C2D4221211EF9624DB0CC4F9AE02.roa (hash: UuY5qtUwk8Dlu801YZxvnO/xKQaWGop0bKAvOOHuar0=) 4: 2FC3DE84B15B11EB8CCCD624C4F9AE02.roa (hash: e/Kuo5QdtsaM/mztDHYG4XkizjKIPPrgUEb1ap1W45w=) 5: 22E63812221211EF9624DB0CC4F9AE02.roa (hash: tEtTFQOPTziC3M/Up8UOSv6VFGJx+4dP/cUQCVWj4l4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.crl rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3284 (0xcd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBA80, serialNumber=060F7E77C00ACBE0868DC0B8FCA23D4A5F07D77A Validity Not Before: Aug 8 18:38:25 2025 GMT Not After : Aug 15 18:38:25 2025 GMT Subject: CN=68964421-47d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:ea:cd:a5:a5:d0:e3:3b:40:93:24:48:08:05: 21:e1:49:c7:85:f6:44:96:ed:67:90:66:54:76:b9: 38:91:19:3d:b0:ba:11:db:d7:48:ef:24:1f:3a:2d: 7b:70:70:8d:58:b8:61:ca:51:9b:f7:57:ae:ed:94: a3:d7:54:fe:79:7f:f9:c7:2e:74:5f:5f:76:90:eb: 37:a5:44:62:2e:ea:8d:61:b0:23:f4:e1:bc:be:52: 4c:b8:e6:de:a2:53:47:49:45:af:fa:56:11:92:5e: c2:2f:70:1e:ce:04:75:b1:2b:1d:b5:7c:0e:72:4a: d7:72:35:ea:47:88:ae:16:c6:00:f1:95:0d:47:97: a2:b8:39:df:a4:0a:f4:82:17:b6:c8:73:48:ea:85: e9:06:7d:c0:48:61:42:b1:1c:b3:ed:20:23:25:6d: 66:bd:e1:2b:aa:93:b6:76:98:ef:6f:9e:dd:cb:86: 7e:a5:a4:86:15:60:62:70:c5:fc:62:83:e5:bc:16: fe:08:12:ce:a4:aa:ef:8c:ab:70:7b:ea:dc:52:f6: c6:1b:39:d7:24:a6:9b:63:8b:f9:fe:e9:cf:1d:b0: 04:cc:55:31:cb:ef:f0:67:56:2d:ee:05:74:71:f1: 66:65:98:14:aa:e3:a0:95:d0:96:53:bc:77:a0:e7: 95:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:80:58:68:7C:2A:C2:B2:AD:D8:F6:7D:06:8A:43:D0:FD:FC:EB:68 X509v3 Authority Key Identifier: keyid:06:0F:7E:77:C0:0A:CB:E0:86:8D:C0:B8:FC:A2:3D:4A:5F:07:D7:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:c8:20:b5:97:03:c5:f9:3e:3c:df:fd:5f:1d:b5:3a:7e:22: 4c:57:3e:2f:25:fc:48:d8:c9:5e:56:cd:71:30:bc:af:1e:c3: 5a:d5:f7:1c:c4:eb:c8:e8:bc:05:f3:0e:7e:11:e6:ec:63:9c: 6c:f5:e5:73:68:f6:1e:b7:01:ac:7a:88:ad:66:43:81:5a:26: ed:12:19:21:66:36:2d:92:c3:ce:80:78:89:2d:95:7e:b8:d4: 31:3d:d6:41:1a:67:10:0e:28:1f:7d:f0:e1:af:76:12:d9:89: 07:d1:1b:31:eb:ad:61:21:a3:97:2d:e4:7f:ab:9c:91:fb:e7: 27:4e:95:08:89:a5:7e:69:c4:6c:5c:40:07:56:80:ce:da:5b: 6e:56:33:69:67:71:80:dd:c0:0b:75:02:33:9e:1a:8d:77:6d: 4b:ca:74:fd:1e:6a:fb:d6:27:84:c4:b8:0b:95:4c:58:25:d4: bb:c5:6e:94:22:6c:7f:c6:7e:df:58:e9:9d:61:cf:ef:da:a8: f8:24:78:29:71:08:50:e3:9a:fe:c2:30:be:b9:e3:3e:27:94: 1c:f2:5d:d4:c1:4f:c1:b7:94:56:9b:6e:42:e9:7d:ce:1d:1f: 50:7b:0f:a6:e9:47:e2:e8:34:55:ca:9d:27:a2:27:bd:85:85: e0:d9:e8:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDNQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkJBODAxMTAvBgNVBAUTKDA2MEY3RTc3QzAwQUNCRTA4NjhEQzBCOEZDQTIzRDRB NUYwN0Q3N0EwHhcNMjUwODA4MTgzODI1WhcNMjUwODE1MTgzODI1WjAYMRYwFAYD VQQDEw02ODk2NDQyMS00N2Q2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1+rNpaXQ4ztAkyRICAUh4UnHhfZElu1nkGZUdrk4kRk9sLoR29dI7yQfOi17 cHCNWLhhylGb91eu7ZSj11T+eX/5xy50X192kOs3pURiLuqNYbAj9OG8vlJMuObe olNHSUWv+lYRkl7CL3AezgR1sSsdtXwOckrXcjXqR4iuFsYA8ZUNR5eiuDnfpAr0 ghe2yHNI6oXpBn3ASGFCsRyz7SAjJW1mveErqpO2dpjvb57dy4Z+paSGFWBicMX8 YoPlvBb+CBLOpKrvjKtwe+rcUvbGGznXJKabY4v5/unPHbAEzFUxy+/wZ1Yt7gV0 cfFmZZgUquOgldCWU7x3oOeVIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDeAWGh8 KsKyrdj2fQaKQ9D9/OtoMB8GA1UdIwQYMBaAFAYPfnfACsvgho3AuPyiPUpfB9d6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQkE4MC9COThFODFENjA1 QjkxMUVBODIwODk5NkVDNEY5QUUwMi9CZzktZDhBS3ktQ0dqY0M0X0tJOVNsOEgx M28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JnOS1kOEFLeS1DR2pjQzRfS0k5U2w4SDEzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QkE4MC9COThFODFENjA1QjkxMUVBODIwODk5NkVDNEY5QUUwMi9CZzktZDhBS3kt Q0dqY0M0X0tJOVNsOEgxM28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGyCC1lwPF+T483/1fHbU6fiJMVz4vJfxI2MleVs1xMLyvHsNa1fcc xOvI6LwF8w5+EebsY5xs9eVzaPYetwGseoitZkOBWibtEhkhZjYtksPOgHiJLZV+ uNQxPdZBGmcQDigfffDhr3YS2YkH0Rsx661hIaOXLeR/q5yR++cnTpUIiaV+acRs XEAHVoDO2ltuVjNpZ3GA3cALdQIznhqNd21LynT9Hmr71ieExLgLlUxYJdS7xW6U Imx/xn7fWOmdYc/v2qj4JHgpcQhQ45r+wjC+ueM+J5Qc8l3UwU/Bt5RWm25C6X3O HR9Qew+m6Ufi6DRVyp0noie9hYXg2eid -----END CERTIFICATE-----Generated at Sat Aug 9 10:52:59 2025 by rpki-client