$ rpki-client -vvf rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.mft File: bLMNwI7ylzDp3wScVPOVgquFvpQ.mft (raw, json) Hash identifier: tDXxyC9nRXz/zGCE0MTK9vz3ucNE0sLvvOy62uJM5NU= Subject key identifier: 53:2B:D7:C0:BE:F7:03:A2:AF:36:91:FA:61:2C:CC:A2:62:49:B5:07 Authority key identifier: 6C:B3:0D:C0:8E:F2:97:30:E9:DF:04:9C:54:F3:95:82:AB:85:BE:94 Certificate issuer: /CN=A91C40D1/serialNumber=6CB30DC08EF29730E9DF049C54F39582AB85BE94 Certificate serial: 12E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLMNwI7ylzDp3wScVPOVgquFvpQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.mft Manifest number: 12D7 Signing time: Tue 12 Aug 2025 17:10:17 +0000 Manifest this update: Tue 12 Aug 2025 17:10:17 +0000 Manifest next update: Tue 19 Aug 2025 17:10:17 +0000 Files and hashes: 1: bLMNwI7ylzDp3wScVPOVgquFvpQ.crl (hash: z+mpKhqxRD4CbMNevhP8QrPs5+kvfB8NhjY6fMWiDPk=) 2: 18272628C30B11E8A6851824C4F9AE02.roa (hash: zhAB02c7MO6g0ZjU60Q0NOMxZrMu/KXiBvCTRD/ktbM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.crl rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLMNwI7ylzDp3wScVPOVgquFvpQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 17:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4834 (0x12e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C40D1, serialNumber=6CB30DC08EF29730E9DF049C54F39582AB85BE94 Validity Not Before: Aug 12 17:10:17 2025 GMT Not After : Aug 19 17:10:17 2025 GMT Subject: CN=689b7579-491a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:7f:6b:32:dd:f3:2c:45:db:8f:26:3f:dc:ff: 9f:6f:15:8c:3b:33:68:f0:54:8a:81:ba:ac:3b:36: 8c:3f:95:2e:51:47:22:99:0b:5a:13:dd:3b:53:38: f0:d8:77:27:df:03:74:c5:36:0f:0f:38:63:1a:1b: 8f:13:f7:56:11:78:80:95:1e:02:6a:a2:15:93:04: 27:e6:75:d0:ad:49:fb:a5:30:ff:5e:0f:36:0d:8d: 2f:db:94:0b:17:7b:ca:ee:c7:24:29:7b:9c:a4:39: e5:4e:cd:10:ac:32:ec:2b:f4:e9:91:89:35:d4:6f: 57:65:45:3d:29:c6:79:df:fb:05:81:53:97:1a:68: 64:d4:54:77:e2:0d:47:9f:4a:d2:50:c7:b0:b8:9d: b2:d5:65:b1:d3:3f:f8:1c:7d:2e:ac:0f:f2:41:3b: 99:3a:7e:52:3b:36:2d:33:1d:0f:e1:ea:1a:64:65: ef:a0:75:e1:fa:1f:47:bb:2f:3a:15:5f:0f:a6:52: 03:ae:31:f3:de:70:c5:75:c5:6f:0f:b6:02:84:f7: cf:f1:64:ba:5e:aa:45:e4:a3:60:49:37:34:a8:50: ee:3e:ce:2c:bd:1f:19:45:30:20:d5:cb:8a:f8:49: 5f:3f:8e:2e:7f:46:96:bb:50:8f:d7:72:e3:97:da: f3:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:2B:D7:C0:BE:F7:03:A2:AF:36:91:FA:61:2C:CC:A2:62:49:B5:07 X509v3 Authority Key Identifier: keyid:6C:B3:0D:C0:8E:F2:97:30:E9:DF:04:9C:54:F3:95:82:AB:85:BE:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLMNwI7ylzDp3wScVPOVgquFvpQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cb:b7:d7:7e:56:a7:75:31:08:77:e4:57:72:99:0b:e5:fb:f6: 16:35:9e:a8:bd:22:cd:b7:6b:5a:88:3a:84:49:f7:39:05:e7: d2:9a:42:cd:12:3d:19:92:b4:f5:bf:e8:4c:54:4a:84:63:75: 05:e9:42:13:d4:c5:52:0d:ac:1e:a4:c3:bd:2c:f9:55:3a:d5: dc:20:fe:ea:bc:95:0a:e6:1b:5d:44:68:17:ef:5d:20:7f:48: 88:d8:cd:82:e0:4a:2a:df:46:55:ca:02:2c:a9:5e:5c:db:5c: af:28:8a:ea:9f:25:57:33:cb:05:4d:35:91:c2:53:62:fd:da: 93:e1:d5:40:f4:6c:52:d8:97:af:d7:ec:03:11:d0:46:ec:88: 2a:56:d6:71:3c:ae:fa:13:d2:42:b1:fd:3b:2b:9b:49:eb:e3: 65:71:7f:fc:48:92:7f:cb:bf:c5:2f:d9:e1:99:7c:f7:ea:f9: 40:a2:aa:ea:ae:a6:a3:7c:34:15:5d:1f:99:e7:db:a1:f0:0e: c5:80:ee:ee:23:56:15:f3:c5:2b:fb:92:14:90:f2:07:bf:ad: 8a:11:dc:9b:1b:6b:7e:26:fd:8f:dc:cb:6e:47:8b:5d:53:55: d2:45:87:d8:47:a2:27:19:1c:50:d3:74:fd:d4:73:d5:f8:7e: 0c:c4:01:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEuIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQwRDExMTAvBgNVBAUTKDZDQjMwREMwOEVGMjk3MzBFOURGMDQ5QzU0RjM5NTgy QUI4NUJFOTQwHhcNMjUwODEyMTcxMDE3WhcNMjUwODE5MTcxMDE3WjAYMRYwFAYD VQQDEw02ODliNzU3OS00OTFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApn9rMt3zLEXbjyY/3P+fbxWMOzNo8FSKgbqsOzaMP5UuUUcimQtaE907Uzjw 2Hcn3wN0xTYPDzhjGhuPE/dWEXiAlR4CaqIVkwQn5nXQrUn7pTD/Xg82DY0v25QL F3vK7sckKXucpDnlTs0QrDLsK/TpkYk11G9XZUU9KcZ53/sFgVOXGmhk1FR34g1H n0rSUMewuJ2y1WWx0z/4HH0urA/yQTuZOn5SOzYtMx0P4eoaZGXvoHXh+h9Huy86 FV8PplIDrjHz3nDFdcVvD7YChPfP8WS6XqpF5KNgSTc0qFDuPs4svR8ZRTAg1cuK +ElfP44uf0aWu1CP13Ljl9rzWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFMr18C+ 9wOirzaR+mEszKJiSbUHMB8GA1UdIwQYMBaAFGyzDcCO8pcw6d8EnFTzlYKrhb6U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDBEMS9DQzc4MzBCMEMz MDkxMUU4OTAwRTVGMjFDNEY5QUUwMi9iTE1Od0k3eWx6RHAzd1NjVlBPVmdxdUZ2 cFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JMTU53STd5bHpEcDN3U2NWUE9WZ3F1RnZwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDBEMS9DQzc4MzBCMEMzMDkxMUU4OTAwRTVGMjFDNEY5QUUwMi9iTE1Od0k3eWx6 RHAzd1NjVlBPVmdxdUZ2cFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDLt9d+Vqd1MQh35FdymQvl+/YWNZ6ovSLNt2taiDqESfc5BefSmkLN Ej0ZkrT1v+hMVEqEY3UF6UIT1MVSDawepMO9LPlVOtXcIP7qvJUK5htdRGgX710g f0iI2M2C4Eoq30ZVygIsqV5c21yvKIrqnyVXM8sFTTWRwlNi/dqT4dVA9GxS2Jev 1+wDEdBG7IgqVtZxPK76E9JCsf07K5tJ6+NlcX/8SJJ/y7/FL9nhmXz36vlAoqrq rqajfDQVXR+Z59uh8A7FgO7uI1YV88Ur+5IUkPIHv62KEdybG2t+Jv2P3MtuR4td U1XSRYfYR6InGRxQ03T91HPV+H4MxAFf -----END CERTIFICATE-----Generated at Wed Aug 13 00:32:23 2025 by rpki-client