$ rpki-client -vvf rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft File: bxP1UQCfJIptmHQ2AE6FeVFWkns.mft (raw, json) Hash identifier: 5C5aIiM4PZwTnSrkI3zvH0OYbmgVSQ/kNyYqHZrCL/k= Subject key identifier: C3:72:86:9A:4D:B4:97:36:79:E7:ED:B8:1E:13:AA:3E:DA:4E:E8:59 Authority key identifier: 6F:13:F5:51:00:9F:24:8A:6D:98:74:36:00:4E:85:79:51:56:92:7B Certificate issuer: /CN=A91CAFC4/serialNumber=6F13F551009F248A6D987436004E85795156927B Certificate serial: 0923 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bxP1UQCfJIptmHQ2AE6FeVFWkns.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft Manifest number: 0910 Signing time: Wed 06 Aug 2025 20:38:54 +0000 Manifest this update: Wed 06 Aug 2025 20:38:54 +0000 Manifest next update: Wed 13 Aug 2025 20:38:54 +0000 Files and hashes: 1: bxP1UQCfJIptmHQ2AE6FeVFWkns.crl (hash: QNKDoqsGCsSUHPgpp+lhd+6SRUAwaYwNxgYACaz/BcY=) 2: D2039A56AABC11EEA0370F2CC4F9AE02.roa (hash: V5P8MqryTvl9uPbcl4kRoIx/Fd4WpfSFp93LMG/SR30=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.crl rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bxP1UQCfJIptmHQ2AE6FeVFWkns.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 20:38:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2339 (0x923) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CAFC4, serialNumber=6F13F551009F248A6D987436004E85795156927B Validity Not Before: Aug 6 20:38:54 2025 GMT Not After : Aug 13 20:38:54 2025 GMT Subject: CN=6893bd5e-99e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:d0:1e:74:98:2f:24:bf:37:3d:2e:f4:ef:fa: 42:61:33:8f:e5:ba:a4:24:63:c6:16:1a:e8:52:01: bd:be:65:c4:56:fd:85:a4:3d:6e:64:bf:de:41:a0: 61:ff:01:11:05:36:e1:18:22:28:2c:77:ed:ce:b9: ce:0b:9e:4b:16:f2:44:1d:8c:09:77:53:fb:7b:5e: 6b:ec:fb:4b:05:21:0e:47:6a:d0:fa:b0:7f:6f:34: 6c:7e:3e:f2:50:f3:0f:11:88:03:6f:a5:c8:20:5b: ce:03:4d:c4:75:44:82:f6:ab:21:1a:a1:3e:81:0b: 2e:c6:61:e1:2f:bc:b3:bc:4c:8d:2d:c9:58:41:f6: f1:ef:6f:ab:42:49:b5:12:49:28:bd:e2:aa:75:db: ed:14:38:5d:82:58:9e:17:6f:7c:ac:66:64:80:01: 9c:6c:1b:e9:f3:2a:9b:0f:e7:23:e7:40:f9:4b:f8: 89:ab:5b:6f:75:c0:2f:2e:34:52:e0:2d:fc:03:a4: 08:69:1a:86:fc:a0:b6:0b:dc:c9:3f:4d:54:9d:7d: ee:63:a7:0f:12:ee:c9:70:52:f4:b3:8c:cc:e4:e7: 98:2f:10:3d:fe:e1:a0:31:99:c7:5d:20:9f:fc:22: 21:22:6a:49:e1:3f:46:2b:28:bf:7f:fc:7d:2f:9e: 3d:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:72:86:9A:4D:B4:97:36:79:E7:ED:B8:1E:13:AA:3E:DA:4E:E8:59 X509v3 Authority Key Identifier: keyid:6F:13:F5:51:00:9F:24:8A:6D:98:74:36:00:4E:85:79:51:56:92:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bxP1UQCfJIptmHQ2AE6FeVFWkns.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:14:35:f2:7d:a4:0e:96:79:09:89:06:10:91:0b:fb:d9:26: da:40:5f:b9:38:d3:0f:b1:39:7b:20:cb:2a:17:f8:1f:c3:08: 24:70:54:38:31:32:ec:7a:4e:0b:d1:27:a6:0a:09:ba:e1:b1: ab:05:fa:7e:48:55:92:61:34:11:cd:13:da:43:66:1b:2d:3b: cd:ef:8d:00:79:ff:43:66:8b:2f:39:c5:06:14:ce:77:a7:4e: d8:1a:5d:4a:1a:9e:31:f7:2a:15:42:b3:5d:16:04:ff:b7:67: bd:2e:22:f0:1e:e5:d4:71:ac:29:3c:2a:f5:e7:4c:1f:f0:3b: 4b:50:fd:49:9f:e5:2c:fd:4f:e3:92:ac:85:da:f8:ec:e2:80: 77:3a:9f:e6:e3:da:ad:d1:b0:f6:0a:07:38:d2:b2:91:e6:40: 79:72:cd:3f:e4:2a:0f:ac:9c:ff:ee:81:8e:aa:ee:e8:56:4e: f2:e0:6b:1d:ab:18:e5:3f:fe:15:af:8e:2f:2c:38:fb:5e:5a: 23:49:84:cd:1b:96:01:7f:ae:e0:e8:0e:77:01:f0:fb:c1:97: d9:13:0c:a3:6f:41:9a:ca:20:af:44:67:a1:15:d5:8d:f0:8a: 70:59:71:07:d0:cb:b9:6e:0b:60:48:a4:66:c5:0b:1d:9d:4c: 6c:b4:0e:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCSMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FGQzQxMTAvBgNVBAUTKDZGMTNGNTUxMDA5RjI0OEE2RDk4NzQzNjAwNEU4NTc5 NTE1NjkyN0IwHhcNMjUwODA2MjAzODU0WhcNMjUwODEzMjAzODU0WjAYMRYwFAYD VQQDEw02ODkzYmQ1ZS05OWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqtAedJgvJL83PS707/pCYTOP5bqkJGPGFhroUgG9vmXEVv2FpD1uZL/eQaBh /wERBTbhGCIoLHftzrnOC55LFvJEHYwJd1P7e15r7PtLBSEOR2rQ+rB/bzRsfj7y UPMPEYgDb6XIIFvOA03EdUSC9qshGqE+gQsuxmHhL7yzvEyNLclYQfbx72+rQkm1 EkkoveKqddvtFDhdglieF298rGZkgAGcbBvp8yqbD+cj50D5S/iJq1tvdcAvLjRS 4C38A6QIaRqG/KC2C9zJP01UnX3uY6cPEu7JcFL0s4zM5OeYLxA9/uGgMZnHXSCf /CIhImpJ4T9GKyi/f/x9L549tQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMNyhppN tJc2eeftuB4Tqj7aTuhZMB8GA1UdIwQYMBaAFG8T9VEAnySKbZh0NgBOhXlRVpJ7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUZDNC9CQzYwNjJEQ0FG OEExMUVBODU0MkQ4NUZDNEY5QUUwMi9ieFAxVVFDZkpJcHRtSFEyQUU2RmVWRldr bnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J4UDFVUUNmSklwdG1IUTJBRTZGZVZGV2tucy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QUZDNC9CQzYwNjJEQ0FGOEExMUVBODU0MkQ4NUZDNEY5QUUwMi9ieFAxVVFDZkpJ cHRtSFEyQUU2RmVWRldrbnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHFDXyfaQOlnkJiQYQkQv72SbaQF+5ONMPsTl7IMsqF/gfwwgkcFQ4 MTLsek4L0SemCgm64bGrBfp+SFWSYTQRzRPaQ2YbLTvN740Aef9DZosvOcUGFM53 p07YGl1KGp4x9yoVQrNdFgT/t2e9LiLwHuXUcawpPCr150wf8DtLUP1Jn+Us/U/j kqyF2vjs4oB3Op/m49qt0bD2Cgc40rKR5kB5cs0/5CoPrJz/7oGOqu7oVk7y4Gsd qxjlP/4Vr44vLDj7XlojSYTNG5YBf67g6A53AfD7wZfZEwyjb0GayiCvRGehFdWN 8IpwWXEH0Mu5bgtgSKRmxQsdnUxstA7x -----END CERTIFICATE-----Generated at Fri Aug 8 19:21:18 2025 by rpki-client