$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft File: bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft (raw, json) Hash identifier: SS2LCtGitf9adGLAKPGouKzvRweYYl2H5oN1CiC8Bos= Subject key identifier: AD:51:95:15:0E:6D:C7:23:E6:FB:03:54:35:64:1F:C9:15:4B:9F:B4 Authority key identifier: 6C:19:46:97:81:6F:9B:13:0B:A5:3C:F4:BE:E6:76:01:59:4E:8C:B1 Certificate issuer: /CN=A91CCAF1/serialNumber=6C194697816F9B130BA53CF4BEE67601594E8CB1 Certificate serial: 99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft Manifest number: 98 Signing time: Tue 05 Aug 2025 06:54:12 +0000 Manifest this update: Tue 05 Aug 2025 06:54:11 +0000 Manifest next update: Tue 12 Aug 2025 06:54:11 +0000 Files and hashes: 1: bBlGl4FvmxMLpTz0vuZ2AVlOjLE.crl (hash: UVxris4c7n1GETygglEWQPMuSYRShxD/VE342LzhJ5s=) 2: BF71D9D0F26811EFBC446868C4F9AE02.roa (hash: 7+qKEqRnu4TPJKKakjwpNT1iFIHMXPBmy/g9UJm3iJo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.crl rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 06:54:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 153 (0x99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CCAF1, serialNumber=6C194697816F9B130BA53CF4BEE67601594E8CB1 Validity Not Before: Aug 5 06:54:11 2025 GMT Not After : Aug 12 06:54:11 2025 GMT Subject: CN=6891aa93-3ed8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:60:3e:59:1b:85:d4:4c:08:41:fd:d9:03:74: 75:1f:2b:40:60:48:8f:4c:c9:85:49:74:f8:f3:d1: 38:33:82:6d:ff:eb:df:ab:a0:bc:1d:18:91:b4:46: 3f:27:ce:1c:8c:af:f1:71:c2:03:26:97:74:9e:9c: 44:10:cf:cf:97:2c:ca:82:b7:b4:a5:23:e4:34:b7: 01:42:3e:63:59:db:c5:07:a0:18:b7:c9:aa:13:a0: b7:56:a9:6e:40:54:4a:ec:6a:89:c1:d6:4f:97:2a: 9a:fc:40:0f:6b:86:cf:89:55:fc:57:6a:f4:63:72: 83:5f:46:97:42:08:c0:87:5c:d1:1e:60:09:6a:4e: 2f:de:10:58:c9:ab:b2:df:84:0c:71:94:d0:80:cb: cd:17:8c:60:1d:d1:70:c1:b2:b7:02:f1:31:5a:0a: c7:18:8d:e3:75:c1:db:80:a0:61:e1:36:f8:ad:20: 10:55:8e:57:26:62:0f:59:33:f7:94:a6:50:cc:7e: 23:76:0c:f1:12:60:ee:26:52:89:d7:e3:4b:48:9a: e2:90:14:ef:25:d1:9f:99:6d:78:8b:88:27:98:ae: b4:d4:a6:8b:66:0f:15:73:ec:6c:ed:23:38:2b:28: f7:ed:94:25:13:a6:ab:29:02:6c:5e:67:d3:7f:78: c4:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:51:95:15:0E:6D:C7:23:E6:FB:03:54:35:64:1F:C9:15:4B:9F:B4 X509v3 Authority Key Identifier: keyid:6C:19:46:97:81:6F:9B:13:0B:A5:3C:F4:BE:E6:76:01:59:4E:8C:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:02:aa:09:28:60:ef:4c:44:63:80:7f:3a:2d:c6:58:42:a4: 04:45:e5:2f:24:a2:59:9f:a2:7f:f5:51:87:b4:b8:f7:11:35: 07:ea:98:58:6d:98:7d:ae:3c:07:c4:46:20:02:35:8f:2c:3c: 45:f7:d0:03:65:f9:64:fe:d2:a7:9f:9a:67:a8:61:9a:26:1f: 40:60:55:11:82:a9:35:66:8d:c2:9e:0a:4a:e5:84:9a:bd:ac: f6:f8:0b:08:28:f5:be:e7:73:d1:ac:59:e2:c0:af:73:37:63: b7:09:e0:d3:6c:6a:5e:be:46:99:45:62:66:49:29:61:e7:6a: fe:e5:94:27:e2:31:e4:9e:b0:38:91:c7:08:05:ff:b5:b9:92: f5:cd:1d:49:7d:24:b0:c0:5a:90:f8:29:6a:be:67:5f:75:c3: a7:1d:dd:7f:66:99:7e:fd:3b:ba:ad:d6:d5:6e:6e:1c:32:92: 76:8a:12:f3:72:d6:58:41:ab:03:8e:d9:e9:85:a5:b0:73:68: ea:cb:f4:f8:ab:99:32:f2:cd:4e:ed:e4:9b:ef:bc:88:96:65: d9:2b:5f:00:ba:38:6a:8b:8e:58:71:5b:e6:08:2d:cc:d7:e1: 78:ae:56:dc:4f:eb:ea:5e:f8:68:89:67:8b:2a:09:69:4c:36: 17:66:a5:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0NBRjExMTAvBgNVBAUTKDZDMTk0Njk3ODE2RjlCMTMwQkE1M0NGNEJFRTY3NjAx NTk0RThDQjEwHhcNMjUwODA1MDY1NDExWhcNMjUwODEyMDY1NDExWjAYMRYwFAYD VQQDEw02ODkxYWE5My0zZWQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0WA+WRuF1EwIQf3ZA3R1HytAYEiPTMmFSXT489E4M4Jt/+vfq6C8HRiRtEY/ J84cjK/xccIDJpd0npxEEM/PlyzKgre0pSPkNLcBQj5jWdvFB6AYt8mqE6C3Vqlu QFRK7GqJwdZPlyqa/EAPa4bPiVX8V2r0Y3KDX0aXQgjAh1zRHmAJak4v3hBYyauy 34QMcZTQgMvNF4xgHdFwwbK3AvExWgrHGI3jdcHbgKBh4Tb4rSAQVY5XJmIPWTP3 lKZQzH4jdgzxEmDuJlKJ1+NLSJrikBTvJdGfmW14i4gnmK601KaLZg8Vc+xs7SM4 Kyj37ZQlE6arKQJsXmfTf3jENQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK1RlRUO bccj5vsDVDVkH8kVS5+0MB8GA1UdIwQYMBaAFGwZRpeBb5sTC6U89L7mdgFZToyx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQ0FGMS8wOUMwRDM2NjhB QUQxMUVGQkVGOTE2NkFDNEY5QUUwMi9iQmxHbDRGdm14TUxwVHowdnVaMkFWbE9q TEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JCbEdsNEZ2bXhNTHBUejB2dVoyQVZsT2pMRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Q0FGMS8wOUMwRDM2NjhBQUQxMUVGQkVGOTE2NkFDNEY5QUUwMi9iQmxHbDRGdm14 TUxwVHowdnVaMkFWbE9qTEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkAqoJKGDvTERjgH86LcZYQqQEReUvJKJZn6J/9VGHtLj3ETUH6phY bZh9rjwHxEYgAjWPLDxF99ADZflk/tKnn5pnqGGaJh9AYFURgqk1Zo3CngpK5YSa vaz2+AsIKPW+53PRrFniwK9zN2O3CeDTbGpevkaZRWJmSSlh52r+5ZQn4jHknrA4 kccIBf+1uZL1zR1JfSSwwFqQ+ClqvmdfdcOnHd1/Zpl+/Tu6rdbVbm4cMpJ2ihLz ctZYQasDjtnphaWwc2jqy/T4q5ky8s1O7eSb77yIlmXZK18Aujhqi45YcVvmCC3M 1+F4rlbcT+vqXvhoiWeLKglpTDYXZqXf -----END CERTIFICATE-----Generated at Wed Aug 6 18:48:29 2025 by rpki-client