$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEBCC/2AE8981A272711EF9143E622C4F9AE02/bath0S4_GW9RaThyPIAnWZxddVI.mft File: bath0S4_GW9RaThyPIAnWZxddVI.mft (raw, json) Hash identifier: WCeibK98Peqwete9a1nH2cC5vkB0npujIaSGAaAZglo= Subject key identifier: A9:97:B9:0E:0D:D3:88:60:55:FB:76:0E:3A:57:5C:6B:50:56:2C:11 Authority key identifier: 6D:AB:61:D1:2E:3F:19:6F:51:69:38:72:3C:80:27:59:9C:5D:75:52 Certificate issuer: /CN=A91CEBCC/serialNumber=6DAB61D12E3F196F516938723C8027599C5D7552 Certificate serial: DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bath0S4_GW9RaThyPIAnWZxddVI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEBCC/2AE8981A272711EF9143E622C4F9AE02/bath0S4_GW9RaThyPIAnWZxddVI.mft Manifest number: DB Signing time: Sat 09 Aug 2025 05:56:24 +0000 Manifest this update: Sat 09 Aug 2025 05:56:24 +0000 Manifest next update: Sat 16 Aug 2025 05:56:24 +0000 Files and hashes: 1: bath0S4_GW9RaThyPIAnWZxddVI.crl (hash: y4OXWjWjyKYncynZ/Y5Mq+Mpz5chhTBPjaUoeSNZqe4=) 2: F2022074272711EF91A40124C4F9AE02.roa (hash: xhUsDiNlcxZBUBnV9JFR4AclyG5SZwCFLfalTWcGiyI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEBCC/2AE8981A272711EF9143E622C4F9AE02/bath0S4_GW9RaThyPIAnWZxddVI.crl rsync://rpki.apnic.net/member_repository/A91CEBCC/2AE8981A272711EF9143E622C4F9AE02/bath0S4_GW9RaThyPIAnWZxddVI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bath0S4_GW9RaThyPIAnWZxddVI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEBCC, serialNumber=6DAB61D12E3F196F516938723C8027599C5D7552 Validity Not Before: Aug 9 05:56:24 2025 GMT Not After : Aug 16 05:56:24 2025 GMT Subject: CN=6896e308-0cac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:00:12:f8:77:72:7c:cd:09:5d:59:10:b3:70: d4:ac:70:b0:a6:8b:10:92:d0:85:28:db:88:87:9b: c9:2b:75:d5:8b:a7:99:a2:7b:e8:04:48:52:9f:e6: 4d:df:e6:d6:ab:78:d0:1e:bf:ed:37:6b:9d:3e:dd: 85:e1:ad:ce:af:88:62:c1:3d:18:e8:b8:ea:23:80: 78:55:c3:65:86:11:61:fb:7c:cc:e6:db:be:f9:88: ac:e8:b1:a7:40:07:c1:5a:c3:47:e0:aa:10:24:11: cc:2c:0b:f1:7f:98:16:e8:7f:0a:e9:66:58:a5:cf: 73:2c:5f:61:f8:b4:14:53:ae:d1:31:bf:60:9a:8d: f4:be:dd:8d:f5:02:70:84:77:fb:29:03:b0:38:49: 34:ed:17:03:e6:44:b0:f2:2a:6b:9c:f5:1a:00:12: aa:fd:b1:0e:01:a7:cb:90:bb:23:47:86:83:6e:e8: 0c:0d:dd:fb:c5:01:b0:91:1f:8c:41:b4:b6:e8:da: d0:8d:38:35:24:cc:dd:d2:24:90:dd:d9:eb:50:6b: a8:71:1e:02:90:b0:5b:2a:5d:d9:7b:29:d0:26:18: 39:23:26:4b:87:5d:7c:b1:ec:a6:b6:45:2b:4b:bc: 9c:56:82:0a:49:f0:ec:3c:ba:43:08:27:4f:30:b8: 19:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:97:B9:0E:0D:D3:88:60:55:FB:76:0E:3A:57:5C:6B:50:56:2C:11 X509v3 Authority Key Identifier: keyid:6D:AB:61:D1:2E:3F:19:6F:51:69:38:72:3C:80:27:59:9C:5D:75:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEBCC/2AE8981A272711EF9143E622C4F9AE02/bath0S4_GW9RaThyPIAnWZxddVI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bath0S4_GW9RaThyPIAnWZxddVI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEBCC/2AE8981A272711EF9143E622C4F9AE02/bath0S4_GW9RaThyPIAnWZxddVI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:61:92:18:93:5c:87:4a:02:57:eb:ab:2d:4c:23:c6:86:21: b2:61:88:79:37:a2:a9:45:2e:cc:ab:be:58:ad:77:66:3e:10: fc:6b:99:c3:32:44:f4:80:2b:38:bc:73:d4:ae:e1:c0:e1:6b: d9:57:37:e5:36:7e:1a:78:e9:83:d0:48:23:89:c0:2e:6e:41: 48:8f:0f:8d:68:09:d4:8d:ee:12:61:a0:34:9c:46:d7:46:2f: 9f:a1:9b:a4:e1:75:01:fd:ed:b5:94:d7:21:50:6d:47:fa:27: 4e:c4:de:c4:cf:38:01:be:5f:ce:6f:3e:58:2b:db:78:55:35: 07:aa:06:e8:e7:39:a5:ec:93:dd:fa:54:61:c5:a4:ee:00:9a: 8a:60:d0:29:c5:1d:e6:2a:7f:4c:8f:a0:5f:df:4f:41:af:ff: 79:7b:9a:75:88:1e:ee:7f:b5:68:9e:eb:0c:8b:21:56:8d:6a: 5a:1f:df:9a:ea:a3:49:e1:87:ad:40:ae:5d:3f:72:92:d0:02: 05:78:ae:a0:dc:b8:aa:60:8d:6e:61:7c:51:7f:ea:5d:94:1a: bd:95:70:b5:ee:b9:5c:d1:b3:b9:d7:93:39:47:ec:28:19:53: a2:e1:3a:c5:f5:3b:26:ed:f8:b6:a1:91:5b:41:c1:09:ba:af: fd:bb:fc:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VCQ0MxMTAvBgNVBAUTKDZEQUI2MUQxMkUzRjE5NkY1MTY5Mzg3MjNDODAyNzU5 OUM1RDc1NTIwHhcNMjUwODA5MDU1NjI0WhcNMjUwODE2MDU1NjI0WjAYMRYwFAYD VQQDEw02ODk2ZTMwOC0wY2FjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxwAS+HdyfM0JXVkQs3DUrHCwposQktCFKNuIh5vJK3XVi6eZonvoBEhSn+ZN 3+bWq3jQHr/tN2udPt2F4a3Or4hiwT0Y6LjqI4B4VcNlhhFh+3zM5tu++Yis6LGn QAfBWsNH4KoQJBHMLAvxf5gW6H8K6WZYpc9zLF9h+LQUU67RMb9gmo30vt2N9QJw hHf7KQOwOEk07RcD5kSw8iprnPUaABKq/bEOAafLkLsjR4aDbugMDd37xQGwkR+M QbS26NrQjTg1JMzd0iSQ3dnrUGuocR4CkLBbKl3ZeynQJhg5IyZLh118seymtkUr S7ycVoIKSfDsPLpDCCdPMLgZCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKmXuQ4N 04hgVft2DjpXXGtQViwRMB8GA1UdIwQYMBaAFG2rYdEuPxlvUWk4cjyAJ1mcXXVS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUJDQy8yQUU4OTgxQTI3 MjcxMUVGOTE0M0U2MjJDNEY5QUUwMi9iYXRoMFM0X0dXOVJhVGh5UElBbldaeGRk VkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JhdGgwUzRfR1c5UmFUaHlQSUFuV1p4ZGRWSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUJDQy8yQUU4OTgxQTI3MjcxMUVGOTE0M0U2MjJDNEY5QUUwMi9iYXRoMFM0X0dX OVJhVGh5UElBbldaeGRkVkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzYZIYk1yHSgJX66stTCPGhiGyYYh5N6KpRS7Mq75YrXdmPhD8a5nD MkT0gCs4vHPUruHA4WvZVzflNn4aeOmD0EgjicAubkFIjw+NaAnUje4SYaA0nEbX Ri+foZuk4XUB/e21lNchUG1H+idOxN7EzzgBvl/Obz5YK9t4VTUHqgbo5zml7JPd +lRhxaTuAJqKYNApxR3mKn9Mj6Bf309Br/95e5p1iB7uf7VonusMiyFWjWpaH9+a 6qNJ4YetQK5dP3KS0AIFeK6g3LiqYI1uYXxRf+pdlBq9lXC17rlc0bO515M5R+wo GVOi4TrF9Tsm7fi2oZFbQcEJuq/9u/xJ -----END CERTIFICATE-----Generated at Sat Aug 9 10:53:31 2025 by rpki-client