$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft File: BUM8OuqKSXAsmoLuyV0WtVA86mA.mft (raw, json) Hash identifier: FNGqiG1WhEcRTyFXKD+IcWsoidVG8FeFDCwUz2jNXqc= Subject key identifier: 08:7B:A8:AF:F5:CD:8A:25:A9:3E:12:AD:F6:02:88:30:AE:87:52:97 Authority key identifier: 05:43:3C:3A:EA:8A:49:70:2C:9A:82:EE:C9:5D:16:B5:50:3C:EA:60 Certificate issuer: /CN=A91CFFA0/serialNumber=05433C3AEA8A49702C9A82EEC95D16B5503CEA60 Certificate serial: 0D78 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BUM8OuqKSXAsmoLuyV0WtVA86mA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft Manifest number: 0D56 Signing time: Sun 10 Aug 2025 18:00:18 +0000 Manifest this update: Sun 10 Aug 2025 18:00:18 +0000 Manifest next update: Sun 17 Aug 2025 18:00:18 +0000 Files and hashes: 1: BUM8OuqKSXAsmoLuyV0WtVA86mA.crl (hash: eYM3JRysIi8GhG5JRxk4d5cXWduYzyV1pWLlM2/x6+k=) 2: 83ECD7C40CCA11ED97820077C4F9AE02.roa (hash: tsWCAJh3hDUuF0jt3mDhnNo48pJ1cTxWnbkE+ZQXBxw=) 3: 0E3F36D8C43D11EBAB31777FC4F9AE02.roa (hash: BThAKf2icEZsZqpXgnFl9VpqvpRKYGs7e0515Blb0yw=) 4: 1F4E1CC014D311EA81309110C4F9AE02.roa (hash: zPumQuSa3V5Do5kU4HAy8QEzfyGrDVZPMvaKh+jhJxk=) 5: E6F0F39214CE11EA9E740182C4F9AE02.roa (hash: zpETj3vTU+4JGJFNH2bJangxDJpoV//my0UXRjaLeMk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.crl rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BUM8OuqKSXAsmoLuyV0WtVA86mA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3448 (0xd78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFA0, serialNumber=05433C3AEA8A49702C9A82EEC95D16B5503CEA60 Validity Not Before: Aug 10 18:00:18 2025 GMT Not After : Aug 17 18:00:18 2025 GMT Subject: CN=6898de32-c7f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ba:e9:58:71:f4:32:ba:e6:80:30:4d:ac:60: e5:7b:53:71:f2:5c:92:22:2c:40:bd:be:c7:0b:1d: 13:9b:59:0b:29:ce:78:05:69:38:9c:d6:37:41:91: a8:4d:c4:b6:94:74:b3:ad:a8:df:52:20:2e:3d:77: 76:59:bb:2f:44:83:df:b8:f3:18:99:00:55:fc:ee: 12:6b:ba:d7:23:8a:02:6c:cc:d1:c0:15:bb:08:e1: fe:16:7f:ec:4d:69:d5:99:59:56:d1:f6:0a:f2:6f: e0:6a:9b:3b:68:63:67:3e:8f:2e:9b:20:d7:7b:b2: 5e:a0:a5:89:f7:28:53:7d:f1:9e:29:5b:4b:25:dd: 5b:3c:e7:70:18:b1:de:3c:9c:ad:dc:60:99:f0:2c: ee:eb:e3:52:b8:86:eb:c3:36:63:38:98:91:33:26: 41:e0:e4:02:a5:04:55:bf:72:2d:60:1c:4a:8f:9e: d9:04:dd:0c:71:f7:92:7c:c9:e4:23:bc:f6:10:5f: f9:a4:74:dc:ea:c4:7f:6e:ef:de:f6:ae:1b:4e:e4: 8c:b6:89:d5:60:97:56:e3:c7:94:1d:0f:95:46:a9: 4f:10:e3:68:84:63:00:e4:cd:ea:1e:32:db:27:3c: c4:54:7d:a9:85:fe:37:a0:9a:6f:6a:db:26:ee:bd: 51:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:7B:A8:AF:F5:CD:8A:25:A9:3E:12:AD:F6:02:88:30:AE:87:52:97 X509v3 Authority Key Identifier: keyid:05:43:3C:3A:EA:8A:49:70:2C:9A:82:EE:C9:5D:16:B5:50:3C:EA:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BUM8OuqKSXAsmoLuyV0WtVA86mA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:d7:99:c3:d9:03:c0:2a:96:22:ad:bf:d0:2b:2a:46:3c:36: 09:ff:3d:2d:42:90:ac:17:c2:0f:97:45:58:a6:94:d5:68:4d: 9f:96:32:fc:48:47:77:a9:61:e9:d7:47:4a:14:66:2c:bc:09: 63:42:de:64:da:c1:aa:d6:8a:7f:d5:5e:03:0d:e8:a5:a5:09: 16:92:68:0a:65:2c:be:fe:ef:c2:54:84:8c:57:1d:91:22:24: 9a:48:74:87:5f:12:2a:f5:b6:88:c9:03:74:92:f7:4e:da:8e: ea:6b:10:d7:7a:db:7c:0b:70:9c:24:bc:af:62:57:8e:bc:62: a8:fb:59:7b:eb:fd:56:31:19:a5:47:fe:8d:42:00:65:a3:a6: 36:3a:95:4c:81:d6:3e:02:21:e5:9d:f8:33:00:c2:15:f9:0e: 5e:91:2a:ce:79:27:1c:65:26:45:31:2e:c4:c2:be:fa:2d:0b: ed:e8:95:02:c9:c3:2a:4e:de:67:36:0b:f4:90:a5:3b:6a:1a: f5:a7:b9:bd:76:d7:51:1c:0d:32:09:88:6e:5d:49:3b:82:27: f8:8e:54:dc:77:51:b5:73:cc:f4:9a:07:90:9e:13:ee:3f:79: 89:0e:55:5e:9f:a6:46:34:84:e1:b6:10:0c:a7:65:a7:bd:4a: 99:ac:43:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDXgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGQTAxMTAvBgNVBAUTKDA1NDMzQzNBRUE4QTQ5NzAyQzlBODJFRUM5NUQxNkI1 NTAzQ0VBNjAwHhcNMjUwODEwMTgwMDE4WhcNMjUwODE3MTgwMDE4WjAYMRYwFAYD VQQDEw02ODk4ZGUzMi1jN2YzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0LrpWHH0MrrmgDBNrGDle1Nx8lySIixAvb7HCx0Tm1kLKc54BWk4nNY3QZGo TcS2lHSzrajfUiAuPXd2WbsvRIPfuPMYmQBV/O4Sa7rXI4oCbMzRwBW7COH+Fn/s TWnVmVlW0fYK8m/gaps7aGNnPo8umyDXe7JeoKWJ9yhTffGeKVtLJd1bPOdwGLHe PJyt3GCZ8Czu6+NSuIbrwzZjOJiRMyZB4OQCpQRVv3ItYBxKj57ZBN0McfeSfMnk I7z2EF/5pHTc6sR/bu/e9q4bTuSMtonVYJdW48eUHQ+VRqlPEONohGMA5M3qHjLb JzzEVH2phf43oJpvatsm7r1R7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAh7qK/1 zYolqT4SrfYCiDCuh1KXMB8GA1UdIwQYMBaAFAVDPDrqiklwLJqC7sldFrVQPOpg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZBMC8xNTBCRjY5MEQ4 Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9CVU04T3VxS1NYQXNtb0x1eVYwV3RWQTg2 bUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JVTThPdXFLU1hBc21vTHV5VjBXdFZBODZtQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkZBMC8xNTBCRjY5MEQ4Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9CVU04T3VxS1NY QXNtb0x1eVYwV3RWQTg2bUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCh15nD2QPAKpYirb/QKypGPDYJ/z0tQpCsF8IPl0VYppTVaE2fljL8 SEd3qWHp10dKFGYsvAljQt5k2sGq1op/1V4DDeilpQkWkmgKZSy+/u/CVISMVx2R IiSaSHSHXxIq9baIyQN0kvdO2o7qaxDXett8C3CcJLyvYleOvGKo+1l76/1WMRml R/6NQgBlo6Y2OpVMgdY+AiHlnfgzAMIV+Q5ekSrOeSccZSZFMS7Ewr76LQvt6JUC ycMqTt5nNgv0kKU7ahr1p7m9dtdRHA0yCYhuXUk7gif4jlTcd1G1c8z0mgeQnhPu P3mJDlVen6ZGNIThthAMp2WnvUqZrEM1 -----END CERTIFICATE-----Generated at Mon Aug 11 04:15:49 2025 by rpki-client