$ rpki-client -vvf rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.mft File: BIqpjz7FSpBg5bwwBZ1cQiDXwvc.mft (raw, json) Hash identifier: 6cFjMuneR4RlLOipGwpnmvD0J2u21dRdgG6imHqTR4o= Subject key identifier: A8:FD:FC:F4:04:AE:1A:26:01:C1:77:7E:25:4D:D1:70:0B:B1:7B:50 Authority key identifier: 04:8A:A9:8F:3E:C5:4A:90:60:E5:BC:30:05:9D:5C:42:20:D7:C2:F7 Certificate issuer: /CN=A91D425A/serialNumber=048AA98F3EC54A9060E5BC30059D5C4220D7C2F7 Certificate serial: 0B36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.mft Manifest number: 0B2F Signing time: Wed 06 Aug 2025 19:27:49 +0000 Manifest this update: Wed 06 Aug 2025 19:27:49 +0000 Manifest next update: Wed 13 Aug 2025 19:27:49 +0000 Files and hashes: 1: BIqpjz7FSpBg5bwwBZ1cQiDXwvc.crl (hash: zTNICQ+DBXbEYqqbOgt0z5jZJBLD2/xpwRP/KmzTRJA=) 2: 494B4070419C11EAAE836772C4F9AE02.roa (hash: Y3JTz6x7Gh76YU/+03lkuBO3MY94CeW1sP7iPG9gZfk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.crl rsync://rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 19:27:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2870 (0xb36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D425A, serialNumber=048AA98F3EC54A9060E5BC30059D5C4220D7C2F7 Validity Not Before: Aug 6 19:27:49 2025 GMT Not After : Aug 13 19:27:49 2025 GMT Subject: CN=6893acb5-0dc7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:63:73:6f:b5:7c:1d:d9:87:3c:44:3a:9a:cf: d8:21:c2:ef:38:12:e4:91:cb:1c:72:78:9e:7e:36: 33:7f:91:81:4a:cf:96:ff:2e:3c:20:34:68:3b:90: 29:02:23:cd:64:ee:b5:e8:13:ac:f1:6b:f8:f0:46: 62:a8:1d:a2:ad:b2:9f:ba:1e:e3:19:71:aa:7d:66: 24:52:da:ac:b3:e4:33:30:57:b6:f8:ff:25:f2:a4: 3d:6a:29:e0:94:99:53:db:f3:d0:bb:28:ed:69:98: 83:f6:91:e3:02:7c:37:81:2e:98:9f:43:f1:08:9d: 01:89:5a:a2:ac:0d:2c:cc:a8:e2:8e:11:8c:cd:a1: c7:00:6d:49:75:26:2b:15:d9:8f:ef:01:5c:0e:36: 95:ab:42:f9:da:03:6f:58:f7:2b:1d:90:59:a2:68: 17:5b:f3:b3:df:66:16:b1:ed:f3:91:8b:71:29:b0: 62:e0:57:ac:e3:66:92:76:13:5f:84:97:f1:17:23: 42:e0:5b:06:2b:28:60:a1:00:0b:52:23:5f:e2:cb: 67:3c:3c:ea:3a:4e:55:8d:1e:ab:b3:51:9e:27:75: 20:46:10:06:62:e5:74:90:96:93:9b:4a:04:80:ee: f9:03:e9:f3:5f:e9:38:b6:47:3b:56:52:56:0e:96: 04:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:FD:FC:F4:04:AE:1A:26:01:C1:77:7E:25:4D:D1:70:0B:B1:7B:50 X509v3 Authority Key Identifier: keyid:04:8A:A9:8F:3E:C5:4A:90:60:E5:BC:30:05:9D:5C:42:20:D7:C2:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:37:96:65:04:be:f5:e5:6a:25:95:27:dd:30:88:a9:68:dd: af:f7:81:cb:e3:b9:ac:f3:d2:3c:74:65:d8:ff:a4:63:b4:74: 3b:91:da:b9:8c:30:ad:ce:c5:23:82:e7:fc:fb:c9:30:9d:3f: b8:80:89:b2:de:4f:b1:9a:b0:5f:d7:9a:29:de:41:0c:59:83: 67:2d:45:c5:c0:75:f6:ce:ec:bf:44:c7:9d:e7:3b:fe:89:fb: 40:15:af:93:5a:20:7e:45:28:d7:83:c3:f5:46:32:fe:70:47: 0e:64:12:32:b9:ef:77:d0:34:ce:0c:e5:c8:1a:3e:f2:6d:e0: 3c:1b:8f:93:4f:73:b7:cb:6e:4b:22:fa:5a:29:6c:36:91:ce: 27:7f:9c:9c:04:e0:f9:06:33:63:18:3c:66:fe:ea:b7:88:79: eb:dc:d5:2d:fa:1e:7a:61:44:be:ad:82:c2:40:3c:5c:b9:18: 69:f1:68:cc:94:9c:22:b6:60:c3:72:95:4f:a0:38:d7:b7:2c: a4:9e:42:64:7b:2e:5c:9b:c3:15:eb:69:db:d7:32:9e:31:59: 47:73:71:ac:f0:93:65:c6:06:4e:61:df:f8:75:b9:a5:af:da: 42:c3:20:ed:df:02:74:ca:23:05:d3:02:2d:37:58:e9:34:48: 4a:27:71:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCzYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQyNUExMTAvBgNVBAUTKDA0OEFBOThGM0VDNTRBOTA2MEU1QkMzMDA1OUQ1QzQy MjBEN0MyRjcwHhcNMjUwODA2MTkyNzQ5WhcNMjUwODEzMTkyNzQ5WjAYMRYwFAYD VQQDEw02ODkzYWNiNS0wZGM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwGNzb7V8HdmHPEQ6ms/YIcLvOBLkkcsccniefjYzf5GBSs+W/y48IDRoO5Ap AiPNZO616BOs8Wv48EZiqB2irbKfuh7jGXGqfWYkUtqss+QzMFe2+P8l8qQ9aing lJlT2/PQuyjtaZiD9pHjAnw3gS6Yn0PxCJ0BiVqirA0szKjijhGMzaHHAG1JdSYr FdmP7wFcDjaVq0L52gNvWPcrHZBZomgXW/Oz32YWse3zkYtxKbBi4Fes42aSdhNf hJfxFyNC4FsGKyhgoQALUiNf4stnPDzqOk5VjR6rs1GeJ3UgRhAGYuV0kJaTm0oE gO75A+nzX+k4tkc7VlJWDpYEfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKj9/PQE rhomAcF3fiVN0XALsXtQMB8GA1UdIwQYMBaAFASKqY8+xUqQYOW8MAWdXEIg18L3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDI1QS8wMjRDMjRGODQx NkMxMUVBODNDM0VGNUFDNEY5QUUwMi9CSXFwano3RlNwQmc1Ynd3QloxY1FpRFh3 dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JJcXBqejdGU3BCZzVid3dCWjFjUWlEWHd2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDI1QS8wMjRDMjRGODQxNkMxMUVBODNDM0VGNUFDNEY5QUUwMi9CSXFwano3RlNw Qmc1Ynd3QloxY1FpRFh3dmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoN5ZlBL715WollSfdMIipaN2v94HL47ms89I8dGXY/6RjtHQ7kdq5 jDCtzsUjguf8+8kwnT+4gImy3k+xmrBf15op3kEMWYNnLUXFwHX2zuy/RMed5zv+ iftAFa+TWiB+RSjXg8P1RjL+cEcOZBIyue930DTODOXIGj7ybeA8G4+TT3O3y25L IvpaKWw2kc4nf5ycBOD5BjNjGDxm/uq3iHnr3NUt+h56YUS+rYLCQDxcuRhp8WjM lJwitmDDcpVPoDjXtyyknkJkey5cm8MV62nb1zKeMVlHc3Gs8JNlxgZOYd/4dbml r9pCwyDt3wJ0yiMF0wItN1jpNEhKJ3Fg -----END CERTIFICATE-----Generated at Thu Aug 7 05:13:32 2025 by rpki-client