$ rpki-client -vvf rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.mft File: BIqpjz7FSpBg5bwwBZ1cQiDXwvc.mft (raw, json) Hash identifier: uKjaenV4GaFb3g+3/esOroW4UTFC6hc63XFL9mf9erQ= Subject key identifier: D1:01:1A:D6:1D:92:BA:53:B3:4C:07:80:A7:7A:A3:65:AC:E8:FC:DE Authority key identifier: 04:8A:A9:8F:3E:C5:4A:90:60:E5:BC:30:05:9D:5C:42:20:D7:C2:F7 Certificate issuer: /CN=A91D425A/serialNumber=048AA98F3EC54A9060E5BC30059D5C4220D7C2F7 Certificate serial: 0B1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.mft Manifest number: 0B14 Signing time: Sat 14 Jun 2025 19:05:53 +0000 Manifest this update: Sat 14 Jun 2025 19:05:53 +0000 Manifest next update: Sat 21 Jun 2025 19:05:53 +0000 Files and hashes: 1: BIqpjz7FSpBg5bwwBZ1cQiDXwvc.crl (hash: B2GUTpI4LbnjZTpsTlNPm8mKY0PxwgxzKlUWM76XpO0=) 2: 494B4070419C11EAAE836772C4F9AE02.roa (hash: Y3JTz6x7Gh76YU/+03lkuBO3MY94CeW1sP7iPG9gZfk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.crl rsync://rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 19:05:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2843 (0xb1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D425A, serialNumber=048AA98F3EC54A9060E5BC30059D5C4220D7C2F7 Validity Not Before: Jun 14 19:05:53 2025 GMT Not After : Jun 21 19:05:53 2025 GMT Subject: CN=684dc811-b491 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:21:97:f4:be:73:81:d1:0a:4c:28:79:76:96: 4b:9f:5c:a6:26:d3:ad:3c:7e:ad:3a:cc:1b:f9:6f: b6:34:07:bc:90:74:ad:9a:50:6f:86:05:e6:4c:3b: e7:48:81:cf:f2:3c:00:03:de:04:c5:24:f4:e7:cf: a8:28:0c:b8:07:86:c1:c1:2e:c9:d8:93:64:d6:80: 44:44:7d:3c:63:71:69:20:d2:45:f5:4b:bd:9a:56: e1:a5:71:75:9c:b7:81:36:6e:03:74:d0:c2:40:1e: 47:a9:44:21:62:33:75:5c:d4:31:70:a5:e2:fd:79: da:6c:92:52:53:0d:fd:78:d5:81:b4:13:3c:93:f7: bf:c3:b1:84:a9:45:24:9c:a4:b4:ab:56:26:ff:37: 54:aa:e6:a6:02:76:ca:9a:92:87:85:1a:1c:c8:af: 7c:fe:61:85:08:4e:e2:45:a4:14:1e:2c:4f:30:37: 9d:2c:7f:ad:c1:2a:58:f2:87:c5:f1:c9:e9:4c:0a: 1b:e7:66:a3:bc:b5:e7:5b:e4:a9:56:73:8b:f5:1e: 0f:38:75:47:7f:cd:9f:bd:96:89:b6:38:c9:2e:e8: 0e:45:8c:e3:a3:94:79:6c:06:bb:11:09:f9:2d:e3: a7:09:c6:64:9e:eb:2e:03:96:32:49:27:df:28:94: 14:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:01:1A:D6:1D:92:BA:53:B3:4C:07:80:A7:7A:A3:65:AC:E8:FC:DE X509v3 Authority Key Identifier: keyid:04:8A:A9:8F:3E:C5:4A:90:60:E5:BC:30:05:9D:5C:42:20:D7:C2:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:db:4d:d4:91:30:01:66:27:e3:d4:ff:0b:6a:b9:4b:49:22: c9:e7:b9:2c:71:f1:2d:7b:e8:fd:26:b1:51:55:c8:bd:18:cf: aa:1c:77:aa:02:30:11:e2:69:03:dd:a5:6c:c6:28:c0:00:0e: 8d:fe:b5:6d:48:16:e3:7a:ee:43:cf:ed:2c:ed:b3:79:fd:23: 99:23:f8:73:95:2d:64:79:70:fc:a3:13:d9:2a:0e:9c:00:fb: ac:c3:b7:8c:86:7b:2a:7a:c8:ab:d9:9a:61:e3:4b:42:55:ac: 9a:62:ad:4a:d5:9c:14:fc:8e:bb:9c:66:b5:7c:59:e6:c8:fa: 39:ee:f9:7a:66:c7:0e:18:f6:f1:c1:ca:8d:ca:62:c2:c9:4b: f1:d6:fa:ea:3b:cc:c9:30:d8:a0:a3:74:c4:d8:1d:9f:8c:37: d2:b6:c0:b6:2a:2f:f3:43:27:95:d4:69:42:39:bb:30:09:5d: 78:0c:2a:8b:43:53:92:e1:6b:5e:93:04:b0:8d:31:4f:5b:3f: d7:ad:7b:97:71:ea:68:9a:ee:b9:e7:a0:1a:c7:b0:86:d5:ef: 22:c1:17:70:72:82:75:82:0b:4d:b3:72:0b:6b:e9:6b:76:a3: 63:91:3e:07:16:22:83:48:d7:07:7a:86:ef:55:31:f5:53:ba: 54:88:98:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQyNUExMTAvBgNVBAUTKDA0OEFBOThGM0VDNTRBOTA2MEU1QkMzMDA1OUQ1QzQy MjBEN0MyRjcwHhcNMjUwNjE0MTkwNTUzWhcNMjUwNjIxMTkwNTUzWjAYMRYwFAYD VQQDEw02ODRkYzgxMS1iNDkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2CGX9L5zgdEKTCh5dpZLn1ymJtOtPH6tOswb+W+2NAe8kHStmlBvhgXmTDvn SIHP8jwAA94ExST058+oKAy4B4bBwS7J2JNk1oBERH08Y3FpINJF9Uu9mlbhpXF1 nLeBNm4DdNDCQB5HqUQhYjN1XNQxcKXi/XnabJJSUw39eNWBtBM8k/e/w7GEqUUk nKS0q1Ym/zdUquamAnbKmpKHhRocyK98/mGFCE7iRaQUHixPMDedLH+twSpY8ofF 8cnpTAob52ajvLXnW+SpVnOL9R4POHVHf82fvZaJtjjJLugORYzjo5R5bAa7EQn5 LeOnCcZknusuA5YySSffKJQUqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNEBGtYd krpTs0wHgKd6o2Ws6PzeMB8GA1UdIwQYMBaAFASKqY8+xUqQYOW8MAWdXEIg18L3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDI1QS8wMjRDMjRGODQx NkMxMUVBODNDM0VGNUFDNEY5QUUwMi9CSXFwano3RlNwQmc1Ynd3QloxY1FpRFh3 dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JJcXBqejdGU3BCZzVid3dCWjFjUWlEWHd2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDI1QS8wMjRDMjRGODQxNkMxMUVBODNDM0VGNUFDNEY5QUUwMi9CSXFwano3RlNw Qmc1Ynd3QloxY1FpRFh3dmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZ203UkTABZifj1P8LarlLSSLJ57kscfEte+j9JrFRVci9GM+qHHeq AjAR4mkD3aVsxijAAA6N/rVtSBbjeu5Dz+0s7bN5/SOZI/hzlS1keXD8oxPZKg6c APusw7eMhnsqesir2Zph40tCVayaYq1K1ZwU/I67nGa1fFnmyPo57vl6ZscOGPbx wcqNymLCyUvx1vrqO8zJMNigo3TE2B2fjDfStsC2Ki/zQyeV1GlCObswCV14DCqL Q1OS4WtekwSwjTFPWz/XrXuXcepomu6556Aax7CG1e8iwRdwcoJ1ggtNs3ILa+lr dqNjkT4HFiKDSNcHeobvVTH1U7pUiJjj -----END CERTIFICATE-----Generated at Sun Jun 15 07:05:45 2025 by rpki-client