$ rpki-client -vvf rpki.apnic.net/member_repository/A91D795B/A88FB3E200C011EC96C2D583C4F9AE02/Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.mft File: Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.mft (raw, json) Hash identifier: KjOXbJCoqQC/DYt+8nQf8A36pqAjNYoSA0yksc53Okc= Subject key identifier: 44:9D:69:B4:2A:8A:21:FE:3F:A0:D8:8C:72:A3:54:D5:CC:C3:33:57 Authority key identifier: 05:BE:F3:B7:64:63:56:CE:40:9F:C5:63:F2:A6:90:78:67:79:5E:F7 Certificate issuer: /CN=A91D795B/serialNumber=05BEF3B7646356CE409FC563F2A6907867795EF7 Certificate serial: 0546 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D795B/A88FB3E200C011EC96C2D583C4F9AE02/Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.mft Manifest number: 0541 Signing time: Mon 04 Aug 2025 23:55:21 +0000 Manifest this update: Mon 04 Aug 2025 23:55:21 +0000 Manifest next update: Mon 11 Aug 2025 23:55:21 +0000 Files and hashes: 1: Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.crl (hash: aK3rSy+kwdb/eIiLHGKERa7k+PmnAKNESiO4VHcDcDs=) 2: 7C05ACEE75B311EF83EC6F78C4F9AE02.roa (hash: 4HbuRwfGRyDZiXaifrjrnY5mPijGwg/rzxNxMS6Fugs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D795B/A88FB3E200C011EC96C2D583C4F9AE02/Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.crl rsync://rpki.apnic.net/member_repository/A91D795B/A88FB3E200C011EC96C2D583C4F9AE02/Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 23:55:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1350 (0x546) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D795B, serialNumber=05BEF3B7646356CE409FC563F2A6907867795EF7 Validity Not Before: Aug 4 23:55:21 2025 GMT Not After : Aug 11 23:55:21 2025 GMT Subject: CN=68914869-83e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:95:d5:0e:8a:b9:a6:02:85:aa:25:fd:4a:49: a6:7b:17:78:66:e5:f1:34:39:b8:64:9b:bf:5e:57: 59:bf:f7:66:e7:5a:41:65:34:c2:ad:98:d4:45:7d: 17:22:dd:98:19:45:94:e2:3e:b4:2e:7f:24:36:3c: 00:9e:f5:7b:53:1c:e2:04:a5:cd:fa:20:50:15:ce: 05:e5:66:c0:0a:d8:d6:66:39:05:b1:25:28:e3:36: 44:83:12:a6:a0:12:48:ec:b0:02:c2:07:bc:a8:f5: 40:c5:53:51:cc:dc:d2:d4:87:34:63:1e:11:75:56: ae:29:a2:d1:19:c3:2b:d0:c5:0d:57:57:24:41:2d: 8a:fa:67:24:3e:f1:36:48:19:a9:32:42:bb:86:55: b6:9f:d0:51:1e:36:02:28:f3:68:b4:97:9e:3e:16: ba:e3:2a:6e:4b:5e:61:8e:15:8f:ec:26:7d:eb:e8: 5d:91:9c:07:5d:0d:55:36:58:fe:0d:98:c8:a9:b7: 58:ae:72:a7:3e:b8:2d:23:a4:20:f1:e2:d0:a3:f8: a4:31:36:7f:4e:be:02:f0:37:39:8f:da:9f:f9:82: 5b:63:8c:7c:23:94:f4:bd:0f:82:11:36:7a:d5:84: a6:a0:9e:59:48:6b:ff:92:eb:4f:de:b1:17:94:8f: 91:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:9D:69:B4:2A:8A:21:FE:3F:A0:D8:8C:72:A3:54:D5:CC:C3:33:57 X509v3 Authority Key Identifier: keyid:05:BE:F3:B7:64:63:56:CE:40:9F:C5:63:F2:A6:90:78:67:79:5E:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D795B/A88FB3E200C011EC96C2D583C4F9AE02/Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D795B/A88FB3E200C011EC96C2D583C4F9AE02/Bb7zt2RjVs5An8Vj8qaQeGd5Xvc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:e7:fa:ad:b2:01:00:3b:2f:e1:64:4d:1d:09:21:24:8d:eb: e6:71:57:0f:07:89:d7:47:d5:c7:4a:5e:95:81:71:48:05:ec: 67:18:48:a3:37:86:10:3e:31:e6:e6:67:3e:0d:db:db:1d:eb: 87:1a:36:cc:dc:9b:09:f8:3c:2f:33:f4:33:a2:ff:3d:1d:b9: a4:d6:92:ca:bd:46:b5:9f:3c:15:fc:8a:fb:c7:85:6a:4f:b8: a0:54:11:13:f4:f5:d0:48:e9:41:50:a1:87:df:ef:b8:c3:c1: 8f:55:c3:82:9c:f4:6c:e5:c2:f4:c3:cb:15:ec:5b:8f:92:68: ad:46:c0:e3:31:1d:9c:77:9e:2e:2f:2b:04:70:f7:63:f1:d1: cf:f6:b1:66:c5:8b:7f:65:98:10:70:bf:39:20:81:a5:d6:3c: b6:84:1c:d8:84:93:36:ac:bb:bf:05:8a:40:6c:1f:74:f7:19: 27:ae:e1:2f:a2:cb:fa:50:81:a3:02:0c:b4:0a:48:54:bd:c5: 33:fe:ae:4a:a0:c9:80:01:2c:4c:c0:6f:41:1c:fe:5f:41:f3: 59:d4:fc:a5:bc:32:db:8f:66:b7:47:a0:4d:45:eb:82:4f:12: fc:dc:a4:ca:7b:56:f4:98:ed:96:c9:76:f0:55:fd:58:c1:d3: 1d:ea:9c:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDc5NUIxMTAvBgNVBAUTKDA1QkVGM0I3NjQ2MzU2Q0U0MDlGQzU2M0YyQTY5MDc4 Njc3OTVFRjcwHhcNMjUwODA0MjM1NTIxWhcNMjUwODExMjM1NTIxWjAYMRYwFAYD VQQDEw02ODkxNDg2OS04M2U0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3pXVDoq5pgKFqiX9Skmmexd4ZuXxNDm4ZJu/XldZv/dm51pBZTTCrZjURX0X It2YGUWU4j60Ln8kNjwAnvV7UxziBKXN+iBQFc4F5WbACtjWZjkFsSUo4zZEgxKm oBJI7LACwge8qPVAxVNRzNzS1Ic0Yx4RdVauKaLRGcMr0MUNV1ckQS2K+mckPvE2 SBmpMkK7hlW2n9BRHjYCKPNotJeePha64ypuS15hjhWP7CZ96+hdkZwHXQ1VNlj+ DZjIqbdYrnKnPrgtI6Qg8eLQo/ikMTZ/Tr4C8Dc5j9qf+YJbY4x8I5T0vQ+CETZ6 1YSmoJ5ZSGv/kutP3rEXlI+RKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFESdabQq iiH+P6DYjHKjVNXMwzNXMB8GA1UdIwQYMBaAFAW+87dkY1bOQJ/FY/KmkHhneV73 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzk1Qi9BODhGQjNFMjAw QzAxMUVDOTZDMkQ1ODNDNEY5QUUwMi9CYjd6dDJSalZzNUFuOFZqOHFhUWVHZDVY dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JiN3p0MlJqVnM1QW44Vmo4cWFRZUdkNVh2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Nzk1Qi9BODhGQjNFMjAwQzAxMUVDOTZDMkQ1ODNDNEY5QUUwMi9CYjd6dDJSalZz NUFuOFZqOHFhUWVHZDVYdmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB25/qtsgEAOy/hZE0dCSEkjevmcVcPB4nXR9XHSl6VgXFIBexnGEij N4YQPjHm5mc+DdvbHeuHGjbM3JsJ+DwvM/Qzov89Hbmk1pLKvUa1nzwV/Ir7x4Vq T7igVBET9PXQSOlBUKGH3++4w8GPVcOCnPRs5cL0w8sV7FuPkmitRsDjMR2cd54u LysEcPdj8dHP9rFmxYt/ZZgQcL85IIGl1jy2hBzYhJM2rLu/BYpAbB909xknruEv osv6UIGjAgy0CkhUvcUz/q5KoMmAASxMwG9BHP5fQfNZ1PylvDLbj2a3R6BNReuC TxL83KTKe1b0mO2WyXbwVf1YwdMd6pxZ -----END CERTIFICATE-----Generated at Wed Aug 6 00:52:55 2025 by rpki-client