$ rpki-client -vvf rpki.apnic.net/member_repository/A91DDDA7/3C95319C8D5411EB9840E05FC4F9AE02/bj9qTL0sdlG0kOtkkEu_8fRiAdU.mft File: bj9qTL0sdlG0kOtkkEu_8fRiAdU.mft (raw, json) Hash identifier: Y/2gHnq2oeWmpQwzbXX3wva6IFZGhWFFkRLuhlf8wgQ= Subject key identifier: DD:D7:E8:D3:8A:38:6A:0A:D3:F4:3E:7D:CF:0B:F1:48:A7:CE:1A:64 Authority key identifier: 6E:3F:6A:4C:BD:2C:76:51:B4:90:EB:64:90:4B:BF:F1:F4:62:01:D5 Certificate issuer: /CN=A91DDDA7/serialNumber=6E3F6A4CBD2C7651B490EB64904BBFF1F46201D5 Certificate serial: 0675 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bj9qTL0sdlG0kOtkkEu_8fRiAdU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DDDA7/3C95319C8D5411EB9840E05FC4F9AE02/bj9qTL0sdlG0kOtkkEu_8fRiAdU.mft Manifest number: 066F Signing time: Mon 04 Aug 2025 20:31:11 +0000 Manifest this update: Mon 04 Aug 2025 20:31:11 +0000 Manifest next update: Mon 11 Aug 2025 20:31:11 +0000 Files and hashes: 1: bj9qTL0sdlG0kOtkkEu_8fRiAdU.crl (hash: PxKS34OdwmIN3uOKRGW2QaFNDmJkaKK/O09ylTeiKUo=) 2: 815931708D5411EB9DA31875C4F9AE02.roa (hash: LyuoMJXz1NyXM9pSNW11Fa6fRcMflVH6LhgfRij1kVg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DDDA7/3C95319C8D5411EB9840E05FC4F9AE02/bj9qTL0sdlG0kOtkkEu_8fRiAdU.crl rsync://rpki.apnic.net/member_repository/A91DDDA7/3C95319C8D5411EB9840E05FC4F9AE02/bj9qTL0sdlG0kOtkkEu_8fRiAdU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bj9qTL0sdlG0kOtkkEu_8fRiAdU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 20:31:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1653 (0x675) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DDDA7, serialNumber=6E3F6A4CBD2C7651B490EB64904BBFF1F46201D5 Validity Not Before: Aug 4 20:31:11 2025 GMT Not After : Aug 11 20:31:11 2025 GMT Subject: CN=6891188f-1128 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ed:fd:8a:16:da:b0:ca:b8:94:ed:45:a6:a7: 45:d1:14:21:b9:b0:d9:8c:26:57:8a:30:88:a4:1b: e2:ff:25:99:d4:26:ae:71:f4:22:68:e9:8f:a8:7a: ba:f2:79:cd:b7:f9:d9:6d:61:85:d6:59:e0:c8:2f: ef:70:8f:18:86:19:91:e5:02:5b:77:06:b1:45:9c: 53:12:f0:9c:73:ba:36:57:23:bc:2d:39:bd:2f:96: 27:b9:7c:e2:35:00:68:f7:03:88:5a:bf:d2:f4:43: 25:43:64:a4:0a:9a:f5:24:66:4b:87:52:0f:ca:12: 5c:77:44:8e:7d:61:e9:63:8b:81:5a:6b:20:48:de: 66:ac:8b:39:f2:f8:15:da:a3:5d:18:50:76:3e:4f: 80:d3:2d:92:cc:56:3a:86:89:07:70:60:63:52:96: 45:d4:49:b7:ee:f4:ef:88:04:de:14:03:cb:41:d8: 87:8f:27:67:70:5b:25:8c:a6:ca:af:b2:f9:1e:fa: 94:e7:7a:04:e8:07:ce:51:5a:e6:ad:e7:ef:a5:fa: 8a:da:97:e5:60:1d:4a:6a:b2:3a:02:9f:20:2f:0d: 3b:d8:13:ae:f4:3c:28:66:b8:a4:e9:e2:79:8f:de: 1d:d0:0e:a2:79:fc:09:76:f3:48:47:2a:de:c4:be: c6:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:D7:E8:D3:8A:38:6A:0A:D3:F4:3E:7D:CF:0B:F1:48:A7:CE:1A:64 X509v3 Authority Key Identifier: keyid:6E:3F:6A:4C:BD:2C:76:51:B4:90:EB:64:90:4B:BF:F1:F4:62:01:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DDDA7/3C95319C8D5411EB9840E05FC4F9AE02/bj9qTL0sdlG0kOtkkEu_8fRiAdU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bj9qTL0sdlG0kOtkkEu_8fRiAdU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DDDA7/3C95319C8D5411EB9840E05FC4F9AE02/bj9qTL0sdlG0kOtkkEu_8fRiAdU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:27:92:8e:2f:a2:a5:59:85:0b:df:39:d1:aa:ea:25:ff:d5: 53:f8:93:84:71:35:04:80:9d:c8:71:b5:16:fb:45:ea:56:9d: ed:8e:81:3b:14:7c:be:d2:e4:3b:6d:c5:c3:cf:d2:03:8c:63: 98:a5:cd:4c:82:96:68:1d:50:43:59:33:01:38:cf:65:f8:1b: db:38:b6:3c:f8:47:cc:b0:43:14:d8:e8:1d:63:4e:36:02:ea: a8:8b:04:e3:5f:d3:fc:11:e1:31:d7:59:61:ee:98:d6:11:38: bb:4d:b3:61:77:fd:63:90:55:2f:ab:3d:cb:ee:e9:ea:d2:c7: 31:ff:ea:8f:f2:72:48:82:a3:b0:bc:f5:9e:6d:6f:13:40:7e: d3:cb:c9:64:91:95:14:39:e0:09:b6:63:cf:03:b3:f5:1a:c6: 78:d1:8f:29:ad:c1:91:5a:f4:fc:af:a6:b9:36:5b:3a:f0:4c: a0:aa:98:f8:ab:6f:7d:0a:82:3a:0b:33:f6:9d:ae:20:45:02: c3:cf:8f:bc:23:c2:47:04:76:78:5d:fa:43:75:e5:07:ee:03: 52:44:48:04:5c:71:e5:55:f1:a0:69:1d:96:8f:45:d3:31:70: b5:3a:4d:5a:82:d1:14:01:73:15:92:56:61:8a:7e:ac:ab:96: 78:d1:ec:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REREQTcxMTAvBgNVBAUTKDZFM0Y2QTRDQkQyQzc2NTFCNDkwRUI2NDkwNEJCRkYx RjQ2MjAxRDUwHhcNMjUwODA0MjAzMTExWhcNMjUwODExMjAzMTExWjAYMRYwFAYD VQQDEw02ODkxMTg4Zi0xMTI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwO39ihbasMq4lO1FpqdF0RQhubDZjCZXijCIpBvi/yWZ1CaucfQiaOmPqHq6 8nnNt/nZbWGF1lngyC/vcI8YhhmR5QJbdwaxRZxTEvCcc7o2VyO8LTm9L5YnuXzi NQBo9wOIWr/S9EMlQ2SkCpr1JGZLh1IPyhJcd0SOfWHpY4uBWmsgSN5mrIs58vgV 2qNdGFB2Pk+A0y2SzFY6hokHcGBjUpZF1Em37vTviATeFAPLQdiHjydncFsljKbK r7L5HvqU53oE6AfOUVrmrefvpfqK2pflYB1KarI6Ap8gLw072BOu9DwoZrik6eJ5 j94d0A6iefwJdvNIRyrexL7GBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN3X6NOK OGoK0/Q+fc8L8UinzhpkMB8GA1UdIwQYMBaAFG4/aky9LHZRtJDrZJBLv/H0YgHV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERERBNy8zQzk1MzE5QzhE NTQxMUVCOTg0MEUwNUZDNEY5QUUwMi9iajlxVEwwc2RsRzBrT3Rra0V1XzhmUmlB ZFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2JqOXFUTDBzZGxHMGtPdGtrRXVfOGZSaUFkVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RERBNy8zQzk1MzE5QzhENTQxMUVCOTg0MEUwNUZDNEY5QUUwMi9iajlxVEwwc2Rs RzBrT3Rra0V1XzhmUmlBZFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOJ5KOL6KlWYUL3znRquol/9VT+JOEcTUEgJ3IcbUW+0XqVp3tjoE7 FHy+0uQ7bcXDz9IDjGOYpc1MgpZoHVBDWTMBOM9l+BvbOLY8+EfMsEMU2OgdY042 AuqoiwTjX9P8EeEx11lh7pjWETi7TbNhd/1jkFUvqz3L7unq0scx/+qP8nJIgqOw vPWebW8TQH7Ty8lkkZUUOeAJtmPPA7P1GsZ40Y8prcGRWvT8r6a5Nls68Eygqpj4 q299CoI6CzP2na4gRQLDz4+8I8JHBHZ4XfpDdeUH7gNSREgEXHHlVfGgaR2Wj0XT MXC1Ok1agtEUAXMVklZhin6sq5Z40ez0 -----END CERTIFICATE-----Generated at Wed Aug 6 14:20:00 2025 by rpki-client