$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0CE8/900D2646066A11E8B9BAF682C4F9AE02/BsYn2cMSx7R9HDpTtEdVoQpoSHw.mft File: BsYn2cMSx7R9HDpTtEdVoQpoSHw.mft (raw, json) Hash identifier: HJumvRAeW/d5w06sNJ1FXtBk1FkHgVoEC8LKHfav89w= Subject key identifier: C8:F5:39:90:01:00:07:A3:C9:78:2A:5A:FA:0F:C7:6B:4E:15:66:F0 Authority key identifier: 06:C6:27:D9:C3:12:C7:B4:7D:1C:3A:53:B4:47:55:A1:0A:68:48:7C Certificate issuer: /CN=A91E0CE8/serialNumber=06C627D9C312C7B47D1C3A53B44755A10A68487C Certificate serial: 16B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BsYn2cMSx7R9HDpTtEdVoQpoSHw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0CE8/900D2646066A11E8B9BAF682C4F9AE02/BsYn2cMSx7R9HDpTtEdVoQpoSHw.mft Manifest number: 169E Signing time: Sun 10 Aug 2025 16:40:02 +0000 Manifest this update: Sun 10 Aug 2025 16:40:02 +0000 Manifest next update: Sun 17 Aug 2025 16:40:02 +0000 Files and hashes: 1: BsYn2cMSx7R9HDpTtEdVoQpoSHw.crl (hash: XWu7vQL45JFQrQ8uHTo1HDk6yuv/CNFalVLQKisT9cY=) 2: 091435C84FA911EFB86F4D40C4F9AE02.roa (hash: e5jgIESXFxNT6NU+78fDrpwylXFQS920y6o/aeQL2pY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0CE8/900D2646066A11E8B9BAF682C4F9AE02/BsYn2cMSx7R9HDpTtEdVoQpoSHw.crl rsync://rpki.apnic.net/member_repository/A91E0CE8/900D2646066A11E8B9BAF682C4F9AE02/BsYn2cMSx7R9HDpTtEdVoQpoSHw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BsYn2cMSx7R9HDpTtEdVoQpoSHw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5815 (0x16b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0CE8, serialNumber=06C627D9C312C7B47D1C3A53B44755A10A68487C Validity Not Before: Aug 10 16:40:02 2025 GMT Not After : Aug 17 16:40:02 2025 GMT Subject: CN=6898cb62-5f93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:72:7d:3f:9b:25:8a:a9:ae:47:1f:02:fd:45: c1:9d:21:d0:87:e2:1b:39:99:52:49:bc:f4:1f:61: 61:d3:4e:02:d0:1d:0b:58:a1:53:be:84:bd:81:bf: 61:9e:cc:fc:0a:2d:72:b8:0c:59:97:df:ca:22:43: 63:79:1c:14:d4:30:59:dc:a1:7c:0f:ef:9e:a7:df: e8:fe:07:38:57:44:1f:63:a1:d2:cd:65:74:0d:ae: 6f:a0:37:28:bc:4b:ea:48:77:3b:2b:34:3a:0c:a6: 92:da:c1:77:78:b0:31:c1:06:e0:99:aa:e2:3d:6b: cf:ba:a3:03:e8:b6:97:14:fa:7e:dd:35:a9:02:86: 85:d9:2f:4e:e6:a6:8e:dd:fa:53:61:a2:cc:d6:68: 73:e4:6c:5f:eb:3f:d9:0a:c5:b5:d8:cf:b5:69:b1: 66:01:4c:cc:35:dd:66:01:75:07:d6:f5:c7:a2:c5: 3f:62:f8:71:4e:76:1c:ec:08:5f:2b:eb:be:0c:d3: 51:80:a3:3b:f1:80:54:c1:61:e5:8c:d0:cd:73:a1: 5e:43:4c:d3:8f:84:1f:4f:e1:2a:4e:1a:40:a2:6d: fa:30:37:54:89:62:2e:0f:50:62:22:ab:2f:01:30: 04:d7:a5:29:4e:58:d9:23:d7:48:03:20:c9:57:4e: 26:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:F5:39:90:01:00:07:A3:C9:78:2A:5A:FA:0F:C7:6B:4E:15:66:F0 X509v3 Authority Key Identifier: keyid:06:C6:27:D9:C3:12:C7:B4:7D:1C:3A:53:B4:47:55:A1:0A:68:48:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0CE8/900D2646066A11E8B9BAF682C4F9AE02/BsYn2cMSx7R9HDpTtEdVoQpoSHw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BsYn2cMSx7R9HDpTtEdVoQpoSHw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0CE8/900D2646066A11E8B9BAF682C4F9AE02/BsYn2cMSx7R9HDpTtEdVoQpoSHw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:03:55:ae:cb:4e:e2:20:73:cc:fb:09:45:94:3b:73:0d:06: f4:54:1f:38:64:c9:64:57:ac:57:f8:fc:38:98:27:d2:89:3e: 4c:4a:d2:e5:09:85:1e:89:10:db:eb:e7:61:86:c3:55:77:49: 45:f0:b4:56:63:8f:db:bd:a3:2b:3f:c8:a5:fc:d2:16:4d:93: 59:5f:2f:8a:14:d7:64:a1:ac:18:e7:b3:7f:d0:f2:65:ba:84: a7:d1:a8:2d:5f:4b:25:ad:5e:7d:f4:35:24:7c:25:90:fc:87: 65:2d:fc:70:9c:c9:41:8a:3b:4d:cb:d7:55:ee:5c:fb:a3:3a: db:d0:99:de:e9:31:75:d8:53:4b:a0:a5:c9:73:6c:62:d8:4c: ff:3e:a9:71:9e:72:5d:87:43:e5:45:52:14:f0:5b:b6:2f:95: 64:80:7f:9a:85:57:cf:c4:7b:24:a8:e1:48:8a:5e:a6:c0:12: 26:d9:98:bb:ee:d8:a1:44:d1:e9:81:2e:33:66:68:db:61:4b: 03:39:da:54:2b:a4:f9:ed:3b:45:bd:fe:56:36:d9:0b:41:59: f4:2e:08:d8:8f:33:51:f5:29:c9:ed:84:e6:b7:27:6a:f4:18: 71:8f:01:0b:c0:9e:e8:b8:ad:95:b0:19:96:c5:21:13:a3:09: 83:2e:c1:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFrcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBDRTgxMTAvBgNVBAUTKDA2QzYyN0Q5QzMxMkM3QjQ3RDFDM0E1M0I0NDc1NUEx MEE2ODQ4N0MwHhcNMjUwODEwMTY0MDAyWhcNMjUwODE3MTY0MDAyWjAYMRYwFAYD VQQDEw02ODk4Y2I2Mi01ZjkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlnJ9P5sliqmuRx8C/UXBnSHQh+IbOZlSSbz0H2Fh004C0B0LWKFTvoS9gb9h nsz8Ci1yuAxZl9/KIkNjeRwU1DBZ3KF8D++ep9/o/gc4V0QfY6HSzWV0Da5voDco vEvqSHc7KzQ6DKaS2sF3eLAxwQbgmariPWvPuqMD6LaXFPp+3TWpAoaF2S9O5qaO 3fpTYaLM1mhz5Gxf6z/ZCsW12M+1abFmAUzMNd1mAXUH1vXHosU/YvhxTnYc7Ahf K+u+DNNRgKM78YBUwWHljNDNc6FeQ0zTj4QfT+EqThpAom36MDdUiWIuD1BiIqsv ATAE16UpTljZI9dIAyDJV04mAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMj1OZAB AAejyXgqWvoPx2tOFWbwMB8GA1UdIwQYMBaAFAbGJ9nDEse0fRw6U7RHVaEKaEh8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMENFOC85MDBEMjY0NjA2 NkExMUU4QjlCQUY2ODJDNEY5QUUwMi9Cc1luMmNNU3g3UjlIRHBUdEVkVm9RcG9T SHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JzWW4yY01TeDdSOUhEcFR0RWRWb1Fwb1NIdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MENFOC85MDBEMjY0NjA2NkExMUU4QjlCQUY2ODJDNEY5QUUwMi9Cc1luMmNNU3g3 UjlIRHBUdEVkVm9RcG9TSHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWA1Wuy07iIHPM+wlFlDtzDQb0VB84ZMlkV6xX+Pw4mCfSiT5MStLl CYUeiRDb6+dhhsNVd0lF8LRWY4/bvaMrP8il/NIWTZNZXy+KFNdkoawY57N/0PJl uoSn0agtX0slrV599DUkfCWQ/IdlLfxwnMlBijtNy9dV7lz7ozrb0Jne6TF12FNL oKXJc2xi2Ez/PqlxnnJdh0PlRVIU8Fu2L5VkgH+ahVfPxHskqOFIil6mwBIm2Zi7 7tihRNHpgS4zZmjbYUsDOdpUK6T57TtFvf5WNtkLQVn0LgjYjzNR9SnJ7YTmtydq 9BhxjwELwJ7ouK2VsBmWxSETowmDLsFx -----END CERTIFICATE-----Generated at Sun Aug 10 21:18:10 2025 by rpki-client