$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1CB1/3F4A5A2EEA0811EF9D339B29C4F9AE02/Bj4BJ0cqfipvhHBAnJuCOQX6_o4.mft File: Bj4BJ0cqfipvhHBAnJuCOQX6_o4.mft (raw, json) Hash identifier: 3yKeg4fvLBTkOjFG7dvaKXjXjLhH6/ur44IvDU0z4ls= Subject key identifier: 5F:06:6C:A3:60:D7:FC:A1:0F:A7:25:D0:78:4C:25:6B:96:18:39:17 Authority key identifier: 06:3E:01:27:47:2A:7E:2A:6F:84:70:40:9C:9B:82:39:05:FA:FE:8E Certificate issuer: /CN=A91E1CB1/serialNumber=063E0127472A7E2A6F8470409C9B823905FAFE8E Certificate serial: 61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bj4BJ0cqfipvhHBAnJuCOQX6_o4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1CB1/3F4A5A2EEA0811EF9D339B29C4F9AE02/Bj4BJ0cqfipvhHBAnJuCOQX6_o4.mft Manifest number: 5D Signing time: Sat 09 Aug 2025 07:37:23 +0000 Manifest this update: Sat 09 Aug 2025 07:37:23 +0000 Manifest next update: Sat 16 Aug 2025 07:37:23 +0000 Files and hashes: 1: Bj4BJ0cqfipvhHBAnJuCOQX6_o4.crl (hash: UdlLM2kF/2SEpRJ5JI56LhQIJwWb8I1KV4ldqPb1DM0=) 2: 8291E388EA0811EFB385192AC4F9AE02.roa (hash: Ca2pEWIV/EJ5w4q8uyfY/09SxRF8GtoaKpWxctigiRA=) 3: 8322D244EA0811EFB385192AC4F9AE02.roa (hash: oTDfgY49fmT+y8+2GJaPDtK7EdeEE+LjLlZzrGykmgw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1CB1/3F4A5A2EEA0811EF9D339B29C4F9AE02/Bj4BJ0cqfipvhHBAnJuCOQX6_o4.crl rsync://rpki.apnic.net/member_repository/A91E1CB1/3F4A5A2EEA0811EF9D339B29C4F9AE02/Bj4BJ0cqfipvhHBAnJuCOQX6_o4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bj4BJ0cqfipvhHBAnJuCOQX6_o4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 97 (0x61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1CB1, serialNumber=063E0127472A7E2A6F8470409C9B823905FAFE8E Validity Not Before: Aug 9 07:37:23 2025 GMT Not After : Aug 16 07:37:23 2025 GMT Subject: CN=6896fab3-e1e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:6c:d6:e9:e0:65:e8:99:5b:82:ef:8c:fe:d5: 75:25:7a:5d:0e:b4:b4:a6:40:e9:e3:8f:e3:82:64: be:d5:44:68:d4:2a:72:43:f2:b1:5c:11:77:df:b5: 4a:f2:ef:a6:5e:2d:22:d1:80:71:f8:68:1e:74:c1: b3:ca:13:93:2a:c9:08:49:74:a9:74:9e:e4:d2:a0: 3b:6a:7d:e6:1c:f3:b8:90:29:14:bd:ba:ea:85:af: a6:27:e0:34:9f:54:c9:17:e9:43:a0:57:ba:e3:54: 7d:01:1a:3d:7c:13:f4:98:1b:42:f4:00:e6:e4:17: 97:86:d9:7d:90:07:67:2b:e5:40:35:9d:c9:f3:77: 3f:42:2f:73:46:8f:95:33:68:c3:6f:d7:91:ae:bb: c5:bf:f0:71:ea:75:1a:53:11:aa:e5:be:bb:ba:27: 7b:9a:7d:cd:6e:e1:9c:9c:4d:0e:9a:49:dc:d0:f1: 91:d4:4a:88:a2:4c:30:54:a2:69:b5:e3:23:83:8f: b6:00:87:9b:d0:07:c7:25:41:21:f2:e6:54:31:f8: d4:39:de:28:15:36:a4:80:6e:97:fa:9b:2d:b2:e5: 3e:39:5a:49:01:24:c5:e9:66:4d:82:2c:f4:18:50: d2:41:ea:ce:56:91:60:5d:60:26:95:74:a6:1a:e1: 16:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:06:6C:A3:60:D7:FC:A1:0F:A7:25:D0:78:4C:25:6B:96:18:39:17 X509v3 Authority Key Identifier: keyid:06:3E:01:27:47:2A:7E:2A:6F:84:70:40:9C:9B:82:39:05:FA:FE:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1CB1/3F4A5A2EEA0811EF9D339B29C4F9AE02/Bj4BJ0cqfipvhHBAnJuCOQX6_o4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bj4BJ0cqfipvhHBAnJuCOQX6_o4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1CB1/3F4A5A2EEA0811EF9D339B29C4F9AE02/Bj4BJ0cqfipvhHBAnJuCOQX6_o4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:74:c2:ca:a9:8a:09:ce:63:f4:b2:e8:50:1f:8a:12:38:af: 7a:68:e3:a3:04:47:3b:9c:94:ce:f8:ba:58:a2:7b:9d:5a:2d: 1a:f6:25:b3:34:19:c0:da:1d:e3:87:f9:2b:4e:49:f8:25:37: d5:b3:4d:13:d2:69:18:5d:69:74:1b:bc:a7:57:3b:33:55:4e: 19:da:46:56:a1:a7:6e:95:f8:07:b2:6a:f8:d5:84:d8:7c:b7: 57:09:10:f8:65:a3:81:69:b9:ce:e4:11:94:03:1f:b3:09:50: 6d:6b:e2:a7:25:f9:20:da:08:01:4f:28:3f:78:96:7f:44:39: 2c:22:04:9f:9b:77:32:a8:88:e2:a2:49:c5:11:74:2c:37:2b: 96:ca:14:7b:06:8b:55:46:3a:80:05:21:41:f5:fd:3b:0b:c1: a0:e9:68:12:a4:1b:eb:43:dc:c8:3f:0a:80:73:0d:b7:bd:ec: 21:7b:b4:1f:44:1c:fc:81:49:87:06:f9:fa:d8:1c:32:6d:b5: f4:26:ee:57:9e:3e:87:21:53:cd:51:1f:6c:ce:fd:3c:d0:96: f4:30:37:94:73:a1:97:7c:c4:2c:c6:c4:fe:ce:b0:8f:6b:23: 12:57:ec:dc:82:26:1f:fb:65:f4:f7:92:1c:fe:fc:6f:94:a9: bb:72:77:93 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MUNCMTExMC8GA1UEBRMoMDYzRTAxMjc0NzJBN0UyQTZGODQ3MDQwOUM5QjgyMzkw NUZBRkU4RTAeFw0yNTA4MDkwNzM3MjNaFw0yNTA4MTYwNzM3MjNaMBgxFjAUBgNV BAMTDTY4OTZmYWIzLWUxZTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3bNbp4GXomVuC74z+1XUlel0OtLSmQOnjj+OCZL7VRGjUKnJD8rFcEXfftUry 76ZeLSLRgHH4aB50wbPKE5MqyQhJdKl0nuTSoDtqfeYc87iQKRS9uuqFr6Yn4DSf VMkX6UOgV7rjVH0BGj18E/SYG0L0AObkF5eG2X2QB2cr5UA1ncnzdz9CL3NGj5Uz aMNv15Guu8W/8HHqdRpTEarlvru6J3uafc1u4ZycTQ6aSdzQ8ZHUSoiiTDBUomm1 4yODj7YAh5vQB8clQSHy5lQx+NQ53igVNqSAbpf6my2y5T45WkkBJMXpZk2CLPQY UNJB6s5WkWBdYCaVdKYa4RarAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUXwZso2DX /KEPpyXQeEwla5YYORcwHwYDVR0jBBgwFoAUBj4BJ0cqfipvhHBAnJuCOQX6/o4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUxQ0IxLzNGNEE1QTJFRUEw ODExRUY5RDMzOUIyOUM0RjlBRTAyL0JqNEJKMGNxZmlwdmhIQkFuSnVDT1FYNl9v NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQmo0QkowY3FmaXB2aEhCQW5KdUNPUVg2X280LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUx Q0IxLzNGNEE1QTJFRUEwODExRUY5RDMzOUIyOUM0RjlBRTAyL0JqNEJKMGNxZmlw dmhIQkFuSnVDT1FYNl9vNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABV0wsqpignOY/Sy6FAfihI4r3po46MERzuclM74uliie51aLRr2JbM0 GcDaHeOH+StOSfglN9WzTRPSaRhdaXQbvKdXOzNVThnaRlahp26V+AeyavjVhNh8 t1cJEPhlo4Fpuc7kEZQDH7MJUG1r4qcl+SDaCAFPKD94ln9EOSwiBJ+bdzKoiOKi ScURdCw3K5bKFHsGi1VGOoAFIUH1/TsLwaDpaBKkG+tD3Mg/CoBzDbe97CF7tB9E HPyBSYcG+frYHDJttfQm7leePochU81RH2zO/TzQlvQwN5RzoZd8xCzGxP7OsI9r IxJX7NyCJh/7ZfT3khz+/G+Uqbtyd5M= -----END CERTIFICATE-----Generated at Sun Aug 10 04:52:53 2025 by rpki-client