$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft File: 1bm7ozBeiMAA9WKTnROLpQYieyo.mft (raw, json) Hash identifier: niTl9yTINHPPQRorgDdcsan64OydCjTIuwgeerAw4vE= Subject key identifier: 82:64:48:E0:25:1B:A6:6D:69:CC:7E:4A:43:A6:9B:56:35:4A:6B:61 Authority key identifier: D5:B9:BB:A3:30:5E:88:C0:00:F5:62:93:9D:13:8B:A5:06:22:7B:2A Certificate issuer: /CN=A91EAF4B/serialNumber=D5B9BBA3305E88C000F562939D138BA506227B2A Certificate serial: 0B2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bm7ozBeiMAA9WKTnROLpQYieyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft Manifest number: 0C30 Signing time: Sun 10 Aug 2025 19:19:30 +0000 Manifest this update: Sun 10 Aug 2025 19:19:30 +0000 Manifest next update: Sun 17 Aug 2025 19:19:30 +0000 Files and hashes: 1: 1bm7ozBeiMAA9WKTnROLpQYieyo.crl (hash: TB3IIhornjmg6kwb81DWllygN5K21sFkTJUFErKCLt4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.crl rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bm7ozBeiMAA9WKTnROLpQYieyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2861 (0xb2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAF4B, serialNumber=D5B9BBA3305E88C000F562939D138BA506227B2A Validity Not Before: Aug 10 19:19:30 2025 GMT Not After : Aug 17 19:19:30 2025 GMT Subject: CN=6898f0c2-727b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:6b:41:ed:98:1d:00:2c:36:8b:cb:24:18:a0: bb:21:d3:ab:d7:b7:b8:ed:06:21:42:8e:f3:63:7a: 8a:8f:eb:26:bd:ff:3c:c1:cf:6c:f6:c4:b9:a1:e5: 5c:f7:5a:c8:c9:a6:d6:fd:21:6f:f5:73:39:0b:3f: f0:78:2c:2c:5b:96:4d:a2:dc:1b:96:06:fb:f2:4a: a8:71:f1:de:35:ae:d9:8a:6d:15:24:43:63:f8:06: 2f:18:bb:4e:81:f2:b1:58:7a:87:66:79:33:35:21: 14:27:a7:ea:48:66:cf:4d:9f:ed:a2:b6:25:06:de: 5a:28:fd:1a:53:8e:86:92:cb:9f:f8:c2:38:ec:2b: 58:e8:1d:6d:73:aa:e8:a5:ae:02:e0:fb:77:00:06: 2c:e8:2c:e0:c9:5d:c2:b5:17:3b:14:f5:a4:04:67: 5c:f6:8a:60:28:08:04:1a:45:83:49:69:55:cd:11: 30:0e:c7:16:d0:ca:2f:98:8e:a3:e9:5b:6e:f3:40: 84:5d:90:c7:5f:5e:ce:36:53:64:c2:c4:f1:7e:55: 75:8c:e7:1f:51:71:57:6f:1a:7f:c6:61:8e:5e:5b: 7b:53:1f:af:11:c8:8f:e5:13:c9:44:83:4f:a3:d3: b5:61:27:66:b4:9f:06:f2:ea:dd:d8:35:2f:61:13: 39:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:64:48:E0:25:1B:A6:6D:69:CC:7E:4A:43:A6:9B:56:35:4A:6B:61 X509v3 Authority Key Identifier: keyid:D5:B9:BB:A3:30:5E:88:C0:00:F5:62:93:9D:13:8B:A5:06:22:7B:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bm7ozBeiMAA9WKTnROLpQYieyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:db:cb:a5:4b:30:0f:2b:bd:24:41:a0:f8:0a:62:a1:26:c1: ad:31:d5:54:61:e0:8d:ad:8e:87:69:13:5b:e9:91:0f:cb:3d: 60:39:42:83:37:2e:40:22:08:8b:36:9b:cd:03:71:bf:b9:12: 31:e6:35:e2:c7:c7:4f:ec:f4:d3:da:31:21:2a:0d:f1:95:69: 5c:1e:8c:e5:8d:9e:68:40:d0:0d:c7:a8:22:99:0b:c2:79:06: 86:5a:62:16:47:f5:e7:57:4c:63:e4:a4:ef:69:6a:b5:a8:91: 1f:8b:49:65:f5:27:29:f3:b1:07:67:41:bc:5c:ed:ce:2b:88: f0:68:df:c2:a2:2a:56:e6:58:8a:b9:ed:63:85:f8:0d:04:1a: e9:73:6b:d6:f0:14:9c:25:6b:8b:97:16:c4:ba:c4:e7:8c:95: 09:fc:b7:79:43:a7:39:73:05:8f:9e:28:7c:e3:5b:68:25:01: 3b:7e:6a:fd:84:ab:50:a4:a9:40:63:43:31:aa:04:cd:be:84: 3c:78:67:71:2e:9e:ba:e7:ad:1f:25:be:ab:b1:70:52:8c:42: cb:07:46:ca:01:e7:9d:84:3a:4f:49:ee:87:d3:bd:f9:8e:a5: b0:f2:5f:c6:0c:99:73:e9:06:29:58:94:ad:fc:13:46:fc:88: 9f:98:71:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCy0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFGNEIxMTAvBgNVBAUTKEQ1QjlCQkEzMzA1RTg4QzAwMEY1NjI5MzlEMTM4QkE1 MDYyMjdCMkEwHhcNMjUwODEwMTkxOTMwWhcNMjUwODE3MTkxOTMwWjAYMRYwFAYD VQQDEw02ODk4ZjBjMi03MjdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuWtB7ZgdACw2i8skGKC7IdOr17e47QYhQo7zY3qKj+smvf88wc9s9sS5oeVc 91rIyabW/SFv9XM5Cz/weCwsW5ZNotwblgb78kqocfHeNa7Zim0VJENj+AYvGLtO gfKxWHqHZnkzNSEUJ6fqSGbPTZ/torYlBt5aKP0aU46Gksuf+MI47CtY6B1tc6ro pa4C4Pt3AAYs6CzgyV3CtRc7FPWkBGdc9opgKAgEGkWDSWlVzREwDscW0MovmI6j 6Vtu80CEXZDHX17ONlNkwsTxflV1jOcfUXFXbxp/xmGOXlt7Ux+vEciP5RPJRINP o9O1YSdmtJ8G8urd2DUvYRM5LQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIJkSOAl G6Ztacx+SkOmm1Y1SmthMB8GA1UdIwQYMBaAFNW5u6MwXojAAPVik50Ti6UGInsq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUY0Qi84NDg1OEY2QTQ3 MTkxMUVBOTA4NjMwNzJDNEY5QUUwMi8xYm03b3pCZWlNQUE5V0tUblJPTHBRWWll eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFibTdvekJlaU1BQTlXS1RuUk9McFFZaWV5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUY0Qi84NDg1OEY2QTQ3MTkxMUVBOTA4NjMwNzJDNEY5QUUwMi8xYm03b3pCZWlN QUE5V0tUblJPTHBRWWlleW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZ28ulSzAPK70kQaD4CmKhJsGtMdVUYeCNrY6HaRNb6ZEPyz1gOUKD Ny5AIgiLNpvNA3G/uRIx5jXix8dP7PTT2jEhKg3xlWlcHozljZ5oQNANx6gimQvC eQaGWmIWR/XnV0xj5KTvaWq1qJEfi0ll9Scp87EHZ0G8XO3OK4jwaN/CoipW5liK ue1jhfgNBBrpc2vW8BScJWuLlxbEusTnjJUJ/Ld5Q6c5cwWPnih841toJQE7fmr9 hKtQpKlAY0MxqgTNvoQ8eGdxLp66560fJb6rsXBSjELLB0bKAeedhDpPSe6H0735 jqWw8l/GDJlz6QYpWJSt/BNG/IifmHGx -----END CERTIFICATE-----Generated at Mon Aug 11 01:50:33 2025 by rpki-client