$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/bBl9pJIs_dxOmMiEbgOn19DkC3E.mft File: bBl9pJIs_dxOmMiEbgOn19DkC3E.mft (raw, json) Hash identifier: 0yupKnS2Y4AihXcYiefkywNZm0h2tEwGPouoVigo3aU= Subject key identifier: 53:95:83:7F:5B:F5:89:31:48:5E:2A:62:A7:65:32:4B:18:C0:A4:09 Authority key identifier: 6C:19:7D:A4:92:2C:FD:DC:4E:98:C8:84:6E:03:A7:D7:D0:E4:0B:71 Certificate issuer: /CN=A91EF2E1/serialNumber=6C197DA4922CFDDC4E98C8846E03A7D7D0E40B71 Certificate serial: 06A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBl9pJIs_dxOmMiEbgOn19DkC3E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/bBl9pJIs_dxOmMiEbgOn19DkC3E.mft Manifest number: 068E Signing time: Wed 06 Aug 2025 22:39:21 +0000 Manifest this update: Wed 06 Aug 2025 22:39:21 +0000 Manifest next update: Wed 13 Aug 2025 22:39:21 +0000 Files and hashes: 1: bBl9pJIs_dxOmMiEbgOn19DkC3E.crl (hash: jb81un3B4vXkE22AKFdaccqQP8HvAppZ4tT1pgJboNU=) 2: ECCDCA04809A11EB9093216EC4F9AE02.roa (hash: //P4Dwc0yC8aNI6dL5grZWmAPuUGPAB2QMNisS1s91o=) 3: 397ED08A2F7911ED93B17C0FC4F9AE02.roa (hash: sO+5ZUlz1ZfgN4m9jGacz4xKmgRg5xQ7WfaHnr5n8EY=) 4: 7D6F53547F0411EBB8CAEE2BC4F9AE02.roa (hash: VneqGQNP18iG+RzoK9rzGT1v0y/EKMK88ucBZjMvCCE=) 5: 08C849682F6E11EDA8ABA74BC4F9AE02.roa (hash: hmEwq8j3GlUgHO4QkFMDsLDsFyKYgDX+OadwrR+PhRU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/bBl9pJIs_dxOmMiEbgOn19DkC3E.crl rsync://rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/bBl9pJIs_dxOmMiEbgOn19DkC3E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBl9pJIs_dxOmMiEbgOn19DkC3E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 22:39:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1699 (0x6a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF2E1, serialNumber=6C197DA4922CFDDC4E98C8846E03A7D7D0E40B71 Validity Not Before: Aug 6 22:39:21 2025 GMT Not After : Aug 13 22:39:21 2025 GMT Subject: CN=6893d999-8493 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c8:41:08:12:77:62:3e:af:6c:92:89:bd:f9: bd:cc:25:f1:15:36:3b:25:1b:45:2d:f5:13:c3:11: 94:23:49:7b:5d:56:b4:7f:21:6d:98:06:86:54:ff: 0d:c3:81:20:89:07:37:11:ef:50:c4:59:47:ee:75: 67:7f:30:d6:92:76:fa:a8:96:62:d9:76:e5:0c:a4: e8:0f:64:aa:6b:90:f2:a6:69:cf:f3:2a:46:41:be: 90:2c:cf:b5:86:69:65:cb:e4:e8:15:aa:54:60:ad: ce:52:46:42:a4:f7:9d:58:8e:5b:8f:ba:31:86:04: b4:3a:3e:a0:92:9d:8f:68:87:a8:37:83:1a:11:b8: 24:b1:68:51:9e:dd:87:84:7c:23:8c:70:97:40:3f: bf:0e:b9:26:a9:5a:27:74:5e:5b:5f:7f:ae:94:57: 0a:15:85:6d:c2:e6:e5:10:56:98:7f:db:c7:33:32: 47:40:20:3f:3d:0d:14:b4:ce:64:7d:b9:cf:64:b2: 7e:c1:88:2d:9b:5e:39:b7:f6:f4:54:52:40:4f:46: a1:17:fa:69:c6:7d:bd:ed:14:45:08:5f:3a:75:1f: 32:13:dd:86:ef:c7:63:62:a5:72:6d:ad:44:85:32: 7f:54:77:0f:e1:17:74:72:20:4f:75:85:48:a2:6f: 70:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:95:83:7F:5B:F5:89:31:48:5E:2A:62:A7:65:32:4B:18:C0:A4:09 X509v3 Authority Key Identifier: keyid:6C:19:7D:A4:92:2C:FD:DC:4E:98:C8:84:6E:03:A7:D7:D0:E4:0B:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/bBl9pJIs_dxOmMiEbgOn19DkC3E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBl9pJIs_dxOmMiEbgOn19DkC3E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/bBl9pJIs_dxOmMiEbgOn19DkC3E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:76:4f:16:3d:b4:19:bf:ab:1d:4b:27:fe:a9:5f:46:1c:71: 8a:3e:6c:b1:dd:71:7d:97:60:c4:a6:be:e3:54:43:ba:9f:98: f8:72:50:59:6a:02:3f:8a:be:a6:a4:93:de:1b:cc:4f:70:48: 1d:cc:9c:f0:a1:d0:17:26:f7:c9:cd:8c:7e:55:63:e7:0f:87: cc:c5:65:a0:85:1d:c0:45:41:de:9e:e0:a8:01:fe:4f:b4:a9: 88:76:90:19:4c:ed:84:0d:89:b9:e3:3e:35:a5:5a:07:28:4d: 34:65:94:b6:8f:a7:bf:27:07:3a:5d:14:54:01:dd:dd:51:69: 34:7e:7e:9d:af:54:fd:78:42:b7:30:b1:5c:bb:35:57:f7:66: dc:65:9f:8b:b7:d7:c1:4b:d5:18:44:60:b0:2c:b8:7e:3c:92: 7e:a5:81:9c:53:b0:66:de:ae:55:b0:d0:3c:0c:dc:e4:85:e0: 9e:09:4a:7e:d8:13:5c:64:33:4c:1c:cd:fe:8f:06:47:4e:fb: 31:a7:87:8d:39:39:9f:d0:5d:26:64:95:47:76:f4:1f:c7:ca: 1c:3d:d5:5b:d4:db:b9:22:18:06:49:bd:e8:af:3f:8e:3a:49: ad:25:c7:8b:a1:08:76:94:10:e7:e4:66:0b:b6:30:fe:91:0a: 3d:bf:57:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYyRTExMTAvBgNVBAUTKDZDMTk3REE0OTIyQ0ZEREM0RTk4Qzg4NDZFMDNBN0Q3 RDBFNDBCNzEwHhcNMjUwODA2MjIzOTIxWhcNMjUwODEzMjIzOTIxWjAYMRYwFAYD VQQDEw02ODkzZDk5OS04NDkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq8hBCBJ3Yj6vbJKJvfm9zCXxFTY7JRtFLfUTwxGUI0l7XVa0fyFtmAaGVP8N w4EgiQc3Ee9QxFlH7nVnfzDWknb6qJZi2XblDKToD2Sqa5DypmnP8ypGQb6QLM+1 hmlly+ToFapUYK3OUkZCpPedWI5bj7oxhgS0Oj6gkp2PaIeoN4MaEbgksWhRnt2H hHwjjHCXQD+/DrkmqVondF5bX3+ulFcKFYVtwublEFaYf9vHMzJHQCA/PQ0UtM5k fbnPZLJ+wYgtm145t/b0VFJAT0ahF/ppxn297RRFCF86dR8yE92G78djYqVyba1E hTJ/VHcP4Rd0ciBPdYVIom9wKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFOVg39b 9YkxSF4qYqdlMksYwKQJMB8GA1UdIwQYMBaAFGwZfaSSLP3cTpjIhG4Dp9fQ5Atx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjJFMS8zRjY5Q0M2NjdG MDMxMUVCQTA4MUEwMkJDNEY5QUUwMi9iQmw5cEpJc19keE9tTWlFYmdPbjE5RGtD M0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JCbDlwSklzX2R4T21NaUViZ09uMTlEa0MzRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjJFMS8zRjY5Q0M2NjdGMDMxMUVCQTA4MUEwMkJDNEY5QUUwMi9iQmw5cEpJc19k eE9tTWlFYmdPbjE5RGtDM0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGdk8WPbQZv6sdSyf+qV9GHHGKPmyx3XF9l2DEpr7jVEO6n5j4clBZ agI/ir6mpJPeG8xPcEgdzJzwodAXJvfJzYx+VWPnD4fMxWWghR3ARUHenuCoAf5P tKmIdpAZTO2EDYm54z41pVoHKE00ZZS2j6e/Jwc6XRRUAd3dUWk0fn6dr1T9eEK3 MLFcuzVX92bcZZ+Lt9fBS9UYRGCwLLh+PJJ+pYGcU7Bm3q5VsNA8DNzkheCeCUp+ 2BNcZDNMHM3+jwZHTvsxp4eNOTmf0F0mZJVHdvQfx8ocPdVb1Nu5IhgGSb3orz+O OkmtJceLoQh2lBDn5GYLtjD+kQo9v1dZ -----END CERTIFICATE-----Generated at Fri Aug 8 10:13:15 2025 by rpki-client