$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft File: BNhIIeE7gDAzVMS-NDMdURHyvKY.mft (raw, json) Hash identifier: /I1GBj5ianJBl/lEUtFXssbE0uzwrm5dxFD4Vji3w3Y= Subject key identifier: 2E:43:0D:58:87:53:F9:1C:68:62:B6:61:1A:70:BE:83:A9:04:65:98 Authority key identifier: 04:D8:48:21:E1:3B:80:30:33:54:C4:BE:34:33:1D:51:11:F2:BC:A6 Certificate issuer: /CN=A91F0721/serialNumber=04D84821E13B80303354C4BE34331D5111F2BCA6 Certificate serial: 01D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BNhIIeE7gDAzVMS-NDMdURHyvKY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft Manifest number: 01CE Signing time: Thu 07 Aug 2025 03:16:21 +0000 Manifest this update: Thu 07 Aug 2025 03:16:21 +0000 Manifest next update: Thu 14 Aug 2025 03:16:21 +0000 Files and hashes: 1: BNhIIeE7gDAzVMS-NDMdURHyvKY.crl (hash: zFlWxZRiVjbbE+plwGmxfHQGunO7X7Snsc4jTXIo2ps=) 2: 7659B89AADCC11ED84051211C4F9AE02.roa (hash: S0QCets6nYQwhXbRnwnSRy3OBYGEXLOm6h5sFxoClJ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.crl rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BNhIIeE7gDAzVMS-NDMdURHyvKY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 03:16:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 465 (0x1d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0721, serialNumber=04D84821E13B80303354C4BE34331D5111F2BCA6 Validity Not Before: Aug 7 03:16:21 2025 GMT Not After : Aug 14 03:16:21 2025 GMT Subject: CN=68941a85-2657 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:c9:0c:d9:78:da:3d:3a:a7:62:7f:dd:d7:9b: 46:ca:19:16:fd:d5:1c:44:9b:0c:c0:dc:3b:0b:fb: 32:c8:f2:ad:12:67:48:d5:b8:6d:ec:40:07:40:55: d2:cf:bb:b1:ff:13:24:e2:c5:11:48:88:2e:49:50: 4c:82:11:96:b3:b6:73:f1:fa:1b:99:25:d3:16:8a: 29:c3:03:63:e2:97:98:45:a1:26:3e:9d:5c:c2:02: 04:e5:ad:5b:7b:89:aa:18:9c:fa:f5:52:ac:de:87: 8f:44:df:ec:6e:db:c0:78:63:62:65:6c:a2:ef:bf: 85:7e:3e:23:22:7e:00:87:cb:1c:9d:03:39:73:c7: 96:c5:6d:0d:9e:71:fa:b6:c9:04:a1:84:9a:28:2b: 5a:13:58:22:5f:3d:03:a1:89:22:19:5d:5e:bb:40: 48:9e:3f:0a:08:e9:bf:22:ce:34:2c:83:d9:7d:75: f5:40:3c:7c:02:ae:e7:49:28:c9:a9:45:fa:fc:bd: 51:48:13:a5:38:54:57:50:87:53:c4:2e:cd:2d:d1: 57:b6:26:4b:73:46:7b:5a:97:77:ba:39:80:15:2e: d6:b4:bc:8b:dc:d8:01:76:b0:6e:76:a8:23:a8:e5: 65:93:c5:90:fd:a5:4e:ab:05:5d:e4:a4:13:d6:80: 30:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:43:0D:58:87:53:F9:1C:68:62:B6:61:1A:70:BE:83:A9:04:65:98 X509v3 Authority Key Identifier: keyid:04:D8:48:21:E1:3B:80:30:33:54:C4:BE:34:33:1D:51:11:F2:BC:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BNhIIeE7gDAzVMS-NDMdURHyvKY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:5f:4e:29:33:91:69:3b:f2:4f:40:46:1e:e0:f5:56:f2:7c: 68:7b:3c:79:29:46:d1:bc:17:b4:38:65:a8:3c:87:e1:23:df: b0:55:ae:5a:17:31:58:f0:dc:c6:ef:65:d0:39:1f:2c:94:5d: 70:08:ac:f1:2b:bc:87:34:50:84:5a:8b:91:9c:b3:01:6c:18: 77:14:4a:36:87:e4:40:01:e4:24:aa:b0:be:02:ef:25:2f:24: 6a:d4:70:23:4c:2a:3f:c9:63:0f:3f:8d:b4:29:25:5e:3f:9d: 38:18:12:44:a5:ce:05:81:6e:28:2d:26:71:02:27:15:8f:cf: ef:6e:e2:35:8a:04:9c:61:1c:6a:3a:77:20:ce:f1:35:d5:4f: 81:bc:b2:0a:67:cb:a3:0e:21:28:c3:15:0f:e0:91:25:61:69: ba:18:96:87:50:f1:50:e6:20:c9:7e:aa:47:50:5d:37:4c:e0: bf:dc:d7:a7:d7:89:72:d9:22:e5:a4:3f:f2:69:74:c8:58:87: 74:34:bd:99:46:06:96:e4:50:a4:00:31:5a:51:a1:98:7d:db: 2c:a6:80:0c:72:78:44:88:54:7f:b6:50:87:a5:74:fb:02:71: 0a:bb:bf:95:ab:ce:5d:f1:d9:38:c4:f8:bc:57:9d:98:7e:e5: 4b:a6:ab:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjA3MjExMTAvBgNVBAUTKDA0RDg0ODIxRTEzQjgwMzAzMzU0QzRCRTM0MzMxRDUx MTFGMkJDQTYwHhcNMjUwODA3MDMxNjIxWhcNMjUwODE0MDMxNjIxWjAYMRYwFAYD VQQDEw02ODk0MWE4NS0yNjU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoMkM2XjaPTqnYn/d15tGyhkW/dUcRJsMwNw7C/syyPKtEmdI1bht7EAHQFXS z7ux/xMk4sURSIguSVBMghGWs7Zz8fobmSXTFoopwwNj4peYRaEmPp1cwgIE5a1b e4mqGJz69VKs3oePRN/sbtvAeGNiZWyi77+Ffj4jIn4Ah8scnQM5c8eWxW0NnnH6 tskEoYSaKCtaE1giXz0DoYkiGV1eu0BInj8KCOm/Is40LIPZfXX1QDx8Aq7nSSjJ qUX6/L1RSBOlOFRXUIdTxC7NLdFXtiZLc0Z7Wpd3ujmAFS7WtLyL3NgBdrBudqgj qOVlk8WQ/aVOqwVd5KQT1oAwmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC5DDViH U/kcaGK2YRpwvoOpBGWYMB8GA1UdIwQYMBaAFATYSCHhO4AwM1TEvjQzHVER8rym MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMDcyMS9DOTEyN0IzRUFE QzgxMUVEOTIxNjIyMEVDNEY5QUUwMi9CTmhJSWVFN2dEQXpWTVMtTkRNZFVSSHl2 S1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JOaElJZUU3Z0RBelZNUy1ORE1kVVJIeXZLWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MDcyMS9DOTEyN0IzRUFEQzgxMUVEOTIxNjIyMEVDNEY5QUUwMi9CTmhJSWVFN2dE QXpWTVMtTkRNZFVSSHl2S1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMX04pM5FpO/JPQEYe4PVW8nxoezx5KUbRvBe0OGWoPIfhI9+wVa5a FzFY8NzG72XQOR8slF1wCKzxK7yHNFCEWouRnLMBbBh3FEo2h+RAAeQkqrC+Au8l LyRq1HAjTCo/yWMPP420KSVeP504GBJEpc4FgW4oLSZxAicVj8/vbuI1igScYRxq OncgzvE11U+BvLIKZ8ujDiEowxUP4JElYWm6GJaHUPFQ5iDJfqpHUF03TOC/3Nen 14ly2SLlpD/yaXTIWId0NL2ZRgaW5FCkADFaUaGYfdsspoAMcnhEiFR/tlCHpXT7 AnEKu7+Vq85d8dk4xPi8V52YfuVLpqvv -----END CERTIFICATE-----Generated at Thu Aug 7 11:22:22 2025 by rpki-client