$ rpki-client -vvf rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft File: BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft (raw, json) Hash identifier: D72H3z7HNttrO2+UJ8jvXapAOfC1nkTPPt6XsBW8zGE= Subject key identifier: F8:1F:F6:78:FF:EC:A5:1E:2B:85:A3:79:90:30:55:CE:3A:94:21:09 Authority key identifier: 06:66:6A:EC:D7:8C:0A:5E:D1:37:90:A5:E9:AA:40:C3:49:0F:BC:F1 Certificate issuer: /CN=A91F63DC/serialNumber=06666AECD78C0A5ED13790A5E9AA40C3490FBCF1 Certificate serial: 0156 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BmZq7NeMCl7RN5Cl6apAw0kPvPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft Manifest number: 0154 Signing time: Sun 03 Aug 2025 04:27:54 +0000 Manifest this update: Sun 03 Aug 2025 04:27:53 +0000 Manifest next update: Sun 10 Aug 2025 04:27:53 +0000 Files and hashes: 1: BmZq7NeMCl7RN5Cl6apAw0kPvPE.crl (hash: r4YSzaPfPOazej2xONOpwHlu9gP7sAX2LAJIJQpa43I=) 2: 9FFF0E74665511EEB872BE4DC4F9AE02.roa (hash: HsI9s/avf/WsE7yy/2Fnz0a9pkM1ZrwF3kHF8jU1yp8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.crl rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BmZq7NeMCl7RN5Cl6apAw0kPvPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 04:27:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 342 (0x156) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F63DC, serialNumber=06666AECD78C0A5ED13790A5E9AA40C3490FBCF1 Validity Not Before: Aug 3 04:27:53 2025 GMT Not After : Aug 10 04:27:53 2025 GMT Subject: CN=688ee54a-8c15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:1c:7c:3a:91:b1:86:cc:6f:cf:a1:68:7a:9e: d6:be:23:e9:63:eb:c0:6b:5d:67:ae:74:af:70:e7: ec:2d:4c:07:9d:39:7e:9a:54:d6:65:8e:73:f5:bc: d9:9e:06:78:89:5e:83:e0:c1:eb:6c:ed:9c:4c:ac: ef:72:69:f4:7f:26:fc:d6:a4:bf:ed:2d:67:6b:81: 4e:36:da:03:61:47:e9:76:5c:c9:93:f4:1e:3a:59: c4:fd:3f:6c:dc:06:92:15:c2:28:ac:67:3f:92:f9: 40:fa:67:f5:83:ff:bb:ce:f4:63:8d:a5:ee:ba:1c: fe:67:e2:b3:de:48:ba:37:2b:ee:d6:1a:f7:f5:0b: 65:69:52:49:60:a9:02:e1:4a:b0:d1:03:2f:2a:9c: d9:1b:94:47:e1:1e:ce:73:c0:b2:78:86:56:02:6e: 87:17:85:3f:58:92:fb:6f:c1:f0:29:87:7b:d3:dd: 14:68:76:b4:df:53:26:87:19:a4:91:c4:cd:e4:39: 7a:06:0f:9b:b4:0a:63:ec:27:7d:ba:fc:ed:5d:34: ce:ce:be:89:cb:2b:0d:57:d5:99:c6:d1:2d:72:0a: 48:94:2f:db:1d:8f:91:42:07:05:d6:de:4a:7f:80: 92:2e:9e:26:57:d2:da:0a:8c:b1:5e:a1:c1:d7:1d: a7:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:1F:F6:78:FF:EC:A5:1E:2B:85:A3:79:90:30:55:CE:3A:94:21:09 X509v3 Authority Key Identifier: keyid:06:66:6A:EC:D7:8C:0A:5E:D1:37:90:A5:E9:AA:40:C3:49:0F:BC:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BmZq7NeMCl7RN5Cl6apAw0kPvPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:7d:77:22:ec:94:03:34:7d:8f:65:58:23:a2:d5:b5:64:3a: 15:c8:b9:4b:44:e0:77:0f:83:91:be:fb:7c:dc:a3:75:b5:7b: ed:0e:b3:d2:8c:60:33:e4:10:de:40:9b:df:4f:d8:a5:21:e1: ba:d1:a9:cc:65:e9:e6:a6:90:4e:0e:07:8a:15:06:ca:49:f9: 1d:a0:95:49:50:6b:95:1d:c0:0a:48:cb:6f:ce:be:74:3e:fc: 60:82:3c:1c:eb:ba:a7:d7:39:5e:71:1e:33:92:68:f7:e0:14: c1:a8:80:8b:b5:97:6b:bf:46:c5:a6:15:14:3c:a3:b6:d4:44: 8a:40:2c:25:f6:a9:4b:50:3f:fe:61:67:a6:92:33:09:fd:19: c7:ea:46:ff:48:25:c7:9a:7f:6d:d6:20:b3:ec:81:fc:de:21: 1f:a0:14:5b:8d:9a:b1:68:d0:b7:aa:bd:94:d6:0a:1a:5a:e7: ad:ed:7a:da:c3:a0:7d:02:87:47:c1:e9:b4:aa:2e:f2:8c:5e: 6f:b9:78:61:8d:5a:57:8d:81:17:b2:be:c0:8b:1d:29:7b:6d: 34:8d:ce:9e:c9:88:89:f8:5c:dc:64:61:5b:a1:dd:82:b4:48: f1:40:3d:be:ed:f3:9a:bb:63:44:1f:d1:da:aa:df:ac:c6:5f: 67:7d:43:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYzREMxMTAvBgNVBAUTKDA2NjY2QUVDRDc4QzBBNUVEMTM3OTBBNUU5QUE0MEMz NDkwRkJDRjEwHhcNMjUwODAzMDQyNzUzWhcNMjUwODEwMDQyNzUzWjAYMRYwFAYD VQQDEw02ODhlZTU0YS04YzE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoBx8OpGxhsxvz6Foep7WviPpY+vAa11nrnSvcOfsLUwHnTl+mlTWZY5z9bzZ ngZ4iV6D4MHrbO2cTKzvcmn0fyb81qS/7S1na4FONtoDYUfpdlzJk/QeOlnE/T9s 3AaSFcIorGc/kvlA+mf1g/+7zvRjjaXuuhz+Z+Kz3ki6Nyvu1hr39QtlaVJJYKkC 4Uqw0QMvKpzZG5RH4R7Oc8CyeIZWAm6HF4U/WJL7b8HwKYd7090UaHa031Mmhxmk kcTN5Dl6Bg+btApj7Cd9uvztXTTOzr6JyysNV9WZxtEtcgpIlC/bHY+RQgcF1t5K f4CSLp4mV9LaCoyxXqHB1x2nKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPgf9nj/ 7KUeK4WjeZAwVc46lCEJMB8GA1UdIwQYMBaAFAZmauzXjApe0TeQpemqQMNJD7zx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjNEQy8wNDMxNTJFMjY2 NTMxMUVFOUM2OEVFMkJDNEY5QUUwMi9CbVpxN05lTUNsN1JONUNsNmFwQXcwa1B2 UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JtWnE3TmVNQ2w3Uk41Q2w2YXBBdzBrUHZQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjNEQy8wNDMxNTJFMjY2NTMxMUVFOUM2OEVFMkJDNEY5QUUwMi9CbVpxN05lTUNs N1JONUNsNmFwQXcwa1B2UEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpfXci7JQDNH2PZVgjotW1ZDoVyLlLROB3D4ORvvt83KN1tXvtDrPS jGAz5BDeQJvfT9ilIeG60anMZenmppBODgeKFQbKSfkdoJVJUGuVHcAKSMtvzr50 Pvxggjwc67qn1zlecR4zkmj34BTBqICLtZdrv0bFphUUPKO21ESKQCwl9qlLUD/+ YWemkjMJ/RnH6kb/SCXHmn9t1iCz7IH83iEfoBRbjZqxaNC3qr2U1goaWuet7Xra w6B9AodHwem0qi7yjF5vuXhhjVpXjYEXsr7Aix0pe200jc6eyYiJ+FzcZGFbod2C tEjxQD2+7fOau2NEH9Haqt+sxl9nfUP9 -----END CERTIFICATE-----Generated at Mon Aug 4 11:20:48 2025 by rpki-client