$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft File: BZ5vA652dqnQ8J1fbL25CGGFWlc.mft (raw, json) Hash identifier: iNM1BUw+xi3Kvt6J8caBuFKd8FAnE0ATaMYnZXp/bPE= Subject key identifier: D0:10:01:38:21:37:1D:1C:1B:86:04:DF:23:0A:32:83:72:9D:8A:98 Authority key identifier: 05:9E:6F:03:AE:76:76:A9:D0:F0:9D:5F:6C:BD:B9:08:61:85:5A:57 Certificate issuer: /CN=A91FF74B/serialNumber=059E6F03AE7676A9D0F09D5F6CBDB90861855A57 Certificate serial: 06F1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BZ5vA652dqnQ8J1fbL25CGGFWlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft Manifest number: 06D5 Signing time: Sun 10 Aug 2025 21:43:51 +0000 Manifest this update: Sun 10 Aug 2025 21:43:50 +0000 Manifest next update: Sun 17 Aug 2025 21:43:50 +0000 Files and hashes: 1: BZ5vA652dqnQ8J1fbL25CGGFWlc.crl (hash: u/c8uGSJ0Dl8zyBkiBNFFxBXLfj0AdfXc/GARy6DCxg=) 2: 7E0AB01C782C11EBB0B71971C4F9AE02.roa (hash: k3Hyvnta3NTSihzOI6GhNOzxp4Li4ZxAgK0C//8NE4o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.crl rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BZ5vA652dqnQ8J1fbL25CGGFWlc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1777 (0x6f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF74B, serialNumber=059E6F03AE7676A9D0F09D5F6CBDB90861855A57 Validity Not Before: Aug 10 21:43:50 2025 GMT Not After : Aug 17 21:43:50 2025 GMT Subject: CN=68991296-a43b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:12:b8:46:1c:26:d9:fd:31:3b:15:e8:2d:8f: 87:54:3f:1b:e9:98:c8:95:ef:41:12:5c:a0:9d:30: 36:38:8c:81:41:91:86:1e:bb:bc:a3:85:59:62:07: b1:08:c3:13:a6:39:3f:56:5b:a6:1c:47:70:34:a9: 70:80:2d:fb:7a:6e:e0:49:b5:fc:e6:47:4b:38:69: 95:f9:5b:0d:e3:94:90:36:e5:86:c0:d0:01:da:87: 9d:e3:0c:f5:cb:fa:1d:30:53:70:51:01:81:76:f3: ad:97:bd:1b:fc:09:f7:0b:74:9e:74:2c:df:86:e2: 0f:57:d1:9e:d5:bf:fb:2b:4e:2b:64:49:a5:e0:fc: fa:a1:0c:85:55:a1:e7:0f:b3:88:e5:4f:f0:1d:3e: e7:62:49:33:7a:6f:5a:b7:cc:5e:6d:d4:6b:87:85: 25:09:c8:65:f4:19:a3:4c:f4:55:83:a1:f7:1a:3e: 12:65:cb:a4:7b:cd:b0:2e:33:47:da:3a:b3:cf:87: 9b:31:45:12:d1:6b:46:2e:30:16:75:40:f6:61:0c: 79:de:66:8c:b2:da:7f:4b:7b:78:32:97:bd:3e:c2: 3c:2a:91:42:f1:1c:6f:b0:98:43:1f:6a:78:0f:94: 20:ad:73:c2:68:69:01:ab:70:86:06:f2:86:9a:a5: e9:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:10:01:38:21:37:1D:1C:1B:86:04:DF:23:0A:32:83:72:9D:8A:98 X509v3 Authority Key Identifier: keyid:05:9E:6F:03:AE:76:76:A9:D0:F0:9D:5F:6C:BD:B9:08:61:85:5A:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BZ5vA652dqnQ8J1fbL25CGGFWlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:82:ed:62:9a:40:a4:97:98:ec:c5:f5:5e:bf:f6:6a:41:af: 67:42:c0:fa:da:46:10:be:1d:02:ce:38:4b:f0:20:3a:3c:17: f0:cc:9d:73:e3:4d:f6:79:49:4c:ee:17:7e:bf:d7:05:df:68: ae:4a:9f:c5:4c:2d:da:7d:61:79:a3:87:51:10:8a:aa:26:3d: 4c:07:04:e7:70:cf:93:d8:7f:fb:3f:2f:cc:90:90:33:9d:45: e7:09:35:99:14:77:57:92:e4:64:1f:47:02:4d:47:ff:c0:04: 39:6a:38:22:85:51:6b:eb:da:00:9f:e6:e5:96:84:bb:75:9c: 26:d3:41:77:cf:1e:cc:51:54:23:f6:f2:ea:77:35:f7:e5:a5: 4d:09:4d:2e:21:72:f9:bc:a4:57:0b:a4:b8:46:87:5b:1f:89: 97:80:03:4d:46:40:51:a2:2c:a5:8e:c5:80:99:36:d1:32:59: 2e:7a:10:0e:3d:67:66:9e:e8:22:bf:d6:cf:1a:6a:70:f0:1b: c9:39:93:94:e5:39:51:5a:b8:5f:10:da:2b:5e:be:ef:9d:4d: 5f:76:0d:ba:d1:e0:30:7a:24:4e:94:7d:15:6b:da:0e:d7:4a: 01:44:46:6c:46:d2:48:cf:bb:21:2b:de:98:30:ad:04:2e:54: b1:72:e4:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBvEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY3NEIxMTAvBgNVBAUTKDA1OUU2RjAzQUU3Njc2QTlEMEYwOUQ1RjZDQkRCOTA4 NjE4NTVBNTcwHhcNMjUwODEwMjE0MzUwWhcNMjUwODE3MjE0MzUwWjAYMRYwFAYD VQQDEw02ODk5MTI5Ni1hNDNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuxK4Rhwm2f0xOxXoLY+HVD8b6ZjIle9BElygnTA2OIyBQZGGHru8o4VZYgex CMMTpjk/VlumHEdwNKlwgC37em7gSbX85kdLOGmV+VsN45SQNuWGwNAB2oed4wz1 y/odMFNwUQGBdvOtl70b/An3C3SedCzfhuIPV9Ge1b/7K04rZEml4Pz6oQyFVaHn D7OI5U/wHT7nYkkzem9at8xebdRrh4UlCchl9BmjTPRVg6H3Gj4SZcuke82wLjNH 2jqzz4ebMUUS0WtGLjAWdUD2YQx53maMstp/S3t4Mpe9PsI8KpFC8RxvsJhDH2p4 D5QgrXPCaGkBq3CGBvKGmqXpsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNAQATgh Nx0cG4YE3yMKMoNynYqYMB8GA1UdIwQYMBaAFAWebwOudnap0PCdX2y9uQhhhVpX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjc0Qi82MUEzMzg0QTc4 MkMxMUVCQUMwNEY2NzJDNEY5QUUwMi9CWjV2QTY1MmRxblE4SjFmYkwyNUNHR0ZX bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JaNXZBNjUyZHFuUThKMWZiTDI1Q0dHRldsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Rjc0Qi82MUEzMzg0QTc4MkMxMUVCQUMwNEY2NzJDNEY5QUUwMi9CWjV2QTY1MmRx blE4SjFmYkwyNUNHR0ZXbGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBngu1imkCkl5jsxfVev/ZqQa9nQsD62kYQvh0CzjhL8CA6PBfwzJ1z 4032eUlM7hd+v9cF32iuSp/FTC3afWF5o4dREIqqJj1MBwTncM+T2H/7Py/MkJAz nUXnCTWZFHdXkuRkH0cCTUf/wAQ5ajgihVFr69oAn+blloS7dZwm00F3zx7MUVQj 9vLqdzX35aVNCU0uIXL5vKRXC6S4RodbH4mXgANNRkBRoiyljsWAmTbRMlkuehAO PWdmnugiv9bPGmpw8BvJOZOU5TlRWrhfENorXr7vnU1fdg260eAweiROlH0Va9oO 10oBREZsRtJIz7shK96YMK0ELlSxcuRv -----END CERTIFICATE-----Generated at Mon Aug 11 07:26:59 2025 by rpki-client