$ rpki-client -vvf rpki.apnic.net/member_repository/A912978E/D5AE7FAC53CA11EE8049935EC4F9AE02/bfCTVmC1JNKoCAZDaLCvxWU4ppo.mft File: bfCTVmC1JNKoCAZDaLCvxWU4ppo.mft (raw, json) Hash identifier: ODvY5TE2wkuZOJaG9Pn7Mmxy9ODAg5UW1F/daNkMbYs= Subject key identifier: 4F:45:1F:5D:17:5B:8D:BF:4E:71:49:7F:2E:61:3F:DA:B7:24:09:00 Authority key identifier: 6D:F0:93:56:60:B5:24:D2:A8:08:06:43:68:B0:AF:C5:65:38:A6:9A Certificate issuer: /CN=A912978E/serialNumber=6DF0935660B524D2A808064368B0AFC56538A69A Certificate serial: 0174 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bfCTVmC1JNKoCAZDaLCvxWU4ppo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912978E/D5AE7FAC53CA11EE8049935EC4F9AE02/bfCTVmC1JNKoCAZDaLCvxWU4ppo.mft Manifest number: 016F Signing time: Sat 23 Aug 2025 04:00:13 +0000 Manifest this update: Sat 23 Aug 2025 04:00:12 +0000 Manifest next update: Sat 30 Aug 2025 04:00:12 +0000 Files and hashes: 1: bfCTVmC1JNKoCAZDaLCvxWU4ppo.crl (hash: 1AsB0YmgxNBZF4BEfZMgWrI5nT2xe21p5Sw93okksQs=) 2: 59923F2CA72011EEA63ABF4AC4F9AE02.roa (hash: jVn5ZxyveGa/F3Z17pqMoq5Bfa+WnZz2iNW6T6RgwPs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912978E/D5AE7FAC53CA11EE8049935EC4F9AE02/bfCTVmC1JNKoCAZDaLCvxWU4ppo.crl rsync://rpki.apnic.net/member_repository/A912978E/D5AE7FAC53CA11EE8049935EC4F9AE02/bfCTVmC1JNKoCAZDaLCvxWU4ppo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bfCTVmC1JNKoCAZDaLCvxWU4ppo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 372 (0x174) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912978E, serialNumber=6DF0935660B524D2A808064368B0AFC56538A69A Validity Not Before: Aug 23 04:00:12 2025 GMT Not After : Aug 30 04:00:12 2025 GMT Subject: CN=68a93ccd-8983 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:03:fe:e8:cb:0a:36:af:ee:cb:91:83:2a:11: 9f:e5:d2:68:a9:70:17:e1:46:0c:b8:fd:9e:6a:fb: 71:3a:01:ec:3d:81:b4:f5:40:ca:2f:ec:70:be:6d: f0:af:5b:91:f2:0b:ed:6a:7a:a8:30:3c:c3:b9:79: db:3a:ec:54:ed:3b:98:16:98:e5:5d:a5:4c:37:24: 58:02:c1:be:ba:d3:d2:80:28:9c:1b:07:26:51:7e: 6c:2f:9f:7f:e9:e8:8b:21:ce:eb:7e:18:04:7d:0b: 9b:d6:8c:58:aa:f7:6f:da:9f:20:0a:4e:fb:5d:75: 01:7a:8e:27:3c:df:6a:f4:4d:90:05:bc:31:c6:16: 34:f5:fa:b9:43:f3:1d:59:8f:c5:7c:32:f1:7d:e0: 70:c2:a6:8d:b5:08:17:ae:96:56:6e:d1:a1:57:93: df:23:e1:57:36:a5:38:83:e5:7d:c8:3a:7a:2e:d0: 8e:28:7a:83:70:39:71:11:d7:e9:cc:ac:e8:5c:02: 6b:4a:9d:e3:16:15:0f:0f:45:7a:ef:3d:02:6a:1b: 83:47:1a:74:f8:43:a7:b5:a3:a5:96:17:47:4e:c6: 93:20:7b:6b:36:7c:aa:0d:10:5c:57:86:17:e3:7d: 3e:8f:b2:3f:3e:f4:70:98:83:fd:74:6e:68:77:a3: 45:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:45:1F:5D:17:5B:8D:BF:4E:71:49:7F:2E:61:3F:DA:B7:24:09:00 X509v3 Authority Key Identifier: keyid:6D:F0:93:56:60:B5:24:D2:A8:08:06:43:68:B0:AF:C5:65:38:A6:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912978E/D5AE7FAC53CA11EE8049935EC4F9AE02/bfCTVmC1JNKoCAZDaLCvxWU4ppo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bfCTVmC1JNKoCAZDaLCvxWU4ppo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912978E/D5AE7FAC53CA11EE8049935EC4F9AE02/bfCTVmC1JNKoCAZDaLCvxWU4ppo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:a5:2e:e1:8e:fd:7c:df:67:db:92:8a:50:64:3e:ba:fb:37: e6:6f:95:b3:c4:d3:79:22:38:3c:a1:4f:05:db:f5:a9:cc:fc: c6:08:5f:f2:c7:46:b3:cd:2b:51:93:5b:69:db:7e:98:dd:2f: 5d:ef:e4:b2:9d:f0:27:8f:81:f6:f6:4a:9e:d6:7c:fb:51:b6: b1:a3:4b:19:56:81:3e:5a:72:82:44:d9:9e:30:70:e9:83:cc: ee:c2:2b:3f:f5:e0:48:0b:a4:4d:90:bb:42:da:32:bd:ba:97: 03:60:70:92:f7:3b:ef:df:fb:03:f6:88:0c:9a:37:a9:91:3b: 71:af:b3:de:be:6d:ab:26:97:9c:da:bb:16:ec:cc:c8:5e:52: f8:02:11:a1:01:23:53:a9:ed:be:d4:f1:9c:42:17:27:27:b5: b8:97:2c:8b:77:db:0c:c1:63:f4:b1:9d:a7:1c:3e:b1:85:d6: 33:ca:41:cd:12:49:44:d0:f1:85:7e:1c:dd:d9:95:af:fe:36: 35:03:9b:1f:f3:11:e4:16:c5:18:42:39:61:19:74:1f:4a:ae: e0:e1:af:89:c4:7a:8b:bd:42:55:da:d7:92:c6:5a:af:43:43: 16:bd:4c:54:5d:3c:36:3e:4f:30:96:d4:2f:9d:4a:24:e3:0d: 0b:4d:1e:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk3OEUxMTAvBgNVBAUTKDZERjA5MzU2NjBCNTI0RDJBODA4MDY0MzY4QjBBRkM1 NjUzOEE2OUEwHhcNMjUwODIzMDQwMDEyWhcNMjUwODMwMDQwMDEyWjAYMRYwFAYD VQQDEw02OGE5M2NjZC04OTgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAowP+6MsKNq/uy5GDKhGf5dJoqXAX4UYMuP2eavtxOgHsPYG09UDKL+xwvm3w r1uR8gvtanqoMDzDuXnbOuxU7TuYFpjlXaVMNyRYAsG+utPSgCicGwcmUX5sL59/ 6eiLIc7rfhgEfQub1oxYqvdv2p8gCk77XXUBeo4nPN9q9E2QBbwxxhY09fq5Q/Md WY/FfDLxfeBwwqaNtQgXrpZWbtGhV5PfI+FXNqU4g+V9yDp6LtCOKHqDcDlxEdfp zKzoXAJrSp3jFhUPD0V67z0CahuDRxp0+EOntaOllhdHTsaTIHtrNnyqDRBcV4YX 430+j7I/PvRwmIP9dG5od6NFNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE9FH10X W42/TnFJfy5hP9q3JAkAMB8GA1UdIwQYMBaAFG3wk1ZgtSTSqAgGQ2iwr8VlOKaa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTc4RS9ENUFFN0ZBQzUz Q0ExMUVFODA0OTkzNUVDNEY5QUUwMi9iZkNUVm1DMUpOS29DQVpEYUxDdnhXVTRw cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JmQ1RWbUMxSk5Lb0NBWkRhTEN2eFdVNHBwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OTc4RS9ENUFFN0ZBQzUzQ0ExMUVFODA0OTkzNUVDNEY5QUUwMi9iZkNUVm1DMUpO S29DQVpEYUxDdnhXVTRwcG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3pS7hjv1832fbkopQZD66+zfmb5WzxNN5Ijg8oU8F2/WpzPzGCF/y x0azzStRk1tp236Y3S9d7+SynfAnj4H29kqe1nz7Ubaxo0sZVoE+WnKCRNmeMHDp g8zuwis/9eBIC6RNkLtC2jK9upcDYHCS9zvv3/sD9ogMmjepkTtxr7Pevm2rJpec 2rsW7MzIXlL4AhGhASNTqe2+1PGcQhcnJ7W4lyyLd9sMwWP0sZ2nHD6xhdYzykHN EklE0PGFfhzd2ZWv/jY1A5sf8xHkFsUYQjlhGXQfSq7g4a+JxHqLvUJV2teSxlqv Q0MWvUxUXTw2Pk8wltQvnUok4w0LTR7N -----END CERTIFICATE-----Generated at Sat Aug 23 16:38:47 2025 by rpki-client