$ rpki-client -vvf rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft File: BN7ay9uvpcHBT5KBe5b39QMQCig.mft (raw, json) Hash identifier: t0LIOMqnDUFsn+I2kgIR5fBTA68y8SGHcHZnkrDPb4Q= Subject key identifier: 3A:39:9C:58:A9:11:69:85:4B:66:FA:B5:0E:24:FE:38:04:4A:BF:CC Authority key identifier: 04:DE:DA:CB:DB:AF:A5:C1:C1:4F:92:81:7B:96:F7:F5:03:10:0A:28 Certificate issuer: /CN=A912DD36/serialNumber=04DEDACBDBAFA5C1C14F92817B96F7F503100A28 Certificate serial: E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft Manifest number: E4 Signing time: Sat 23 Aug 2025 05:35:15 +0000 Manifest this update: Sat 23 Aug 2025 05:35:14 +0000 Manifest next update: Sat 30 Aug 2025 05:35:14 +0000 Files and hashes: 1: BN7ay9uvpcHBT5KBe5b39QMQCig.crl (hash: kFMwYqBsmTxH864a4COLI/+trnZJuAa5oXZiR3VD1b0=) 2: 09EC8E16662211EFB6FA446CC4F9AE02.roa (hash: urnxskxc6j+If6xUlVvxOJwYlSVOMo9w2F7g3T2GGgM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.crl rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:35:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 231 (0xe7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DD36, serialNumber=04DEDACBDBAFA5C1C14F92817B96F7F503100A28 Validity Not Before: Aug 23 05:35:14 2025 GMT Not After : Aug 30 05:35:14 2025 GMT Subject: CN=68a95312-132e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:f9:82:8e:fc:bc:af:1e:ad:ef:3c:ed:9e:0d: 65:81:0f:1d:5a:4e:29:12:1c:30:77:13:12:b2:11: 87:aa:6c:a7:68:89:e7:04:46:f3:7b:7b:ef:41:66: c1:77:a8:92:41:ae:a6:16:b2:5e:07:fa:e3:66:4c: a6:a3:69:cb:ab:dc:e7:78:c4:8f:e8:a8:5e:6c:fe: c8:e6:85:8c:60:fe:4b:79:f5:40:60:f2:2e:6c:51: 85:d2:3e:9b:39:ab:52:bc:d6:e8:f0:52:a2:14:8e: 27:bf:cd:04:7c:df:42:9f:cf:8a:2c:d9:12:cf:ad: b3:f4:0b:b7:19:02:c1:f1:4a:79:ef:d8:a3:e1:e3: 65:d9:43:85:77:98:72:07:bc:b3:9e:aa:38:6e:32: 20:05:01:7b:b5:10:cc:e5:79:80:77:6c:af:eb:5f: 5e:1c:3d:cf:81:6c:54:a5:23:2a:e2:95:f3:15:d4: e1:a3:15:5e:a2:15:7b:1a:94:d6:9d:16:97:2c:bd: 0c:b5:e0:e1:e7:82:33:25:b5:12:69:04:f2:8c:3e: 50:e9:ca:fc:54:be:2e:a0:a6:16:0f:db:6d:bb:b6: 00:75:b8:79:bc:6f:7b:f8:19:bf:5c:b3:98:e3:8d: d8:5c:f4:34:ec:bc:1d:f8:98:f9:84:66:ef:8f:9b: 9b:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:39:9C:58:A9:11:69:85:4B:66:FA:B5:0E:24:FE:38:04:4A:BF:CC X509v3 Authority Key Identifier: keyid:04:DE:DA:CB:DB:AF:A5:C1:C1:4F:92:81:7B:96:F7:F5:03:10:0A:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:9f:6d:fc:f0:8f:44:95:7c:2b:45:19:78:e7:29:3b:de:65: 54:c3:df:e7:9e:ce:d6:5f:6f:ef:ba:42:c2:86:81:ab:61:19: 21:12:12:c6:73:77:5a:58:f2:8d:d2:1e:7a:13:a6:c6:4c:d1: c8:3a:6e:c4:09:91:e8:4b:31:d7:70:74:51:f4:96:65:e8:c6: 3a:71:27:9c:77:03:5e:7e:5e:a0:87:bb:1d:67:ac:2a:40:54: 19:77:c1:4d:83:a3:d4:d3:2c:4f:08:6e:ba:ef:6b:00:a1:7f: c9:16:cf:aa:9b:52:12:c6:d7:55:3c:43:2b:ba:fb:ab:30:a6: 75:b3:0d:73:b4:dd:00:51:a0:12:e4:f3:43:cf:d5:93:ef:0a: df:fa:8a:7d:48:da:49:f4:25:4c:25:57:46:da:3b:cc:e3:69: 1f:4f:ef:78:31:55:81:95:f4:47:87:00:95:c8:4e:e7:23:e4: b0:6c:b6:9b:d4:1d:ab:54:b3:b0:74:f9:79:01:5e:cc:ea:07: 9a:3d:36:04:78:ec:e8:92:11:55:32:a0:af:ee:a1:5b:92:42: d7:04:fe:4c:17:9d:5b:a6:ea:4b:c8:93:56:cd:f1:0b:a9:99: 23:57:d2:f3:d9:b3:f6:2d:c3:10:2c:64:74:a5:4e:46:89:54: 97:44:93:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkREMzYxMTAvBgNVBAUTKDA0REVEQUNCREJBRkE1QzFDMTRGOTI4MTdCOTZGN0Y1 MDMxMDBBMjgwHhcNMjUwODIzMDUzNTE0WhcNMjUwODMwMDUzNTE0WjAYMRYwFAYD VQQDEw02OGE5NTMxMi0xMzJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0PmCjvy8rx6t7zztng1lgQ8dWk4pEhwwdxMSshGHqmynaInnBEbze3vvQWbB d6iSQa6mFrJeB/rjZkymo2nLq9zneMSP6KhebP7I5oWMYP5LefVAYPIubFGF0j6b OatSvNbo8FKiFI4nv80EfN9Cn8+KLNkSz62z9Au3GQLB8Up579ij4eNl2UOFd5hy B7yznqo4bjIgBQF7tRDM5XmAd2yv619eHD3PgWxUpSMq4pXzFdThoxVeohV7GpTW nRaXLL0MteDh54IzJbUSaQTyjD5Q6cr8VL4uoKYWD9ttu7YAdbh5vG97+Bm/XLOY 443YXPQ07Lwd+Jj5hGbvj5ubPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDo5nFip EWmFS2b6tQ4k/jgESr/MMB8GA1UdIwQYMBaAFATe2svbr6XBwU+SgXuW9/UDEAoo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREQzNi83RjQwMjNGMjI1 MzIxMUVGQkM5MzIxMUFDNEY5QUUwMi9CTjdheTl1dnBjSEJUNUtCZTViMzlRTVFD aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JON2F5OXV2cGNIQlQ1S0JlNWIzOVFNUUNpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REQzNi83RjQwMjNGMjI1MzIxMUVGQkM5MzIxMUFDNEY5QUUwMi9CTjdheTl1dnBj SEJUNUtCZTViMzlRTVFDaWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPn2388I9ElXwrRRl45yk73mVUw9/nns7WX2/vukLChoGrYRkhEhLG c3daWPKN0h56E6bGTNHIOm7ECZHoSzHXcHRR9JZl6MY6cSecdwNefl6gh7sdZ6wq QFQZd8FNg6PU0yxPCG6672sAoX/JFs+qm1ISxtdVPEMruvurMKZ1sw1ztN0AUaAS 5PNDz9WT7wrf+op9SNpJ9CVMJVdG2jvM42kfT+94MVWBlfRHhwCVyE7nI+SwbLab 1B2rVLOwdPl5AV7M6geaPTYEeOzokhFVMqCv7qFbkkLXBP5MF51bpupLyJNWzfEL qZkjV9Lz2bP2LcMQLGR0pU5GiVSXRJM7 -----END CERTIFICATE-----Generated at Sun Aug 24 05:02:41 2025 by rpki-client