$ rpki-client -vvf rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft File: bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft (raw, json) Hash identifier: 4vfemqAexK2XOKV6bQHcRl543aFFCe0RFdkb9siqnZU= Subject key identifier: 9E:E8:01:2C:25:58:2C:D1:03:1A:14:00:6C:2F:B1:3C:0F:91:37:FF Authority key identifier: 6E:14:8A:0D:08:57:80:38:6A:81:7D:CD:8D:64:69:54:11:C7:68:38 Certificate issuer: /CN=A913EA16/serialNumber=6E148A0D085780386A817DCD8D64695411C76838 Certificate serial: 042F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhSKDQhXgDhqgX3NjWRpVBHHaDg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft Manifest number: 0428 Signing time: Sat 23 Aug 2025 00:34:00 +0000 Manifest this update: Sat 23 Aug 2025 00:33:59 +0000 Manifest next update: Sat 30 Aug 2025 00:33:59 +0000 Files and hashes: 1: bhSKDQhXgDhqgX3NjWRpVBHHaDg.crl (hash: kphRT0prjaL685BGno0TunpBIUuOUO7qE+jB2wooA54=) 2: 8B729608B62F11EFB2DE315FC4F9AE02.roa (hash: ERP6Y5/dUFxszjFDuuFfjwGYbKhjm1R8qrQOrEiUTKw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.crl rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhSKDQhXgDhqgX3NjWRpVBHHaDg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:33:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1071 (0x42f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913EA16, serialNumber=6E148A0D085780386A817DCD8D64695411C76838 Validity Not Before: Aug 23 00:33:59 2025 GMT Not After : Aug 30 00:33:59 2025 GMT Subject: CN=68a90c77-e60d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:8d:6d:aa:9b:f8:25:97:7a:bc:28:ef:57:2c: ab:95:24:4a:63:c9:b4:b6:c6:e6:e0:6d:4a:f4:99: 90:b6:86:8e:e6:df:fe:e0:ea:11:ac:4f:39:06:4d: fb:e0:27:89:3a:7a:3b:6b:ab:b1:bc:28:a9:cb:1a: e1:21:d3:3f:9b:b4:a9:93:6e:06:4f:05:b6:5a:d3: 85:0d:eb:6f:c0:82:9d:3b:84:84:fe:b7:7f:fa:c7: 8f:09:05:8e:4c:be:c5:f7:b0:68:4d:ae:67:60:45: bc:53:c8:b9:8c:f5:ec:d0:6a:88:62:96:86:7d:27: d0:e4:40:3e:3c:a2:0f:33:0f:87:c2:e2:ff:4f:dd: 4b:ed:6a:e4:03:8e:c6:5e:c0:96:90:64:fb:b2:0f: ee:1a:73:8e:fd:32:58:8d:4e:fd:bc:b2:66:7b:5d: 51:cd:7c:12:3b:ad:7d:f3:6b:fc:16:b1:b0:7e:e7: 7b:8b:eb:e3:f6:d6:db:4d:c4:49:10:2d:7e:e4:e7: 04:96:69:4e:b9:14:76:e4:36:e0:62:82:d6:b5:09: 62:93:3b:7c:f1:a0:77:99:bb:b2:44:c7:8f:f2:2d: 4b:db:bf:c1:52:b4:b0:f9:fa:73:e5:cc:f6:f3:bd: e8:4f:14:51:8d:3b:24:6f:3e:eb:e7:a9:94:27:2e: f5:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:E8:01:2C:25:58:2C:D1:03:1A:14:00:6C:2F:B1:3C:0F:91:37:FF X509v3 Authority Key Identifier: keyid:6E:14:8A:0D:08:57:80:38:6A:81:7D:CD:8D:64:69:54:11:C7:68:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhSKDQhXgDhqgX3NjWRpVBHHaDg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:2c:24:c6:df:ed:fe:8c:7b:ae:a1:b9:5e:a2:93:ab:73:dd: a0:7e:c5:7e:c9:6e:15:41:4b:4d:4c:c6:54:7a:41:3c:a8:8f: 28:41:0a:34:8d:2a:92:01:7c:16:43:b0:8b:7c:d0:9a:a0:2e: 8d:c2:d8:be:b1:87:63:9c:15:b6:99:b9:90:2b:1d:d7:a5:b9: b8:b8:28:a6:bb:00:1d:e8:e1:bd:69:e3:61:6c:52:eb:49:61: cc:71:63:3f:95:b5:d8:05:d5:e3:14:1d:80:30:0c:68:2d:d1: 34:e9:b9:6c:77:b6:0f:da:f2:d8:4b:bf:08:c2:27:ea:2f:ab: f3:b0:60:6a:3c:16:91:dd:bc:7c:13:27:51:35:57:af:8c:52: 4c:cb:0b:59:8d:33:61:dd:c1:9a:15:13:ac:e8:83:e8:87:b2: 21:60:e2:9b:8d:ca:c9:95:a9:eb:8b:29:f2:ac:b6:7c:27:e3: 92:6f:c1:52:fe:30:e3:8f:ce:09:4d:4e:cc:5f:f9:ee:8b:61: a3:ba:23:3b:71:b3:f5:32:a1:76:f4:94:50:b0:1c:ed:43:87: 8a:e0:df:67:28:3c:22:a9:04:1c:eb:09:16:3c:c9:8e:89:c9: 07:5b:1d:33:83:45:9d:63:2d:e5:be:cc:66:25:9e:85:28:57: 82:36:a4:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBC8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0VBMTYxMTAvBgNVBAUTKDZFMTQ4QTBEMDg1NzgwMzg2QTgxN0RDRDhENjQ2OTU0 MTFDNzY4MzgwHhcNMjUwODIzMDAzMzU5WhcNMjUwODMwMDAzMzU5WjAYMRYwFAYD VQQDEw02OGE5MGM3Ny1lNjBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq41tqpv4JZd6vCjvVyyrlSRKY8m0tsbm4G1K9JmQtoaO5t/+4OoRrE85Bk37 4CeJOno7a6uxvCipyxrhIdM/m7Spk24GTwW2WtOFDetvwIKdO4SE/rd/+sePCQWO TL7F97BoTa5nYEW8U8i5jPXs0GqIYpaGfSfQ5EA+PKIPMw+HwuL/T91L7WrkA47G XsCWkGT7sg/uGnOO/TJYjU79vLJme11RzXwSO61982v8FrGwfud7i+vj9tbbTcRJ EC1+5OcElmlOuRR25DbgYoLWtQlikzt88aB3mbuyRMeP8i1L27/BUrSw+fpz5cz2 873oTxRRjTskbz7r56mUJy71pwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ7oASwl WCzRAxoUAGwvsTwPkTf/MB8GA1UdIwQYMBaAFG4Uig0IV4A4aoF9zY1kaVQRx2g4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRUExNi80NTJGN0FFRTc3 N0IxMUVDODZGQzEwNURDNEY5QUUwMi9iaFNLRFFoWGdEaHFnWDNOaldScFZCSEhh RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JoU0tEUWhYZ0RocWdYM05qV1JwVkJISGFEZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RUExNi80NTJGN0FFRTc3N0IxMUVDODZGQzEwNURDNEY5QUUwMi9iaFNLRFFoWGdE aHFnWDNOaldScFZCSEhhRGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGLCTG3+3+jHuuobleopOrc92gfsV+yW4VQUtNTMZUekE8qI8oQQo0 jSqSAXwWQ7CLfNCaoC6Nwti+sYdjnBW2mbmQKx3Xpbm4uCimuwAd6OG9aeNhbFLr SWHMcWM/lbXYBdXjFB2AMAxoLdE06blsd7YP2vLYS78IwifqL6vzsGBqPBaR3bx8 EydRNVevjFJMywtZjTNh3cGaFROs6IPoh7IhYOKbjcrJlanriynyrLZ8J+OSb8FS /jDjj84JTU7MX/nui2GjuiM7cbP1MqF29JRQsBztQ4eK4N9nKDwiqQQc6wkWPMmO ickHWx0zg0WdYy3lvsxmJZ6FKFeCNqQp -----END CERTIFICATE-----Generated at Sun Aug 24 03:32:37 2025 by rpki-client