$ rpki-client -vvf rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft File: baFr8M0J73aPkCE7ZtjLw86TQgY.mft (raw, json) Hash identifier: c5WSS8yyxXEE8kAGyoYW0FDhdvjSB8T6LYDs/WlvAVE= Subject key identifier: C5:AB:3D:EE:5D:42:3F:5D:40:2E:3B:9C:A1:74:E2:92:AC:BC:52:46 Authority key identifier: 6D:A1:6B:F0:CD:09:EF:76:8F:90:21:3B:66:D8:CB:C3:CE:93:42:06 Certificate issuer: /CN=A9151B71/serialNumber=6DA16BF0CD09EF768F90213B66D8CBC3CE934206 Certificate serial: 0778 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baFr8M0J73aPkCE7ZtjLw86TQgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft Manifest number: 076D Signing time: Fri 22 Aug 2025 21:46:22 +0000 Manifest this update: Fri 22 Aug 2025 21:46:21 +0000 Manifest next update: Fri 29 Aug 2025 21:46:21 +0000 Files and hashes: 1: baFr8M0J73aPkCE7ZtjLw86TQgY.crl (hash: c/rzXCs/aAIjmSHV+4I7y7VPW37e6TGwJbb6uVW5akA=) 2: C2C5450E608B11F0BF46DC2EC4F9AE02.roa (hash: D1qcgVGZql5RrIKafCkI4bM9fu5CZK6G546UdqksHKg=) 3: 0A866A522EAB11EBAB198239C4F9AE02.roa (hash: 9PkY3r845C6Gg3gR8AKgajQ8wsvmdGvtBQ6YZXFN9yE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.crl rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baFr8M0J73aPkCE7ZtjLw86TQgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:46:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1912 (0x778) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151B71, serialNumber=6DA16BF0CD09EF768F90213B66D8CBC3CE934206 Validity Not Before: Aug 22 21:46:21 2025 GMT Not After : Aug 29 21:46:21 2025 GMT Subject: CN=68a8e52e-183e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:5b:e9:c3:7e:96:88:bc:dc:5c:22:da:ed:de: db:25:11:fa:60:36:eb:81:d5:36:d3:2f:41:18:68: 54:06:c0:c0:b5:20:9a:07:0d:ad:4d:b5:52:5e:21: 25:89:71:63:15:c1:27:7b:1a:4b:7d:c7:c7:2a:bb: 50:0f:38:f4:ef:ec:e8:36:43:0b:33:32:88:38:f1: 4a:0d:d5:41:e8:45:1d:8d:36:20:d2:85:1e:3b:6c: ce:4e:1a:86:50:75:5a:55:9a:e3:96:bf:4e:f2:dc: a7:ca:2d:5c:c7:eb:08:f6:c7:60:a2:ac:4c:2b:83: c4:7a:63:2f:87:83:4a:4f:12:0a:ce:d0:ec:23:e1: 70:72:97:4e:41:1d:79:a6:8f:49:c2:fe:4e:ee:f9: 4c:f5:15:93:44:95:ea:a5:77:e8:ce:e5:36:ca:32: 36:f3:4e:03:dc:02:aa:56:f8:5c:cf:95:cb:62:5a: 5e:d9:f9:44:1e:87:f8:95:79:28:32:29:c8:f7:ed: 2f:c5:19:ac:8d:5c:80:b0:1c:6d:0d:fc:9a:16:de: 98:c5:50:23:f3:2e:ac:14:ee:d5:8f:fe:4c:04:28: a8:28:17:7c:d9:51:43:9d:d1:d0:7c:76:90:56:5d: 2b:65:e6:76:f6:25:18:94:7b:1b:f1:90:0a:7f:77: 26:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:AB:3D:EE:5D:42:3F:5D:40:2E:3B:9C:A1:74:E2:92:AC:BC:52:46 X509v3 Authority Key Identifier: keyid:6D:A1:6B:F0:CD:09:EF:76:8F:90:21:3B:66:D8:CB:C3:CE:93:42:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baFr8M0J73aPkCE7ZtjLw86TQgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:9e:ff:4d:8c:11:00:4e:e6:70:4b:91:e1:29:b6:de:dc:ad: dc:ad:78:a6:8f:ab:a1:ed:14:54:2d:15:b7:6e:0c:ed:c2:9e: 2c:c1:0c:73:f7:68:b6:0c:88:30:51:72:6b:29:7d:8d:d1:61: dc:d7:97:f5:a8:57:96:6c:2c:78:93:d0:3c:ac:6f:de:6d:ec: b1:ac:cb:cb:21:75:42:61:9f:e9:58:6c:db:77:84:69:50:57: c9:49:59:24:1d:2a:c3:34:9d:1a:65:66:e0:9d:b5:86:24:1c: 9c:39:a0:58:d4:e1:27:38:c8:7a:c9:16:62:66:38:e6:ba:f7: 75:3a:36:f6:63:6b:9e:44:a7:8b:83:ec:da:f1:ba:72:18:ae: f9:d7:06:e4:6c:a9:b4:09:12:f8:c0:be:ef:67:14:f0:fd:03: ca:5b:85:4b:ab:f5:58:f7:f6:bf:9e:1d:be:40:b7:d3:d4:1f: 2d:71:da:ee:dd:dd:2a:bb:75:2e:7c:80:ac:66:2e:5b:38:45: c3:fe:be:14:9d:05:84:92:1e:48:78:96:b8:c8:4e:9f:e4:1a: b2:41:64:ef:4b:08:51:b4:3b:02:f0:36:7a:2a:66:1e:48:af: 37:a8:f2:ee:ca:e0:eb:a8:24:d4:0e:73:d7:4b:fb:18:13:08: 71:d0:c7:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB3gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTFCNzExMTAvBgNVBAUTKDZEQTE2QkYwQ0QwOUVGNzY4RjkwMjEzQjY2RDhDQkMz Q0U5MzQyMDYwHhcNMjUwODIyMjE0NjIxWhcNMjUwODI5MjE0NjIxWjAYMRYwFAYD VQQDEw02OGE4ZTUyZS0xODNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6Fvpw36WiLzcXCLa7d7bJRH6YDbrgdU20y9BGGhUBsDAtSCaBw2tTbVSXiEl iXFjFcEnexpLfcfHKrtQDzj07+zoNkMLMzKIOPFKDdVB6EUdjTYg0oUeO2zOThqG UHVaVZrjlr9O8tynyi1cx+sI9sdgoqxMK4PEemMvh4NKTxIKztDsI+FwcpdOQR15 po9Jwv5O7vlM9RWTRJXqpXfozuU2yjI2804D3AKqVvhcz5XLYlpe2flEHof4lXko MinI9+0vxRmsjVyAsBxtDfyaFt6YxVAj8y6sFO7Vj/5MBCioKBd82VFDndHQfHaQ Vl0rZeZ29iUYlHsb8ZAKf3cmkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMWrPe5d Qj9dQC47nKF04pKsvFJGMB8GA1UdIwQYMBaAFG2ha/DNCe92j5AhO2bYy8POk0IG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MUI3MS85RkQ1RjgwRTJF QTkxMUVCOTE2OEZCMzdDNEY5QUUwMi9iYUZyOE0wSjczYVBrQ0U3WnRqTHc4NlRR Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JhRnI4TTBKNzNhUGtDRTdadGpMdzg2VFFnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MUI3MS85RkQ1RjgwRTJFQTkxMUVCOTE2OEZCMzdDNEY5QUUwMi9iYUZyOE0wSjcz YVBrQ0U3WnRqTHc4NlRRZ1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBInv9NjBEATuZwS5HhKbbe3K3crXimj6uh7RRULRW3bgztwp4swQxz 92i2DIgwUXJrKX2N0WHc15f1qFeWbCx4k9A8rG/ebeyxrMvLIXVCYZ/pWGzbd4Rp UFfJSVkkHSrDNJ0aZWbgnbWGJBycOaBY1OEnOMh6yRZiZjjmuvd1Ojb2Y2ueRKeL g+za8bpyGK751wbkbKm0CRL4wL7vZxTw/QPKW4VLq/VY9/a/nh2+QLfT1B8tcdru 3d0qu3UufICsZi5bOEXD/r4UnQWEkh5IeJa4yE6f5BqyQWTvSwhRtDsC8DZ6KmYe SK83qPLuyuDrqCTUDnPXS/sYEwhx0Md1 -----END CERTIFICATE-----Generated at Sat Aug 23 19:31:16 2025 by rpki-client