$ rpki-client -vvf rpki.apnic.net/member_repository/A91862F7/5EAC61448FA611EA9ACB7E7FC4F9AE02/BYQh3nB4BzBHPlzFRboK5dubTAo.mft File: BYQh3nB4BzBHPlzFRboK5dubTAo.mft (raw, json) Hash identifier: zNmyaLwtuiW5XYYO89Wuk5fsWJXREcnEMLpUJVAhEgM= Subject key identifier: A0:0F:41:6F:3C:01:09:90:F9:05:39:FD:E5:D0:79:74:F6:85:32:53 Authority key identifier: 05:84:21:DE:70:78:07:30:47:3E:5C:C5:45:BA:0A:E5:DB:9B:4C:0A Certificate issuer: /CN=A91862F7/serialNumber=058421DE70780730473E5CC545BA0AE5DB9B4C0A Certificate serial: 09A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BYQh3nB4BzBHPlzFRboK5dubTAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91862F7/5EAC61448FA611EA9ACB7E7FC4F9AE02/BYQh3nB4BzBHPlzFRboK5dubTAo.mft Manifest number: 0997 Signing time: Wed 02 Jul 2025 17:31:32 +0000 Manifest this update: Wed 02 Jul 2025 17:31:31 +0000 Manifest next update: Wed 09 Jul 2025 17:31:31 +0000 Files and hashes: 1: BYQh3nB4BzBHPlzFRboK5dubTAo.crl (hash: t5t1Lh30LAN/y38zjupyTj8MDZGZwOvfAf+PLXXDJrg=) 2: 0619825C2F2A11ED9F62040DC4F9AE02.roa (hash: kL+XFv+JIBMzJ5k9XXPNiC6YLDiIMa15JQqj4/UV838=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91862F7/5EAC61448FA611EA9ACB7E7FC4F9AE02/BYQh3nB4BzBHPlzFRboK5dubTAo.crl rsync://rpki.apnic.net/member_repository/A91862F7/5EAC61448FA611EA9ACB7E7FC4F9AE02/BYQh3nB4BzBHPlzFRboK5dubTAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BYQh3nB4BzBHPlzFRboK5dubTAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:31:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2467 (0x9a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862F7, serialNumber=058421DE70780730473E5CC545BA0AE5DB9B4C0A Validity Not Before: Jul 2 17:31:31 2025 GMT Not After : Jul 9 17:31:31 2025 GMT Subject: CN=68656cf4-2793 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:46:5a:c7:68:dc:7d:6c:1e:5c:62:c3:ec:64: de:2d:09:7a:96:d4:85:eb:98:30:f9:dc:e3:62:ec: 9e:13:1f:7e:28:f9:e6:3e:e1:d6:3c:bf:30:d2:59: 67:ce:0e:2e:19:3b:a0:44:36:a8:3a:8a:51:8e:77: ea:96:17:08:3a:d1:6c:88:35:64:27:0d:29:02:8e: 61:8c:64:ab:e7:ee:cd:f4:ff:ac:71:8d:1c:aa:a3: f0:2e:3a:4d:b1:85:46:9a:e3:19:3e:04:4d:22:4f: 21:31:d3:20:67:c8:74:f3:c3:c3:af:07:ac:ff:4f: 8c:6d:d9:63:a3:96:a3:b7:a9:c0:d7:6e:64:b5:04: fa:72:02:97:49:5f:c0:d0:65:0c:3c:ee:97:02:0c: 29:d9:4c:2b:04:bf:90:00:70:76:b6:7f:c4:6d:9f: f3:1e:59:05:bb:61:62:9f:ce:95:ff:cb:f5:83:85: 68:16:f4:0c:c8:a2:9f:89:e1:8a:37:47:29:12:52: a7:34:47:32:07:47:00:c4:3d:32:56:5f:c3:16:0a: ee:72:88:43:41:67:1c:ca:bf:4a:4e:5f:d5:d2:0a: 4e:fb:8e:24:a6:6c:fa:4b:77:da:e6:74:e1:2a:8b: 61:e0:be:17:a3:b2:a5:2d:de:df:f9:c5:0f:63:57: 92:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:0F:41:6F:3C:01:09:90:F9:05:39:FD:E5:D0:79:74:F6:85:32:53 X509v3 Authority Key Identifier: keyid:05:84:21:DE:70:78:07:30:47:3E:5C:C5:45:BA:0A:E5:DB:9B:4C:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91862F7/5EAC61448FA611EA9ACB7E7FC4F9AE02/BYQh3nB4BzBHPlzFRboK5dubTAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BYQh3nB4BzBHPlzFRboK5dubTAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91862F7/5EAC61448FA611EA9ACB7E7FC4F9AE02/BYQh3nB4BzBHPlzFRboK5dubTAo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:2f:38:49:8d:cf:19:02:8a:8f:34:70:1a:6b:6b:f3:ae:68: 32:fb:78:26:99:46:11:5d:80:d9:1b:e9:d3:b9:08:0e:95:62: 79:fa:bf:5f:a2:fb:12:2c:8e:4a:b4:46:42:a3:2d:84:4d:ef: 93:07:17:8b:10:13:2d:7f:e6:69:30:13:9a:cf:3b:0f:02:8b: 26:5f:c1:51:9a:ad:bc:17:3a:0d:25:cd:a1:99:ff:dd:25:87: 46:92:e4:1a:d8:12:a9:f8:58:f5:db:b4:97:1e:5c:0d:82:9c: 0e:02:6d:dd:6e:28:4c:f6:d4:0c:2d:01:49:46:ed:8a:4f:9a: b4:11:74:72:8c:c8:dd:61:11:2a:00:07:90:7c:8e:6e:d6:82: c9:bb:d7:72:b2:70:4e:d1:ee:51:45:86:af:06:99:a6:1e:dc: 8e:f2:96:fc:26:f1:ea:55:9a:39:e9:e6:60:c6:9e:72:b0:7b: 48:f6:e6:24:f6:e1:39:cd:ea:7f:54:a6:28:b6:23:45:f9:ee: c2:4e:22:2b:b3:e1:b5:e5:0f:2d:94:3a:73:f0:4e:55:e9:7e: 0b:90:8f:03:f8:21:f6:45:56:b2:61:36:6b:d1:79:60:c4:cd: bc:13:5d:6a:08:9e:88:89:0c:50:9c:2d:cb:e3:24:bd:35:d3: 97:6c:ab:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCaMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyRjcxMTAvBgNVBAUTKDA1ODQyMURFNzA3ODA3MzA0NzNFNUNDNTQ1QkEwQUU1 REI5QjRDMEEwHhcNMjUwNzAyMTczMTMxWhcNMjUwNzA5MTczMTMxWjAYMRYwFAYD VQQDEw02ODY1NmNmNC0yNzkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlUZax2jcfWweXGLD7GTeLQl6ltSF65gw+dzjYuyeEx9+KPnmPuHWPL8w0lln zg4uGTugRDaoOopRjnfqlhcIOtFsiDVkJw0pAo5hjGSr5+7N9P+scY0cqqPwLjpN sYVGmuMZPgRNIk8hMdMgZ8h088PDrwes/0+Mbdljo5ajt6nA125ktQT6cgKXSV/A 0GUMPO6XAgwp2UwrBL+QAHB2tn/EbZ/zHlkFu2Fin86V/8v1g4VoFvQMyKKfieGK N0cpElKnNEcyB0cAxD0yVl/DFgrucohDQWccyr9KTl/V0gpO+44kpmz6S3fa5nTh Koth4L4Xo7KlLd7f+cUPY1eSEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKAPQW88 AQmQ+QU5/eXQeXT2hTJTMB8GA1UdIwQYMBaAFAWEId5weAcwRz5cxUW6CuXbm0wK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjJGNy81RUFDNjE0NDhG QTYxMUVBOUFDQjdFN0ZDNEY5QUUwMi9CWVFoM25CNEJ6QkhQbHpGUmJvSzVkdWJU QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JZUWgzbkI0QnpCSFBsekZSYm9LNWR1YlRBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjJGNy81RUFDNjE0NDhGQTYxMUVBOUFDQjdFN0ZDNEY5QUUwMi9CWVFoM25CNEJ6 QkhQbHpGUmJvSzVkdWJUQW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkLzhJjc8ZAoqPNHAaa2vzrmgy+3gmmUYRXYDZG+nTuQgOlWJ5+r9f ovsSLI5KtEZCoy2ETe+TBxeLEBMtf+ZpMBOazzsPAosmX8FRmq28FzoNJc2hmf/d JYdGkuQa2BKp+Fj127SXHlwNgpwOAm3dbihM9tQMLQFJRu2KT5q0EXRyjMjdYREq AAeQfI5u1oLJu9dysnBO0e5RRYavBpmmHtyO8pb8JvHqVZo56eZgxp5ysHtI9uYk 9uE5zep/VKYotiNF+e7CTiIrs+G15Q8tlDpz8E5V6X4LkI8D+CH2RVayYTZr0Xlg xM28E11qCJ6IiQxQnC3L4yS9NdOXbKsz -----END CERTIFICATE-----Generated at Thu Jul 3 03:44:05 2025 by rpki-client