$ rpki-client -vvf rpki.apnic.net/member_repository/A91862F7/5EAC61448FA611EA9ACB7E7FC4F9AE02/BYQh3nB4BzBHPlzFRboK5dubTAo.mft File: BYQh3nB4BzBHPlzFRboK5dubTAo.mft (raw, json) Hash identifier: hIEixfjuHKKDyXdysSbBKr8d7XgNxJbPpw8peKHM0Bs= Subject key identifier: 9E:5A:8E:73:4C:14:5A:F0:9B:94:FC:37:C3:2F:AC:3F:1A:4C:92:46 Authority key identifier: 05:84:21:DE:70:78:07:30:47:3E:5C:C5:45:BA:0A:E5:DB:9B:4C:0A Certificate issuer: /CN=A91862F7/serialNumber=058421DE70780730473E5CC545BA0AE5DB9B4C0A Certificate serial: 09BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BYQh3nB4BzBHPlzFRboK5dubTAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91862F7/5EAC61448FA611EA9ACB7E7FC4F9AE02/BYQh3nB4BzBHPlzFRboK5dubTAo.mft Manifest number: 09B1 Signing time: Fri 22 Aug 2025 17:26:20 +0000 Manifest this update: Fri 22 Aug 2025 17:26:19 +0000 Manifest next update: Fri 29 Aug 2025 17:26:19 +0000 Files and hashes: 1: BYQh3nB4BzBHPlzFRboK5dubTAo.crl (hash: 6haKkABcwM78jQyynJPfjVeub+4MtiWKg2kyNtsBYPY=) 2: 0619825C2F2A11ED9F62040DC4F9AE02.roa (hash: kL+XFv+JIBMzJ5k9XXPNiC6YLDiIMa15JQqj4/UV838=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91862F7/5EAC61448FA611EA9ACB7E7FC4F9AE02/BYQh3nB4BzBHPlzFRboK5dubTAo.crl rsync://rpki.apnic.net/member_repository/A91862F7/5EAC61448FA611EA9ACB7E7FC4F9AE02/BYQh3nB4BzBHPlzFRboK5dubTAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BYQh3nB4BzBHPlzFRboK5dubTAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:26:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2493 (0x9bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862F7, serialNumber=058421DE70780730473E5CC545BA0AE5DB9B4C0A Validity Not Before: Aug 22 17:26:19 2025 GMT Not After : Aug 29 17:26:19 2025 GMT Subject: CN=68a8a83c-552f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:24:73:9a:a1:a1:b2:17:b3:56:39:80:93:8b: 6b:c6:64:2c:5c:25:e5:9d:f8:11:21:fa:86:f8:7a: 9d:dd:04:89:ed:eb:82:26:a0:17:a8:4d:23:8b:28: 60:35:dd:8e:30:f9:df:dc:ae:37:f3:2c:3e:93:4e: c8:b6:0a:57:b9:96:6c:69:44:aa:e3:09:66:5a:25: dc:71:bd:36:20:7c:52:19:3d:f0:7e:2e:5e:4f:52: 29:54:ed:84:a8:f2:99:96:3f:e4:52:ca:1b:72:d5: ff:97:2a:a8:9c:bc:99:fa:e7:64:8e:a6:e3:06:65: ec:e4:57:0b:f0:68:e0:58:80:fc:e0:91:02:0c:c1: 4e:e8:6d:05:b0:c9:db:6e:1f:01:86:2f:7b:21:38: 7a:1d:6d:d9:d4:80:4c:c4:25:6f:8a:5f:3a:5d:9a: 5e:71:ef:3c:69:00:c1:50:2f:d4:94:df:10:cf:32: 96:ca:c5:83:60:0c:a7:2f:a9:0c:b0:4e:af:96:65: e2:db:ab:68:97:47:d9:24:e6:72:32:13:66:20:0f: c8:28:0c:15:6d:77:3d:14:dd:28:50:75:79:12:a9: 08:d3:87:b3:1d:de:02:9a:ea:75:6c:6f:69:23:c4: b3:5d:31:5a:1b:c6:00:6a:84:37:d3:e7:3d:b5:c5: 3d:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:5A:8E:73:4C:14:5A:F0:9B:94:FC:37:C3:2F:AC:3F:1A:4C:92:46 X509v3 Authority Key Identifier: keyid:05:84:21:DE:70:78:07:30:47:3E:5C:C5:45:BA:0A:E5:DB:9B:4C:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91862F7/5EAC61448FA611EA9ACB7E7FC4F9AE02/BYQh3nB4BzBHPlzFRboK5dubTAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BYQh3nB4BzBHPlzFRboK5dubTAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91862F7/5EAC61448FA611EA9ACB7E7FC4F9AE02/BYQh3nB4BzBHPlzFRboK5dubTAo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:52:46:7f:40:6a:b8:88:b9:7f:9d:27:c9:69:0a:33:54:e5: 49:e5:10:80:0d:b2:74:d8:f9:34:72:e8:7d:7f:af:9c:52:41: 59:ed:bf:48:90:82:32:4b:91:97:f7:66:4b:ab:ee:42:9a:87: bf:c0:14:25:a9:70:25:89:5d:10:3d:6c:24:28:56:e6:d5:64: ff:a1:1f:3b:82:5d:cb:17:32:cb:ab:7d:83:7a:f9:db:6b:de: 69:4f:c7:fc:43:65:60:c9:bf:85:de:d4:cb:2e:1c:97:bb:e8: 81:65:6e:af:9f:21:a5:28:1d:72:ae:2a:94:29:6a:74:bf:71: 36:92:ce:75:22:af:a5:c6:5e:40:9b:34:6b:54:dd:a2:fa:df: ce:02:30:72:13:9a:2e:ba:1c:cd:a6:86:1d:1b:d7:83:92:af: 5b:44:ea:65:a1:a0:3d:4a:e9:a3:0b:9c:fb:85:1a:14:a0:1f: bb:d4:25:73:18:e8:e2:3f:87:84:6a:09:ff:4d:ec:ef:0f:08: 09:55:4c:26:1c:55:c9:f4:df:10:d7:1c:ae:ef:52:06:ab:ee: af:19:99:91:36:4e:a1:26:46:79:da:36:e7:3d:96:12:b6:db: 9e:b9:36:2e:f6:23:f1:fc:96:8f:ca:9a:86:7b:43:24:c4:e6: 17:09:5c:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCb0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyRjcxMTAvBgNVBAUTKDA1ODQyMURFNzA3ODA3MzA0NzNFNUNDNTQ1QkEwQUU1 REI5QjRDMEEwHhcNMjUwODIyMTcyNjE5WhcNMjUwODI5MTcyNjE5WjAYMRYwFAYD VQQDEw02OGE4YTgzYy01NTJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAziRzmqGhshezVjmAk4trxmQsXCXlnfgRIfqG+Hqd3QSJ7euCJqAXqE0jiyhg Nd2OMPnf3K438yw+k07ItgpXuZZsaUSq4wlmWiXccb02IHxSGT3wfi5eT1IpVO2E qPKZlj/kUsobctX/lyqonLyZ+udkjqbjBmXs5FcL8GjgWID84JECDMFO6G0FsMnb bh8Bhi97ITh6HW3Z1IBMxCVvil86XZpece88aQDBUC/UlN8QzzKWysWDYAynL6kM sE6vlmXi26tol0fZJOZyMhNmIA/IKAwVbXc9FN0oUHV5EqkI04ezHd4Cmup1bG9p I8SzXTFaG8YAaoQ30+c9tcU9gQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ5ajnNM FFrwm5T8N8MvrD8aTJJGMB8GA1UdIwQYMBaAFAWEId5weAcwRz5cxUW6CuXbm0wK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjJGNy81RUFDNjE0NDhG QTYxMUVBOUFDQjdFN0ZDNEY5QUUwMi9CWVFoM25CNEJ6QkhQbHpGUmJvSzVkdWJU QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JZUWgzbkI0QnpCSFBsekZSYm9LNWR1YlRBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjJGNy81RUFDNjE0NDhGQTYxMUVBOUFDQjdFN0ZDNEY5QUUwMi9CWVFoM25CNEJ6 QkhQbHpGUmJvSzVkdWJUQW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+UkZ/QGq4iLl/nSfJaQozVOVJ5RCADbJ02Pk0cuh9f6+cUkFZ7b9I kIIyS5GX92ZLq+5Cmoe/wBQlqXAliV0QPWwkKFbm1WT/oR87gl3LFzLLq32Devnb a95pT8f8Q2Vgyb+F3tTLLhyXu+iBZW6vnyGlKB1yriqUKWp0v3E2ks51Iq+lxl5A mzRrVN2i+t/OAjByE5ouuhzNpoYdG9eDkq9bROploaA9SumjC5z7hRoUoB+71CVz GOjiP4eEagn/TezvDwgJVUwmHFXJ9N8Q1xyu71IGq+6vGZmRNk6hJkZ52jbnPZYS ttueuTYu9iPx/JaPypqGe0MkxOYXCVxf -----END CERTIFICATE-----Generated at Sat Aug 23 21:16:20 2025 by rpki-client