$ rpki-client -vvf rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.mft File: Ba0-SqGWG6fsvgKTVyXCXNJr1rw.mft (raw, json) Hash identifier: gYt0S9UefwpT7PbUaqAnkDe5F2X/rH8VnC1PVMpl+eQ= Subject key identifier: 85:7F:DC:D3:38:21:E6:48:00:05:42:8C:39:78:A8:9B:AC:DA:D6:03 Authority key identifier: 05:AD:3E:4A:A1:96:1B:A7:EC:BE:02:93:57:25:C2:5C:D2:6B:D6:BC Certificate issuer: /CN=A91941E9/serialNumber=05AD3E4AA1961BA7ECBE02935725C25CD26BD6BC Certificate serial: 07F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.mft Manifest number: 07DF Signing time: Fri 22 Aug 2025 21:19:18 +0000 Manifest this update: Fri 22 Aug 2025 21:19:18 +0000 Manifest next update: Fri 29 Aug 2025 21:19:18 +0000 Files and hashes: 1: Ba0-SqGWG6fsvgKTVyXCXNJr1rw.crl (hash: UCjKNfCH8qNeGbKx4K78qYMK0/YJmjQJ1eElvhNDm90=) 2: B0425744D7E211ECBD1D447FC4F9AE02.roa (hash: FmrrPxT3AQS1QsODrOl0Mag5fJkdo8yw7npJe5EvI48=) 3: 1DB0529C7CA711F0A52C5966C4F9AE02.roa (hash: XaSGJdVmQFwnCd+b3KdpqRusxazGj+qlh/KndRTEPfA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.crl rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:19:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2040 (0x7f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91941E9, serialNumber=05AD3E4AA1961BA7ECBE02935725C25CD26BD6BC Validity Not Before: Aug 22 21:19:18 2025 GMT Not After : Aug 29 21:19:18 2025 GMT Subject: CN=68a8ded6-ba1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:46:47:b2:01:c7:6d:3b:ed:6d:00:76:2a:aa: 4f:92:18:89:fd:22:c7:b9:04:9c:64:b2:74:e6:7f: 79:98:bb:66:ca:df:76:70:66:af:c8:32:44:09:0f: f2:2d:bb:56:88:a5:ba:92:93:63:f1:88:f3:c9:2b: aa:17:74:78:98:f9:94:cf:0c:d8:5f:e9:2d:fc:7d: 7c:42:1e:e1:86:8d:8d:59:88:6b:70:7b:47:66:1d: 6e:c1:32:15:08:b0:5d:ff:a6:d8:8e:fb:60:d7:09: 3c:0d:e3:08:ad:d3:a6:47:73:d9:fa:f1:8b:22:19: f4:74:62:7e:42:04:ee:a7:34:bf:e8:81:58:e6:be: 45:5c:57:f7:5b:1e:90:88:2f:24:7e:54:a7:49:28: 20:18:30:36:df:0b:c9:48:7f:5a:bd:b8:91:77:1a: a4:bc:c1:a2:54:23:3f:a1:19:b2:94:45:d2:c6:bb: a0:74:87:b4:93:fb:34:2e:c9:3b:82:d7:d5:08:c1: b4:bc:53:39:b3:3a:8e:82:f5:86:35:39:91:7f:f7: 59:7d:70:b1:5e:27:46:46:da:7a:67:1a:7d:91:c8: 56:5a:09:00:bb:5f:2e:d8:c2:70:7d:ea:5d:27:d6: d3:16:05:c6:9e:5b:a5:fe:a4:00:19:6d:91:b2:54: d9:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:7F:DC:D3:38:21:E6:48:00:05:42:8C:39:78:A8:9B:AC:DA:D6:03 X509v3 Authority Key Identifier: keyid:05:AD:3E:4A:A1:96:1B:A7:EC:BE:02:93:57:25:C2:5C:D2:6B:D6:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91941E9/DAD8FB80079011EBBB98C076C4F9AE02/Ba0-SqGWG6fsvgKTVyXCXNJr1rw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:52:3d:7f:7c:e3:cf:81:85:f9:8e:ad:b1:ad:5e:42:b3:1f: ac:c7:58:b0:f5:c2:7b:dd:99:ac:8a:5f:2c:09:7c:90:d0:5d: db:81:f9:ed:25:86:6e:f6:43:70:dd:ff:25:28:da:af:c3:44: cd:df:8f:45:53:9f:1c:6b:12:1e:10:f3:94:e5:21:8f:d0:ff: 4e:a3:5c:d5:66:fe:29:ad:19:0b:06:e3:54:f1:f5:74:a9:b9: 25:23:f1:33:f0:1b:b3:5a:a0:d9:44:c4:47:2f:ab:dc:cb:48: 18:10:60:f0:f4:de:f0:60:f3:cf:43:bc:5e:bf:2a:20:81:9e: aa:81:3f:8a:2a:af:22:f6:63:3a:b1:f8:75:e2:96:57:3d:d4: 90:e6:16:8e:a9:89:ae:f7:19:4f:e7:ca:90:6f:6e:2c:e2:fe: 8d:51:20:2e:73:f2:19:6f:54:54:a4:79:ca:c8:bd:09:f4:07: 02:46:0f:20:3d:20:2f:d5:46:74:b7:30:ea:1d:d0:9c:38:07: c5:d1:1d:8d:b4:ed:ef:aa:e7:3f:86:0a:59:40:69:b5:b9:a2: 8d:ca:52:09:46:60:01:53:31:66:e7:86:2a:57:6d:46:dc:54: 2d:43:38:4a:8d:c3:a3:1d:d9:eb:5a:47:89:5a:af:27:0b:5e: 73:65:30:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQxRTkxMTAvBgNVBAUTKDA1QUQzRTRBQTE5NjFCQTdFQ0JFMDI5MzU3MjVDMjVD RDI2QkQ2QkMwHhcNMjUwODIyMjExOTE4WhcNMjUwODI5MjExOTE4WjAYMRYwFAYD VQQDEw02OGE4ZGVkNi1iYTFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0kZHsgHHbTvtbQB2KqpPkhiJ/SLHuQScZLJ05n95mLtmyt92cGavyDJECQ/y LbtWiKW6kpNj8YjzySuqF3R4mPmUzwzYX+kt/H18Qh7hho2NWYhrcHtHZh1uwTIV CLBd/6bYjvtg1wk8DeMIrdOmR3PZ+vGLIhn0dGJ+QgTupzS/6IFY5r5FXFf3Wx6Q iC8kflSnSSggGDA23wvJSH9avbiRdxqkvMGiVCM/oRmylEXSxrugdIe0k/s0Lsk7 gtfVCMG0vFM5szqOgvWGNTmRf/dZfXCxXidGRtp6Zxp9kchWWgkAu18u2MJwfepd J9bTFgXGnlul/qQAGW2RslTZDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIV/3NM4 IeZIAAVCjDl4qJus2tYDMB8GA1UdIwQYMBaAFAWtPkqhlhun7L4Ck1clwlzSa9a8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDFFOS9EQUQ4RkI4MDA3 OTAxMUVCQkI5OEMwNzZDNEY5QUUwMi9CYTAtU3FHV0c2ZnN2Z0tUVnlYQ1hOSnIx cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JhMC1TcUdXRzZmc3ZnS1RWeVhDWE5KcjFydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDFFOS9EQUQ4RkI4MDA3OTAxMUVCQkI5OEMwNzZDNEY5QUUwMi9CYTAtU3FHV0c2 ZnN2Z0tUVnlYQ1hOSnIxcncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCUj1/fOPPgYX5jq2xrV5Csx+sx1iw9cJ73Zmsil8sCXyQ0F3bgfnt JYZu9kNw3f8lKNqvw0TN349FU58caxIeEPOU5SGP0P9Oo1zVZv4prRkLBuNU8fV0 qbklI/Ez8BuzWqDZRMRHL6vcy0gYEGDw9N7wYPPPQ7xevyoggZ6qgT+KKq8i9mM6 sfh14pZXPdSQ5haOqYmu9xlP58qQb24s4v6NUSAuc/IZb1RUpHnKyL0J9AcCRg8g PSAv1UZ0tzDqHdCcOAfF0R2NtO3vquc/hgpZQGm1uaKNylIJRmABUzFm54YqV21G 3FQtQzhKjcOjHdnrWkeJWq8nC15zZTDk -----END CERTIFICATE-----Generated at Sun Aug 24 05:43:30 2025 by rpki-client