$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft File: tBFqjm2pkf3PcWJue-oR_2nLqEY.mft (raw, json) Hash identifier: ajg72j4/+HI6iH6ERVoTERGbNAfqnCUsZWcy78paLII= Subject key identifier: C3:9F:DF:D2:0E:B3:72:9F:26:63:AC:BC:3B:CD:C9:EC:BB:C8:84:B1 Authority key identifier: B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 Certificate issuer: /CN=A91A4402/serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Certificate serial: 0C49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft Manifest number: 0BD0 Signing time: Fri 22 Aug 2025 19:15:57 +0000 Manifest this update: Fri 22 Aug 2025 19:15:56 +0000 Manifest next update: Fri 29 Aug 2025 19:15:56 +0000 Files and hashes: 1: tBFqjm2pkf3PcWJue-oR_2nLqEY.crl (hash: rItE8fm8pE1y7FnbxsQzYcL/ZmFtXHFOAzZ1X1k8PE8=) 2: 234D0D6C500611F08771CE55C4F9AE02.roa (hash: tT6wpY26Z4BuIfJge3UrKFFEij5wdhpGksDHGEKyueE=) 3: F3B9AEC4740A11F09DAF2A29C4F9AE02.roa (hash: BAnbwoxPeN/akyQ4VZTfLI7vBW7dc5W2AtRL8aSNk8w=) 4: 6CAE0142092E11F094B4703FC4F9AE02.roa (hash: U0UOsn2/X5DeOGEGCah3NBej8ExoikxrU8EoBu6Tnyg=) 5: C3CFE8A06B7B11F0B6D16E2AC4F9AE02.roa (hash: FuJ+0zC5emsysfIUM1yM5haaZPmnTrgVqP1fYVReGjo=) 6: 52636904771911F083181320C4F9AE02.roa (hash: 1KusZBNNW/qOCnR0kl7JmRQp5eJkrJEh2HYRqvBUy6w=) 7: B43088B457F311F099129754C4F9AE02.roa (hash: j5XwlVwLhRMnxu2C6WteuCnRNZlOoWzDpH2DBdKQLTY=) 8: 0E43AECA3B5D11F0A26BC064C4F9AE02.roa (hash: QUdZc8sayDCRZbnJ5FbRX8LCLMgHbtBh8Rf8sW0KF+4=) 9: 266FDBAE7CA811F099F0EC6BC4F9AE02.roa (hash: bzHe5eQXvAgJqQB53X3rSQRyXfwO/6bU3D4zIt0omyE=) 10: 4A2271227CA511F0A6652E61C4F9AE02.roa (hash: ENpgCOhh5FZYzQt+Wy2QS+uGTg9undm2Y+lcZMPXJ3M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:15:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3145 (0xc49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4402, serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Validity Not Before: Aug 22 19:15:56 2025 GMT Not After : Aug 29 19:15:56 2025 GMT Subject: CN=68a8c1ec-e2e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:70:1c:4e:98:4d:1c:13:34:61:54:1e:55:10: fb:bf:91:38:29:4c:9b:9a:c0:ac:ae:7a:64:d8:31: 3d:4f:a4:82:25:7e:48:10:8b:ec:95:cb:86:33:96: 04:64:f2:b5:b5:bf:ba:62:7d:59:34:3f:c6:9f:29: 5c:d6:d5:03:d8:a2:a9:c9:c5:5e:ab:f7:40:bc:39: 37:e0:b3:28:8d:45:5e:5e:16:17:98:94:09:e8:fc: 67:e8:5c:f5:d0:39:71:8b:6b:b4:ab:94:f0:5f:94: 21:b0:5a:7f:2b:e3:62:69:c0:9a:fd:a7:a1:1b:29: 0c:c8:6c:b0:81:b3:2d:4b:a8:ca:56:35:4e:31:a6: a7:99:67:b6:2f:9c:bf:94:3f:02:4e:26:d8:41:77: fa:12:05:60:5f:d3:d5:c9:ad:f9:f4:27:b3:e2:42: 19:28:cc:1e:38:d8:41:2f:1c:46:51:d3:ee:e7:a1: f8:89:47:4f:5a:6a:4b:86:c8:cd:15:cf:29:13:be: a5:5b:5b:d6:13:ad:6a:9c:c0:bc:ee:78:4d:fa:cd: 49:97:25:78:27:a3:d4:8a:4d:b4:fd:d5:39:c9:99: 5a:91:ee:bc:ec:1b:7a:43:84:ac:0f:4c:cd:77:8e: af:f3:a7:3b:1e:fa:7a:05:9f:da:0d:69:7d:7d:29: 3b:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:9F:DF:D2:0E:B3:72:9F:26:63:AC:BC:3B:CD:C9:EC:BB:C8:84:B1 X509v3 Authority Key Identifier: keyid:B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:09:2f:fb:e6:28:27:34:a0:55:50:fb:51:72:dd:bb:bf:ed: f7:9d:e3:dd:80:51:f5:e5:8d:f1:ab:9a:96:51:43:f4:51:65: 42:01:29:18:8f:ec:d0:f6:0a:ef:2c:7e:c5:6c:a7:a3:00:90: ca:4a:28:9b:7a:43:cd:1e:11:c4:e6:be:19:9c:a0:17:7b:2e: 5b:49:ac:bd:3a:5e:77:01:b1:3d:1f:d7:d6:d3:2f:26:25:b9: 46:e0:04:2d:8c:eb:2b:91:52:a2:f4:a0:c5:25:01:59:fd:ee: dc:ff:96:d4:2d:f1:e4:a4:47:e7:23:83:8e:22:d0:01:d2:08: ed:ba:1b:47:4b:cb:f3:63:fe:38:2d:f9:cd:6f:2c:73:9e:93: b3:22:84:35:d7:06:14:2e:27:cb:9a:64:fb:17:af:b5:69:97: 08:a3:93:00:47:4b:2d:b7:ab:c2:9c:74:60:03:bf:8d:23:e2: b5:7b:83:d4:cd:a4:f1:d6:36:41:39:f7:1e:61:92:d1:aa:20: 10:d9:c5:64:52:98:e3:ba:f8:73:aa:13:d8:ee:a2:28:70:ae: a0:a5:42:0e:c9:4b:e5:13:34:11:ec:18:d6:92:9d:0e:98:07: ce:6c:84:09:80:65:d6:41:0f:d7:7e:5c:e1:84:e5:54:43:93: 1c:5a:40:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0MDIxMTAvBgNVBAUTKEI0MTE2QThFNkRBOTkxRkRDRjcxNjI2RTdCRUExMUZG NjlDQkE4NDYwHhcNMjUwODIyMTkxNTU2WhcNMjUwODI5MTkxNTU2WjAYMRYwFAYD VQQDEw02OGE4YzFlYy1lMmUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA13AcTphNHBM0YVQeVRD7v5E4KUybmsCsrnpk2DE9T6SCJX5IEIvslcuGM5YE ZPK1tb+6Yn1ZND/Gnylc1tUD2KKpycVeq/dAvDk34LMojUVeXhYXmJQJ6Pxn6Fz1 0Dlxi2u0q5TwX5QhsFp/K+NiacCa/aehGykMyGywgbMtS6jKVjVOMaanmWe2L5y/ lD8CTibYQXf6EgVgX9PVya359Cez4kIZKMweONhBLxxGUdPu56H4iUdPWmpLhsjN Fc8pE76lW1vWE61qnMC87nhN+s1JlyV4J6PUik20/dU5yZlake687Bt6Q4SsD0zN d46v86c7Hvp6BZ/aDWl9fSk7mQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMOf39IO s3KfJmOsvDvNyey7yISxMB8GA1UdIwQYMBaAFLQRao5tqZH9z3FibnvqEf9py6hG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQwMi9GREJGRDAyMDNE OTYxMUVBOEVBMDcwMkZDNEY5QUUwMi90QkZxam0ycGtmM1BjV0p1ZS1vUl8ybkxx RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RCRnFqbTJwa2YzUGNXSnVlLW9SXzJuTHFFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDQwMi9GREJGRDAyMDNEOTYxMUVBOEVBMDcwMkZDNEY5QUUwMi90QkZxam0ycGtm M1BjV0p1ZS1vUl8ybkxxRVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC9CS/75ignNKBVUPtRct27v+33nePdgFH15Y3xq5qWUUP0UWVCASkY j+zQ9grvLH7FbKejAJDKSiibekPNHhHE5r4ZnKAXey5bSay9Ol53AbE9H9fW0y8m JblG4AQtjOsrkVKi9KDFJQFZ/e7c/5bULfHkpEfnI4OOItAB0gjtuhtHS8vzY/44 LfnNbyxznpOzIoQ11wYULifLmmT7F6+1aZcIo5MAR0stt6vCnHRgA7+NI+K1e4PU zaTx1jZBOfceYZLRqiAQ2cVkUpjjuvhzqhPY7qIocK6gpUIOyUvlEzQR7BjWkp0O mAfObIQJgGXWQQ/XflzhhOVUQ5McWkA+ -----END CERTIFICATE-----Generated at Sat Aug 23 16:43:10 2025 by rpki-client