$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8CD2/043C6AF4D8E511EB80685D5FC4F9AE02/bjPVE5klw9tNCFk3zmms03vqeU0.mft File: bjPVE5klw9tNCFk3zmms03vqeU0.mft (raw, json) Hash identifier: P0tFAakYL/P+gM8fGekGgSxOZTZm9YrTCPOKFcKx3vI= Subject key identifier: 8E:C0:7F:71:F3:2D:18:2B:BB:B7:E0:AE:51:61:BC:A6:3E:03:25:98 Authority key identifier: 6E:33:D5:13:99:25:C3:DB:4D:08:59:37:CE:69:AC:D3:7B:EA:79:4D Certificate issuer: /CN=A91A8CD2/serialNumber=6E33D5139925C3DB4D085937CE69ACD37BEA794D Certificate serial: 05B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bjPVE5klw9tNCFk3zmms03vqeU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8CD2/043C6AF4D8E511EB80685D5FC4F9AE02/bjPVE5klw9tNCFk3zmms03vqeU0.mft Manifest number: 05B0 Signing time: Fri 22 Aug 2025 23:18:24 +0000 Manifest this update: Fri 22 Aug 2025 23:18:24 +0000 Manifest next update: Fri 29 Aug 2025 23:18:24 +0000 Files and hashes: 1: bjPVE5klw9tNCFk3zmms03vqeU0.crl (hash: A0M6SM8xt8KrvCU6pYYIzosBO4j72iakrBjKtn6CPBU=) 2: 5D10DEF0D8E811EB8ACD3C66C4F9AE02.roa (hash: /8hy3Bbn1TLOvORzZ60crKTvCR9C6tYBcsWimqCiQa8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8CD2/043C6AF4D8E511EB80685D5FC4F9AE02/bjPVE5klw9tNCFk3zmms03vqeU0.crl rsync://rpki.apnic.net/member_repository/A91A8CD2/043C6AF4D8E511EB80685D5FC4F9AE02/bjPVE5klw9tNCFk3zmms03vqeU0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bjPVE5klw9tNCFk3zmms03vqeU0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:18:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1461 (0x5b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8CD2, serialNumber=6E33D5139925C3DB4D085937CE69ACD37BEA794D Validity Not Before: Aug 22 23:18:24 2025 GMT Not After : Aug 29 23:18:24 2025 GMT Subject: CN=68a8fac0-864f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:9e:97:24:31:28:fb:57:3d:5f:e7:cd:d2:52: 47:38:dd:01:84:39:fa:35:f2:51:50:e4:4f:89:06: 61:6c:45:09:37:98:af:d1:99:10:77:70:1a:c6:ab: ce:4a:4a:36:4a:22:88:0f:3e:20:61:06:9f:be:1a: ed:9d:66:0c:d5:05:0f:21:e6:b9:87:5b:bd:4d:c2: 2f:13:cc:bd:d9:f3:78:39:64:16:3c:4d:ba:db:60: b9:02:da:b3:9b:82:b3:3f:5d:54:cd:aa:39:c0:21: 8d:f8:3b:2e:13:3a:44:9f:17:e4:8b:47:95:05:31: 9c:2a:b4:7a:e4:5b:bd:c2:4b:ff:00:6e:5c:be:2c: 72:1c:b9:75:c3:0b:35:0e:ba:c6:ca:44:be:a7:7e: 5a:f3:5b:fd:98:86:ae:ef:d6:20:21:f4:0a:6a:82: 2b:d9:ef:92:4e:67:b0:b0:48:b0:ce:6e:f0:7d:f6: a9:fa:49:2e:2a:40:a8:c1:c8:8e:9f:e8:6b:2a:2a: 57:bd:c3:15:cc:df:85:34:e6:d5:0c:aa:fb:57:3f: d1:0c:e3:17:02:00:bb:91:79:1d:5c:b7:fe:e9:2c: 05:36:f5:c5:11:b9:fb:71:95:bf:bb:64:3c:06:e2: bb:f0:96:41:3a:1c:97:f3:46:2c:57:6c:80:d7:d4: 88:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:C0:7F:71:F3:2D:18:2B:BB:B7:E0:AE:51:61:BC:A6:3E:03:25:98 X509v3 Authority Key Identifier: keyid:6E:33:D5:13:99:25:C3:DB:4D:08:59:37:CE:69:AC:D3:7B:EA:79:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8CD2/043C6AF4D8E511EB80685D5FC4F9AE02/bjPVE5klw9tNCFk3zmms03vqeU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bjPVE5klw9tNCFk3zmms03vqeU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8CD2/043C6AF4D8E511EB80685D5FC4F9AE02/bjPVE5klw9tNCFk3zmms03vqeU0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c9:08:8a:c6:a1:69:c3:1a:a2:bf:64:1b:78:7e:b3:c0:be:e8: 23:88:b3:f2:bc:76:a0:d4:19:16:ae:89:9c:88:5b:ca:23:0d: ad:f9:e2:39:7a:af:37:e8:c8:58:e7:0e:8f:8b:eb:00:07:9e: ff:2e:91:08:d1:52:d3:0c:f6:52:49:af:f4:31:3d:4f:67:63: 09:15:ff:84:9f:ed:74:ee:1d:6e:23:7a:56:7d:dd:2f:a0:55: 6d:fb:ac:80:1f:a9:36:df:10:cd:80:34:0f:fa:09:7c:0c:40: 57:f2:69:f5:bc:bd:d7:a3:87:d5:a6:ce:29:fc:d6:b9:12:1b: dc:46:e5:20:cb:93:e9:90:6b:ac:f1:e3:94:1f:9b:15:e7:9a: 52:45:3a:cb:2c:3d:c4:6c:c0:67:d1:d2:13:16:6a:49:b4:0e: 13:95:ce:7c:36:4e:e2:26:14:52:03:53:af:7f:7c:8c:83:e8: 81:ff:32:f5:62:54:dc:82:50:c3:72:6a:89:a7:be:6a:e7:60: 63:54:dc:63:37:39:b7:04:36:9e:d8:b8:5c:cb:38:91:41:d6: 2f:14:c2:2a:b9:2a:fa:1f:e6:ca:6d:bd:71:dd:16:44:5c:12: 6b:58:2f:f8:67:f2:7f:86:b6:bb:68:f6:35:3e:01:82:2c:00: da:ef:c7:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBbUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThDRDIxMTAvBgNVBAUTKDZFMzNENTEzOTkyNUMzREI0RDA4NTkzN0NFNjlBQ0Qz N0JFQTc5NEQwHhcNMjUwODIyMjMxODI0WhcNMjUwODI5MjMxODI0WjAYMRYwFAYD VQQDEw02OGE4ZmFjMC04NjRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1p6XJDEo+1c9X+fN0lJHON0BhDn6NfJRUORPiQZhbEUJN5iv0ZkQd3AaxqvO Sko2SiKIDz4gYQafvhrtnWYM1QUPIea5h1u9TcIvE8y92fN4OWQWPE2622C5Atqz m4KzP11Uzao5wCGN+DsuEzpEnxfki0eVBTGcKrR65Fu9wkv/AG5cvixyHLl1wws1 DrrGykS+p35a81v9mIau79YgIfQKaoIr2e+STmewsEiwzm7wffap+kkuKkCowciO n+hrKipXvcMVzN+FNObVDKr7Vz/RDOMXAgC7kXkdXLf+6SwFNvXFEbn7cZW/u2Q8 BuK78JZBOhyX80YsV2yA19SIyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI7Af3Hz LRgru7fgrlFhvKY+AyWYMB8GA1UdIwQYMBaAFG4z1ROZJcPbTQhZN85prNN76nlN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOENEMi8wNDNDNkFGNEQ4 RTUxMUVCODA2ODVENUZDNEY5QUUwMi9ialBWRTVrbHc5dE5DRmszem1tczAzdnFl VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JqUFZFNWtsdzl0TkNGazN6bW1zMDN2cWVVMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OENEMi8wNDNDNkFGNEQ4RTUxMUVCODA2ODVENUZDNEY5QUUwMi9ialBWRTVrbHc5 dE5DRmszem1tczAzdnFlVTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDJCIrGoWnDGqK/ZBt4frPAvugjiLPyvHag1BkWromciFvKIw2t+eI5 eq836MhY5w6Pi+sAB57/LpEI0VLTDPZSSa/0MT1PZ2MJFf+En+107h1uI3pWfd0v oFVt+6yAH6k23xDNgDQP+gl8DEBX8mn1vL3Xo4fVps4p/Na5EhvcRuUgy5PpkGus 8eOUH5sV55pSRTrLLD3EbMBn0dITFmpJtA4Tlc58Nk7iJhRSA1Ovf3yMg+iB/zL1 YlTcglDDcmqJp75q52BjVNxjNzm3BDae2LhcyziRQdYvFMIquSr6H+bKbb1x3RZE XBJrWC/4Z/J/hra7aPY1PgGCLADa78e7 -----END CERTIFICATE-----Generated at Sat Aug 23 17:51:59 2025 by rpki-client