$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft File: bzPCWtM2F4RBLEKweYYz0Dslvso.mft (raw, json) Hash identifier: 845J75Z5+kr8lE4kklZiIYPFAv/PflV29MUkVGVQi88= Subject key identifier: 3E:E8:DA:08:0F:73:9F:C9:D9:C0:68:11:CA:CA:F5:45:06:DA:92:07 Authority key identifier: 6F:33:C2:5A:D3:36:17:84:41:2C:42:B0:79:86:33:D0:3B:25:BE:CA Certificate issuer: /CN=A91AB027/serialNumber=6F33C25AD3361784412C42B0798633D03B25BECA Certificate serial: 0F5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bzPCWtM2F4RBLEKweYYz0Dslvso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft Manifest number: 0F56 Signing time: Fri 22 Aug 2025 17:42:47 +0000 Manifest this update: Fri 22 Aug 2025 17:42:47 +0000 Manifest next update: Fri 29 Aug 2025 17:42:47 +0000 Files and hashes: 1: bzPCWtM2F4RBLEKweYYz0Dslvso.crl (hash: 3UdWOySSMAUUPbkMccMNgbIbUcqejj0f9RWrttmSns0=) 2: 62C1F5587ACD11E9AC0A867BC4F9AE02.roa (hash: zJtFuv9ERKF2VcP0kXnp4PcKZFEJbjxQnX3bWZEEZas=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.crl rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bzPCWtM2F4RBLEKweYYz0Dslvso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:42:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3935 (0xf5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB027, serialNumber=6F33C25AD3361784412C42B0798633D03B25BECA Validity Not Before: Aug 22 17:42:47 2025 GMT Not After : Aug 29 17:42:47 2025 GMT Subject: CN=68a8ac17-1df2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:38:40:d5:41:7b:82:5e:d4:f5:7f:3c:a6:78: 18:e8:ba:4d:98:90:de:60:f8:47:83:e3:db:9c:39: 42:3c:3f:ea:a9:a6:67:40:ca:8c:c8:41:30:09:5e: ef:15:23:73:84:24:f6:38:1b:16:e2:07:91:a2:3b: 4d:9b:46:2e:bd:50:c7:a0:e1:7b:59:6e:26:47:58: 9e:d7:ba:95:e1:94:9c:be:7a:3b:e8:a4:57:43:c7: 94:41:8f:88:c6:11:81:e8:b4:c4:73:eb:60:73:b1: ca:06:5d:08:c9:87:e4:e0:3d:8f:64:49:a5:bf:fe: ec:9d:28:1a:f1:c9:5b:4d:b6:bc:19:39:7c:94:87: 08:0c:8d:cd:d9:0e:ca:3c:38:00:41:c7:b7:40:e0: b0:01:a4:fd:d7:44:54:be:64:83:fb:3f:31:b1:6c: f6:61:c7:75:83:28:9c:57:7f:2d:1d:92:43:10:dd: d2:22:10:6a:fc:01:33:01:83:11:90:8b:cf:54:fc: 28:f1:90:e5:03:aa:10:92:1e:61:7d:f2:80:35:02: 93:fe:28:7f:12:04:a1:5a:07:c4:be:7e:59:2a:19: 05:48:1f:c6:3f:61:7a:9a:e9:84:be:29:7e:1f:cb: 51:60:06:8a:fc:57:84:3e:f8:39:4c:31:05:9a:bf: ab:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:E8:DA:08:0F:73:9F:C9:D9:C0:68:11:CA:CA:F5:45:06:DA:92:07 X509v3 Authority Key Identifier: keyid:6F:33:C2:5A:D3:36:17:84:41:2C:42:B0:79:86:33:D0:3B:25:BE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bzPCWtM2F4RBLEKweYYz0Dslvso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:8d:0f:69:c0:5d:9e:c0:4a:d5:b6:db:30:48:ab:1e:25:06: 69:93:19:06:92:b0:6e:58:49:55:61:9b:a5:d1:4a:96:a9:a0: ff:1d:d3:c1:59:78:9a:b6:2b:b9:f2:d1:6f:61:3f:a8:e9:0e: c7:01:af:1d:eb:37:1c:0b:c8:41:16:36:78:05:3d:5a:05:8f: 10:3a:53:79:28:12:94:a3:7e:8e:1a:70:61:23:ff:af:b3:35: 3a:5b:46:6e:d2:2d:a5:85:f1:37:58:d0:d5:88:7e:ff:1e:64: 81:fd:36:5c:52:3c:ce:06:aa:28:4b:12:20:b2:9d:87:3e:69: 14:30:4d:96:e0:7f:0d:c6:6c:f4:34:93:40:69:9a:52:68:ec: 58:92:d6:00:c6:bf:d1:41:f3:7e:8b:0d:75:be:26:41:c5:c2: 70:1a:e6:5c:9b:a7:87:7a:de:1f:7c:55:4a:f7:23:fe:4b:8a: 12:ad:67:7c:4d:81:51:7a:20:47:15:a7:77:28:3b:10:5a:ff: ab:c2:fb:13:cd:e8:44:ed:69:48:c3:83:6b:a4:9b:06:f8:1e: 28:d4:f5:b4:18:be:2d:ff:1e:e0:ea:09:bb:e8:43:7e:81:16: f9:fc:c7:25:8e:07:6c:34:9b:19:c8:55:47:3f:ce:79:af:50: 28:48:5a:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD18wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIwMjcxMTAvBgNVBAUTKDZGMzNDMjVBRDMzNjE3ODQ0MTJDNDJCMDc5ODYzM0Qw M0IyNUJFQ0EwHhcNMjUwODIyMTc0MjQ3WhcNMjUwODI5MTc0MjQ3WjAYMRYwFAYD VQQDEw02OGE4YWMxNy0xZGYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuThA1UF7gl7U9X88pngY6LpNmJDeYPhHg+PbnDlCPD/qqaZnQMqMyEEwCV7v FSNzhCT2OBsW4geRojtNm0YuvVDHoOF7WW4mR1ie17qV4ZScvno76KRXQ8eUQY+I xhGB6LTEc+tgc7HKBl0IyYfk4D2PZEmlv/7snSga8clbTba8GTl8lIcIDI3N2Q7K PDgAQce3QOCwAaT910RUvmSD+z8xsWz2Ycd1gyicV38tHZJDEN3SIhBq/AEzAYMR kIvPVPwo8ZDlA6oQkh5hffKANQKT/ih/EgShWgfEvn5ZKhkFSB/GP2F6mumEvil+ H8tRYAaK/FeEPvg5TDEFmr+ryQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD7o2ggP c5/J2cBoEcrK9UUG2pIHMB8GA1UdIwQYMBaAFG8zwlrTNheEQSxCsHmGM9A7Jb7K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjAyNy82OEY3NTkxMDcz NDYxMUU5QUQ1NjFCNDdDNEY5QUUwMi9ielBDV3RNMkY0UkJMRUt3ZVlZejBEc2x2 c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J6UENXdE0yRjRSQkxFS3dlWVl6MERzbHZzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjAyNy82OEY3NTkxMDczNDYxMUU5QUQ1NjFCNDdDNEY5QUUwMi9ielBDV3RNMkY0 UkJMRUt3ZVlZejBEc2x2c28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAljQ9pwF2ewErVttswSKseJQZpkxkGkrBuWElVYZul0UqWqaD/HdPB WXiatiu58tFvYT+o6Q7HAa8d6zccC8hBFjZ4BT1aBY8QOlN5KBKUo36OGnBhI/+v szU6W0Zu0i2lhfE3WNDViH7/HmSB/TZcUjzOBqooSxIgsp2HPmkUME2W4H8Nxmz0 NJNAaZpSaOxYktYAxr/RQfN+iw11viZBxcJwGuZcm6eHet4ffFVK9yP+S4oSrWd8 TYFReiBHFad3KDsQWv+rwvsTzehE7WlIw4NrpJsG+B4o1PW0GL4t/x7g6gm76EN+ gRb5/McljgdsNJsZyFVHP855r1AoSFod -----END CERTIFICATE-----Generated at Sat Aug 23 19:48:35 2025 by rpki-client