$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft File: bzPCWtM2F4RBLEKweYYz0Dslvso.mft (raw, json) Hash identifier: vNOxtHf2rHPQ/kdavnmYwy8+HfOZ6mOFI2rjp+EdCuY= Subject key identifier: 25:F0:CB:5C:95:A4:56:86:7A:E7:0E:4B:36:ED:21:37:8E:60:00:2E Authority key identifier: 6F:33:C2:5A:D3:36:17:84:41:2C:42:B0:79:86:33:D0:3B:25:BE:CA Certificate issuer: /CN=A91AB027/serialNumber=6F33C25AD3361784412C42B0798633D03B25BECA Certificate serial: 0F43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bzPCWtM2F4RBLEKweYYz0Dslvso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft Manifest number: 0F3A Signing time: Sat 28 Jun 2025 17:25:35 +0000 Manifest this update: Sat 28 Jun 2025 17:25:35 +0000 Manifest next update: Sat 05 Jul 2025 17:25:35 +0000 Files and hashes: 1: bzPCWtM2F4RBLEKweYYz0Dslvso.crl (hash: Ou+k+YLeZ3elkh5XrhVhcIJUAVdK1BBK4xRQAHeTJKU=) 2: 62C1F5587ACD11E9AC0A867BC4F9AE02.roa (hash: zJtFuv9ERKF2VcP0kXnp4PcKZFEJbjxQnX3bWZEEZas=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.crl rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bzPCWtM2F4RBLEKweYYz0Dslvso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 17:25:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3907 (0xf43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB027, serialNumber=6F33C25AD3361784412C42B0798633D03B25BECA Validity Not Before: Jun 28 17:25:35 2025 GMT Not After : Jul 5 17:25:35 2025 GMT Subject: CN=6860258f-c7c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:d2:e9:f3:b0:40:e0:7b:4a:8c:8f:8f:3b:c5: 77:6d:09:f5:fe:44:9e:20:da:e1:fe:d8:c1:4f:e5: 95:2c:ae:a6:fe:1f:be:5b:8b:81:7b:3f:df:fb:5e: 65:65:f3:2f:36:71:fa:08:d3:80:a4:9a:09:66:9d: 39:f2:20:2c:9d:9f:0e:87:19:61:3a:66:0f:89:dd: 72:39:24:89:35:fb:83:3d:2d:22:91:29:83:cc:fe: fa:c9:be:04:9b:ff:ec:9a:eb:7c:74:6a:83:55:7f: 25:6c:7f:a9:6a:35:71:41:77:8d:0b:20:f5:4d:46: 1c:d6:f1:b5:61:af:4a:f3:6f:55:10:44:eb:4e:cd: 87:17:92:7f:5c:78:6f:f8:1f:1c:23:89:75:e0:e6: 90:af:3b:5f:a8:45:29:e4:99:d3:cf:39:f4:75:35: 61:4c:50:26:a8:2d:b8:55:08:0e:eb:49:4d:83:4a: 89:90:63:57:b1:08:fd:4f:ac:6e:b3:cc:e6:3d:34: f1:ae:6b:44:09:42:5b:15:e3:24:df:f6:c4:a2:9e: 7d:3d:69:f6:a7:10:ae:6a:bd:b1:8f:fe:f4:c7:9d: e6:84:30:4b:0e:f1:16:db:fc:58:84:4a:d8:cb:17: 0e:30:9f:a1:ec:86:c5:dd:0b:23:b1:6a:5e:50:42: a9:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:F0:CB:5C:95:A4:56:86:7A:E7:0E:4B:36:ED:21:37:8E:60:00:2E X509v3 Authority Key Identifier: keyid:6F:33:C2:5A:D3:36:17:84:41:2C:42:B0:79:86:33:D0:3B:25:BE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bzPCWtM2F4RBLEKweYYz0Dslvso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:55:94:95:b5:a1:46:58:6c:61:54:ad:86:b8:55:8d:04:c7: 38:4e:00:66:0c:e2:88:0b:69:aa:e2:d5:01:e2:f5:e8:5b:99: af:ef:30:f8:d8:38:31:27:e4:87:f3:71:1b:a8:c7:36:f2:20: 22:1b:7f:69:98:db:ec:eb:10:01:3d:f7:d2:30:b8:ae:1d:ee: 85:70:4d:3d:5f:c3:3a:58:30:29:24:55:db:a3:5f:6a:d7:f4: 72:ba:01:fe:fd:1a:37:13:b8:94:32:6c:79:24:2b:0e:02:39: fe:e2:f7:9c:e8:02:a6:f5:18:5d:18:fb:c7:35:79:a2:25:d8: 61:15:a4:a9:f9:45:f4:c6:46:2d:1a:05:20:83:ee:a1:9f:d1: 32:95:38:52:c5:cf:1d:fb:05:15:39:ff:09:65:a6:f1:2b:0e: 9d:4c:66:4b:da:af:5e:05:16:37:9e:10:9e:86:73:80:ff:66: 36:61:8d:09:1d:52:9f:2a:39:70:16:59:02:d4:ce:04:0c:7a: 53:35:eb:85:bf:85:12:f9:b2:f8:17:92:e0:b6:b3:72:16:f4: 47:e6:78:83:3d:74:ee:8e:3f:47:f0:15:b2:a2:06:d8:56:85: bf:28:80:15:09:5f:70:aa:98:98:66:be:14:b6:11:aa:12:e3: a8:a3:09:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD0MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIwMjcxMTAvBgNVBAUTKDZGMzNDMjVBRDMzNjE3ODQ0MTJDNDJCMDc5ODYzM0Qw M0IyNUJFQ0EwHhcNMjUwNjI4MTcyNTM1WhcNMjUwNzA1MTcyNTM1WjAYMRYwFAYD VQQDEw02ODYwMjU4Zi1jN2MzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAytLp87BA4HtKjI+PO8V3bQn1/kSeINrh/tjBT+WVLK6m/h++W4uBez/f+15l ZfMvNnH6CNOApJoJZp058iAsnZ8OhxlhOmYPid1yOSSJNfuDPS0ikSmDzP76yb4E m//smut8dGqDVX8lbH+pajVxQXeNCyD1TUYc1vG1Ya9K829VEETrTs2HF5J/XHhv +B8cI4l14OaQrztfqEUp5JnTzzn0dTVhTFAmqC24VQgO60lNg0qJkGNXsQj9T6xu s8zmPTTxrmtECUJbFeMk3/bEop59PWn2pxCuar2xj/70x53mhDBLDvEW2/xYhErY yxcOMJ+h7IbF3QsjsWpeUEKpdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCXwy1yV pFaGeucOSzbtITeOYAAuMB8GA1UdIwQYMBaAFG8zwlrTNheEQSxCsHmGM9A7Jb7K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjAyNy82OEY3NTkxMDcz NDYxMUU5QUQ1NjFCNDdDNEY5QUUwMi9ielBDV3RNMkY0UkJMRUt3ZVlZejBEc2x2 c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J6UENXdE0yRjRSQkxFS3dlWVl6MERzbHZzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjAyNy82OEY3NTkxMDczNDYxMUU5QUQ1NjFCNDdDNEY5QUUwMi9ielBDV3RNMkY0 UkJMRUt3ZVlZejBEc2x2c28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABVZSVtaFGWGxhVK2GuFWNBMc4TgBmDOKIC2mq4tUB4vXoW5mv7zD4 2DgxJ+SH83EbqMc28iAiG39pmNvs6xABPffSMLiuHe6FcE09X8M6WDApJFXbo19q 1/RyugH+/Ro3E7iUMmx5JCsOAjn+4vec6AKm9RhdGPvHNXmiJdhhFaSp+UX0xkYt GgUgg+6hn9EylThSxc8d+wUVOf8JZabxKw6dTGZL2q9eBRY3nhCehnOA/2Y2YY0J HVKfKjlwFlkC1M4EDHpTNeuFv4US+bL4F5LgtrNyFvRH5niDPXTujj9H8BWyogbY VoW/KIAVCV9wqpiYZr4UthGqEuOoowl7 -----END CERTIFICATE-----Generated at Sun Jun 29 16:29:01 2025 by rpki-client