$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.mft File: BAiuYP82i4xPzZMY6lKlnIcolJw.mft (raw, json) Hash identifier: XwMNQCCrFJnIHWbocpA146Ujm7pyCTFtlfmjX4acies= Subject key identifier: 22:3C:E6:01:CB:15:E2:0E:B4:B4:CD:48:67:C0:0E:CF:0A:E0:15:8D Authority key identifier: 04:08:AE:60:FF:36:8B:8C:4F:CD:93:18:EA:52:A5:9C:87:28:94:9C Certificate issuer: /CN=A91BA0AE/serialNumber=0408AE60FF368B8C4FCD9318EA52A59C8728949C Certificate serial: 088C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BAiuYP82i4xPzZMY6lKlnIcolJw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.mft Manifest number: 0A87 Signing time: Fri 22 Aug 2025 20:44:39 +0000 Manifest this update: Fri 22 Aug 2025 20:44:38 +0000 Manifest next update: Fri 29 Aug 2025 20:44:38 +0000 Files and hashes: 1: BAiuYP82i4xPzZMY6lKlnIcolJw.crl (hash: VnL7PB2ECvgmRGQIMjQdcgqttPnTbBcf9ePNA2P/jdQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.crl rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BAiuYP82i4xPzZMY6lKlnIcolJw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:44:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2188 (0x88c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA0AE, serialNumber=0408AE60FF368B8C4FCD9318EA52A59C8728949C Validity Not Before: Aug 22 20:44:38 2025 GMT Not After : Aug 29 20:44:38 2025 GMT Subject: CN=68a8d6b6-1c11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:32:a2:c2:08:98:7c:96:75:34:0c:bf:32:f3: 8e:6c:b0:8b:c7:41:8d:03:ac:d9:aa:9d:6e:83:08: f7:8e:3f:e8:a3:85:27:45:3e:77:cf:ab:25:35:25: f3:01:ed:1e:87:fd:fc:51:9c:24:85:ad:76:2d:a9: 42:bc:ee:72:dc:d5:9c:42:c1:df:89:94:0e:b9:db: 85:4d:fe:1d:eb:a7:04:4c:30:c0:8e:14:90:d0:93: 2e:6a:2c:32:5b:d0:03:57:e4:c8:3d:f0:72:0a:03: 44:80:0a:c8:dd:88:df:04:e3:ae:69:21:ac:63:70: 81:6f:53:7f:60:bf:26:c3:d5:73:4b:a0:f3:fd:de: 21:c0:c0:67:d8:64:2c:c9:fc:84:80:28:00:e1:57: cc:27:d5:ad:08:39:9e:f2:98:53:7e:9b:9f:1a:f3: 16:ab:64:6d:da:d5:29:52:c4:c7:12:d6:ae:8f:3a: 67:4d:f3:1d:e8:de:1a:20:fd:9e:36:1c:4a:79:f0: 06:d6:dd:9f:5b:84:f4:ba:d5:b2:a6:fb:84:d1:93: d0:a6:fd:88:99:42:66:a4:10:0c:41:9b:ae:2e:08: f5:69:e4:81:c0:6c:c5:ed:f8:5a:ab:b1:ef:1d:01: 27:68:76:29:70:71:3c:4d:f6:f6:a1:15:b5:31:27: 43:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:3C:E6:01:CB:15:E2:0E:B4:B4:CD:48:67:C0:0E:CF:0A:E0:15:8D X509v3 Authority Key Identifier: keyid:04:08:AE:60:FF:36:8B:8C:4F:CD:93:18:EA:52:A5:9C:87:28:94:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BAiuYP82i4xPzZMY6lKlnIcolJw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:af:1b:f8:72:33:11:04:42:6a:04:d4:04:83:e8:d8:c8:73: 51:5f:5a:df:4a:17:03:3b:0f:30:bb:86:7b:f8:e0:11:c0:52: 64:46:6e:3e:8d:7c:ce:f8:5a:5c:93:e0:36:7e:7e:bb:fb:c0: 33:70:eb:4d:a7:91:8f:dc:1e:ed:fb:73:09:70:fc:5e:ab:73: 59:cc:e5:2d:45:91:3a:cc:b9:24:db:49:77:8e:93:cd:6c:58: 0d:fe:8f:ab:70:eb:de:a8:6d:9a:1d:ed:73:9e:8e:10:3d:42: 9b:2d:67:52:50:b9:aa:65:60:4c:c5:b7:0f:11:78:6f:3a:99: 1f:de:c6:1a:bd:88:f0:77:62:52:b1:33:20:73:4c:4d:e2:70: 00:95:76:a8:6c:67:bc:ac:44:fc:74:d4:12:7e:2c:01:74:6e: bb:a7:57:3d:c1:6e:fa:84:80:ae:ed:2f:a2:bd:78:c0:f1:ea: 7c:8a:a9:fa:27:63:ce:a3:04:d4:c3:49:6a:e3:53:77:3c:f2: 8a:16:2c:12:c4:fe:ee:e8:29:6c:18:56:4b:96:38:e0:37:4c: 0b:79:75:d8:a0:37:a9:de:5e:65:28:a0:3c:4f:20:c8:4f:60: 39:0d:41:15:e9:52:70:98:78:80:9e:99:34:e8:b2:6d:c3:87: 5b:2f:0f:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkEwQUUxMTAvBgNVBAUTKDA0MDhBRTYwRkYzNjhCOEM0RkNEOTMxOEVBNTJBNTlD ODcyODk0OUMwHhcNMjUwODIyMjA0NDM4WhcNMjUwODI5MjA0NDM4WjAYMRYwFAYD VQQDEw02OGE4ZDZiNi0xYzExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmDKiwgiYfJZ1NAy/MvOObLCLx0GNA6zZqp1ugwj3jj/oo4UnRT53z6slNSXz Ae0eh/38UZwkha12LalCvO5y3NWcQsHfiZQOuduFTf4d66cETDDAjhSQ0JMuaiwy W9ADV+TIPfByCgNEgArI3YjfBOOuaSGsY3CBb1N/YL8mw9VzS6Dz/d4hwMBn2GQs yfyEgCgA4VfMJ9WtCDme8phTfpufGvMWq2Rt2tUpUsTHEtaujzpnTfMd6N4aIP2e NhxKefAG1t2fW4T0utWypvuE0ZPQpv2ImUJmpBAMQZuuLgj1aeSBwGzF7fhaq7Hv HQEnaHYpcHE8Tfb2oRW1MSdDRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCI85gHL FeIOtLTNSGfADs8K4BWNMB8GA1UdIwQYMBaAFAQIrmD/NouMT82TGOpSpZyHKJSc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTBBRS8zN0VCMEM2NkM5 NjQxMUVBQTEwNkU4NTlDNEY5QUUwMi9CQWl1WVA4Mmk0eFB6Wk1ZNmxLbG5JY29s SncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JBaXVZUDgyaTR4UHpaTVk2bEtsbkljb2xKdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTBBRS8zN0VCMEM2NkM5NjQxMUVBQTEwNkU4NTlDNEY5QUUwMi9CQWl1WVA4Mmk0 eFB6Wk1ZNmxLbG5JY29sSncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCrxv4cjMRBEJqBNQEg+jYyHNRX1rfShcDOw8wu4Z7+OARwFJkRm4+ jXzO+Fpck+A2fn67+8AzcOtNp5GP3B7t+3MJcPxeq3NZzOUtRZE6zLkk20l3jpPN bFgN/o+rcOveqG2aHe1zno4QPUKbLWdSULmqZWBMxbcPEXhvOpkf3sYavYjwd2JS sTMgc0xN4nAAlXaobGe8rET8dNQSfiwBdG67p1c9wW76hICu7S+ivXjA8ep8iqn6 J2POowTUw0lq41N3PPKKFiwSxP7u6ClsGFZLljjgN0wLeXXYoDep3l5lKKA8TyDI T2A5DUEV6VJwmHiAnpk06LJtw4dbLw+p -----END CERTIFICATE-----Generated at Sat Aug 23 19:04:52 2025 by rpki-client