$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.mft File: BAiuYP82i4xPzZMY6lKlnIcolJw.mft (raw, json) Hash identifier: l+6fHHv3rXgWMK7bfd2+OosG6K5lw0aCkdSIM45MG4A= Subject key identifier: A8:0A:04:19:98:0B:58:38:02:5F:9C:2E:AE:21:11:57:3E:90:7A:F9 Authority key identifier: 04:08:AE:60:FF:36:8B:8C:4F:CD:93:18:EA:52:A5:9C:87:28:94:9C Certificate issuer: /CN=A91BA0AE/serialNumber=0408AE60FF368B8C4FCD9318EA52A59C8728949C Certificate serial: 0870 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BAiuYP82i4xPzZMY6lKlnIcolJw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.mft Manifest number: 0A4E Signing time: Mon 30 Jun 2025 20:53:36 +0000 Manifest this update: Mon 30 Jun 2025 20:53:36 +0000 Manifest next update: Mon 07 Jul 2025 20:53:36 +0000 Files and hashes: 1: BAiuYP82i4xPzZMY6lKlnIcolJw.crl (hash: VAgxILW+kqN7jy9pwRTM66A4P+WkU5JciDEBJnqSzCg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.crl rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BAiuYP82i4xPzZMY6lKlnIcolJw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 20:53:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2160 (0x870) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA0AE, serialNumber=0408AE60FF368B8C4FCD9318EA52A59C8728949C Validity Not Before: Jun 30 20:53:36 2025 GMT Not After : Jul 7 20:53:36 2025 GMT Subject: CN=6862f950-e8f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:28:ef:07:ce:8e:0b:af:d0:4d:de:a5:02:55: ad:6e:e7:fb:a8:b4:66:87:36:ba:4e:00:6d:90:cf: cc:b2:e6:16:bf:f5:b5:90:42:0a:10:ea:fb:54:88: 15:e6:f9:b2:f2:53:f6:4e:0a:2a:56:a7:a9:58:5c: 36:97:5d:19:63:c5:23:63:4a:6f:08:22:09:53:ef: 36:2b:c2:59:75:b4:c6:61:f4:63:73:88:b5:2a:98: 08:69:5b:76:12:6d:de:e2:5a:8a:5e:27:ee:6d:1f: f4:39:7a:6c:2b:07:91:fe:b7:4e:c7:d6:62:e9:75: 42:69:1a:4f:7f:d7:ae:db:72:76:bb:05:16:d3:c5: 6d:7c:c2:9a:37:f5:f3:21:41:4f:aa:31:77:0f:5c: ee:bd:84:a1:50:e9:38:ab:e1:e0:06:5b:44:4e:13: 1b:77:e7:cf:ab:2a:6e:40:4a:f7:32:10:4a:34:c3: 6c:8f:07:92:01:47:b6:f7:8c:7b:0a:90:e6:57:31: f3:ac:69:40:f8:fb:59:84:18:9b:05:a8:f6:ce:ef: 7c:69:cd:fb:56:48:2e:9b:f0:25:b7:9c:51:17:bc: 1a:fd:15:e3:bc:45:d8:3c:c0:63:54:09:6a:7d:f6: cf:6a:08:86:bf:08:98:84:7a:a6:a4:63:33:11:c8: c4:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:0A:04:19:98:0B:58:38:02:5F:9C:2E:AE:21:11:57:3E:90:7A:F9 X509v3 Authority Key Identifier: keyid:04:08:AE:60:FF:36:8B:8C:4F:CD:93:18:EA:52:A5:9C:87:28:94:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BAiuYP82i4xPzZMY6lKlnIcolJw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:46:b7:15:7e:92:7f:e0:9f:ba:4a:3b:5d:0a:8d:04:63:b8: 90:9e:35:66:49:b9:7e:48:2e:1d:05:cc:37:c8:76:d7:fd:ef: 4d:ba:37:24:e3:bd:5b:5f:7b:a8:93:13:e2:2e:6b:19:28:40: 0a:ae:7f:5a:d1:99:94:ea:02:24:dd:3a:5a:bc:f8:f9:8b:a9: ee:e8:64:3e:98:39:cd:37:11:c1:b4:1e:f0:1e:47:65:5a:5d: d5:4b:a9:80:b8:a7:8c:83:a5:f6:c9:40:57:4c:72:62:e0:a1: 95:1f:e3:9e:58:fc:d1:a8:26:4d:c8:00:3a:a0:f7:5d:75:36: c5:89:47:89:16:f2:1d:22:26:2d:95:33:26:57:0f:49:b2:e5: f6:10:18:13:70:b6:e5:ca:90:4d:25:7e:8e:ba:77:27:d4:b4: 9e:50:75:cb:b9:d5:e7:b0:db:0b:73:3f:af:75:ce:9c:3d:3c: 81:dd:2e:d2:86:f4:45:c8:05:70:c2:00:1d:f5:93:43:b5:2c: 21:36:8f:b8:9e:f3:ca:58:3a:47:c8:20:ed:38:98:40:2d:2e: e4:23:c6:c3:f2:dc:92:af:23:43:66:e3:a0:95:d4:0b:91:39: da:82:db:e0:d3:d8:8f:1f:97:7d:4b:17:46:f6:c2:80:d9:d9: 27:23:cc:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCHAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkEwQUUxMTAvBgNVBAUTKDA0MDhBRTYwRkYzNjhCOEM0RkNEOTMxOEVBNTJBNTlD ODcyODk0OUMwHhcNMjUwNjMwMjA1MzM2WhcNMjUwNzA3MjA1MzM2WjAYMRYwFAYD VQQDEw02ODYyZjk1MC1lOGY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvCjvB86OC6/QTd6lAlWtbuf7qLRmhza6TgBtkM/MsuYWv/W1kEIKEOr7VIgV 5vmy8lP2TgoqVqepWFw2l10ZY8UjY0pvCCIJU+82K8JZdbTGYfRjc4i1KpgIaVt2 Em3e4lqKXifubR/0OXpsKweR/rdOx9Zi6XVCaRpPf9eu23J2uwUW08VtfMKaN/Xz IUFPqjF3D1zuvYShUOk4q+HgBltEThMbd+fPqypuQEr3MhBKNMNsjweSAUe294x7 CpDmVzHzrGlA+PtZhBibBaj2zu98ac37Vkgum/Alt5xRF7wa/RXjvEXYPMBjVAlq ffbPagiGvwiYhHqmpGMzEcjERwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKgKBBmY C1g4Al+cLq4hEVc+kHr5MB8GA1UdIwQYMBaAFAQIrmD/NouMT82TGOpSpZyHKJSc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTBBRS8zN0VCMEM2NkM5 NjQxMUVBQTEwNkU4NTlDNEY5QUUwMi9CQWl1WVA4Mmk0eFB6Wk1ZNmxLbG5JY29s SncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JBaXVZUDgyaTR4UHpaTVk2bEtsbkljb2xKdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTBBRS8zN0VCMEM2NkM5NjQxMUVBQTEwNkU4NTlDNEY5QUUwMi9CQWl1WVA4Mmk0 eFB6Wk1ZNmxLbG5JY29sSncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABRrcVfpJ/4J+6SjtdCo0EY7iQnjVmSbl+SC4dBcw3yHbX/e9Nujck 471bX3uokxPiLmsZKEAKrn9a0ZmU6gIk3TpavPj5i6nu6GQ+mDnNNxHBtB7wHkdl Wl3VS6mAuKeMg6X2yUBXTHJi4KGVH+OeWPzRqCZNyAA6oPdddTbFiUeJFvIdIiYt lTMmVw9JsuX2EBgTcLblypBNJX6Ouncn1LSeUHXLudXnsNsLcz+vdc6cPTyB3S7S hvRFyAVwwgAd9ZNDtSwhNo+4nvPKWDpHyCDtOJhALS7kI8bD8tySryNDZuOgldQL kTnagtvg09iPH5d9SxdG9sKA2dknI8xJ -----END CERTIFICATE-----Generated at Wed Jul 2 21:43:10 2025 by rpki-client