$ rpki-client -vvf rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.mft File: bLMNwI7ylzDp3wScVPOVgquFvpQ.mft (raw, json) Hash identifier: f/yV1QUOcP+m0hlgz9MaI9CQVKTC9bVVGiieKsTruNQ= Subject key identifier: 4B:65:F9:BE:B4:5B:DE:BC:CC:A1:94:7A:B8:C3:68:C6:3F:50:52:0E Authority key identifier: 6C:B3:0D:C0:8E:F2:97:30:E9:DF:04:9C:54:F3:95:82:AB:85:BE:94 Certificate issuer: /CN=A91C40D1/serialNumber=6CB30DC08EF29730E9DF049C54F39582AB85BE94 Certificate serial: 12E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLMNwI7ylzDp3wScVPOVgquFvpQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.mft Manifest number: 12DC Signing time: Fri 22 Aug 2025 17:11:15 +0000 Manifest this update: Fri 22 Aug 2025 17:11:14 +0000 Manifest next update: Fri 29 Aug 2025 17:11:14 +0000 Files and hashes: 1: bLMNwI7ylzDp3wScVPOVgquFvpQ.crl (hash: /+OQO/34W+CtmbA32KkuvstlCPQO47D90DusKXEfU8Q=) 2: 18272628C30B11E8A6851824C4F9AE02.roa (hash: zhAB02c7MO6g0ZjU60Q0NOMxZrMu/KXiBvCTRD/ktbM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.crl rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLMNwI7ylzDp3wScVPOVgquFvpQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:11:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4839 (0x12e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C40D1, serialNumber=6CB30DC08EF29730E9DF049C54F39582AB85BE94 Validity Not Before: Aug 22 17:11:14 2025 GMT Not After : Aug 29 17:11:14 2025 GMT Subject: CN=68a8a4b3-8399 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:57:67:cf:e5:9a:a0:9e:f5:3e:6c:ac:c3:ab: 22:99:57:93:cf:8d:06:65:6d:9e:34:85:26:32:dd: 91:54:7f:aa:a1:27:00:63:14:73:60:d6:56:c9:cd: 30:af:0e:d3:eb:46:37:3c:11:49:8e:8d:3f:10:f4: 41:ce:b2:d4:b6:26:b8:0b:d9:04:8f:fe:6c:db:6e: ce:e1:0f:59:5c:70:0e:d3:68:ed:7d:48:4b:98:b7: 9e:af:7b:27:bc:d8:a5:94:d6:ac:dd:2c:4c:21:8d: d5:20:9e:f6:0a:01:fa:94:ed:c4:49:7c:42:52:41: b6:2e:a2:b1:5f:1c:8d:b7:66:5d:ea:17:f3:c0:8b: b9:29:aa:8b:9f:5b:5d:e0:7c:34:08:af:e1:b0:2b: 24:db:8e:ac:fa:e5:c8:e3:87:55:59:df:5f:d4:ac: 10:f0:f1:2b:3a:b9:e6:e3:b1:93:51:ca:cc:ee:4e: d9:63:98:f8:0b:3b:c4:8c:84:be:a0:60:f4:4e:01: 35:ff:39:7f:bc:82:89:46:b8:d7:07:1b:64:45:90: 5a:40:35:a8:62:1e:2a:15:b9:54:85:8f:29:b2:00: 2e:7b:7f:c5:9a:82:c2:80:2d:c1:30:41:88:a3:1d: 6c:12:ca:aa:c4:ff:17:37:7d:f7:d2:b3:0f:62:26: a5:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:65:F9:BE:B4:5B:DE:BC:CC:A1:94:7A:B8:C3:68:C6:3F:50:52:0E X509v3 Authority Key Identifier: keyid:6C:B3:0D:C0:8E:F2:97:30:E9:DF:04:9C:54:F3:95:82:AB:85:BE:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLMNwI7ylzDp3wScVPOVgquFvpQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ca:d3:52:93:b8:82:eb:86:fa:1a:c2:7d:7a:ae:d4:33:30:bf: f6:63:12:ae:9f:70:d4:ea:cc:f6:cf:d7:b6:74:fa:3b:30:03: e5:c9:5a:cf:c7:0b:f8:64:7c:9e:d0:65:36:33:c8:77:d4:fa: dd:36:4e:b2:4c:68:07:aa:56:0d:2e:e1:8d:67:fb:fc:25:2e: 74:10:a3:b4:fd:1f:25:06:45:6b:e1:2a:b2:50:97:b7:77:b1: 3e:5e:1d:80:ec:10:d9:87:0e:6b:f0:44:93:9e:b8:8b:05:77: ef:38:f8:96:cc:8b:2f:9f:52:ef:73:85:af:65:e6:6c:4f:b3: e7:75:f9:53:a8:aa:49:ed:5a:72:43:87:a0:b5:f0:ba:b8:8d: 73:73:85:e9:6c:39:1d:c2:f8:95:8c:22:71:3d:a7:e5:88:8a: 8d:1e:66:1b:96:c9:54:69:8d:75:f5:2b:99:8c:0d:2f:c5:64: 63:1a:5c:c6:1c:d6:4a:83:59:2d:97:96:d7:f4:c8:22:4b:63: 4b:62:78:7a:a4:d6:66:07:ea:dc:aa:12:5d:63:26:46:25:47: 31:57:3d:d8:cc:d3:c9:63:93:8a:4d:76:a5:28:06:c4:fa:68: 4a:e4:3d:24:21:36:93:c8:63:72:47:19:8f:23:3a:3b:80:d4: a9:aa:7c:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEucwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQwRDExMTAvBgNVBAUTKDZDQjMwREMwOEVGMjk3MzBFOURGMDQ5QzU0RjM5NTgy QUI4NUJFOTQwHhcNMjUwODIyMTcxMTE0WhcNMjUwODI5MTcxMTE0WjAYMRYwFAYD VQQDEw02OGE4YTRiMy04Mzk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxldnz+WaoJ71Pmysw6simVeTz40GZW2eNIUmMt2RVH+qoScAYxRzYNZWyc0w rw7T60Y3PBFJjo0/EPRBzrLUtia4C9kEj/5s227O4Q9ZXHAO02jtfUhLmLeer3sn vNillNas3SxMIY3VIJ72CgH6lO3ESXxCUkG2LqKxXxyNt2Zd6hfzwIu5KaqLn1td 4Hw0CK/hsCsk246s+uXI44dVWd9f1KwQ8PErOrnm47GTUcrM7k7ZY5j4CzvEjIS+ oGD0TgE1/zl/vIKJRrjXBxtkRZBaQDWoYh4qFblUhY8psgAue3/FmoLCgC3BMEGI ox1sEsqqxP8XN3330rMPYial4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEtl+b60 W968zKGUerjDaMY/UFIOMB8GA1UdIwQYMBaAFGyzDcCO8pcw6d8EnFTzlYKrhb6U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDBEMS9DQzc4MzBCMEMz MDkxMUU4OTAwRTVGMjFDNEY5QUUwMi9iTE1Od0k3eWx6RHAzd1NjVlBPVmdxdUZ2 cFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JMTU53STd5bHpEcDN3U2NWUE9WZ3F1RnZwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDBEMS9DQzc4MzBCMEMzMDkxMUU4OTAwRTVGMjFDNEY5QUUwMi9iTE1Od0k3eWx6 RHAzd1NjVlBPVmdxdUZ2cFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDK01KTuILrhvoawn16rtQzML/2YxKun3DU6sz2z9e2dPo7MAPlyVrP xwv4ZHye0GU2M8h31PrdNk6yTGgHqlYNLuGNZ/v8JS50EKO0/R8lBkVr4SqyUJe3 d7E+Xh2A7BDZhw5r8ESTnriLBXfvOPiWzIsvn1Lvc4WvZeZsT7PndflTqKpJ7Vpy Q4egtfC6uI1zc4XpbDkdwviVjCJxPafliIqNHmYblslUaY119SuZjA0vxWRjGlzG HNZKg1ktl5bX9MgiS2NLYnh6pNZmB+rcqhJdYyZGJUcxVz3YzNPJY5OKTXalKAbE +mhK5D0kITaTyGNyRxmPIzo7gNSpqnwr -----END CERTIFICATE-----Generated at Sat Aug 23 20:24:49 2025 by rpki-client