$ rpki-client -vvf rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.mft File: bLMNwI7ylzDp3wScVPOVgquFvpQ.mft (raw, json) Hash identifier: Rl7SpOjmpTLB8hlWCIW6aFARCDQK55xN2yBR8gNuMGQ= Subject key identifier: BC:D5:53:E9:83:E7:7B:52:40:F3:5F:DA:95:52:24:E8:93:73:B4:57 Authority key identifier: 6C:B3:0D:C0:8E:F2:97:30:E9:DF:04:9C:54:F3:95:82:AB:85:BE:94 Certificate issuer: /CN=A91C40D1/serialNumber=6CB30DC08EF29730E9DF049C54F39582AB85BE94 Certificate serial: 12CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLMNwI7ylzDp3wScVPOVgquFvpQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.mft Manifest number: 12C2 Signing time: Wed 02 Jul 2025 17:15:37 +0000 Manifest this update: Wed 02 Jul 2025 17:15:37 +0000 Manifest next update: Wed 09 Jul 2025 17:15:37 +0000 Files and hashes: 1: bLMNwI7ylzDp3wScVPOVgquFvpQ.crl (hash: fqdDvHyvGClRtJ9Q9i9De63vcCbpA4Ckf20vkPrmb/M=) 2: 18272628C30B11E8A6851824C4F9AE02.roa (hash: zhAB02c7MO6g0ZjU60Q0NOMxZrMu/KXiBvCTRD/ktbM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.crl rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLMNwI7ylzDp3wScVPOVgquFvpQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:15:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4813 (0x12cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C40D1, serialNumber=6CB30DC08EF29730E9DF049C54F39582AB85BE94 Validity Not Before: Jul 2 17:15:37 2025 GMT Not After : Jul 9 17:15:37 2025 GMT Subject: CN=68656939-8b7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ca:57:e4:fd:cf:0b:e6:a6:54:0f:3f:fd:73: ed:a1:6a:a6:74:28:77:e8:17:1c:2b:e8:e1:8c:59: 8c:e9:68:a8:f0:12:2c:20:97:28:f5:e3:83:75:5f: 97:c9:35:af:f4:95:b0:d3:cc:0b:28:e5:74:80:40: 5d:7b:1e:a8:21:f8:65:09:bb:47:2c:b3:fd:0f:9b: 9d:03:92:4e:bd:a2:d6:9d:f9:62:4f:23:58:eb:9e: 9a:42:30:74:22:af:c9:e2:10:fa:80:76:94:8e:fc: 07:62:3b:e5:ec:67:ef:ab:5f:36:1c:05:35:d2:3e: 25:9c:38:19:7d:da:52:41:a0:80:dd:25:d4:20:ff: d6:63:4f:8b:b0:42:96:fc:f9:e5:40:98:c7:00:73: 73:c8:38:c9:0e:6d:da:2b:45:8b:70:21:7d:88:7e: be:6b:9f:cc:df:56:b3:18:b3:68:91:3d:ca:d5:15: 51:9e:65:50:89:b5:d2:85:8f:05:a6:38:8c:84:01: 7a:b3:9e:7d:ea:57:aa:96:12:c3:a8:63:ee:5e:e4: 05:4b:04:24:fe:d7:cc:b6:8d:35:ba:ac:d1:c3:f7: 93:4b:7b:7a:34:38:77:1c:1c:f5:31:d3:6d:a6:b9: 6a:b1:72:ea:47:c4:d8:e4:86:b1:0f:29:47:13:63: 10:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:D5:53:E9:83:E7:7B:52:40:F3:5F:DA:95:52:24:E8:93:73:B4:57 X509v3 Authority Key Identifier: keyid:6C:B3:0D:C0:8E:F2:97:30:E9:DF:04:9C:54:F3:95:82:AB:85:BE:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLMNwI7ylzDp3wScVPOVgquFvpQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e3:89:0c:ee:3b:fe:ca:73:c0:20:30:36:a5:3a:aa:16:2f:32: 6c:32:75:6d:3f:66:64:f5:c2:80:e7:50:4c:a7:89:82:e6:b6: 10:28:a1:ea:2b:39:35:6b:43:ed:40:6a:9f:8b:4a:01:52:21: ee:9a:0d:a5:3b:42:c8:2e:d7:e8:e0:4e:a9:59:6c:f7:3b:86: c4:d1:46:94:d9:f7:21:5f:5e:8d:65:ef:56:14:4e:26:72:a7: 1e:a4:5a:69:71:86:8f:48:7d:88:a0:56:41:05:d5:5a:f4:f6: cf:99:42:fa:a5:ee:12:f6:19:34:e0:d7:46:ca:08:0d:4b:e0: fd:8d:b3:2e:61:c5:2a:5b:a6:d7:b4:9b:aa:b8:c7:24:36:13: f5:05:73:4b:eb:12:79:18:bc:7e:6d:36:59:35:7f:b9:4e:79: 4b:be:f5:7d:16:82:64:11:ed:11:58:a6:4a:f9:a4:c0:81:54: dc:d5:25:85:11:71:ae:24:b2:e3:20:5e:0c:52:97:e7:b3:19: 12:1e:2b:9c:4a:32:cd:0f:c7:e4:43:a7:32:d1:71:66:f4:07: 46:77:df:7a:ae:9c:1a:e6:72:51:5a:8c:db:a5:8c:ef:32:ca: ea:de:84:6c:4a:09:3b:bd:a5:9e:a6:30:76:38:6d:78:fe:61: 2b:bf:21:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEs0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQwRDExMTAvBgNVBAUTKDZDQjMwREMwOEVGMjk3MzBFOURGMDQ5QzU0RjM5NTgy QUI4NUJFOTQwHhcNMjUwNzAyMTcxNTM3WhcNMjUwNzA5MTcxNTM3WjAYMRYwFAYD VQQDEw02ODY1NjkzOS04YjdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtspX5P3PC+amVA8//XPtoWqmdCh36BccK+jhjFmM6Wio8BIsIJco9eODdV+X yTWv9JWw08wLKOV0gEBdex6oIfhlCbtHLLP9D5udA5JOvaLWnfliTyNY656aQjB0 Iq/J4hD6gHaUjvwHYjvl7Gfvq182HAU10j4lnDgZfdpSQaCA3SXUIP/WY0+LsEKW /PnlQJjHAHNzyDjJDm3aK0WLcCF9iH6+a5/M31azGLNokT3K1RVRnmVQibXShY8F pjiMhAF6s5596leqlhLDqGPuXuQFSwQk/tfMto01uqzRw/eTS3t6NDh3HBz1MdNt prlqsXLqR8TY5IaxDylHE2MQQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLzVU+mD 53tSQPNf2pVSJOiTc7RXMB8GA1UdIwQYMBaAFGyzDcCO8pcw6d8EnFTzlYKrhb6U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDBEMS9DQzc4MzBCMEMz MDkxMUU4OTAwRTVGMjFDNEY5QUUwMi9iTE1Od0k3eWx6RHAzd1NjVlBPVmdxdUZ2 cFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JMTU53STd5bHpEcDN3U2NWUE9WZ3F1RnZwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDBEMS9DQzc4MzBCMEMzMDkxMUU4OTAwRTVGMjFDNEY5QUUwMi9iTE1Od0k3eWx6 RHAzd1NjVlBPVmdxdUZ2cFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDjiQzuO/7Kc8AgMDalOqoWLzJsMnVtP2Zk9cKA51BMp4mC5rYQKKHq Kzk1a0PtQGqfi0oBUiHumg2lO0LILtfo4E6pWWz3O4bE0UaU2fchX16NZe9WFE4m cqcepFppcYaPSH2IoFZBBdVa9PbPmUL6pe4S9hk04NdGyggNS+D9jbMuYcUqW6bX tJuquMckNhP1BXNL6xJ5GLx+bTZZNX+5TnlLvvV9FoJkEe0RWKZK+aTAgVTc1SWF EXGuJLLjIF4MUpfnsxkSHiucSjLND8fkQ6cy0XFm9AdGd996rpwa5nJRWozbpYzv Msrq3oRsSgk7vaWepjB2OG14/mErvyHI -----END CERTIFICATE-----Generated at Thu Jul 3 09:10:25 2025 by rpki-client