$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/BdNlUA2kssABifPGyllQ4AdMfEo.mft File: BdNlUA2kssABifPGyllQ4AdMfEo.mft (raw, json) Hash identifier: 92qcVPl23TmuQHvpHD2UPyXuzyQWtJZ2zLvw7w9BghY= Subject key identifier: 62:43:04:E5:6F:46:7A:45:86:1F:FB:90:F9:F4:F0:E4:97:C9:7D:D9 Authority key identifier: 05:D3:65:50:0D:A4:B2:C0:01:89:F3:C6:CA:59:50:E0:07:4C:7C:4A Certificate issuer: /CN=A91C8EDF/serialNumber=05D365500DA4B2C00189F3C6CA5950E0074C7C4A Certificate serial: 0213 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BdNlUA2kssABifPGyllQ4AdMfEo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/BdNlUA2kssABifPGyllQ4AdMfEo.mft Manifest number: 0206 Signing time: Sat 23 Aug 2025 02:34:27 +0000 Manifest this update: Sat 23 Aug 2025 02:34:26 +0000 Manifest next update: Sat 30 Aug 2025 02:34:26 +0000 Files and hashes: 1: BdNlUA2kssABifPGyllQ4AdMfEo.crl (hash: aVtVtxLWvhLYNh00GVoSAkh/eMxNJ73WmoSIEuKFOEM=) 2: 999FA66011C711EF80B27457C4F9AE02.roa (hash: O9DoSIXGoRGfPB1leReaXjE3LSp6RO52qLUkhTkRojY=) 3: AD0CC70C122411EF8BEED51AC4F9AE02.roa (hash: sLDSVMLU6jI3BpmMuSVMPzt56rvnKddxBYgL4QmGgG0=) 4: A6524550C4E411EEAFF83C50C4F9AE02.roa (hash: d4lk9eKDk4hQ5jM/CM/7dtQ4pw21vQcp7xDVqjydE4E=) 5: C44A1D987E0511EDBA2BAF7FC4F9AE02.roa (hash: UGxKabSt5VefJdKh3JQwjTM53St2aD5lvYeCqBjnhKg=) 6: 99D4FC3212DC11EFB2470B7FC4F9AE02.roa (hash: E6NCI4JuiZoY4K+zXIld9/zlqD6qc3HulCUWdCEuTgY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/BdNlUA2kssABifPGyllQ4AdMfEo.crl rsync://rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/BdNlUA2kssABifPGyllQ4AdMfEo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BdNlUA2kssABifPGyllQ4AdMfEo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:34:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 531 (0x213) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8EDF, serialNumber=05D365500DA4B2C00189F3C6CA5950E0074C7C4A Validity Not Before: Aug 23 02:34:26 2025 GMT Not After : Aug 30 02:34:26 2025 GMT Subject: CN=68a928b2-1bed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:38:ce:70:50:c2:36:90:3b:25:0d:2d:e2:1c: 21:a8:0a:9c:8d:29:8a:33:16:92:06:83:af:dd:77: 8e:f9:2d:de:76:bd:82:37:db:75:85:a5:52:a2:cf: 82:7a:33:a6:e0:23:d7:13:b8:47:e3:b4:04:56:ce: bf:ee:1e:0d:86:a4:7a:fb:de:87:3c:7f:52:01:f1: 50:29:6d:6b:56:d0:f8:95:6f:22:a7:ff:89:76:2e: 5c:5e:70:d3:c9:b6:dd:66:70:f7:83:df:2e:56:7c: 71:b2:f5:7b:7b:fc:f6:31:32:75:3e:47:ae:cd:48: ae:89:ec:f5:a2:48:02:a3:60:5c:60:35:c9:e0:93: d1:14:cd:23:39:74:e2:2b:be:03:1b:b8:2d:98:fa: 3c:78:c1:90:c5:3d:dc:9a:15:71:3a:7a:d9:bc:db: 96:89:11:3f:ee:b4:a6:7e:da:5c:b1:c0:93:9b:47: c1:b9:cb:b3:45:6e:37:37:dc:89:83:61:e9:ef:d6: d5:4c:3d:8e:d7:01:8e:ab:17:af:57:66:1a:d6:5c: 50:89:82:75:fb:df:1e:4f:9b:d9:c2:53:66:34:9a: 21:8b:ce:55:e9:54:d3:61:ff:de:2f:ea:83:0c:4a: 08:d9:04:7d:c7:80:1b:3e:bd:f4:16:2a:85:29:62: d9:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:43:04:E5:6F:46:7A:45:86:1F:FB:90:F9:F4:F0:E4:97:C9:7D:D9 X509v3 Authority Key Identifier: keyid:05:D3:65:50:0D:A4:B2:C0:01:89:F3:C6:CA:59:50:E0:07:4C:7C:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/BdNlUA2kssABifPGyllQ4AdMfEo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BdNlUA2kssABifPGyllQ4AdMfEo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/BdNlUA2kssABifPGyllQ4AdMfEo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:8a:1d:d3:f8:62:c3:29:0b:73:75:e0:31:2b:0b:c2:5f:6f: f2:b8:98:de:8b:ff:f3:68:a5:50:28:74:8b:03:37:c0:6a:59: 9a:fa:84:aa:5d:27:c5:6c:03:54:27:37:e2:b0:33:5c:3e:55: e0:f4:57:5a:0e:ef:12:5c:ab:65:dc:be:70:54:f4:11:74:57: 67:d3:3b:ed:e9:fa:1a:a1:b7:bf:55:e0:66:e0:ce:b8:fe:45: 5e:9f:69:3e:df:f9:13:ac:1a:16:8f:20:9c:0e:c6:7a:64:8e: d8:24:5d:3c:ca:73:29:0f:ff:29:55:1a:31:73:9d:95:df:f2: b6:1b:5a:bb:f7:1e:87:fc:d5:46:1d:7e:44:50:8c:6d:67:48: 35:7f:e0:43:e6:b6:16:78:38:90:6a:10:2b:80:61:59:45:2c: c6:6f:86:0f:97:26:91:b4:21:c9:4f:4a:a4:f4:de:17:b7:df: 8b:b0:d5:57:a6:60:90:3e:ef:17:84:46:b9:de:e8:f1:6e:78: e5:bf:1c:55:4a:6e:a6:bf:a6:63:35:c7:75:cd:03:8a:a6:79: 39:0e:84:c5:53:4d:2b:5a:fc:ab:ae:0c:dd:09:be:a4:a1:8d: 5a:df:18:b6:0d:e7:ec:e6:e7:05:57:54:a7:c0:fb:0a:8e:8b: 02:1e:7c:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhFREYxMTAvBgNVBAUTKDA1RDM2NTUwMERBNEIyQzAwMTg5RjNDNkNBNTk1MEUw MDc0QzdDNEEwHhcNMjUwODIzMDIzNDI2WhcNMjUwODMwMDIzNDI2WjAYMRYwFAYD VQQDEw02OGE5MjhiMi0xYmVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5jjOcFDCNpA7JQ0t4hwhqAqcjSmKMxaSBoOv3XeO+S3edr2CN9t1haVSos+C ejOm4CPXE7hH47QEVs6/7h4NhqR6+96HPH9SAfFQKW1rVtD4lW8ip/+Jdi5cXnDT ybbdZnD3g98uVnxxsvV7e/z2MTJ1PkeuzUiuiez1okgCo2BcYDXJ4JPRFM0jOXTi K74DG7gtmPo8eMGQxT3cmhVxOnrZvNuWiRE/7rSmftpcscCTm0fBucuzRW43N9yJ g2Hp79bVTD2O1wGOqxevV2Ya1lxQiYJ1+98eT5vZwlNmNJohi85V6VTTYf/eL+qD DEoI2QR9x4AbPr30FiqFKWLZ4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGJDBOVv RnpFhh/7kPn08OSXyX3ZMB8GA1UdIwQYMBaAFAXTZVANpLLAAYnzxspZUOAHTHxK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEVERi9FQTY3QTk4QzdD NTcxMUVEQkYyMTM3NjdDNEY5QUUwMi9CZE5sVUEya3NzQUJpZlBHeWxsUTRBZE1m RW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JkTmxVQTJrc3NBQmlmUEd5bGxRNEFkTWZFby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEVERi9FQTY3QTk4QzdDNTcxMUVEQkYyMTM3NjdDNEY5QUUwMi9CZE5sVUEya3Nz QUJpZlBHeWxsUTRBZE1mRW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjih3T+GLDKQtzdeAxKwvCX2/yuJjei//zaKVQKHSLAzfAalma+oSq XSfFbANUJzfisDNcPlXg9FdaDu8SXKtl3L5wVPQRdFdn0zvt6foaobe/VeBm4M64 /kVen2k+3/kTrBoWjyCcDsZ6ZI7YJF08ynMpD/8pVRoxc52V3/K2G1q79x6H/NVG HX5EUIxtZ0g1f+BD5rYWeDiQahArgGFZRSzGb4YPlyaRtCHJT0qk9N4Xt9+LsNVX pmCQPu8XhEa53ujxbnjlvxxVSm6mv6ZjNcd1zQOKpnk5DoTFU00rWvyrrgzdCb6k oY1a3xi2Defs5ucFV1SnwPsKjosCHnyj -----END CERTIFICATE-----Generated at Sat Aug 23 10:31:47 2025 by rpki-client