$ rpki-client -vvf rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft File: bxP1UQCfJIptmHQ2AE6FeVFWkns.mft (raw, json) Hash identifier: HgDSqygWdhtH2IlL4TsTx0ZFp58UR8bcTy7LVlkqIbs= Subject key identifier: 03:EE:57:6C:D6:87:FC:40:BA:9F:16:33:BC:0D:FD:D5:74:E4:9D:C5 Authority key identifier: 6F:13:F5:51:00:9F:24:8A:6D:98:74:36:00:4E:85:79:51:56:92:7B Certificate issuer: /CN=A91CAFC4/serialNumber=6F13F551009F248A6D987436004E85795156927B Certificate serial: 092B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bxP1UQCfJIptmHQ2AE6FeVFWkns.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft Manifest number: 0918 Signing time: Fri 22 Aug 2025 20:27:23 +0000 Manifest this update: Fri 22 Aug 2025 20:27:22 +0000 Manifest next update: Fri 29 Aug 2025 20:27:22 +0000 Files and hashes: 1: bxP1UQCfJIptmHQ2AE6FeVFWkns.crl (hash: jSN4sHCg2O2p0G843LT8+qJcy+Lxe6TH9aR1Z7aBuOs=) 2: D2039A56AABC11EEA0370F2CC4F9AE02.roa (hash: V5P8MqryTvl9uPbcl4kRoIx/Fd4WpfSFp93LMG/SR30=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.crl rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bxP1UQCfJIptmHQ2AE6FeVFWkns.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2347 (0x92b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CAFC4, serialNumber=6F13F551009F248A6D987436004E85795156927B Validity Not Before: Aug 22 20:27:22 2025 GMT Not After : Aug 29 20:27:22 2025 GMT Subject: CN=68a8d2ab-151d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:47:f7:aa:ac:a6:bc:0e:b3:9c:6d:d6:f9:4e: f7:c8:1e:30:5e:57:d1:dc:ac:92:b8:9b:02:75:8f: dc:37:fe:b7:c4:7f:c9:98:7f:dc:26:ac:43:01:38: cf:75:8e:7e:c5:84:6a:64:f9:a8:94:83:21:f2:71: 05:87:bd:c7:b5:c2:64:49:ee:ed:60:42:b7:6a:95: 37:3a:33:35:6c:fd:4d:ec:f9:15:e3:53:9a:08:b5: 66:c1:52:8a:7c:d0:5c:71:8f:ba:f3:91:0b:1a:da: 3d:e8:2e:58:d1:ad:3d:9d:fa:36:18:86:6b:a6:1b: 39:65:91:1c:ad:9a:c1:b9:74:a3:48:d8:c0:c6:be: a0:4a:60:b1:18:c0:e8:01:5f:a1:27:a7:ec:a8:9d: c1:d4:65:88:58:c1:8e:d8:86:97:cd:34:e9:28:b4: 4c:bb:58:a9:fb:df:2b:e3:f9:ca:12:e7:f7:d1:2e: 97:74:86:14:5f:b6:8f:61:a8:7e:74:af:02:e1:26: 1d:4d:fd:f1:27:3b:fb:3b:c3:46:80:71:ee:09:27: 28:ec:f4:6f:db:ac:65:ef:6a:2e:d2:1f:3d:31:31: cf:1b:8b:ca:8e:77:95:71:21:20:c6:03:89:ce:a0: 84:d3:77:a9:1b:06:e6:4a:85:fe:56:25:3c:72:09: d0:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:EE:57:6C:D6:87:FC:40:BA:9F:16:33:BC:0D:FD:D5:74:E4:9D:C5 X509v3 Authority Key Identifier: keyid:6F:13:F5:51:00:9F:24:8A:6D:98:74:36:00:4E:85:79:51:56:92:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bxP1UQCfJIptmHQ2AE6FeVFWkns.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:71:f6:d2:c3:c8:3e:58:16:10:71:5f:b2:8f:3c:14:91:aa: fc:6e:5d:f8:e6:79:da:bf:48:01:d4:79:17:ac:8e:44:b0:26: 2a:cc:32:f5:98:cf:3a:7c:02:ba:d5:d2:be:2b:c8:d2:1b:e2: 83:15:9a:7a:eb:33:f0:f7:db:fd:19:01:b7:bd:42:08:f2:7f: ec:10:5d:2d:2f:fd:92:90:bc:5c:72:09:ff:11:b3:9c:51:83: 1b:67:94:a6:9c:a9:a0:ec:14:d9:aa:15:25:9a:1f:3f:36:9d: 97:f4:94:fd:46:53:dc:dd:2b:c8:21:7c:59:f9:ef:12:21:75: dd:99:2b:36:d1:be:e9:f6:9b:6b:af:6e:88:c4:a6:08:93:d4: 70:98:42:04:ea:52:b9:a3:62:85:27:9e:ae:7d:92:60:54:f2: 99:5d:8c:ed:c9:ab:47:d6:1e:fa:0e:f1:57:38:65:06:e9:8a: df:a3:64:bf:8c:e2:32:92:fd:ee:bd:4f:d4:27:6a:ed:c8:68: 71:f7:c7:2a:e5:fa:93:cb:60:3c:f7:65:ad:2a:5c:26:15:51: b0:e0:7c:cb:bd:0c:96:4f:a9:2e:73:61:ee:e8:e7:c3:73:f0: 6a:97:09:01:25:e5:90:6d:27:94:47:70:83:29:71:fe:1a:8f: ac:9d:47:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCSswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FGQzQxMTAvBgNVBAUTKDZGMTNGNTUxMDA5RjI0OEE2RDk4NzQzNjAwNEU4NTc5 NTE1NjkyN0IwHhcNMjUwODIyMjAyNzIyWhcNMjUwODI5MjAyNzIyWjAYMRYwFAYD VQQDEw02OGE4ZDJhYi0xNTFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAukf3qqymvA6znG3W+U73yB4wXlfR3KySuJsCdY/cN/63xH/JmH/cJqxDATjP dY5+xYRqZPmolIMh8nEFh73HtcJkSe7tYEK3apU3OjM1bP1N7PkV41OaCLVmwVKK fNBccY+685ELGto96C5Y0a09nfo2GIZrphs5ZZEcrZrBuXSjSNjAxr6gSmCxGMDo AV+hJ6fsqJ3B1GWIWMGO2IaXzTTpKLRMu1ip+98r4/nKEuf30S6XdIYUX7aPYah+ dK8C4SYdTf3xJzv7O8NGgHHuCSco7PRv26xl72ou0h89MTHPG4vKjneVcSEgxgOJ zqCE03epGwbmSoX+ViU8cgnQLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAPuV2zW h/xAup8WM7wN/dV05J3FMB8GA1UdIwQYMBaAFG8T9VEAnySKbZh0NgBOhXlRVpJ7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUZDNC9CQzYwNjJEQ0FG OEExMUVBODU0MkQ4NUZDNEY5QUUwMi9ieFAxVVFDZkpJcHRtSFEyQUU2RmVWRldr bnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J4UDFVUUNmSklwdG1IUTJBRTZGZVZGV2tucy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QUZDNC9CQzYwNjJEQ0FGOEExMUVBODU0MkQ4NUZDNEY5QUUwMi9ieFAxVVFDZkpJ cHRtSFEyQUU2RmVWRldrbnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAcfbSw8g+WBYQcV+yjzwUkar8bl345nnav0gB1HkXrI5EsCYqzDL1 mM86fAK61dK+K8jSG+KDFZp66zPw99v9GQG3vUII8n/sEF0tL/2SkLxccgn/EbOc UYMbZ5SmnKmg7BTZqhUlmh8/Np2X9JT9RlPc3SvIIXxZ+e8SIXXdmSs20b7p9ptr r26IxKYIk9RwmEIE6lK5o2KFJ56ufZJgVPKZXYztyatH1h76DvFXOGUG6Yrfo2S/ jOIykv3uvU/UJ2rtyGhx98cq5fqTy2A892WtKlwmFVGw4HzLvQyWT6kuc2Hu6OfD c/BqlwkBJeWQbSeUR3CDKXH+Go+snUfm -----END CERTIFICATE-----Generated at Sat Aug 23 16:45:48 2025 by rpki-client