$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB063/6C0F9610D6ED11EF9D9BF36AC4F9AE02/bLOCDaWkqEstlAm98H8lRf5tCxE.mft File: bLOCDaWkqEstlAm98H8lRf5tCxE.mft (raw, json) Hash identifier: f0ghd2vNOq9VYgxgno1UmZCNHoJ1enWXS24DQ84KPS8= Subject key identifier: 23:78:55:F1:6A:07:42:7E:1D:E8:93:6B:AA:51:B6:C9:84:33:26:91 Authority key identifier: 6C:B3:82:0D:A5:A4:A8:4B:2D:94:09:BD:F0:7F:25:45:FE:6D:0B:11 Certificate issuer: /CN=A91CB063/serialNumber=6CB3820DA5A4A84B2D9409BDF07F2545FE6D0B11 Certificate serial: 57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLOCDaWkqEstlAm98H8lRf5tCxE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB063/6C0F9610D6ED11EF9D9BF36AC4F9AE02/bLOCDaWkqEstlAm98H8lRf5tCxE.mft Manifest number: 56 Signing time: Sat 05 Jul 2025 07:31:49 +0000 Manifest this update: Sat 05 Jul 2025 07:31:49 +0000 Manifest next update: Sat 12 Jul 2025 07:31:49 +0000 Files and hashes: 1: bLOCDaWkqEstlAm98H8lRf5tCxE.crl (hash: HSF7sFaMYTrtv90PfqdGGrHlL1Ynd+EbJlDzC50kmBM=) 2: 3D3827F2D6EE11EFB955866CC4F9AE02.roa (hash: 4d4Ou4cSb0acdXH9Bn2waQ4IMkbvtakYfcIPMGQdXao=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB063/6C0F9610D6ED11EF9D9BF36AC4F9AE02/bLOCDaWkqEstlAm98H8lRf5tCxE.crl rsync://rpki.apnic.net/member_repository/A91CB063/6C0F9610D6ED11EF9D9BF36AC4F9AE02/bLOCDaWkqEstlAm98H8lRf5tCxE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLOCDaWkqEstlAm98H8lRf5tCxE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 87 (0x57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB063, serialNumber=6CB3820DA5A4A84B2D9409BDF07F2545FE6D0B11 Validity Not Before: Jul 5 07:31:49 2025 GMT Not After : Jul 12 07:31:49 2025 GMT Subject: CN=6868d4e5-1fae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:0e:ce:e7:8d:6e:62:5f:a7:f9:47:57:7b:4e: 77:00:33:d4:c2:1d:72:4e:0a:32:33:87:2e:a8:2b: a3:4d:26:46:8a:98:5c:3f:cc:22:36:fc:7b:dd:8c: 7d:12:1e:89:aa:21:0c:ce:f7:b0:c9:6f:5a:09:d9: b8:24:5c:0e:bf:03:82:ac:6f:07:ba:c4:b7:49:cb: 27:c0:00:11:fa:37:84:c5:92:0d:b2:c7:bb:db:2b: 6a:e2:c4:66:28:21:ce:81:f5:93:55:25:d1:94:05: 75:80:02:75:66:7c:1d:25:89:d2:24:35:a4:e8:0c: f3:9e:08:9f:ce:f5:64:45:ec:96:8a:11:cb:7b:f6: 87:b0:9c:62:d3:7c:45:66:4d:8c:fb:74:32:fc:50: 6d:0d:f8:30:ac:b7:c1:7c:19:64:80:70:0c:0f:13: 06:99:41:ff:78:8a:3a:06:0e:30:6b:b7:54:86:b5: 5a:fe:4a:16:70:54:9e:ac:6e:4e:ae:4d:33:33:26: 5f:8e:9a:5c:62:68:42:fd:ac:f8:ac:75:af:cf:6f: af:5c:56:34:e8:43:48:4e:2c:ae:87:ed:dc:9d:66: ca:44:63:5a:df:e2:e9:59:80:69:0e:6c:ba:ae:1e: 3a:dc:5c:db:41:d7:21:5a:17:00:08:10:de:d5:31: 4f:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:78:55:F1:6A:07:42:7E:1D:E8:93:6B:AA:51:B6:C9:84:33:26:91 X509v3 Authority Key Identifier: keyid:6C:B3:82:0D:A5:A4:A8:4B:2D:94:09:BD:F0:7F:25:45:FE:6D:0B:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB063/6C0F9610D6ED11EF9D9BF36AC4F9AE02/bLOCDaWkqEstlAm98H8lRf5tCxE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLOCDaWkqEstlAm98H8lRf5tCxE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB063/6C0F9610D6ED11EF9D9BF36AC4F9AE02/bLOCDaWkqEstlAm98H8lRf5tCxE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:b3:59:25:28:c3:77:85:7a:3b:d8:bd:14:aa:32:20:da:f8: c5:6c:2c:0e:61:29:8b:45:84:b7:51:6f:f5:33:60:cb:e4:9b: 08:77:90:eb:11:c9:73:ae:13:00:96:c7:ac:c3:f7:fe:86:3b: 48:5b:84:d1:44:b5:46:37:36:a8:d7:2b:d6:92:b2:26:56:d1: 7d:6e:b0:b7:b9:b6:65:a8:bc:df:fd:17:e6:3e:9e:64:1a:13: c5:3d:15:ae:d7:7d:a2:8b:3a:ac:1e:5d:bf:9f:92:f4:89:5f: d1:b1:8c:e4:2b:ec:f6:cb:19:fb:56:26:3b:5b:99:6f:88:ac: 57:48:79:b6:68:d0:6e:e2:10:e6:b2:c3:35:2d:09:f2:c1:e9: da:f9:c8:15:03:05:79:19:f0:66:8b:53:74:01:95:88:a6:3b: 7f:fb:8e:eb:d2:67:16:44:d8:3a:19:41:72:ba:ac:df:9a:d7: 2b:f3:43:8e:9b:10:a7:91:dc:4d:2d:ec:57:a6:80:7f:1c:a3: c7:62:3c:d2:59:dc:e9:1a:8e:dd:56:12:0a:ac:0e:6c:4b:e8: ca:0e:36:54:06:85:29:89:68:b5:85:dd:d8:20:1e:3d:1d:c3: 0b:d9:ca:65:7e:bb:67:d3:ab:b4:5f:8c:9c:64:06:f6:6c:cb: 4c:09:4a:6f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD QjA2MzExMC8GA1UEBRMoNkNCMzgyMERBNUE0QTg0QjJEOTQwOUJERjA3RjI1NDVG RTZEMEIxMTAeFw0yNTA3MDUwNzMxNDlaFw0yNTA3MTIwNzMxNDlaMBgxFjAUBgNV BAMTDTY4NjhkNGU1LTFmYWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDDs7njW5iX6f5R1d7TncAM9TCHXJOCjIzhy6oK6NNJkaKmFw/zCI2/HvdjH0S HomqIQzO97DJb1oJ2bgkXA6/A4Ksbwe6xLdJyyfAABH6N4TFkg2yx7vbK2rixGYo Ic6B9ZNVJdGUBXWAAnVmfB0lidIkNaToDPOeCJ/O9WRF7JaKEct79oewnGLTfEVm TYz7dDL8UG0N+DCst8F8GWSAcAwPEwaZQf94ijoGDjBrt1SGtVr+ShZwVJ6sbk6u TTMzJl+OmlxiaEL9rPisda/Pb69cVjToQ0hOLK6H7dydZspEY1rf4ulZgGkObLqu HjrcXNtB1yFaFwAIEN7VMU/bAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUI3hV8WoH Qn4d6JNrqlG2yYQzJpEwHwYDVR0jBBgwFoAUbLOCDaWkqEstlAm98H8lRf5tCxEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNCMDYzLzZDMEY5NjEwRDZF RDExRUY5RDlCRjM2QUM0RjlBRTAyL2JMT0NEYVdrcUVzdGxBbTk4SDhsUmY1dEN4 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYkxPQ0RhV2txRXN0bEFtOThIOGxSZjV0Q3hFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNC MDYzLzZDMEY5NjEwRDZFRDExRUY5RDlCRjM2QUM0RjlBRTAyL2JMT0NEYVdrcUVz dGxBbTk4SDhsUmY1dEN4RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAB2zWSUow3eFejvYvRSqMiDa+MVsLA5hKYtFhLdRb/UzYMvkmwh3kOsR yXOuEwCWx6zD9/6GO0hbhNFEtUY3NqjXK9aSsiZW0X1usLe5tmWovN/9F+Y+nmQa E8U9Fa7XfaKLOqweXb+fkvSJX9GxjOQr7PbLGftWJjtbmW+IrFdIebZo0G7iEOay wzUtCfLB6dr5yBUDBXkZ8GaLU3QBlYimO3/7juvSZxZE2DoZQXK6rN+a1yvzQ46b EKeR3E0t7FemgH8co8diPNJZ3Okajt1WEgqsDmxL6MoONlQGhSmJaLWF3dggHj0d wwvZymV+u2fTq7RfjJxkBvZsy0wJSm8= -----END CERTIFICATE-----Generated at Sun Jul 6 00:21:51 2025 by rpki-client