$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB063/6C0F9610D6ED11EF9D9BF36AC4F9AE02/bLOCDaWkqEstlAm98H8lRf5tCxE.mft File: bLOCDaWkqEstlAm98H8lRf5tCxE.mft (raw, json) Hash identifier: aKERiE++qWb9Mw4mLcufSUuhL4Fk7uJmBsKSR9gDlcg= Subject key identifier: 1C:3E:74:6E:2D:11:0A:27:8A:43:2C:FF:AA:EC:C2:FE:26:4D:E0:E1 Authority key identifier: 6C:B3:82:0D:A5:A4:A8:4B:2D:94:09:BD:F0:7F:25:45:FE:6D:0B:11 Certificate issuer: /CN=A91CB063/serialNumber=6CB3820DA5A4A84B2D9409BDF07F2545FE6D0B11 Certificate serial: 70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLOCDaWkqEstlAm98H8lRf5tCxE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB063/6C0F9610D6ED11EF9D9BF36AC4F9AE02/bLOCDaWkqEstlAm98H8lRf5tCxE.mft Manifest number: 6F Signing time: Sat 23 Aug 2025 07:08:22 +0000 Manifest this update: Sat 23 Aug 2025 07:08:22 +0000 Manifest next update: Sat 30 Aug 2025 07:08:22 +0000 Files and hashes: 1: bLOCDaWkqEstlAm98H8lRf5tCxE.crl (hash: BlHW4njINtvVHn85gzZRIOMANkUBVTj3+uiy9dxI4fM=) 2: 3D3827F2D6EE11EFB955866CC4F9AE02.roa (hash: 4d4Ou4cSb0acdXH9Bn2waQ4IMkbvtakYfcIPMGQdXao=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB063/6C0F9610D6ED11EF9D9BF36AC4F9AE02/bLOCDaWkqEstlAm98H8lRf5tCxE.crl rsync://rpki.apnic.net/member_repository/A91CB063/6C0F9610D6ED11EF9D9BF36AC4F9AE02/bLOCDaWkqEstlAm98H8lRf5tCxE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLOCDaWkqEstlAm98H8lRf5tCxE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:08:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 112 (0x70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB063, serialNumber=6CB3820DA5A4A84B2D9409BDF07F2545FE6D0B11 Validity Not Before: Aug 23 07:08:22 2025 GMT Not After : Aug 30 07:08:22 2025 GMT Subject: CN=68a968e6-97ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:4d:c9:17:2d:8c:7f:9e:ad:6b:92:e4:f4:ab: ea:0e:56:b6:9b:0f:a4:7a:38:0a:6e:b9:af:de:7e: a5:f6:76:94:d6:3b:4d:b9:33:22:38:0c:99:82:4f: d7:43:e5:19:0f:0c:16:c7:8b:90:4a:59:7a:89:6a: 4d:16:21:66:0f:c3:20:55:f1:65:86:e9:fc:5d:ec: 7c:a3:e4:b4:03:be:0b:71:64:c6:47:c1:3d:3c:36: dc:d5:78:e5:41:3e:df:25:a3:ea:6c:6c:96:e3:2c: 36:b7:65:5d:bf:42:7f:61:55:bd:ce:2d:2c:29:08: ba:d0:29:63:9a:ef:be:0b:3c:52:ad:1e:db:9c:25: 03:e7:b6:15:42:0f:73:28:f2:57:14:13:25:23:92: 87:f0:73:c1:a2:9e:11:90:ea:cc:bf:fa:bf:07:7a: 5a:91:5c:1c:d3:ef:bc:af:8a:f5:15:19:5d:77:42: 98:5d:a3:8f:77:09:d2:f0:3f:02:65:b4:f8:23:b3: 88:ec:85:63:26:8f:1f:a8:8f:7a:9e:3a:bd:cd:44: 5a:cd:46:2b:db:6b:a8:7f:d6:aa:9c:96:03:29:81: aa:af:17:09:8e:4d:71:77:15:a9:d0:68:a1:b8:54: d5:af:71:c8:f2:cd:f0:91:4f:f4:09:8d:5d:92:92: 5f:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:3E:74:6E:2D:11:0A:27:8A:43:2C:FF:AA:EC:C2:FE:26:4D:E0:E1 X509v3 Authority Key Identifier: keyid:6C:B3:82:0D:A5:A4:A8:4B:2D:94:09:BD:F0:7F:25:45:FE:6D:0B:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB063/6C0F9610D6ED11EF9D9BF36AC4F9AE02/bLOCDaWkqEstlAm98H8lRf5tCxE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLOCDaWkqEstlAm98H8lRf5tCxE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB063/6C0F9610D6ED11EF9D9BF36AC4F9AE02/bLOCDaWkqEstlAm98H8lRf5tCxE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:cb:45:f3:dd:1b:6b:ef:96:71:83:aa:7a:42:9d:fd:52:9a: 71:94:13:6b:17:60:29:44:23:6f:6b:15:8d:6d:3c:34:39:74: 28:49:7c:2b:b3:41:74:5d:e3:1a:40:22:68:ad:c3:f7:f9:4a: 8c:ce:c0:40:c0:f5:83:1e:14:8b:5b:be:6b:a9:66:63:99:f3: cd:34:3a:2a:a4:87:b7:e5:33:8b:81:26:70:56:b8:c0:01:28: 65:d2:df:f0:01:1e:f2:d6:31:3c:bc:3a:2f:8e:85:95:f3:62: 1d:ce:2a:1f:7e:e6:ca:c7:af:cf:23:02:93:dd:ce:8b:3c:c9: 8d:0d:73:14:d4:14:be:56:84:85:f9:5d:75:57:65:c6:dd:67: 9f:5f:2f:c3:4d:1e:40:89:3e:0b:f5:2c:53:30:81:b5:2e:82: ea:06:4a:cd:cd:8e:bd:c8:57:3a:67:0a:f1:7d:47:26:74:f2: 47:b6:b0:a1:55:c2:9e:4c:1b:56:db:68:17:c8:0e:c9:f6:f9: 53:6d:c3:97:9e:0d:05:23:bc:dd:8e:d9:e9:14:e0:d4:63:60: 33:3e:b4:79:a9:39:3a:11:6c:6a:4c:cf:33:82:2c:53:04:d6: 8b:1d:89:51:70:72:c5:85:0c:e9:5e:0f:86:32:bf:68:8d:63: b8:06:80:0f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD QjA2MzExMC8GA1UEBRMoNkNCMzgyMERBNUE0QTg0QjJEOTQwOUJERjA3RjI1NDVG RTZEMEIxMTAeFw0yNTA4MjMwNzA4MjJaFw0yNTA4MzAwNzA4MjJaMBgxFjAUBgNV BAMTDTY4YTk2OGU2LTk3YWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCsTckXLYx/nq1rkuT0q+oOVrabD6R6OApuua/efqX2dpTWO025MyI4DJmCT9dD 5RkPDBbHi5BKWXqJak0WIWYPwyBV8WWG6fxd7Hyj5LQDvgtxZMZHwT08NtzVeOVB Pt8lo+psbJbjLDa3ZV2/Qn9hVb3OLSwpCLrQKWOa774LPFKtHtucJQPnthVCD3Mo 8lcUEyUjkofwc8GinhGQ6sy/+r8HelqRXBzT77yvivUVGV13Qphdo493CdLwPwJl tPgjs4jshWMmjx+oj3qeOr3NRFrNRivba6h/1qqclgMpgaqvFwmOTXF3FanQaKG4 VNWvccjyzfCRT/QJjV2Skl8PAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUHD50bi0R CieKQyz/quzC/iZN4OEwHwYDVR0jBBgwFoAUbLOCDaWkqEstlAm98H8lRf5tCxEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNCMDYzLzZDMEY5NjEwRDZF RDExRUY5RDlCRjM2QUM0RjlBRTAyL2JMT0NEYVdrcUVzdGxBbTk4SDhsUmY1dEN4 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYkxPQ0RhV2txRXN0bEFtOThIOGxSZjV0Q3hFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNC MDYzLzZDMEY5NjEwRDZFRDExRUY5RDlCRjM2QUM0RjlBRTAyL2JMT0NEYVdrcUVz dGxBbTk4SDhsUmY1dEN4RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAK3LRfPdG2vvlnGDqnpCnf1SmnGUE2sXYClEI29rFY1tPDQ5dChJfCuz QXRd4xpAImitw/f5SozOwEDA9YMeFItbvmupZmOZ8800Oiqkh7flM4uBJnBWuMAB KGXS3/ABHvLWMTy8Oi+OhZXzYh3OKh9+5srHr88jApPdzos8yY0NcxTUFL5WhIX5 XXVXZcbdZ59fL8NNHkCJPgv1LFMwgbUuguoGSs3Njr3IVzpnCvF9RyZ08ke2sKFV wp5MG1bbaBfIDsn2+VNtw5eeDQUjvN2O2ekU4NRjYDM+tHmpOToRbGpMzzOCLFME 1osdiVFwcsWFDOleD4Yyv2iNY7gGgA8= -----END CERTIFICATE-----Generated at Sun Aug 24 00:04:47 2025 by rpki-client