$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft File: bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft (raw, json) Hash identifier: 5hMBIEbwLk49bXhDIoaaIeje5pXDae6eTMXvwKzNojo= Subject key identifier: D5:EA:F0:DC:66:C5:D6:A0:1C:F8:ED:4C:BE:88:F9:13:C6:54:91:72 Authority key identifier: 6C:19:46:97:81:6F:9B:13:0B:A5:3C:F4:BE:E6:76:01:59:4E:8C:B1 Certificate issuer: /CN=A91CCAF1/serialNumber=6C194697816F9B130BA53CF4BEE67601594E8CB1 Certificate serial: 86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft Manifest number: 85 Signing time: Sun 29 Jun 2025 05:37:40 +0000 Manifest this update: Sun 29 Jun 2025 05:37:39 +0000 Manifest next update: Sun 06 Jul 2025 05:37:39 +0000 Files and hashes: 1: bBlGl4FvmxMLpTz0vuZ2AVlOjLE.crl (hash: 7bCtWUyfJLsH74Lab8kyMheCYr9qBYC6L4MciOOoqM0=) 2: BF71D9D0F26811EFBC446868C4F9AE02.roa (hash: 7+qKEqRnu4TPJKKakjwpNT1iFIHMXPBmy/g9UJm3iJo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.crl rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 05:37:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 134 (0x86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CCAF1, serialNumber=6C194697816F9B130BA53CF4BEE67601594E8CB1 Validity Not Before: Jun 29 05:37:39 2025 GMT Not After : Jul 6 05:37:39 2025 GMT Subject: CN=6860d123-0f7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:36:d4:82:a1:ea:68:7f:71:9f:7f:d1:ac:5c: 5a:f1:5a:3f:bd:12:16:75:bd:49:90:f5:7e:c4:80: 14:ce:5d:08:e3:64:5e:77:f2:a8:83:ee:f5:34:f1: cd:5f:bb:ec:b1:a7:5b:43:93:ee:5c:94:29:51:c7: 64:28:a7:b6:03:ad:4d:f6:0f:5c:d3:c7:70:9d:e3: 41:a5:02:d2:4b:a7:26:6f:c3:32:44:46:ed:32:f4: cb:ac:99:ea:de:37:f6:cb:5e:ce:76:61:6c:b7:eb: 85:d5:d4:02:91:7d:a3:34:cf:8d:c6:bd:ab:f1:0c: 67:bf:37:aa:03:a7:70:e9:e5:76:9f:56:58:36:0b: 8a:61:d6:7a:ad:88:17:3d:17:b3:91:f9:49:c0:d6: a8:7a:11:0a:bf:29:07:a7:2c:f1:ab:22:c4:cc:a6: f8:33:ff:a1:5b:ac:9a:3e:a6:67:cd:0b:92:75:ca: 7d:90:40:1f:68:5e:de:d2:70:2c:ff:40:e8:e7:4d: b0:f3:30:ba:1b:90:67:9d:38:b3:c2:0c:4e:41:21: 21:e5:22:d8:f0:ec:4d:0f:8e:7e:3b:cf:6c:37:06: 50:fb:b5:a6:61:63:99:c8:ee:3d:be:aa:a1:b7:27: 56:60:b1:d9:2d:a2:93:fc:ec:85:87:30:59:ed:36: ec:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:EA:F0:DC:66:C5:D6:A0:1C:F8:ED:4C:BE:88:F9:13:C6:54:91:72 X509v3 Authority Key Identifier: keyid:6C:19:46:97:81:6F:9B:13:0B:A5:3C:F4:BE:E6:76:01:59:4E:8C:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:08:a0:f7:d5:3f:fb:78:34:68:15:91:cb:3d:27:db:96:6f: 13:f3:4a:b9:11:05:07:b0:a7:16:5c:0c:b8:b6:e4:66:32:5b: 49:62:e2:e7:4b:e7:94:c8:d6:2c:1b:a7:31:b9:aa:44:e4:d3: 22:23:e6:3f:bb:11:bf:b0:dc:02:91:fd:2b:35:16:f2:e8:5c: c2:fa:a8:fa:83:6e:5e:91:48:38:01:40:eb:47:14:24:3e:d7: 66:bd:bf:f5:f8:d7:68:f9:e9:fc:08:9a:c3:ff:b2:78:49:38: e7:2b:44:bd:d0:02:92:c3:5b:61:f5:ea:b5:12:42:75:c0:f2: 35:bd:f9:ca:e4:8b:fc:90:e3:07:27:47:17:bf:57:ec:c6:81: e1:c4:be:c5:2c:50:22:d4:b5:2b:19:74:f0:4a:87:07:31:e9: 3b:0b:9d:58:cd:a0:85:f6:0c:dd:a9:16:72:f9:f7:a5:c5:2d: b4:d2:f1:ac:38:73:62:75:6a:22:61:23:98:97:9e:27:80:d2: 69:5e:ca:d6:e0:87:81:3a:27:76:f6:9b:37:31:9c:bc:20:9e: 0f:3b:ea:c9:e0:a7:ba:87:bf:f1:67:2e:0d:e2:68:23:b1:8a: 9d:7b:fb:f5:66:1f:48:08:5e:23:c3:96:de:e2:56:86:2c:3c: 2c:4e:23:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0NBRjExMTAvBgNVBAUTKDZDMTk0Njk3ODE2RjlCMTMwQkE1M0NGNEJFRTY3NjAx NTk0RThDQjEwHhcNMjUwNjI5MDUzNzM5WhcNMjUwNzA2MDUzNzM5WjAYMRYwFAYD VQQDEw02ODYwZDEyMy0wZjdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwzbUgqHqaH9xn3/RrFxa8Vo/vRIWdb1JkPV+xIAUzl0I42Red/Kog+71NPHN X7vssadbQ5PuXJQpUcdkKKe2A61N9g9c08dwneNBpQLSS6cmb8MyREbtMvTLrJnq 3jf2y17OdmFst+uF1dQCkX2jNM+Nxr2r8QxnvzeqA6dw6eV2n1ZYNguKYdZ6rYgX PRezkflJwNaoehEKvykHpyzxqyLEzKb4M/+hW6yaPqZnzQuSdcp9kEAfaF7e0nAs /0Do502w8zC6G5BnnTizwgxOQSEh5SLY8OxND45+O89sNwZQ+7WmYWOZyO49vqqh tydWYLHZLaKT/OyFhzBZ7TbspwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNXq8Nxm xdagHPjtTL6I+RPGVJFyMB8GA1UdIwQYMBaAFGwZRpeBb5sTC6U89L7mdgFZToyx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQ0FGMS8wOUMwRDM2NjhB QUQxMUVGQkVGOTE2NkFDNEY5QUUwMi9iQmxHbDRGdm14TUxwVHowdnVaMkFWbE9q TEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JCbEdsNEZ2bXhNTHBUejB2dVoyQVZsT2pMRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Q0FGMS8wOUMwRDM2NjhBQUQxMUVGQkVGOTE2NkFDNEY5QUUwMi9iQmxHbDRGdm14 TUxwVHowdnVaMkFWbE9qTEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2CKD31T/7eDRoFZHLPSfblm8T80q5EQUHsKcWXAy4tuRmMltJYuLn S+eUyNYsG6cxuapE5NMiI+Y/uxG/sNwCkf0rNRby6FzC+qj6g25ekUg4AUDrRxQk Ptdmvb/1+Ndo+en8CJrD/7J4STjnK0S90AKSw1th9eq1EkJ1wPI1vfnK5Iv8kOMH J0cXv1fsxoHhxL7FLFAi1LUrGXTwSocHMek7C51YzaCF9gzdqRZy+felxS200vGs OHNidWoiYSOYl54ngNJpXsrW4IeBOid29ps3MZy8IJ4PO+rJ4Ke6h7/xZy4N4mgj sYqde/v1Zh9ICF4jw5be4laGLDwsTiMn -----END CERTIFICATE-----Generated at Sun Jun 29 19:14:05 2025 by rpki-client