$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft File: bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft (raw, json) Hash identifier: m0hDUAso1S0lWDaJTQgZ5LGMG68KWtdyRctzdUqZbik= Subject key identifier: 6F:60:EF:8F:66:B1:2A:6A:2D:47:91:A2:10:BB:FB:D7:06:69:3B:93 Authority key identifier: 6C:19:46:97:81:6F:9B:13:0B:A5:3C:F4:BE:E6:76:01:59:4E:8C:B1 Certificate issuer: /CN=A91CCAF1/serialNumber=6C194697816F9B130BA53CF4BEE67601594E8CB1 Certificate serial: A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft Manifest number: A1 Signing time: Sat 23 Aug 2025 06:28:50 +0000 Manifest this update: Sat 23 Aug 2025 06:28:49 +0000 Manifest next update: Sat 30 Aug 2025 06:28:49 +0000 Files and hashes: 1: bBlGl4FvmxMLpTz0vuZ2AVlOjLE.crl (hash: vBhLMK7XduadzALTjCuu6lU/ouBMtdE3NFVq5v3vFAQ=) 2: BF71D9D0F26811EFBC446868C4F9AE02.roa (hash: 7+qKEqRnu4TPJKKakjwpNT1iFIHMXPBmy/g9UJm3iJo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.crl rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:28:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 162 (0xa2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CCAF1, serialNumber=6C194697816F9B130BA53CF4BEE67601594E8CB1 Validity Not Before: Aug 23 06:28:49 2025 GMT Not After : Aug 30 06:28:49 2025 GMT Subject: CN=68a95fa1-340a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:d7:ba:8f:88:ee:b1:a0:5b:31:bd:30:99:e2: 4b:32:a9:30:49:a9:6a:c2:8b:2b:89:57:10:f8:3e: 7c:8b:40:37:e3:e0:70:12:83:07:f8:6e:43:16:a9: e2:82:df:f0:2d:8f:33:38:5d:27:43:47:5d:37:5d: c7:0e:2a:44:ac:8c:1f:04:6f:07:33:25:30:14:ba: 17:7c:e4:21:c4:ce:3c:d1:88:6d:2c:f1:ac:5d:a3: 2a:56:84:fc:d4:c5:8f:44:4d:44:ba:0b:11:76:8a: 1f:3c:ae:56:62:1d:94:00:f7:02:14:88:aa:0c:a9: 68:62:1a:32:d5:ee:14:55:45:47:a6:ce:83:be:54: 1c:a9:ab:dc:72:61:cf:38:c9:69:62:18:4e:b6:42: d3:c2:c9:45:a4:65:93:cf:b5:55:67:a8:73:cf:7f: 76:f2:0f:8f:d9:fe:64:47:1e:70:c2:6d:d7:31:37: c6:b7:86:61:b5:f4:53:b0:b4:79:ce:06:b4:5f:d4: 44:fc:fa:a3:cd:f7:1e:0e:a8:63:a4:ab:df:47:81: 80:15:d3:0d:67:9b:98:d8:a1:b0:71:03:e8:09:78: 56:8d:10:c2:f0:9b:84:0a:4e:a0:ab:27:22:1c:62: 95:ea:96:91:16:bc:91:95:a3:0e:f7:d6:13:bc:38: 69:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:60:EF:8F:66:B1:2A:6A:2D:47:91:A2:10:BB:FB:D7:06:69:3B:93 X509v3 Authority Key Identifier: keyid:6C:19:46:97:81:6F:9B:13:0B:A5:3C:F4:BE:E6:76:01:59:4E:8C:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:e4:03:24:a2:82:fe:52:71:42:85:20:f2:6f:5f:15:e3:31: 7c:53:bd:f1:ff:88:94:3d:c8:22:80:28:b2:48:a9:0a:30:d0: d9:09:f7:c4:33:bc:8b:a2:99:62:0e:6b:b4:ea:ba:ab:2c:ea: 00:4d:51:8f:13:10:2b:9a:c4:52:75:79:b9:3c:30:7a:80:4a: b0:b6:7b:21:81:8e:d8:73:c6:52:8f:50:b2:f3:1d:52:c5:db: 99:b2:02:c3:a0:a1:f3:ff:a3:aa:e8:fc:28:28:a2:60:50:44: 27:03:47:7a:a7:79:86:a0:b8:e9:aa:4e:d8:a3:15:20:82:01: d8:23:cc:52:0b:f1:1b:3a:ae:c5:e3:54:db:31:3a:a5:a7:c3: 64:4a:d9:92:d5:b4:9b:3e:92:05:b8:95:cb:c8:a9:ff:40:bf: bf:2c:64:c3:c7:2c:08:fc:9a:05:a4:ac:9b:92:1d:c0:bf:5b: 2a:f0:44:8b:b5:a1:63:3a:1a:1d:a1:0b:36:73:22:df:93:a9: 51:6e:bd:3d:e5:6c:f8:84:2a:2a:3f:65:aa:0e:95:56:ba:7e: a6:5d:f5:dd:38:44:db:02:b4:09:53:98:84:e4:0d:66:1e:44: 83:9f:89:44:94:36:83:5b:d6:b8:f3:ba:de:c0:50:5e:9c:96: 6a:c6:f1:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0NBRjExMTAvBgNVBAUTKDZDMTk0Njk3ODE2RjlCMTMwQkE1M0NGNEJFRTY3NjAx NTk0RThDQjEwHhcNMjUwODIzMDYyODQ5WhcNMjUwODMwMDYyODQ5WjAYMRYwFAYD VQQDEw02OGE5NWZhMS0zNDBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw9e6j4jusaBbMb0wmeJLMqkwSalqwosriVcQ+D58i0A34+BwEoMH+G5DFqni gt/wLY8zOF0nQ0ddN13HDipErIwfBG8HMyUwFLoXfOQhxM480YhtLPGsXaMqVoT8 1MWPRE1EugsRdoofPK5WYh2UAPcCFIiqDKloYhoy1e4UVUVHps6DvlQcqavccmHP OMlpYhhOtkLTwslFpGWTz7VVZ6hzz3928g+P2f5kRx5wwm3XMTfGt4ZhtfRTsLR5 zga0X9RE/PqjzfceDqhjpKvfR4GAFdMNZ5uY2KGwcQPoCXhWjRDC8JuECk6gqyci HGKV6paRFryRlaMO99YTvDhpawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG9g749m sSpqLUeRohC7+9cGaTuTMB8GA1UdIwQYMBaAFGwZRpeBb5sTC6U89L7mdgFZToyx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQ0FGMS8wOUMwRDM2NjhB QUQxMUVGQkVGOTE2NkFDNEY5QUUwMi9iQmxHbDRGdm14TUxwVHowdnVaMkFWbE9q TEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JCbEdsNEZ2bXhNTHBUejB2dVoyQVZsT2pMRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Q0FGMS8wOUMwRDM2NjhBQUQxMUVGQkVGOTE2NkFDNEY5QUUwMi9iQmxHbDRGdm14 TUxwVHowdnVaMkFWbE9qTEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBH5AMkooL+UnFChSDyb18V4zF8U73x/4iUPcgigCiySKkKMNDZCffE M7yLopliDmu06rqrLOoATVGPExArmsRSdXm5PDB6gEqwtnshgY7Yc8ZSj1Cy8x1S xduZsgLDoKHz/6Oq6PwoKKJgUEQnA0d6p3mGoLjpqk7YoxUgggHYI8xSC/EbOq7F 41TbMTqlp8NkStmS1bSbPpIFuJXLyKn/QL+/LGTDxywI/JoFpKybkh3Av1sq8ESL taFjOhodoQs2cyLfk6lRbr095Wz4hCoqP2WqDpVWun6mXfXdOETbArQJU5iE5A1m HkSDn4lElDaDW9a487rewFBenJZqxvEz -----END CERTIFICATE-----Generated at Sat Aug 23 17:48:44 2025 by rpki-client