$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA5FD/8BDAFEF4528611EE89B00D87C4F9AE02/B2DK71ty3-WwS3ba3_q4Z8MKmMc.mft File: B2DK71ty3-WwS3ba3_q4Z8MKmMc.mft (raw, json) Hash identifier: jpdaE5i4oDPWjcQ5aRkbUBnihXpjeIpd4PVrjpjJUf8= Subject key identifier: A4:B9:D4:61:C4:CE:E0:A1:7A:0D:0B:B6:51:B9:37:27:8C:0F:AE:A6 Authority key identifier: 07:60:CA:EF:5B:72:DF:E5:B0:4B:76:DA:DF:FA:B8:67:C3:0A:98:C7 Certificate issuer: /CN=A91DA5FD/serialNumber=0760CAEF5B72DFE5B04B76DADFFAB867C30A98C7 Certificate serial: 0174 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B2DK71ty3-WwS3ba3_q4Z8MKmMc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA5FD/8BDAFEF4528611EE89B00D87C4F9AE02/B2DK71ty3-WwS3ba3_q4Z8MKmMc.mft Manifest number: 0170 Signing time: Sat 23 Aug 2025 03:59:08 +0000 Manifest this update: Sat 23 Aug 2025 03:59:08 +0000 Manifest next update: Sat 30 Aug 2025 03:59:08 +0000 Files and hashes: 1: B2DK71ty3-WwS3ba3_q4Z8MKmMc.crl (hash: kIe7PrrLWiMTATbhgvn8g/gdmiZryfxSqpI5vJ/iCtc=) 2: 76817340537011EEB43BD523C4F9AE02.roa (hash: jAD/7lg+++i+O4y1RlntCcfLaxTpo5Pzuq6OqBjjXF4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA5FD/8BDAFEF4528611EE89B00D87C4F9AE02/B2DK71ty3-WwS3ba3_q4Z8MKmMc.crl rsync://rpki.apnic.net/member_repository/A91DA5FD/8BDAFEF4528611EE89B00D87C4F9AE02/B2DK71ty3-WwS3ba3_q4Z8MKmMc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B2DK71ty3-WwS3ba3_q4Z8MKmMc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:59:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 372 (0x174) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA5FD, serialNumber=0760CAEF5B72DFE5B04B76DADFFAB867C30A98C7 Validity Not Before: Aug 23 03:59:08 2025 GMT Not After : Aug 30 03:59:08 2025 GMT Subject: CN=68a93c8c-ed2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:a4:6c:ca:f6:9e:21:36:c8:32:86:19:0a:49: f4:83:ad:38:82:2b:bc:73:f6:d7:9d:3c:cb:9e:35: a5:e8:9d:fa:62:be:5d:71:c3:5f:d8:46:17:87:7e: f4:8c:83:06:f6:62:ec:bb:67:d5:db:6a:98:43:08: 5e:6e:a9:7f:9b:81:12:ed:85:e0:eb:22:35:65:62: ba:c4:f8:b5:4e:34:41:d6:8c:57:06:e2:79:3e:85: 4b:42:d2:5c:db:ee:d9:56:83:43:db:54:6a:7e:df: d3:07:a4:4d:63:65:3b:ad:3b:d5:25:5f:26:9e:67: 3d:1d:c6:29:94:60:8d:a7:aa:ce:61:61:85:21:c2: 89:2f:76:ae:f0:fc:97:b7:0f:c8:a0:94:a2:df:83: 10:5f:90:8f:5b:a9:7d:35:cf:6f:ac:de:16:e0:9b: 6d:50:96:ce:ca:d9:e3:72:a2:8d:6e:fa:de:dc:ae: 6a:bd:3c:71:2b:0f:c9:79:3c:bb:f0:cf:6a:00:3e: 69:23:34:ef:73:5a:c4:59:0e:72:ad:5c:2c:68:2f: 6b:38:dd:83:6b:41:47:2f:94:6a:ea:a7:1c:de:40: 90:dc:6c:a8:eb:af:33:51:b0:22:49:20:ee:8e:b5: 68:a1:ce:a5:db:c4:6c:48:60:8a:f1:9f:09:84:2f: 5a:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:B9:D4:61:C4:CE:E0:A1:7A:0D:0B:B6:51:B9:37:27:8C:0F:AE:A6 X509v3 Authority Key Identifier: keyid:07:60:CA:EF:5B:72:DF:E5:B0:4B:76:DA:DF:FA:B8:67:C3:0A:98:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA5FD/8BDAFEF4528611EE89B00D87C4F9AE02/B2DK71ty3-WwS3ba3_q4Z8MKmMc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B2DK71ty3-WwS3ba3_q4Z8MKmMc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA5FD/8BDAFEF4528611EE89B00D87C4F9AE02/B2DK71ty3-WwS3ba3_q4Z8MKmMc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:e9:8c:27:ef:7c:15:e2:fb:12:d1:47:b8:f5:0a:9a:53:fd: 12:39:32:57:92:e0:3f:58:8f:10:80:5a:43:e3:26:de:24:c2: 1b:4d:3a:86:c4:ad:93:14:ce:e4:76:cf:4e:a7:eb:8a:45:6f: 46:2b:a2:e7:05:07:5b:f8:ba:69:60:59:ec:54:09:27:38:bd: 75:65:b9:5f:16:aa:da:40:d5:d3:9a:68:1d:45:08:c3:cb:6a: ec:e7:92:38:bb:39:55:2e:28:5e:0a:c0:20:68:9d:e7:3f:f6: 53:b2:6c:14:4f:81:08:76:93:eb:6b:8f:8b:48:2f:bf:2d:3a: 7f:dd:25:a6:aa:b7:76:10:3a:c7:48:6d:6d:ff:da:09:63:3a: 51:7c:96:8c:cb:8d:14:c3:f6:d9:03:c2:19:26:72:dc:98:00: 4a:7a:03:7d:7b:7a:52:9e:c2:4f:6e:71:e3:fc:b0:98:87:b8: aa:6e:6d:6c:51:85:5f:0d:dc:8d:95:b8:5c:6c:73:e2:f2:06: 2a:d6:5f:c6:9a:b6:00:40:0f:80:2e:ba:ca:76:97:f6:b2:d2: 0b:05:d0:e4:a8:5a:9e:ff:d5:3b:9b:5b:e9:2e:33:3f:28:e2: 87:fd:f7:66:e0:c2:ea:a5:56:4d:f2:5e:dc:ef:da:77:30:6e: 6e:31:41:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REE1RkQxMTAvBgNVBAUTKDA3NjBDQUVGNUI3MkRGRTVCMDRCNzZEQURGRkFCODY3 QzMwQTk4QzcwHhcNMjUwODIzMDM1OTA4WhcNMjUwODMwMDM1OTA4WjAYMRYwFAYD VQQDEw02OGE5M2M4Yy1lZDJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyqRsyvaeITbIMoYZCkn0g604giu8c/bXnTzLnjWl6J36Yr5dccNf2EYXh370 jIMG9mLsu2fV22qYQwhebql/m4ES7YXg6yI1ZWK6xPi1TjRB1oxXBuJ5PoVLQtJc 2+7ZVoND21Rqft/TB6RNY2U7rTvVJV8mnmc9HcYplGCNp6rOYWGFIcKJL3au8PyX tw/IoJSi34MQX5CPW6l9Nc9vrN4W4JttUJbOytnjcqKNbvre3K5qvTxxKw/JeTy7 8M9qAD5pIzTvc1rEWQ5yrVwsaC9rON2Da0FHL5Rq6qcc3kCQ3Gyo668zUbAiSSDu jrVooc6l28RsSGCK8Z8JhC9aOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKS51GHE zuCheg0LtlG5NyeMD66mMB8GA1UdIwQYMBaAFAdgyu9bct/lsEt22t/6uGfDCpjH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTVGRC84QkRBRkVGNDUy ODYxMUVFODlCMDBEODdDNEY5QUUwMi9CMkRLNzF0eTMtV3dTM2JhM19xNFo4TUtt TWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0IyREs3MXR5My1Xd1MzYmEzX3E0WjhNS21NYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTVGRC84QkRBRkVGNDUyODYxMUVFODlCMDBEODdDNEY5QUUwMi9CMkRLNzF0eTMt V3dTM2JhM19xNFo4TUttTWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZ6Ywn73wV4vsS0Ue49QqaU/0SOTJXkuA/WI8QgFpD4ybeJMIbTTqG xK2TFM7kds9Op+uKRW9GK6LnBQdb+LppYFnsVAknOL11ZblfFqraQNXTmmgdRQjD y2rs55I4uzlVLiheCsAgaJ3nP/ZTsmwUT4EIdpPra4+LSC+/LTp/3SWmqrd2EDrH SG1t/9oJYzpRfJaMy40Uw/bZA8IZJnLcmABKegN9e3pSnsJPbnHj/LCYh7iqbm1s UYVfDdyNlbhcbHPi8gYq1l/GmrYAQA+ALrrKdpf2stILBdDkqFqe/9U7m1vpLjM/ KOKH/fdm4MLqpVZN8l7c79p3MG5uMUGw -----END CERTIFICATE-----Generated at Sat Aug 23 17:52:23 2025 by rpki-client