$ rpki-client -vvf rpki.apnic.net/member_repository/A91DDDA7/3C95319C8D5411EB9840E05FC4F9AE02/bj9qTL0sdlG0kOtkkEu_8fRiAdU.mft File: bj9qTL0sdlG0kOtkkEu_8fRiAdU.mft (raw, json) Hash identifier: jyWDxPYFPKWUtYi4Vn98ReDdXsSSmx1Bnx2HLldFBoo= Subject key identifier: 69:08:37:1A:84:7B:7D:3B:5F:63:B9:BC:9A:33:EB:EE:13:4A:98:2C Authority key identifier: 6E:3F:6A:4C:BD:2C:76:51:B4:90:EB:64:90:4B:BF:F1:F4:62:01:D5 Certificate issuer: /CN=A91DDDA7/serialNumber=6E3F6A4CBD2C7651B490EB64904BBFF1F46201D5 Certificate serial: 067E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bj9qTL0sdlG0kOtkkEu_8fRiAdU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DDDA7/3C95319C8D5411EB9840E05FC4F9AE02/bj9qTL0sdlG0kOtkkEu_8fRiAdU.mft Manifest number: 0678 Signing time: Fri 22 Aug 2025 20:20:49 +0000 Manifest this update: Fri 22 Aug 2025 20:20:49 +0000 Manifest next update: Fri 29 Aug 2025 20:20:49 +0000 Files and hashes: 1: bj9qTL0sdlG0kOtkkEu_8fRiAdU.crl (hash: 4QmO7Lr0FKhwG3cHbbpwuRrCb+z1aULDPssy++fD008=) 2: 815931708D5411EB9DA31875C4F9AE02.roa (hash: LyuoMJXz1NyXM9pSNW11Fa6fRcMflVH6LhgfRij1kVg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DDDA7/3C95319C8D5411EB9840E05FC4F9AE02/bj9qTL0sdlG0kOtkkEu_8fRiAdU.crl rsync://rpki.apnic.net/member_repository/A91DDDA7/3C95319C8D5411EB9840E05FC4F9AE02/bj9qTL0sdlG0kOtkkEu_8fRiAdU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bj9qTL0sdlG0kOtkkEu_8fRiAdU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:20:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1662 (0x67e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DDDA7, serialNumber=6E3F6A4CBD2C7651B490EB64904BBFF1F46201D5 Validity Not Before: Aug 22 20:20:49 2025 GMT Not After : Aug 29 20:20:49 2025 GMT Subject: CN=68a8d121-480b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:a9:89:5d:32:76:2e:e7:ec:d7:c9:ec:a3:f3: 1f:93:5b:ac:ca:11:b0:2f:98:4d:42:33:00:22:67: d9:01:3d:ef:33:76:96:76:12:44:45:3c:3f:e9:ec: 34:96:fc:9b:45:5e:ac:5a:0e:ca:a5:fd:da:0b:1a: 6b:2f:89:d9:ab:52:d1:5c:27:71:58:d9:5b:08:4f: 6d:0b:30:3c:a5:a2:ab:4f:75:fd:3f:2c:09:5f:b3: 93:af:be:13:bb:55:d9:66:f5:1a:64:60:34:ac:dd: a6:7a:f3:2f:ec:cd:bd:7e:c4:98:25:52:cc:fe:7e: e8:3f:a3:58:33:4e:0b:eb:67:fd:b7:3f:28:e9:8a: ee:fd:0a:03:1e:2d:79:35:60:5e:58:87:bf:b5:51: 92:93:26:08:1f:07:23:92:7e:81:72:f4:c1:f0:52: e0:e5:29:0d:a6:03:90:9d:13:4a:f3:92:a7:b2:ae: 49:50:ce:e8:87:fd:ce:5d:fe:45:5a:19:42:10:4f: 5d:22:b2:4e:54:dc:dc:6d:4d:5c:18:7c:af:d5:e1: c5:be:55:77:0a:0e:6c:12:a3:e4:74:9d:ee:f2:e1: 7d:9e:2f:d9:18:37:22:c1:14:e2:fc:ac:5c:a0:f4: 93:d9:ec:bc:d7:24:b5:b5:f5:08:31:53:fb:e0:d6: 60:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:08:37:1A:84:7B:7D:3B:5F:63:B9:BC:9A:33:EB:EE:13:4A:98:2C X509v3 Authority Key Identifier: keyid:6E:3F:6A:4C:BD:2C:76:51:B4:90:EB:64:90:4B:BF:F1:F4:62:01:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DDDA7/3C95319C8D5411EB9840E05FC4F9AE02/bj9qTL0sdlG0kOtkkEu_8fRiAdU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bj9qTL0sdlG0kOtkkEu_8fRiAdU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DDDA7/3C95319C8D5411EB9840E05FC4F9AE02/bj9qTL0sdlG0kOtkkEu_8fRiAdU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:7a:75:94:a7:d8:23:c9:02:c3:12:d8:ba:3e:7b:4a:9e:c4: 86:7c:95:10:21:93:fb:01:c6:22:99:96:3a:9f:0f:65:b3:80: 8b:ec:57:c7:f0:3c:a8:07:6d:7c:80:76:95:61:08:02:3b:6d: 49:7f:59:3c:3a:e1:19:56:4d:21:f6:83:6a:26:c9:dd:01:b4: 5b:54:f9:1a:01:c6:91:2d:4e:7d:b8:b6:b4:81:7c:ad:18:ca: 75:01:37:a9:56:da:73:a4:a7:5b:f9:d0:dc:4f:c7:87:03:3c: fa:79:a5:52:ed:e2:fe:85:31:a9:6c:22:14:0b:66:c9:ff:ca: 6b:0d:7f:fb:61:0a:c1:16:c8:d1:5f:d0:d2:d3:67:f9:e6:f6: 78:d3:23:2d:d8:e3:a2:ba:ef:fc:e2:db:65:67:cf:05:ce:1d: 5e:0c:3b:9c:1a:d7:8d:15:cc:63:d8:cd:4b:98:30:f7:67:24: a6:0b:bf:94:c4:78:15:99:ea:23:9a:aa:c4:64:44:66:d4:c7: 2d:39:84:45:6d:7d:05:21:7c:dd:2d:65:60:8d:21:67:c9:e0: a4:8e:be:09:4d:db:49:e0:b8:ac:dc:e7:f5:c4:bd:86:e3:f8: 2e:53:cf:31:e5:ec:37:e7:c2:09:d7:62:b2:c2:05:c4:e3:d4: f6:ed:f9:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBn4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REREQTcxMTAvBgNVBAUTKDZFM0Y2QTRDQkQyQzc2NTFCNDkwRUI2NDkwNEJCRkYx RjQ2MjAxRDUwHhcNMjUwODIyMjAyMDQ5WhcNMjUwODI5MjAyMDQ5WjAYMRYwFAYD VQQDEw02OGE4ZDEyMS00ODBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzamJXTJ2Lufs18nso/Mfk1usyhGwL5hNQjMAImfZAT3vM3aWdhJERTw/6ew0 lvybRV6sWg7Kpf3aCxprL4nZq1LRXCdxWNlbCE9tCzA8paKrT3X9PywJX7OTr74T u1XZZvUaZGA0rN2mevMv7M29fsSYJVLM/n7oP6NYM04L62f9tz8o6Yru/QoDHi15 NWBeWIe/tVGSkyYIHwcjkn6BcvTB8FLg5SkNpgOQnRNK85Knsq5JUM7oh/3OXf5F WhlCEE9dIrJOVNzcbU1cGHyv1eHFvlV3Cg5sEqPkdJ3u8uF9ni/ZGDciwRTi/Kxc oPST2ey81yS1tfUIMVP74NZg5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGkINxqE e307X2O5vJoz6+4TSpgsMB8GA1UdIwQYMBaAFG4/aky9LHZRtJDrZJBLv/H0YgHV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERERBNy8zQzk1MzE5QzhE NTQxMUVCOTg0MEUwNUZDNEY5QUUwMi9iajlxVEwwc2RsRzBrT3Rra0V1XzhmUmlB ZFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2JqOXFUTDBzZGxHMGtPdGtrRXVfOGZSaUFkVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RERBNy8zQzk1MzE5QzhENTQxMUVCOTg0MEUwNUZDNEY5QUUwMi9iajlxVEwwc2Rs RzBrT3Rra0V1XzhmUmlBZFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAienWUp9gjyQLDEti6PntKnsSGfJUQIZP7AcYimZY6nw9ls4CL7FfH 8DyoB218gHaVYQgCO21Jf1k8OuEZVk0h9oNqJsndAbRbVPkaAcaRLU59uLa0gXyt GMp1ATepVtpzpKdb+dDcT8eHAzz6eaVS7eL+hTGpbCIUC2bJ/8prDX/7YQrBFsjR X9DS02f55vZ40yMt2OOiuu/84ttlZ88Fzh1eDDucGteNFcxj2M1LmDD3ZySmC7+U xHgVmeojmqrEZERm1MctOYRFbX0FIXzdLWVgjSFnyeCkjr4JTdtJ4Lis3Of1xL2G 4/guU88x5ew358IJ12KywgXE49T27flH -----END CERTIFICATE-----Generated at Sat Aug 23 12:32:09 2025 by rpki-client