$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.mft File: Bc1Un1RUvTKyKPavyN424Ej2SA0.mft (raw, json) Hash identifier: dK1TbVqviKMqu3vnoG6ysNbMnpmCkxMNHaD9P+uLpB8= Subject key identifier: 74:CC:CE:8C:11:12:F5:7D:04:B9:25:FF:6D:EA:2E:0A:86:B6:00:B5 Authority key identifier: 05:CD:54:9F:54:54:BD:32:B2:28:F6:AF:C8:DE:36:E0:48:F6:48:0D Certificate issuer: /CN=A91E8881/serialNumber=05CD549F5454BD32B228F6AFC8DE36E048F6480D Certificate serial: 07C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bc1Un1RUvTKyKPavyN424Ej2SA0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.mft Manifest number: 07BE Signing time: Wed 02 Jul 2025 21:25:22 +0000 Manifest this update: Wed 02 Jul 2025 21:25:21 +0000 Manifest next update: Wed 09 Jul 2025 21:25:21 +0000 Files and hashes: 1: Bc1Un1RUvTKyKPavyN424Ej2SA0.crl (hash: eEJJsAPkrlwwvrQkrwYUDFzPWlY7MgmbbDwZit5PJT4=) 2: EAC9D46200F911EB8E61B84CC4F9AE02.roa (hash: Vn5biCjexx3cjiQ4QgNEGs4i33iiyVoqmR3L4tJPzNU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.crl rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bc1Un1RUvTKyKPavyN424Ej2SA0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 21:25:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1989 (0x7c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8881, serialNumber=05CD549F5454BD32B228F6AFC8DE36E048F6480D Validity Not Before: Jul 2 21:25:21 2025 GMT Not After : Jul 9 21:25:21 2025 GMT Subject: CN=6865a3c2-c78a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:8b:ba:08:37:e3:cf:5e:a0:f3:60:1c:f5:51: 06:a9:3e:bd:d6:77:f6:31:93:0a:4e:b8:6c:a8:aa: 8d:72:cd:f5:45:1c:ff:19:63:37:36:7f:10:0b:44: 13:dc:d7:b0:70:b5:ea:62:66:8d:df:3a:08:22:ee: a8:77:85:b7:1b:5a:f0:69:a2:31:47:07:60:72:14: 68:f3:fe:85:14:7f:f0:2a:24:4b:84:5d:52:3f:b0: 70:ad:12:b4:19:cf:d0:36:ce:94:7c:b7:d5:c5:12: 14:f1:76:ac:41:f1:f9:35:35:a8:2d:3b:fb:e5:4b: 74:a2:bb:70:06:79:99:9f:15:bf:0a:f3:d6:56:e7: 0d:63:23:94:69:37:5c:52:0e:64:2d:71:6d:60:35: 57:65:4c:2b:ec:25:2e:46:f6:95:89:80:3b:ef:42: 65:87:c5:64:e9:5b:a3:0a:2a:0e:2e:9c:68:54:68: b1:15:03:4d:33:f7:5b:6c:23:27:01:fb:d6:23:33: 25:18:f1:61:89:2e:e9:c5:ef:8f:d0:67:46:f8:2d: cd:25:d7:6d:3a:02:0b:03:01:63:c1:fe:cb:4c:ed: 20:89:6c:eb:9a:61:e5:eb:31:86:ac:05:95:e0:75: 43:e7:f5:bc:7c:88:a5:a6:50:08:7f:09:ab:81:5a: c1:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:CC:CE:8C:11:12:F5:7D:04:B9:25:FF:6D:EA:2E:0A:86:B6:00:B5 X509v3 Authority Key Identifier: keyid:05:CD:54:9F:54:54:BD:32:B2:28:F6:AF:C8:DE:36:E0:48:F6:48:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bc1Un1RUvTKyKPavyN424Ej2SA0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:a8:c7:5c:75:45:31:b1:c2:ec:16:69:7c:af:89:da:90:55: a8:3f:b2:93:de:a7:f6:a6:18:c3:bb:b9:31:9d:0c:4d:bc:e0: d4:27:82:2e:d6:c8:56:36:de:3c:b4:11:ca:69:ab:29:35:d5: 73:76:0f:e4:3d:c8:02:7f:8d:56:c2:c8:43:0b:d8:69:42:50: 0f:f2:9c:12:3a:a5:29:04:ca:be:5e:88:75:b1:94:df:a6:0a: 01:65:35:64:84:c0:d9:f7:1f:48:2e:64:d9:eb:1b:f7:e2:a0: 00:80:c3:1e:f3:d4:ae:db:85:79:fa:a5:16:87:86:a4:52:e0: 8f:76:01:47:c9:dc:e7:0b:dc:84:e3:bd:a3:20:f1:a1:87:3c: 41:41:08:49:07:b5:71:d7:a4:07:f3:cf:c6:17:f7:fa:90:da: bd:4d:4a:a1:a5:d5:8a:cd:24:03:f2:85:2a:6b:21:cd:28:5c: 38:7c:ad:c9:1d:4d:5a:09:02:62:43:1b:17:be:9a:a1:12:3d: b3:e0:77:7f:7d:79:1a:4d:c0:3f:c1:aa:29:cd:49:6f:3c:72: f4:1e:b4:7c:b4:80:4a:92:3f:97:df:5e:45:5b:c5:0c:6c:2e: bf:3b:0d:7e:67:6f:11:f8:e5:bd:c9:63:7b:06:7e:21:85:e2: b6:36:56:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB8UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg4ODExMTAvBgNVBAUTKDA1Q0Q1NDlGNTQ1NEJEMzJCMjI4RjZBRkM4REUzNkUw NDhGNjQ4MEQwHhcNMjUwNzAyMjEyNTIxWhcNMjUwNzA5MjEyNTIxWjAYMRYwFAYD VQQDEw02ODY1YTNjMi1jNzhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxYu6CDfjz16g82Ac9VEGqT691nf2MZMKTrhsqKqNcs31RRz/GWM3Nn8QC0QT 3NewcLXqYmaN3zoIIu6od4W3G1rwaaIxRwdgchRo8/6FFH/wKiRLhF1SP7BwrRK0 Gc/QNs6UfLfVxRIU8XasQfH5NTWoLTv75Ut0ortwBnmZnxW/CvPWVucNYyOUaTdc Ug5kLXFtYDVXZUwr7CUuRvaViYA770Jlh8Vk6VujCioOLpxoVGixFQNNM/dbbCMn AfvWIzMlGPFhiS7pxe+P0GdG+C3NJddtOgILAwFjwf7LTO0giWzrmmHl6zGGrAWV 4HVD5/W8fIilplAIfwmrgVrBYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHTMzowR EvV9BLkl/23qLgqGtgC1MB8GA1UdIwQYMBaAFAXNVJ9UVL0ysij2r8jeNuBI9kgN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODg4MS8wODlERTg0MDAw RjgxMUVCQjIxN0E0NDlDNEY5QUUwMi9CYzFVbjFSVXZUS3lLUGF2eU40MjRFajJT QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JjMVVuMVJVdlRLeUtQYXZ5TjQyNEVqMlNBMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODg4MS8wODlERTg0MDAwRjgxMUVCQjIxN0E0NDlDNEY5QUUwMi9CYzFVbjFSVXZU S3lLUGF2eU40MjRFajJTQTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQqMdcdUUxscLsFml8r4nakFWoP7KT3qf2phjDu7kxnQxNvODUJ4Iu 1shWNt48tBHKaaspNdVzdg/kPcgCf41WwshDC9hpQlAP8pwSOqUpBMq+Xoh1sZTf pgoBZTVkhMDZ9x9ILmTZ6xv34qAAgMMe89Su24V5+qUWh4akUuCPdgFHydznC9yE 472jIPGhhzxBQQhJB7Vx16QH88/GF/f6kNq9TUqhpdWKzSQD8oUqayHNKFw4fK3J HU1aCQJiQxsXvpqhEj2z4Hd/fXkaTcA/waopzUlvPHL0HrR8tIBKkj+X315FW8UM bC6/Ow1+Z28R+OW9yWN7Bn4hheK2NlZw -----END CERTIFICATE-----Generated at Thu Jul 3 09:49:08 2025 by rpki-client