$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.mft File: Bc1Un1RUvTKyKPavyN424Ej2SA0.mft (raw, json) Hash identifier: ZffBgFQPPMTe6l9BUZamAIbqAXKTyGcE/CYDr13k6ms= Subject key identifier: 8E:82:19:8D:9B:D0:A0:FD:65:DE:27:BA:FC:9C:6C:7F:C0:99:36:85 Authority key identifier: 05:CD:54:9F:54:54:BD:32:B2:28:F6:AF:C8:DE:36:E0:48:F6:48:0D Certificate issuer: /CN=A91E8881/serialNumber=05CD549F5454BD32B228F6AFC8DE36E048F6480D Certificate serial: 07DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bc1Un1RUvTKyKPavyN424Ej2SA0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.mft Manifest number: 07D8 Signing time: Fri 22 Aug 2025 21:13:05 +0000 Manifest this update: Fri 22 Aug 2025 21:13:04 +0000 Manifest next update: Fri 29 Aug 2025 21:13:04 +0000 Files and hashes: 1: Bc1Un1RUvTKyKPavyN424Ej2SA0.crl (hash: ycDLiPlRIV6mZNr3ubMp0cfZXgSoGd/jw1su//o4FPg=) 2: EAC9D46200F911EB8E61B84CC4F9AE02.roa (hash: Vn5biCjexx3cjiQ4QgNEGs4i33iiyVoqmR3L4tJPzNU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.crl rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bc1Un1RUvTKyKPavyN424Ej2SA0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:13:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2015 (0x7df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8881, serialNumber=05CD549F5454BD32B228F6AFC8DE36E048F6480D Validity Not Before: Aug 22 21:13:04 2025 GMT Not After : Aug 29 21:13:04 2025 GMT Subject: CN=68a8dd60-5b6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:10:97:9c:cc:7f:0a:2d:e7:c2:5b:d1:88:67: 9c:37:1d:02:da:37:d5:d4:70:a0:08:a7:0c:4b:4b: d4:59:ce:03:38:2a:46:b1:54:01:4a:ce:59:18:27: fd:da:86:c2:e7:60:ba:c7:ae:79:65:bc:b3:a0:fa: b6:b5:46:b0:67:eb:2a:80:de:41:0c:d4:7b:27:81: 93:e5:16:9d:32:ea:53:00:7e:29:19:0d:c0:5d:94: fd:e0:03:ba:24:b4:2a:bf:d8:c0:f4:ea:42:9f:71: b0:8a:d0:1d:a4:49:88:f7:59:7e:7c:42:33:36:03: 0f:11:3d:98:e3:5f:a7:1e:df:22:eb:ef:60:dd:42: bf:b6:7c:be:e0:fe:e1:18:87:de:c2:6f:fa:e3:0c: 02:e8:99:bc:2f:ab:e8:cc:2c:c9:b4:bb:cf:89:77: b5:bf:e5:e3:5e:37:03:b9:2a:f8:c0:62:ca:06:bb: ec:4d:e7:42:ad:42:b8:a4:73:9f:20:66:97:50:53: b7:bc:73:d4:7b:bf:e0:b2:8c:ec:45:7f:ed:dc:b5: 55:ba:59:e8:35:61:31:c1:09:5f:52:e8:71:c5:fb: 75:46:a1:04:37:02:ed:99:b7:cb:e1:61:58:72:40: 9a:d8:02:74:83:f4:65:a5:a2:ee:c9:11:74:e5:da: 47:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:82:19:8D:9B:D0:A0:FD:65:DE:27:BA:FC:9C:6C:7F:C0:99:36:85 X509v3 Authority Key Identifier: keyid:05:CD:54:9F:54:54:BD:32:B2:28:F6:AF:C8:DE:36:E0:48:F6:48:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bc1Un1RUvTKyKPavyN424Ej2SA0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:ff:f6:bd:ce:e0:ea:04:f7:f8:fb:96:a0:ca:29:78:5c:7c: 12:56:22:a5:ea:3d:35:5c:ba:88:64:d6:cc:ed:8f:8b:06:3f: a4:9c:3d:23:8f:b9:00:30:25:c3:6c:c6:4d:57:b0:0d:96:55: 8f:f2:3b:9e:bb:20:98:e8:45:16:93:74:66:f1:ec:74:e6:c5: 90:0d:b5:9a:72:e4:51:f7:e1:6a:43:cd:6b:0b:06:26:e5:2f: 90:22:ad:b4:f1:c1:dd:0f:69:43:ed:3f:bd:c4:2b:01:82:81: 18:1b:01:9e:73:39:52:4d:d7:ad:cb:8d:a2:be:fb:7a:c2:42: e8:1a:d0:b4:13:13:da:eb:fc:7d:a9:a1:83:f8:e2:2a:78:95: 84:6c:aa:0b:39:c7:91:28:45:b5:28:37:54:fb:45:3b:61:dd: 68:7c:ed:c1:f9:62:77:48:cb:aa:96:c6:f4:8d:dc:96:3b:df: 92:03:02:9e:a1:d6:b2:6c:57:97:8b:0a:39:d7:1a:34:77:d3: ee:63:db:24:38:f9:31:7e:cc:45:d3:9c:f6:1e:3f:c9:86:03: 94:36:9b:d3:98:0e:b3:6e:6f:55:05:ac:8f:f4:5e:6c:8d:99: f8:59:5e:1c:8f:73:e0:ec:c2:f4:9a:5e:8d:f5:3a:04:33:08: 47:03:b4:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB98wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg4ODExMTAvBgNVBAUTKDA1Q0Q1NDlGNTQ1NEJEMzJCMjI4RjZBRkM4REUzNkUw NDhGNjQ4MEQwHhcNMjUwODIyMjExMzA0WhcNMjUwODI5MjExMzA0WjAYMRYwFAYD VQQDEw02OGE4ZGQ2MC01YjZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+BCXnMx/Ci3nwlvRiGecNx0C2jfV1HCgCKcMS0vUWc4DOCpGsVQBSs5ZGCf9 2obC52C6x655ZbyzoPq2tUawZ+sqgN5BDNR7J4GT5RadMupTAH4pGQ3AXZT94AO6 JLQqv9jA9OpCn3GwitAdpEmI91l+fEIzNgMPET2Y41+nHt8i6+9g3UK/tny+4P7h GIfewm/64wwC6Jm8L6vozCzJtLvPiXe1v+XjXjcDuSr4wGLKBrvsTedCrUK4pHOf IGaXUFO3vHPUe7/gsozsRX/t3LVVulnoNWExwQlfUuhxxft1RqEENwLtmbfL4WFY ckCa2AJ0g/RlpaLuyRF05dpHYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI6CGY2b 0KD9Zd4nuvycbH/AmTaFMB8GA1UdIwQYMBaAFAXNVJ9UVL0ysij2r8jeNuBI9kgN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODg4MS8wODlERTg0MDAw RjgxMUVCQjIxN0E0NDlDNEY5QUUwMi9CYzFVbjFSVXZUS3lLUGF2eU40MjRFajJT QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JjMVVuMVJVdlRLeUtQYXZ5TjQyNEVqMlNBMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODg4MS8wODlERTg0MDAwRjgxMUVCQjIxN0E0NDlDNEY5QUUwMi9CYzFVbjFSVXZU S3lLUGF2eU40MjRFajJTQTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0//a9zuDqBPf4+5agyil4XHwSViKl6j01XLqIZNbM7Y+LBj+knD0j j7kAMCXDbMZNV7ANllWP8jueuyCY6EUWk3Rm8ex05sWQDbWacuRR9+FqQ81rCwYm 5S+QIq208cHdD2lD7T+9xCsBgoEYGwGeczlSTdety42ivvt6wkLoGtC0ExPa6/x9 qaGD+OIqeJWEbKoLOceRKEW1KDdU+0U7Yd1ofO3B+WJ3SMuqlsb0jdyWO9+SAwKe odaybFeXiwo51xo0d9PuY9skOPkxfsxF05z2Hj/JhgOUNpvTmA6zbm9VBayP9F5s jZn4WV4cj3Pg7ML0ml6N9ToEMwhHA7Sj -----END CERTIFICATE-----Generated at Sat Aug 23 20:30:15 2025 by rpki-client