$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft File: 1bm7ozBeiMAA9WKTnROLpQYieyo.mft (raw, json) Hash identifier: zd1Ac9FM+ku7NE3XT6gmopJZ7UqY7h444JJtnDy2SAU= Subject key identifier: E0:03:F7:6E:10:04:F3:3B:F3:58:91:B2:9C:BB:4A:67:95:23:0C:C8 Authority key identifier: D5:B9:BB:A3:30:5E:88:C0:00:F5:62:93:9D:13:8B:A5:06:22:7B:2A Certificate issuer: /CN=A91EAF4B/serialNumber=D5B9BBA3305E88C000F562939D138BA506227B2A Certificate serial: 0B33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bm7ozBeiMAA9WKTnROLpQYieyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft Manifest number: 0C3C Signing time: Fri 22 Aug 2025 19:25:53 +0000 Manifest this update: Fri 22 Aug 2025 19:25:53 +0000 Manifest next update: Fri 29 Aug 2025 19:25:53 +0000 Files and hashes: 1: 1bm7ozBeiMAA9WKTnROLpQYieyo.crl (hash: pFwYx0xSV+qs7gbuEr6mjCqVsEkE8hngTwFlNhBH0ss=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.crl rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bm7ozBeiMAA9WKTnROLpQYieyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:25:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2867 (0xb33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAF4B, serialNumber=D5B9BBA3305E88C000F562939D138BA506227B2A Validity Not Before: Aug 22 19:25:53 2025 GMT Not After : Aug 29 19:25:53 2025 GMT Subject: CN=68a8c441-2f2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:95:15:a5:06:36:d4:43:ca:df:7e:8c:75:ea: 2c:4d:2b:6c:3d:4e:a1:ff:36:ca:39:ee:a4:65:06: 9d:88:a2:09:ff:cd:1f:11:30:8b:bc:39:47:42:32: 52:26:83:a7:24:84:35:a2:5c:a6:c2:be:26:b3:e9: c7:95:bb:47:4b:95:ca:69:eb:4d:c9:29:2d:e3:42: 6f:2a:2e:1e:6a:3d:db:1f:1f:0f:77:00:bd:2a:f9: ac:65:da:83:2e:95:d9:04:2e:c4:82:7f:a2:66:82: b4:23:69:02:0a:20:e8:6d:b2:3b:c6:d8:66:8d:25: 5a:90:7d:0c:c1:b8:eb:91:fd:4d:ba:18:89:2f:51: d7:eb:f6:5a:db:76:42:03:18:fc:c0:50:f5:33:09: 67:b7:42:3d:d1:f4:57:2f:04:27:c8:14:51:bd:d9: 02:7e:de:4c:9e:6a:d1:7c:5f:26:60:85:e8:e1:8c: 1b:40:02:92:99:b8:d1:07:0d:3c:75:8e:1e:20:40: 76:b9:e9:c4:07:f9:3b:14:32:e4:2a:44:76:f8:b6: f9:65:21:7b:f6:cb:55:7b:32:e9:ed:88:80:2e:1f: 6d:67:1f:46:78:85:96:79:52:7e:0a:82:9d:6d:e4: bd:c6:9c:b5:3a:97:b7:3b:86:b6:17:ee:0b:f6:aa: d8:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:03:F7:6E:10:04:F3:3B:F3:58:91:B2:9C:BB:4A:67:95:23:0C:C8 X509v3 Authority Key Identifier: keyid:D5:B9:BB:A3:30:5E:88:C0:00:F5:62:93:9D:13:8B:A5:06:22:7B:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bm7ozBeiMAA9WKTnROLpQYieyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:e4:49:1e:7b:5c:92:dc:dc:82:f3:54:ca:80:e5:7e:65:50: 2b:88:48:b1:29:fd:87:63:dd:80:b8:ec:7a:a0:7a:f0:4c:21: 32:92:84:b5:f3:89:a8:0c:03:90:db:d5:e4:c5:e4:7e:9f:4f: e7:3a:15:53:b2:0f:61:e5:fa:3d:c8:1a:5d:13:a7:61:04:fb: 10:19:41:e4:66:93:bd:9f:f5:7d:92:1e:5f:60:67:ec:f8:54: b3:ee:59:74:fa:00:2b:4f:ba:10:52:6a:b3:09:cc:4f:32:73: fe:32:3f:17:4c:c2:a6:bc:4b:62:66:a9:0d:ef:75:6e:1f:73: ae:b4:94:4c:4e:61:7c:ec:38:43:f8:fa:80:6a:e3:94:76:1c: 51:7e:fb:3c:85:52:77:40:9c:0b:f2:d7:44:e2:ef:42:bb:c0: c9:1a:53:15:78:37:1e:ed:d5:82:69:99:fc:6b:24:74:30:f4: 02:08:a3:92:24:27:7f:84:02:de:54:5e:ca:38:39:9c:77:b2: 2e:04:93:33:2a:d3:ea:d3:c5:76:70:34:44:20:35:60:7e:f4: a9:3b:80:7a:f7:65:62:c6:a8:2c:7e:74:d7:79:3b:64:a3:c4: d3:b8:c2:bd:6c:7d:2c:ad:12:16:11:8c:30:95:92:43:62:69: 82:d1:87:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCzMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFGNEIxMTAvBgNVBAUTKEQ1QjlCQkEzMzA1RTg4QzAwMEY1NjI5MzlEMTM4QkE1 MDYyMjdCMkEwHhcNMjUwODIyMTkyNTUzWhcNMjUwODI5MTkyNTUzWjAYMRYwFAYD VQQDEw02OGE4YzQ0MS0yZjJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtZUVpQY21EPK336MdeosTStsPU6h/zbKOe6kZQadiKIJ/80fETCLvDlHQjJS JoOnJIQ1olymwr4ms+nHlbtHS5XKaetNySkt40JvKi4eaj3bHx8PdwC9KvmsZdqD LpXZBC7Egn+iZoK0I2kCCiDobbI7xthmjSVakH0Mwbjrkf1NuhiJL1HX6/Za23ZC Axj8wFD1Mwlnt0I90fRXLwQnyBRRvdkCft5MnmrRfF8mYIXo4YwbQAKSmbjRBw08 dY4eIEB2uenEB/k7FDLkKkR2+Lb5ZSF79stVezLp7YiALh9tZx9GeIWWeVJ+CoKd beS9xpy1Ope3O4a2F+4L9qrY/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOAD924Q BPM781iRspy7SmeVIwzIMB8GA1UdIwQYMBaAFNW5u6MwXojAAPVik50Ti6UGInsq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUY0Qi84NDg1OEY2QTQ3 MTkxMUVBOTA4NjMwNzJDNEY5QUUwMi8xYm03b3pCZWlNQUE5V0tUblJPTHBRWWll eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFibTdvekJlaU1BQTlXS1RuUk9McFFZaWV5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUY0Qi84NDg1OEY2QTQ3MTkxMUVBOTA4NjMwNzJDNEY5QUUwMi8xYm03b3pCZWlN QUE5V0tUblJPTHBRWWlleW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBx5Ekee1yS3NyC81TKgOV+ZVAriEixKf2HY92AuOx6oHrwTCEykoS1 84moDAOQ29XkxeR+n0/nOhVTsg9h5fo9yBpdE6dhBPsQGUHkZpO9n/V9kh5fYGfs +FSz7ll0+gArT7oQUmqzCcxPMnP+Mj8XTMKmvEtiZqkN73VuH3OutJRMTmF87DhD +PqAauOUdhxRfvs8hVJ3QJwL8tdE4u9Cu8DJGlMVeDce7dWCaZn8ayR0MPQCCKOS JCd/hALeVF7KODmcd7IuBJMzKtPq08V2cDREIDVgfvSpO4B692VixqgsfnTXeTtk o8TTuMK9bH0srRIWEYwwlZJDYmmC0Ye9 -----END CERTIFICATE-----Generated at Sun Aug 24 09:04:41 2025 by rpki-client