$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF5AE/5E6E20789AA811EC89D42474C4F9AE02/BZOGVctKEp6P3fsJQsICA-N-G8E.mft File: BZOGVctKEp6P3fsJQsICA-N-G8E.mft (raw, json) Hash identifier: GmCRdcWL8Fu8itUEo/C19iqjVM5xx0vUq3+JzkBGjc0= Subject key identifier: F7:4A:98:D6:2E:02:1B:BF:81:1C:94:57:55:30:43:AA:29:20:81:63 Authority key identifier: 05:93:86:55:CB:4A:12:9E:8F:DD:FB:09:42:C2:02:03:E3:7E:1B:C1 Certificate issuer: /CN=A91EF5AE/serialNumber=05938655CB4A129E8FDDFB0942C20203E37E1BC1 Certificate serial: 03CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BZOGVctKEp6P3fsJQsICA-N-G8E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF5AE/5E6E20789AA811EC89D42474C4F9AE02/BZOGVctKEp6P3fsJQsICA-N-G8E.mft Manifest number: 03C8 Signing time: Sat 23 Aug 2025 00:52:20 +0000 Manifest this update: Sat 23 Aug 2025 00:52:20 +0000 Manifest next update: Sat 30 Aug 2025 00:52:20 +0000 Files and hashes: 1: BZOGVctKEp6P3fsJQsICA-N-G8E.crl (hash: iWLjDtsHG6bdkZL1ZJ0pLnNCfvEqy+mvZHzPYr05Gu4=) 2: 1D45733C9AAB11ECBDD79E1EC4F9AE02.roa (hash: IDcKfjrcD970kwyhuo4LacbpxchYwfNjnBXBdXrdXbs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF5AE/5E6E20789AA811EC89D42474C4F9AE02/BZOGVctKEp6P3fsJQsICA-N-G8E.crl rsync://rpki.apnic.net/member_repository/A91EF5AE/5E6E20789AA811EC89D42474C4F9AE02/BZOGVctKEp6P3fsJQsICA-N-G8E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BZOGVctKEp6P3fsJQsICA-N-G8E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:52:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 973 (0x3cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF5AE, serialNumber=05938655CB4A129E8FDDFB0942C20203E37E1BC1 Validity Not Before: Aug 23 00:52:20 2025 GMT Not After : Aug 30 00:52:20 2025 GMT Subject: CN=68a910c4-4611 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:ce:16:80:67:77:d5:af:17:98:81:2a:34:6a: 06:91:48:c6:8d:09:05:ac:79:b8:4c:52:4d:b2:bf: 0a:a5:d1:05:7c:98:a7:31:64:92:ff:cc:ce:a8:7c: c2:0a:22:0b:ac:d3:0b:b8:a0:d5:d5:2d:77:94:cc: e5:30:49:05:1a:a0:ef:80:86:37:58:18:4f:bd:0a: 54:a9:6f:c1:26:b0:15:f4:a4:d9:dc:9b:08:d7:fd: 49:28:2c:66:f7:46:5b:41:98:96:04:1e:a8:05:dc: 0f:c4:ea:ad:66:c6:94:f0:31:a9:82:fd:5c:ab:c2: 0b:90:0d:55:03:08:0e:03:3d:15:a8:a5:23:66:43: 67:56:46:51:bd:7d:bf:1e:87:c5:92:58:ad:0d:bb: 77:6f:af:73:55:5e:0c:ec:5b:51:b4:b1:44:8c:cd: 5d:f3:65:65:2b:f1:0c:d0:d3:7a:ec:3d:40:89:b7: 0b:f7:fd:61:30:0f:70:d7:c6:ea:ed:32:e3:b9:5b: 92:8b:74:36:4a:e8:d9:38:4c:49:2e:c6:62:b3:db: 5a:50:69:ed:28:14:c7:f6:c9:d0:b5:59:a7:a1:6d: 89:28:65:48:87:01:4f:cb:40:7b:f6:af:1b:93:0f: d8:20:f0:7c:1f:61:e7:dd:03:7a:56:65:af:61:22: 15:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:4A:98:D6:2E:02:1B:BF:81:1C:94:57:55:30:43:AA:29:20:81:63 X509v3 Authority Key Identifier: keyid:05:93:86:55:CB:4A:12:9E:8F:DD:FB:09:42:C2:02:03:E3:7E:1B:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF5AE/5E6E20789AA811EC89D42474C4F9AE02/BZOGVctKEp6P3fsJQsICA-N-G8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BZOGVctKEp6P3fsJQsICA-N-G8E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF5AE/5E6E20789AA811EC89D42474C4F9AE02/BZOGVctKEp6P3fsJQsICA-N-G8E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption de:3b:b3:df:8e:77:a2:33:7b:51:19:68:7d:af:35:13:f6:37: a9:06:86:e8:1c:26:a9:11:95:50:aa:c7:e3:b1:64:78:69:9a: 86:07:45:52:7a:8f:20:8a:f4:34:81:f7:5e:ee:93:78:ff:a1: 03:fb:16:d1:39:75:b2:9a:88:c6:f5:38:b7:85:d4:cb:92:37: 9b:48:b3:93:01:e3:66:df:58:c9:9b:16:b0:52:86:bf:da:a5: 02:cd:df:4c:d9:ee:e2:6c:dd:3f:2b:52:6c:fc:6b:84:76:21: 20:c1:a0:43:56:98:07:c9:16:25:b8:82:43:ea:67:9e:61:93: d4:3a:57:6b:04:54:74:9c:46:be:12:fa:8f:1f:cf:d7:e3:b6: 89:4c:37:53:fb:88:d6:3c:39:46:69:81:a5:63:cc:ba:53:28: 9b:32:34:ce:c9:90:20:f9:e1:64:23:78:16:fa:59:1b:62:68: 65:a5:71:e0:c6:bf:7d:3f:e0:98:ce:ac:68:5f:4f:35:56:ee: ec:c5:a5:d6:a6:1d:2e:27:0f:70:bb:97:c6:02:98:6f:ec:a4: 36:78:fd:12:41:50:6e:57:73:b6:2b:27:23:5e:b9:60:b0:2a: 36:a6:bb:9b:7a:b5:ea:42:04:1b:52:e6:aa:54:06:3c:72:51: ae:0f:53:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA80wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUY1QUUxMTAvBgNVBAUTKDA1OTM4NjU1Q0I0QTEyOUU4RkRERkIwOTQyQzIwMjAz RTM3RTFCQzEwHhcNMjUwODIzMDA1MjIwWhcNMjUwODMwMDA1MjIwWjAYMRYwFAYD VQQDEw02OGE5MTBjNC00NjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA984WgGd31a8XmIEqNGoGkUjGjQkFrHm4TFJNsr8KpdEFfJinMWSS/8zOqHzC CiILrNMLuKDV1S13lMzlMEkFGqDvgIY3WBhPvQpUqW/BJrAV9KTZ3JsI1/1JKCxm 90ZbQZiWBB6oBdwPxOqtZsaU8DGpgv1cq8ILkA1VAwgOAz0VqKUjZkNnVkZRvX2/ HofFklitDbt3b69zVV4M7FtRtLFEjM1d82VlK/EM0NN67D1AibcL9/1hMA9w18bq 7TLjuVuSi3Q2SujZOExJLsZis9taUGntKBTH9snQtVmnoW2JKGVIhwFPy0B79q8b kw/YIPB8H2Hn3QN6VmWvYSIVrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPdKmNYu Ahu/gRyUV1UwQ6opIIFjMB8GA1UdIwQYMBaAFAWThlXLShKej937CULCAgPjfhvB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjVBRS81RTZFMjA3ODlB QTgxMUVDODlENDI0NzRDNEY5QUUwMi9CWk9HVmN0S0VwNlAzZnNKUXNJQ0EtTi1H OEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JaT0dWY3RLRXA2UDNmc0pRc0lDQS1OLUc4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjVBRS81RTZFMjA3ODlBQTgxMUVDODlENDI0NzRDNEY5QUUwMi9CWk9HVmN0S0Vw NlAzZnNKUXNJQ0EtTi1HOEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDeO7PfjneiM3tRGWh9rzUT9jepBoboHCapEZVQqsfjsWR4aZqGB0VS eo8givQ0gfde7pN4/6ED+xbROXWymojG9Ti3hdTLkjebSLOTAeNm31jJmxawUoa/ 2qUCzd9M2e7ibN0/K1Js/GuEdiEgwaBDVpgHyRYluIJD6meeYZPUOldrBFR0nEa+ EvqPH8/X47aJTDdT+4jWPDlGaYGlY8y6UyibMjTOyZAg+eFkI3gW+lkbYmhlpXHg xr99P+CYzqxoX081Vu7sxaXWph0uJw9wu5fGAphv7KQ2eP0SQVBuV3O2KycjXrlg sCo2pruberXqQgQbUuaqVAY8clGuD1Pp -----END CERTIFICATE-----Generated at Sat Aug 23 21:33:43 2025 by rpki-client