$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF5AE/5E6E20789AA811EC89D42474C4F9AE02/BZOGVctKEp6P3fsJQsICA-N-G8E.mft File: BZOGVctKEp6P3fsJQsICA-N-G8E.mft (raw, json) Hash identifier: rj7WMrdH1FNA+PA+bA/Wst8YB4+/qENYeEMx29zhbqg= Subject key identifier: 7A:D2:14:5C:7C:78:1D:61:6C:D9:C0:4F:CC:45:10:E6:21:D3:C6:9B Authority key identifier: 05:93:86:55:CB:4A:12:9E:8F:DD:FB:09:42:C2:02:03:E3:7E:1B:C1 Certificate issuer: /CN=A91EF5AE/serialNumber=05938655CB4A129E8FDDFB0942C20203E37E1BC1 Certificate serial: 03B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BZOGVctKEp6P3fsJQsICA-N-G8E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF5AE/5E6E20789AA811EC89D42474C4F9AE02/BZOGVctKEp6P3fsJQsICA-N-G8E.mft Manifest number: 03AE Signing time: Thu 03 Jul 2025 01:04:23 +0000 Manifest this update: Thu 03 Jul 2025 01:04:22 +0000 Manifest next update: Thu 10 Jul 2025 01:04:22 +0000 Files and hashes: 1: BZOGVctKEp6P3fsJQsICA-N-G8E.crl (hash: T66Pb140Hg54LjgJni3py5fF6jCWnBEQn3FUPPQJZsg=) 2: 1D45733C9AAB11ECBDD79E1EC4F9AE02.roa (hash: IDcKfjrcD970kwyhuo4LacbpxchYwfNjnBXBdXrdXbs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF5AE/5E6E20789AA811EC89D42474C4F9AE02/BZOGVctKEp6P3fsJQsICA-N-G8E.crl rsync://rpki.apnic.net/member_repository/A91EF5AE/5E6E20789AA811EC89D42474C4F9AE02/BZOGVctKEp6P3fsJQsICA-N-G8E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BZOGVctKEp6P3fsJQsICA-N-G8E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 01:04:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 947 (0x3b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF5AE, serialNumber=05938655CB4A129E8FDDFB0942C20203E37E1BC1 Validity Not Before: Jul 3 01:04:22 2025 GMT Not After : Jul 10 01:04:22 2025 GMT Subject: CN=6865d716-d070 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:30:6b:72:88:78:58:e8:3f:b0:23:81:37:cc: 85:2b:a9:4d:05:47:9d:5e:5b:7c:d8:03:40:b5:7e: 8c:94:14:80:2b:4e:6e:f9:a3:4a:86:62:8d:a2:1a: ba:53:06:93:5b:a6:b1:d8:83:86:5a:62:6f:da:d1: fe:69:7b:f8:b7:ee:55:91:77:74:a5:37:b3:85:7f: 69:c3:ca:78:22:47:6f:0d:d4:85:18:bd:5e:2d:3c: 3d:58:9c:6e:f7:e4:e8:d1:a7:2f:bb:76:49:8f:70: 1d:1d:2f:50:c9:be:37:f8:44:f4:75:d5:56:b9:bc: 48:e6:8f:7f:74:20:31:5a:3d:9b:a1:8c:87:9f:ce: 26:64:e5:ec:6e:dd:c4:e9:e7:c3:4e:e0:bb:00:77: 13:2d:84:09:83:2d:ca:55:47:e5:83:21:27:54:3b: 24:25:35:b2:54:a4:de:12:ff:0c:be:83:24:36:75: f3:f5:9f:a5:40:b1:d8:f9:50:37:b7:2d:69:77:d5: 39:c8:ed:e5:e5:12:5b:bf:28:5e:1a:92:65:00:6f: bd:c7:80:ce:8f:2c:bc:19:f8:f0:8f:1c:dd:0d:14: 6c:58:21:f9:54:28:4d:71:3b:1f:81:95:02:56:08: 00:ae:52:ed:4f:9f:83:22:1f:71:aa:81:be:2e:bb: 08:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:D2:14:5C:7C:78:1D:61:6C:D9:C0:4F:CC:45:10:E6:21:D3:C6:9B X509v3 Authority Key Identifier: keyid:05:93:86:55:CB:4A:12:9E:8F:DD:FB:09:42:C2:02:03:E3:7E:1B:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF5AE/5E6E20789AA811EC89D42474C4F9AE02/BZOGVctKEp6P3fsJQsICA-N-G8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BZOGVctKEp6P3fsJQsICA-N-G8E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF5AE/5E6E20789AA811EC89D42474C4F9AE02/BZOGVctKEp6P3fsJQsICA-N-G8E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:d4:77:b1:cb:93:f5:6e:bc:0b:b3:3e:06:d2:1a:a1:da:55: 9f:8a:9e:44:d3:8f:3c:04:b5:a5:d6:d8:a4:66:17:62:dd:cf: e6:f6:88:d7:43:ed:cc:66:d6:0a:14:31:b6:5a:a2:9c:e1:91: eb:e3:62:14:7f:3f:c1:35:ea:bc:08:91:ed:86:05:75:37:c4: 0d:37:2a:5a:a0:fb:56:9d:28:7e:28:5a:68:dc:45:86:a6:23: 1a:00:bc:8d:a0:04:2c:3a:48:f0:b5:9e:ee:69:e8:53:53:41: e0:e6:6f:43:25:86:e2:df:3a:f7:af:9b:2e:2f:7c:21:42:6c: fb:6b:5a:43:c2:68:ec:5c:21:3f:b3:f5:69:26:1d:f8:63:c1: ae:40:6d:69:54:93:92:c2:e1:08:13:3e:9f:0a:46:79:12:a1: ae:b8:74:5a:f1:0e:a5:ea:9c:95:61:ba:8f:6b:2f:85:7e:fa: 08:f3:de:71:ef:8f:bc:24:3a:53:4b:f9:2b:50:78:2e:21:c2: 2d:6b:a2:81:28:9c:6c:29:55:a5:45:2e:29:c0:d3:90:97:ba: 1a:90:88:4f:70:b2:79:75:2c:b6:65:78:60:26:34:77:22:5e: 89:7c:20:58:2e:ed:8b:74:ad:00:c5:b5:1b:97:28:9f:b9:02: 3e:86:87:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA7MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUY1QUUxMTAvBgNVBAUTKDA1OTM4NjU1Q0I0QTEyOUU4RkRERkIwOTQyQzIwMjAz RTM3RTFCQzEwHhcNMjUwNzAzMDEwNDIyWhcNMjUwNzEwMDEwNDIyWjAYMRYwFAYD VQQDEw02ODY1ZDcxNi1kMDcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0jBrcoh4WOg/sCOBN8yFK6lNBUedXlt82ANAtX6MlBSAK05u+aNKhmKNohq6 UwaTW6ax2IOGWmJv2tH+aXv4t+5VkXd0pTezhX9pw8p4IkdvDdSFGL1eLTw9WJxu 9+To0acvu3ZJj3AdHS9Qyb43+ET0ddVWubxI5o9/dCAxWj2boYyHn84mZOXsbt3E 6efDTuC7AHcTLYQJgy3KVUflgyEnVDskJTWyVKTeEv8MvoMkNnXz9Z+lQLHY+VA3 ty1pd9U5yO3l5RJbvyheGpJlAG+9x4DOjyy8GfjwjxzdDRRsWCH5VChNcTsfgZUC VggArlLtT5+DIh9xqoG+LrsIxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHrSFFx8 eB1hbNnAT8xFEOYh08abMB8GA1UdIwQYMBaAFAWThlXLShKej937CULCAgPjfhvB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjVBRS81RTZFMjA3ODlB QTgxMUVDODlENDI0NzRDNEY5QUUwMi9CWk9HVmN0S0VwNlAzZnNKUXNJQ0EtTi1H OEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JaT0dWY3RLRXA2UDNmc0pRc0lDQS1OLUc4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjVBRS81RTZFMjA3ODlBQTgxMUVDODlENDI0NzRDNEY5QUUwMi9CWk9HVmN0S0Vw NlAzZnNKUXNJQ0EtTi1HOEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC41Hexy5P1brwLsz4G0hqh2lWfip5E0488BLWl1tikZhdi3c/m9ojX Q+3MZtYKFDG2WqKc4ZHr42IUfz/BNeq8CJHthgV1N8QNNypaoPtWnSh+KFpo3EWG piMaALyNoAQsOkjwtZ7uaehTU0Hg5m9DJYbi3zr3r5suL3whQmz7a1pDwmjsXCE/ s/VpJh34Y8GuQG1pVJOSwuEIEz6fCkZ5EqGuuHRa8Q6l6pyVYbqPay+FfvoI895x 74+8JDpTS/krUHguIcIta6KBKJxsKVWlRS4pwNOQl7oakIhPcLJ5dSy2ZXhgJjR3 Il6JfCBYLu2LdK0AxbUblyifuQI+hof7 -----END CERTIFICATE-----Generated at Fri Jul 4 07:40:03 2025 by rpki-client