$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft File: BNhIIeE7gDAzVMS-NDMdURHyvKY.mft (raw, json) Hash identifier: yXByuxDKuP0TD0+adfky2JW19n8ZjN4O3zY63tBMv3Q= Subject key identifier: 5A:8B:3A:A4:32:88:EC:65:CF:F9:B2:24:0C:D2:1E:94:2D:64:5B:C4 Authority key identifier: 04:D8:48:21:E1:3B:80:30:33:54:C4:BE:34:33:1D:51:11:F2:BC:A6 Certificate issuer: /CN=A91F0721/serialNumber=04D84821E13B80303354C4BE34331D5111F2BCA6 Certificate serial: 01C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BNhIIeE7gDAzVMS-NDMdURHyvKY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft Manifest number: 01BD Signing time: Sat 05 Jul 2025 03:17:29 +0000 Manifest this update: Sat 05 Jul 2025 03:17:29 +0000 Manifest next update: Sat 12 Jul 2025 03:17:29 +0000 Files and hashes: 1: BNhIIeE7gDAzVMS-NDMdURHyvKY.crl (hash: dH5rS3uCV7W9Or4mGc9gr4xHF78i1/VTycIVnIO64Ks=) 2: 7659B89AADCC11ED84051211C4F9AE02.roa (hash: S0QCets6nYQwhXbRnwnSRy3OBYGEXLOm6h5sFxoClJ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.crl rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BNhIIeE7gDAzVMS-NDMdURHyvKY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 448 (0x1c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0721, serialNumber=04D84821E13B80303354C4BE34331D5111F2BCA6 Validity Not Before: Jul 5 03:17:29 2025 GMT Not After : Jul 12 03:17:29 2025 GMT Subject: CN=68689949-0111 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:b8:86:f4:7b:67:44:eb:9a:ff:9f:d1:a0:e2: b2:0a:17:0b:66:81:c5:ce:92:bb:73:7b:c5:d8:63: 40:5c:06:d9:38:ff:0a:70:94:ab:db:d8:e7:46:13: 50:21:52:f5:70:8b:0c:ba:36:f3:92:1e:39:24:95: 54:67:1c:80:eb:c2:d2:22:b7:ba:70:c3:55:df:62: 05:70:a9:b6:2a:dc:8f:f7:f6:11:ee:47:82:0f:5d: ef:6c:8b:29:a0:ce:92:8e:fa:02:b9:38:56:00:64: b4:c7:57:f7:26:f0:2f:2d:ab:73:e8:39:22:7f:38: 31:47:11:5a:8c:c4:3c:7d:19:32:31:63:40:88:86: ec:b8:18:db:de:1f:66:43:9d:a9:45:e6:ac:04:16: 3e:8c:6e:eb:d9:91:71:e7:22:23:07:2e:bb:fc:b2: 59:2a:5a:1c:0d:0e:6d:7c:5e:78:21:dc:3d:79:d0: 3e:9e:d5:93:cc:4d:ad:43:e4:f9:45:68:a0:b4:9c: 45:45:37:5a:9e:24:c8:e6:cd:4c:1b:51:03:a6:96: 84:38:15:40:c7:67:b0:f1:e4:8a:83:00:79:12:b4: 41:18:8c:9d:55:00:22:52:a0:6a:a7:81:77:0a:d5: 18:47:9e:52:ef:7a:a8:c4:c8:a3:fe:f4:6a:13:5b: 68:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:8B:3A:A4:32:88:EC:65:CF:F9:B2:24:0C:D2:1E:94:2D:64:5B:C4 X509v3 Authority Key Identifier: keyid:04:D8:48:21:E1:3B:80:30:33:54:C4:BE:34:33:1D:51:11:F2:BC:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BNhIIeE7gDAzVMS-NDMdURHyvKY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:76:18:a4:9b:4c:fe:7a:69:62:e1:d4:56:de:95:bb:26:94: 55:fa:d5:0d:fc:0f:f6:0f:3f:a4:3d:8b:18:86:00:8e:99:be: 63:35:3e:6e:0b:84:46:e1:58:9e:8a:f4:c1:3c:0f:ec:8c:ad: 9e:78:42:1d:29:44:0a:a5:04:12:10:34:b0:ae:c8:81:b5:41: bf:93:ef:d0:c5:14:f0:8f:87:ee:1e:e6:c2:b7:c5:3d:eb:95: fe:d4:0b:52:07:5d:31:3e:7e:00:4c:3e:3e:f8:eb:84:13:62: a9:47:57:43:31:9d:a4:86:4e:10:a1:0f:f4:d4:63:20:55:21: 97:f6:c8:ca:2a:ec:17:1a:b8:4d:05:80:1b:7f:be:ee:84:56: ff:99:c2:ee:45:d9:eb:4c:ca:22:ec:45:a7:f1:23:7f:ae:92: db:d3:23:3c:77:87:be:a0:3b:c5:c2:11:ad:67:aa:c2:c8:65: c8:ed:fb:ea:17:d5:2c:c2:24:5b:cd:51:97:18:3c:89:6a:ac: 24:85:5a:0a:0c:dc:6c:3f:cc:82:58:94:10:3e:4b:fd:35:f7: 54:84:ce:6b:7a:91:35:75:21:c9:40:97:89:16:3a:f3:3b:85: b7:fa:86:ac:a2:11:9c:e3:07:8d:6f:e7:df:dc:2e:6d:d1:95: 2c:ec:67:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjA3MjExMTAvBgNVBAUTKDA0RDg0ODIxRTEzQjgwMzAzMzU0QzRCRTM0MzMxRDUx MTFGMkJDQTYwHhcNMjUwNzA1MDMxNzI5WhcNMjUwNzEyMDMxNzI5WjAYMRYwFAYD VQQDEw02ODY4OTk0OS0wMTExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtriG9HtnROua/5/RoOKyChcLZoHFzpK7c3vF2GNAXAbZOP8KcJSr29jnRhNQ IVL1cIsMujbzkh45JJVUZxyA68LSIre6cMNV32IFcKm2KtyP9/YR7keCD13vbIsp oM6SjvoCuThWAGS0x1f3JvAvLatz6DkifzgxRxFajMQ8fRkyMWNAiIbsuBjb3h9m Q52pReasBBY+jG7r2ZFx5yIjBy67/LJZKlocDQ5tfF54Idw9edA+ntWTzE2tQ+T5 RWigtJxFRTdaniTI5s1MG1EDppaEOBVAx2ew8eSKgwB5ErRBGIydVQAiUqBqp4F3 CtUYR55S73qoxMij/vRqE1touQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFqLOqQy iOxlz/myJAzSHpQtZFvEMB8GA1UdIwQYMBaAFATYSCHhO4AwM1TEvjQzHVER8rym MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMDcyMS9DOTEyN0IzRUFE QzgxMUVEOTIxNjIyMEVDNEY5QUUwMi9CTmhJSWVFN2dEQXpWTVMtTkRNZFVSSHl2 S1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JOaElJZUU3Z0RBelZNUy1ORE1kVVJIeXZLWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MDcyMS9DOTEyN0IzRUFEQzgxMUVEOTIxNjIyMEVDNEY5QUUwMi9CTmhJSWVFN2dE QXpWTVMtTkRNZFVSSHl2S1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFdhikm0z+emli4dRW3pW7JpRV+tUN/A/2Dz+kPYsYhgCOmb5jNT5u C4RG4VieivTBPA/sjK2eeEIdKUQKpQQSEDSwrsiBtUG/k+/QxRTwj4fuHubCt8U9 65X+1AtSB10xPn4ATD4++OuEE2KpR1dDMZ2khk4QoQ/01GMgVSGX9sjKKuwXGrhN BYAbf77uhFb/mcLuRdnrTMoi7EWn8SN/rpLb0yM8d4e+oDvFwhGtZ6rCyGXI7fvq F9UswiRbzVGXGDyJaqwkhVoKDNxsP8yCWJQQPkv9NfdUhM5repE1dSHJQJeJFjrz O4W3+oasohGc4weNb+ff3C5t0ZUs7GcW -----END CERTIFICATE-----Generated at Sat Jul 5 05:00:02 2025 by rpki-client