$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft File: BNhIIeE7gDAzVMS-NDMdURHyvKY.mft (raw, json) Hash identifier: nFeaODdWqMVALG+SVSneu8qWo45AUbe36H1KOqer/bw= Subject key identifier: 1D:42:BF:4D:50:CD:7E:FC:88:C7:A9:C3:FC:31:07:C7:62:3C:38:AF Authority key identifier: 04:D8:48:21:E1:3B:80:30:33:54:C4:BE:34:33:1D:51:11:F2:BC:A6 Certificate issuer: /CN=A91F0721/serialNumber=04D84821E13B80303354C4BE34331D5111F2BCA6 Certificate serial: 01D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BNhIIeE7gDAzVMS-NDMdURHyvKY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft Manifest number: 01D6 Signing time: Sat 23 Aug 2025 02:51:36 +0000 Manifest this update: Sat 23 Aug 2025 02:51:36 +0000 Manifest next update: Sat 30 Aug 2025 02:51:36 +0000 Files and hashes: 1: BNhIIeE7gDAzVMS-NDMdURHyvKY.crl (hash: dCs67hIR3Z5dNtNAK83N3er0vXV1zHEG+AJY2e0Vbio=) 2: 7659B89AADCC11ED84051211C4F9AE02.roa (hash: S0QCets6nYQwhXbRnwnSRy3OBYGEXLOm6h5sFxoClJ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.crl rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BNhIIeE7gDAzVMS-NDMdURHyvKY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:51:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 473 (0x1d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0721, serialNumber=04D84821E13B80303354C4BE34331D5111F2BCA6 Validity Not Before: Aug 23 02:51:36 2025 GMT Not After : Aug 30 02:51:36 2025 GMT Subject: CN=68a92cb8-3007 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:3d:b2:25:c4:c1:2f:41:eb:af:f1:da:bd:c1: 39:de:68:8d:cc:98:86:07:4c:f3:51:79:d2:fa:53: 5c:fd:28:9c:1a:01:a6:ab:c5:e0:e9:8c:55:3e:06: 2a:b3:02:c0:23:44:3a:34:fb:b9:54:b8:a3:53:b4: e2:7c:da:75:d3:34:ce:a4:40:c4:08:b8:35:e4:f9: 9c:1f:a5:f3:85:96:d6:a4:16:13:cb:f3:39:8d:a3: 4e:35:e9:6d:2a:f9:e6:2b:d2:15:6e:26:18:b1:4b: e8:be:87:49:1f:4c:d9:d1:31:80:2f:a6:5c:7e:f3: 4f:e4:ca:2c:30:fb:1d:53:2d:bc:12:2f:93:8f:81: 22:02:0b:8d:87:a8:ae:aa:83:9e:29:08:55:3d:f2: 18:96:dc:93:f9:26:ec:29:41:ce:19:93:d0:57:9d: 1a:cf:b9:fe:2e:e7:db:85:bf:0e:c6:40:9d:8c:a0: 4f:29:4f:33:69:50:31:77:3c:95:ce:5a:7c:31:6d: dc:03:b9:dc:33:77:53:26:52:9b:6b:d1:e3:93:f8: 71:bd:78:bf:85:a2:62:d5:f9:f4:e9:14:1c:58:8b: 50:72:c3:73:1b:b9:b8:c4:73:27:ca:4b:56:a5:7f: ab:01:07:b2:89:a8:2f:90:ea:d2:17:03:ef:c4:c4: 0c:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:42:BF:4D:50:CD:7E:FC:88:C7:A9:C3:FC:31:07:C7:62:3C:38:AF X509v3 Authority Key Identifier: keyid:04:D8:48:21:E1:3B:80:30:33:54:C4:BE:34:33:1D:51:11:F2:BC:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BNhIIeE7gDAzVMS-NDMdURHyvKY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:71:26:92:80:8c:48:40:c6:dc:17:9a:03:f3:7d:5c:e5:8f: 1a:ca:ba:2d:4d:15:61:c1:b5:5b:e6:f4:b6:d8:a4:8b:e7:75: 0b:47:a2:50:7c:96:fc:be:9a:3c:f2:2c:36:d8:18:b7:13:15: 84:9a:ee:02:78:ae:ac:01:16:5f:8e:5f:30:69:4f:97:c7:a4: 55:4b:62:a1:d5:42:f9:8f:43:f1:90:a2:57:93:f9:50:6c:54: 21:da:d4:be:ae:62:f5:e4:16:2f:55:7f:c5:4d:24:ec:06:73: 93:77:f7:b9:c4:2a:45:6f:db:65:b1:10:ed:d4:4e:5d:44:35: 41:1c:60:d1:72:d9:b2:59:0a:3d:cf:e0:66:46:f7:00:a3:ee: 74:b0:52:b6:a2:b8:c0:13:0a:83:0c:8a:15:1d:3b:47:c9:a0: 92:d3:ac:bb:dd:b1:bc:9c:59:15:54:b5:af:fc:1a:1b:c5:d0: a7:ca:fc:76:b5:6c:b6:79:19:04:70:4f:50:ff:28:af:e0:43: 1a:45:92:89:76:d5:6a:a3:18:48:ca:4d:be:16:50:4a:41:71: 10:0a:c4:33:a7:24:a8:ff:88:d5:2c:a3:7c:34:9e:93:a3:ae: 10:d9:65:01:18:47:c1:55:51:5e:65:41:fc:0c:4b:72:e2:99: 15:a8:d4:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjA3MjExMTAvBgNVBAUTKDA0RDg0ODIxRTEzQjgwMzAzMzU0QzRCRTM0MzMxRDUx MTFGMkJDQTYwHhcNMjUwODIzMDI1MTM2WhcNMjUwODMwMDI1MTM2WjAYMRYwFAYD VQQDEw02OGE5MmNiOC0zMDA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwz2yJcTBL0Hrr/HavcE53miNzJiGB0zzUXnS+lNc/SicGgGmq8Xg6YxVPgYq swLAI0Q6NPu5VLijU7TifNp10zTOpEDECLg15PmcH6XzhZbWpBYTy/M5jaNONelt KvnmK9IVbiYYsUvovodJH0zZ0TGAL6ZcfvNP5MosMPsdUy28Ei+Tj4EiAguNh6iu qoOeKQhVPfIYltyT+SbsKUHOGZPQV50az7n+Lufbhb8OxkCdjKBPKU8zaVAxdzyV zlp8MW3cA7ncM3dTJlKba9Hjk/hxvXi/haJi1fn06RQcWItQcsNzG7m4xHMnyktW pX+rAQeyiagvkOrSFwPvxMQMvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB1Cv01Q zX78iMepw/wxB8diPDivMB8GA1UdIwQYMBaAFATYSCHhO4AwM1TEvjQzHVER8rym MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMDcyMS9DOTEyN0IzRUFE QzgxMUVEOTIxNjIyMEVDNEY5QUUwMi9CTmhJSWVFN2dEQXpWTVMtTkRNZFVSSHl2 S1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JOaElJZUU3Z0RBelZNUy1ORE1kVVJIeXZLWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MDcyMS9DOTEyN0IzRUFEQzgxMUVEOTIxNjIyMEVDNEY5QUUwMi9CTmhJSWVFN2dE QXpWTVMtTkRNZFVSSHl2S1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEcSaSgIxIQMbcF5oD831c5Y8ayrotTRVhwbVb5vS22KSL53ULR6JQ fJb8vpo88iw22Bi3ExWEmu4CeK6sARZfjl8waU+Xx6RVS2Kh1UL5j0PxkKJXk/lQ bFQh2tS+rmL15BYvVX/FTSTsBnOTd/e5xCpFb9tlsRDt1E5dRDVBHGDRctmyWQo9 z+BmRvcAo+50sFK2orjAEwqDDIoVHTtHyaCS06y73bG8nFkVVLWv/BobxdCnyvx2 tWy2eRkEcE9Q/yiv4EMaRZKJdtVqoxhIyk2+FlBKQXEQCsQzpySo/4jVLKN8NJ6T o64Q2WUBGEfBVVFeZUH8DEty4pkVqNS3 -----END CERTIFICATE-----Generated at Sat Aug 23 13:52:33 2025 by rpki-client