$ rpki-client -vvf rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft File: BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft (raw, json) Hash identifier: BT4uBdZeNhvsES2J0BRgZH+dpoMOozC5GNVzvW9eT0w= Subject key identifier: F2:DE:25:B9:A7:F2:57:D4:D3:68:96:A2:22:A0:37:14:A4:55:20:07 Authority key identifier: 06:66:6A:EC:D7:8C:0A:5E:D1:37:90:A5:E9:AA:40:C3:49:0F:BC:F1 Certificate issuer: /CN=A91F63DC/serialNumber=06666AECD78C0A5ED13790A5E9AA40C3490FBCF1 Certificate serial: 0144 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BmZq7NeMCl7RN5Cl6apAw0kPvPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft Manifest number: 0142 Signing time: Sun 29 Jun 2025 03:25:22 +0000 Manifest this update: Sun 29 Jun 2025 03:25:21 +0000 Manifest next update: Sun 06 Jul 2025 03:25:21 +0000 Files and hashes: 1: BmZq7NeMCl7RN5Cl6apAw0kPvPE.crl (hash: LkAKysqRcR+AGRvdd8YOGK5cioEpI/32AHsABNRd9Tk=) 2: 9FFF0E74665511EEB872BE4DC4F9AE02.roa (hash: HsI9s/avf/WsE7yy/2Fnz0a9pkM1ZrwF3kHF8jU1yp8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.crl rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BmZq7NeMCl7RN5Cl6apAw0kPvPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 03:25:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 324 (0x144) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F63DC, serialNumber=06666AECD78C0A5ED13790A5E9AA40C3490FBCF1 Validity Not Before: Jun 29 03:25:21 2025 GMT Not After : Jul 6 03:25:21 2025 GMT Subject: CN=6860b222-c179 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:18:b4:49:28:c1:ec:e8:2b:67:e3:69:81:ac: 04:a1:b7:f9:c1:dc:a9:ac:e3:46:7f:67:87:5c:d9: 29:01:71:8d:82:e2:cb:4b:cd:01:b5:e4:3a:d7:f0: 14:8e:b0:25:61:a9:63:2d:79:1a:ac:11:48:dd:40: fe:b3:ce:86:8d:68:a8:43:70:7f:f3:51:2b:49:37: bb:e2:63:35:66:8f:8a:0e:13:4f:8a:ec:c0:65:55: 04:f5:b2:a5:f9:a7:c6:16:d6:fd:ca:5e:b4:df:4c: 9b:d2:ac:2a:57:99:cd:ea:83:ce:df:63:f8:83:74: 6c:48:bf:cf:86:04:f6:61:0b:d4:b2:7c:79:09:79: 76:59:44:00:98:18:9c:46:ef:6d:51:74:79:88:04: 51:12:d0:d3:a8:87:9f:30:32:f2:3b:c2:30:66:c1: 12:24:dd:04:e3:8d:a8:aa:2d:40:c6:88:03:a2:a8: 7b:35:7d:16:0b:27:08:3a:12:38:1e:61:01:77:1a: 51:02:1f:05:e9:95:44:e0:09:c4:75:1e:92:45:14: b8:2e:39:2c:e9:66:44:6f:fa:12:0a:fc:bf:a7:29: ae:ed:12:c9:5f:c5:3c:01:45:ec:d9:fd:e1:aa:d5: a3:60:e0:28:98:c0:58:af:e3:28:88:49:c7:6c:1b: 6c:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:DE:25:B9:A7:F2:57:D4:D3:68:96:A2:22:A0:37:14:A4:55:20:07 X509v3 Authority Key Identifier: keyid:06:66:6A:EC:D7:8C:0A:5E:D1:37:90:A5:E9:AA:40:C3:49:0F:BC:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BmZq7NeMCl7RN5Cl6apAw0kPvPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:56:02:76:d1:2d:27:52:67:35:d1:a2:e8:5b:df:7e:38:cb: 33:45:b9:10:1a:b8:f7:46:d7:e3:74:9f:a5:a1:85:cf:65:99: 9c:27:28:1d:e6:4e:69:b1:47:46:3b:4e:43:28:cb:ae:6d:5d: 0a:92:1a:60:e8:ae:d8:dc:21:53:a6:04:cc:23:40:81:ba:34: 27:91:91:b8:ac:43:00:34:3e:40:26:38:52:59:98:3e:0f:28: 77:0d:ac:99:6b:b9:12:84:5d:0d:84:ab:9b:ac:ac:58:bd:84: 6c:dd:5e:e6:3b:23:ff:33:38:1b:be:33:85:e6:63:e8:58:df: 7d:a4:6f:42:4c:b8:e5:fc:95:c3:05:68:7a:70:94:3b:ee:21: 34:52:dc:ed:63:0d:65:f0:6a:8e:1b:23:26:fd:3b:6a:73:19: 25:d2:f6:eb:f8:51:52:10:67:31:98:99:40:72:45:09:74:2f: 8f:e2:50:23:3e:e3:df:ed:8b:f9:71:2a:a3:85:d7:d2:f0:b4: 0d:0f:41:67:d5:5b:49:ab:bd:af:e4:87:f9:b7:6c:9e:29:e9: e1:ce:1b:60:53:70:47:18:28:8f:9e:ea:38:52:aa:53:77:7c: b9:bd:1e:96:1b:73:e6:ae:84:7f:66:25:23:e2:67:3c:be:5f: 0c:6a:94:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYzREMxMTAvBgNVBAUTKDA2NjY2QUVDRDc4QzBBNUVEMTM3OTBBNUU5QUE0MEMz NDkwRkJDRjEwHhcNMjUwNjI5MDMyNTIxWhcNMjUwNzA2MDMyNTIxWjAYMRYwFAYD VQQDEw02ODYwYjIyMi1jMTc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsxi0SSjB7OgrZ+NpgawEobf5wdyprONGf2eHXNkpAXGNguLLS80BteQ61/AU jrAlYaljLXkarBFI3UD+s86GjWioQ3B/81ErSTe74mM1Zo+KDhNPiuzAZVUE9bKl +afGFtb9yl6030yb0qwqV5nN6oPO32P4g3RsSL/PhgT2YQvUsnx5CXl2WUQAmBic Ru9tUXR5iARREtDTqIefMDLyO8IwZsESJN0E442oqi1AxogDoqh7NX0WCycIOhI4 HmEBdxpRAh8F6ZVE4AnEdR6SRRS4Ljks6WZEb/oSCvy/pymu7RLJX8U8AUXs2f3h qtWjYOAomMBYr+MoiEnHbBtsZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPLeJbmn 8lfU02iWoiKgNxSkVSAHMB8GA1UdIwQYMBaAFAZmauzXjApe0TeQpemqQMNJD7zx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjNEQy8wNDMxNTJFMjY2 NTMxMUVFOUM2OEVFMkJDNEY5QUUwMi9CbVpxN05lTUNsN1JONUNsNmFwQXcwa1B2 UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JtWnE3TmVNQ2w3Uk41Q2w2YXBBdzBrUHZQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjNEQy8wNDMxNTJFMjY2NTMxMUVFOUM2OEVFMkJDNEY5QUUwMi9CbVpxN05lTUNs N1JONUNsNmFwQXcwa1B2UEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6VgJ20S0nUmc10aLoW99+OMszRbkQGrj3RtfjdJ+loYXPZZmcJygd 5k5psUdGO05DKMuubV0Kkhpg6K7Y3CFTpgTMI0CBujQnkZG4rEMAND5AJjhSWZg+ Dyh3DayZa7kShF0NhKubrKxYvYRs3V7mOyP/MzgbvjOF5mPoWN99pG9CTLjl/JXD BWh6cJQ77iE0UtztYw1l8GqOGyMm/Ttqcxkl0vbr+FFSEGcxmJlAckUJdC+P4lAj PuPf7Yv5cSqjhdfS8LQND0Fn1VtJq72v5If5t2yeKenhzhtgU3BHGCiPnuo4UqpT d3y5vR6WG3PmroR/ZiUj4mc8vl8MapRE -----END CERTIFICATE-----Generated at Sun Jun 29 19:27:02 2025 by rpki-client