$ rpki-client -vvf rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft File: BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft (raw, json) Hash identifier: 3Fo/Z7fQ4p2w8CjMxvRlWZ8JGJn9pmmoDmC+8/wBUdw= Subject key identifier: 12:93:F7:23:9F:BD:99:86:EB:4B:A3:7A:27:4A:72:40:BA:26:AE:FB Authority key identifier: 06:66:6A:EC:D7:8C:0A:5E:D1:37:90:A5:E9:AA:40:C3:49:0F:BC:F1 Certificate issuer: /CN=A91F63DC/serialNumber=06666AECD78C0A5ED13790A5E9AA40C3490FBCF1 Certificate serial: 0162 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BmZq7NeMCl7RN5Cl6apAw0kPvPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft Manifest number: 0160 Signing time: Sat 23 Aug 2025 04:08:06 +0000 Manifest this update: Sat 23 Aug 2025 04:08:06 +0000 Manifest next update: Sat 30 Aug 2025 04:08:06 +0000 Files and hashes: 1: BmZq7NeMCl7RN5Cl6apAw0kPvPE.crl (hash: SDe8rKHlEyd9N9dDXj4ggs3d+RZQ2iVwWOaklxBsYmg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.crl rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BmZq7NeMCl7RN5Cl6apAw0kPvPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:08:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 354 (0x162) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F63DC, serialNumber=06666AECD78C0A5ED13790A5E9AA40C3490FBCF1 Validity Not Before: Aug 23 04:08:06 2025 GMT Not After : Aug 30 04:08:06 2025 GMT Subject: CN=68a93ea6-9eb8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ed:64:82:e0:ad:4f:ef:9e:50:d9:13:fb:f2: 9b:5a:08:eb:b3:20:3c:a0:3b:c9:d9:31:8c:a2:aa: aa:78:ed:80:67:f8:f5:2b:2b:bb:51:b4:f1:13:ff: 35:32:ef:ce:85:72:da:d9:b1:45:1e:c4:97:2c:7e: 0a:13:70:a0:b5:18:25:be:c3:50:55:22:ba:71:06: c4:bc:69:24:78:66:2c:98:12:7b:21:8f:ca:c3:0d: bb:1c:08:19:50:6a:49:46:64:27:6d:e3:0e:6a:2d: ac:63:56:e1:bf:5f:a8:4c:42:57:b5:5a:ad:83:bf: 02:c4:66:3a:ee:c1:08:c4:a9:ef:5e:a1:6e:cb:69: 60:56:81:6d:8a:27:e1:ae:81:a5:a7:c2:9f:ce:85: 49:e0:68:34:2f:27:6e:ef:d6:70:59:f4:47:75:ce: 38:b3:02:18:dc:ce:49:87:77:f4:6d:10:eb:39:4d: 1b:10:4a:4e:5b:84:6b:21:f6:0d:b7:e5:40:a1:9d: 72:f2:08:09:d6:5e:13:f6:f9:60:03:eb:14:23:64: fe:92:d7:43:bc:15:2d:50:b2:93:e7:28:64:c0:ec: 39:b2:f8:f4:e4:51:57:77:d6:bd:2a:39:80:9b:d5: dd:7d:ea:26:59:1e:c3:1b:e2:77:c9:44:96:5c:04: 08:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:93:F7:23:9F:BD:99:86:EB:4B:A3:7A:27:4A:72:40:BA:26:AE:FB X509v3 Authority Key Identifier: keyid:06:66:6A:EC:D7:8C:0A:5E:D1:37:90:A5:E9:AA:40:C3:49:0F:BC:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BmZq7NeMCl7RN5Cl6apAw0kPvPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:53:40:8f:b3:5e:bd:4a:b2:ea:16:5b:1d:59:49:be:37:cf: 26:01:b3:06:d7:f2:81:a5:1b:57:54:6f:83:09:ab:6c:11:42: f2:c9:34:54:06:d4:1b:88:17:11:e4:d4:e3:70:ac:55:8e:a0: 85:f9:a9:5a:27:c8:1c:68:01:5a:24:e4:b5:ad:e9:97:10:a9: 2d:a2:45:79:f9:94:51:ad:90:98:04:b3:0b:e2:46:a6:c8:3c: f4:64:95:fa:9d:35:7b:6d:23:0c:38:00:41:b3:9c:df:90:ca: 28:41:c9:49:0a:fc:a1:4c:83:ec:72:f2:90:77:2d:84:f1:78: 14:23:69:e4:17:5f:5d:19:08:fe:cf:90:d1:d7:d1:3d:34:63: 46:54:cb:f4:02:23:d6:39:5b:55:32:a5:13:56:dd:45:82:31: 2a:c1:6c:77:c2:1c:b2:02:7e:d1:66:96:c4:95:af:0f:38:6e: 15:0e:58:63:fc:6e:90:af:05:a1:df:7f:05:16:6d:ea:1a:43: 75:5a:34:1a:18:4f:13:bd:b5:f9:e7:6a:d5:c6:00:c2:8c:4d: 73:7d:b3:ba:36:ed:5b:07:b2:4a:2a:0f:40:c5:32:29:ab:1a: 5f:f2:22:bc:b9:dc:a3:e9:c3:7e:70:d2:9b:22:1e:b0:b9:97: de:7d:6d:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYzREMxMTAvBgNVBAUTKDA2NjY2QUVDRDc4QzBBNUVEMTM3OTBBNUU5QUE0MEMz NDkwRkJDRjEwHhcNMjUwODIzMDQwODA2WhcNMjUwODMwMDQwODA2WjAYMRYwFAYD VQQDEw02OGE5M2VhNi05ZWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx+1kguCtT++eUNkT+/KbWgjrsyA8oDvJ2TGMoqqqeO2AZ/j1Kyu7UbTxE/81 Mu/OhXLa2bFFHsSXLH4KE3CgtRglvsNQVSK6cQbEvGkkeGYsmBJ7IY/Kww27HAgZ UGpJRmQnbeMOai2sY1bhv1+oTEJXtVqtg78CxGY67sEIxKnvXqFuy2lgVoFtiifh roGlp8KfzoVJ4Gg0Lydu79ZwWfRHdc44swIY3M5Jh3f0bRDrOU0bEEpOW4RrIfYN t+VAoZ1y8ggJ1l4T9vlgA+sUI2T+ktdDvBUtULKT5yhkwOw5svj05FFXd9a9KjmA m9XdfeomWR7DG+J3yUSWXAQIqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBKT9yOf vZmG60ujeidKckC6Jq77MB8GA1UdIwQYMBaAFAZmauzXjApe0TeQpemqQMNJD7zx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjNEQy8wNDMxNTJFMjY2 NTMxMUVFOUM2OEVFMkJDNEY5QUUwMi9CbVpxN05lTUNsN1JONUNsNmFwQXcwa1B2 UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JtWnE3TmVNQ2w3Uk41Q2w2YXBBdzBrUHZQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjNEQy8wNDMxNTJFMjY2NTMxMUVFOUM2OEVFMkJDNEY5QUUwMi9CbVpxN05lTUNs N1JONUNsNmFwQXcwa1B2UEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgU0CPs169SrLqFlsdWUm+N88mAbMG1/KBpRtXVG+DCatsEULyyTRU BtQbiBcR5NTjcKxVjqCF+alaJ8gcaAFaJOS1remXEKktokV5+ZRRrZCYBLML4kam yDz0ZJX6nTV7bSMMOABBs5zfkMooQclJCvyhTIPscvKQdy2E8XgUI2nkF19dGQj+ z5DR19E9NGNGVMv0AiPWOVtVMqUTVt1FgjEqwWx3whyyAn7RZpbEla8POG4VDlhj /G6QrwWh338FFm3qGkN1WjQaGE8TvbX552rVxgDCjE1zfbO6Nu1bB7JKKg9AxTIp qxpf8iK8udyj6cN+cNKbIh6wuZfefW1Q -----END CERTIFICATE-----Generated at Sat Aug 23 13:34:27 2025 by rpki-client