$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6CB0/3556201C093211EC98B8DF0EC4F9AE02/bRdadMGgmL-i337kNxYF_2owQkk.mft File: bRdadMGgmL-i337kNxYF_2owQkk.mft (raw, json) Hash identifier: 983eC26UXFEYpSIP0uuayfBDOI+frOTBvpwnqLKC6vs= Subject key identifier: D6:0E:AD:23:38:AA:8F:26:9A:B6:FF:67:85:B8:7A:14:89:A9:B7:23 Authority key identifier: 6D:17:5A:74:C1:A0:98:BF:A2:DF:7E:E4:37:16:05:FF:6A:30:42:49 Certificate issuer: /CN=A91F6CB0/serialNumber=6D175A74C1A098BFA2DF7EE4371605FF6A304249 Certificate serial: 0538 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bRdadMGgmL-i337kNxYF_2owQkk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6CB0/3556201C093211EC98B8DF0EC4F9AE02/bRdadMGgmL-i337kNxYF_2owQkk.mft Manifest number: 0525 Signing time: Wed 02 Jul 2025 23:54:28 +0000 Manifest this update: Wed 02 Jul 2025 23:54:27 +0000 Manifest next update: Wed 09 Jul 2025 23:54:27 +0000 Files and hashes: 1: bRdadMGgmL-i337kNxYF_2owQkk.crl (hash: of1mH+Z6VdiaY6mTwIMd2lVD8R/SHZgyp5+BLtJsHGU=) 2: 80379A8A09EA11EC8762242CC4F9AE02.roa (hash: bLDcJFTKOtM843ZtxHRVBda6/t9v0F+nd+NQWcmzuYk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6CB0/3556201C093211EC98B8DF0EC4F9AE02/bRdadMGgmL-i337kNxYF_2owQkk.crl rsync://rpki.apnic.net/member_repository/A91F6CB0/3556201C093211EC98B8DF0EC4F9AE02/bRdadMGgmL-i337kNxYF_2owQkk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bRdadMGgmL-i337kNxYF_2owQkk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 23:54:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1336 (0x538) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6CB0, serialNumber=6D175A74C1A098BFA2DF7EE4371605FF6A304249 Validity Not Before: Jul 2 23:54:27 2025 GMT Not After : Jul 9 23:54:27 2025 GMT Subject: CN=6865c6b3-f156 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:e2:36:e6:76:7b:86:3d:b4:ce:85:a4:2d:12: 10:bb:54:e3:ea:08:19:e9:41:3a:97:10:02:06:df: d4:fe:58:83:22:b1:e7:e8:f3:bc:be:f8:0e:60:c0: 8a:f0:3e:c4:2c:db:1e:5f:0e:e8:14:64:ea:a2:0f: 74:92:d8:b4:1d:ad:a8:92:c1:01:fa:14:bc:04:69: 76:3a:b6:56:14:3d:9e:0a:b1:0e:96:d2:95:d4:e0: 7e:0f:42:2e:9f:03:ca:e6:92:c3:fa:20:48:f0:34: 45:c6:62:c5:64:3e:4d:06:49:8c:8f:ee:69:44:7e: a4:2e:67:0c:27:72:17:0d:6d:9d:b1:97:ab:af:fc: fc:0d:6f:31:41:4e:08:c7:81:f9:84:35:02:3c:f8: e2:6d:c8:0d:2b:cb:52:f1:b1:92:41:a9:09:05:32: ba:4a:3b:5e:84:38:5c:31:73:a4:2a:67:f0:c0:c1: f7:08:48:b4:ee:af:ad:b5:d7:0e:51:0b:3a:a4:38: 2e:7a:00:62:bb:d6:f4:b5:d1:65:31:d8:cb:d7:96: 59:3b:9b:ce:de:f0:77:48:02:3d:96:a3:0d:26:6f: 5c:f3:8a:2c:08:cb:91:de:69:b2:8e:c6:ae:7f:5b: be:e9:9c:57:41:52:e2:35:8a:b8:b7:38:e0:0f:c4: ac:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:0E:AD:23:38:AA:8F:26:9A:B6:FF:67:85:B8:7A:14:89:A9:B7:23 X509v3 Authority Key Identifier: keyid:6D:17:5A:74:C1:A0:98:BF:A2:DF:7E:E4:37:16:05:FF:6A:30:42:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6CB0/3556201C093211EC98B8DF0EC4F9AE02/bRdadMGgmL-i337kNxYF_2owQkk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bRdadMGgmL-i337kNxYF_2owQkk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6CB0/3556201C093211EC98B8DF0EC4F9AE02/bRdadMGgmL-i337kNxYF_2owQkk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:06:62:a1:68:10:56:f9:37:77:1c:d9:3a:15:19:93:6d:ff: 87:60:bb:05:56:af:f7:b3:dc:a3:6e:25:2e:e4:ff:5d:c7:9f: c7:f2:39:3e:12:17:35:c1:14:11:ac:52:ec:d6:f3:46:6e:d7: b3:49:ac:2c:ec:2b:1e:b8:8d:a7:8f:25:88:d0:26:de:f1:ab: 73:80:2d:46:7d:0f:fb:90:3e:8a:98:8c:80:90:b3:24:fe:0e: b7:8a:c5:2c:f1:28:82:60:3b:fc:25:47:0f:cb:fb:17:73:46: 46:b8:dd:1e:c2:a3:5e:c7:7c:39:b0:1f:de:fa:14:ca:3f:99: 97:47:de:2a:b6:6a:17:2e:6f:63:b6:77:96:11:bb:23:28:21: ca:ca:01:83:b4:9e:9e:84:bf:f4:bc:3d:fe:e5:52:fa:42:84: 89:b4:d2:a4:8c:99:28:c1:8a:09:b7:e5:54:1c:4c:58:09:8d: 00:c1:c6:6f:1c:cb:49:24:17:69:93:ba:be:61:a2:8f:77:90: 06:1b:5e:50:28:f9:c0:55:4b:bd:cc:8c:a9:4f:24:3d:51:5e: c4:ce:0d:a8:05:e5:c3:17:47:c0:66:c7:de:61:81:11:bc:df: 5a:cc:a6:0c:36:00:24:cd:c5:7b:4b:06:60:f7:3e:e6:11:27: df:1b:d9:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBTgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZDQjAxMTAvBgNVBAUTKDZEMTc1QTc0QzFBMDk4QkZBMkRGN0VFNDM3MTYwNUZG NkEzMDQyNDkwHhcNMjUwNzAyMjM1NDI3WhcNMjUwNzA5MjM1NDI3WjAYMRYwFAYD VQQDEw02ODY1YzZiMy1mMTU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3+I25nZ7hj20zoWkLRIQu1Tj6ggZ6UE6lxACBt/U/liDIrHn6PO8vvgOYMCK 8D7ELNseXw7oFGTqog90kti0Ha2oksEB+hS8BGl2OrZWFD2eCrEOltKV1OB+D0Iu nwPK5pLD+iBI8DRFxmLFZD5NBkmMj+5pRH6kLmcMJ3IXDW2dsZerr/z8DW8xQU4I x4H5hDUCPPjibcgNK8tS8bGSQakJBTK6SjtehDhcMXOkKmfwwMH3CEi07q+ttdcO UQs6pDguegBiu9b0tdFlMdjL15ZZO5vO3vB3SAI9lqMNJm9c84osCMuR3mmyjsau f1u+6ZxXQVLiNYq4tzjgD8SsMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNYOrSM4 qo8mmrb/Z4W4ehSJqbcjMB8GA1UdIwQYMBaAFG0XWnTBoJi/ot9+5DcWBf9qMEJJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkNCMC8zNTU2MjAxQzA5 MzIxMUVDOThCOERGMEVDNEY5QUUwMi9iUmRhZE1HZ21MLWkzMzdrTnhZRl8yb3dR a2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JSZGFkTUdnbUwtaTMzN2tOeFlGXzJvd1Fray5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NkNCMC8zNTU2MjAxQzA5MzIxMUVDOThCOERGMEVDNEY5QUUwMi9iUmRhZE1HZ21M LWkzMzdrTnhZRl8yb3dRa2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrBmKhaBBW+Td3HNk6FRmTbf+HYLsFVq/3s9yjbiUu5P9dx5/H8jk+ Ehc1wRQRrFLs1vNGbtezSaws7CseuI2njyWI0Cbe8atzgC1GfQ/7kD6KmIyAkLMk /g63isUs8SiCYDv8JUcPy/sXc0ZGuN0ewqNex3w5sB/e+hTKP5mXR94qtmoXLm9j tneWEbsjKCHKygGDtJ6ehL/0vD3+5VL6QoSJtNKkjJkowYoJt+VUHExYCY0AwcZv HMtJJBdpk7q+YaKPd5AGG15QKPnAVUu9zIypTyQ9UV7Ezg2oBeXDF0fAZsfeYYER vN9azKYMNgAkzcV7SwZg9z7mESffG9n0 -----END CERTIFICATE-----Generated at Thu Jul 3 23:07:37 2025 by rpki-client