$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6CB0/3556201C093211EC98B8DF0EC4F9AE02/bRdadMGgmL-i337kNxYF_2owQkk.mft File: bRdadMGgmL-i337kNxYF_2owQkk.mft (raw, json) Hash identifier: zcEtflsrONsBhWGlctXTN5OOMG49rBeGkf9Lgr8icvM= Subject key identifier: 27:85:62:4A:D9:49:7F:C5:6B:AD:84:B0:72:5B:4B:F1:27:DA:20:AF Authority key identifier: 6D:17:5A:74:C1:A0:98:BF:A2:DF:7E:E4:37:16:05:FF:6A:30:42:49 Certificate issuer: /CN=A91F6CB0/serialNumber=6D175A74C1A098BFA2DF7EE4371605FF6A304249 Certificate serial: 0555 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bRdadMGgmL-i337kNxYF_2owQkk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6CB0/3556201C093211EC98B8DF0EC4F9AE02/bRdadMGgmL-i337kNxYF_2owQkk.mft Manifest number: 0541 Signing time: Fri 22 Aug 2025 23:41:31 +0000 Manifest this update: Fri 22 Aug 2025 23:41:30 +0000 Manifest next update: Fri 29 Aug 2025 23:41:30 +0000 Files and hashes: 1: bRdadMGgmL-i337kNxYF_2owQkk.crl (hash: mANj+A2e9I0zOqQ5ysVhjC8E0KvcPsDE6kwI0g5MDGU=) 2: 80379A8A09EA11EC8762242CC4F9AE02.roa (hash: oUfVdTa0mjIDOWEk7LkWCWIoYXH4veF78cMtHzj33q8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6CB0/3556201C093211EC98B8DF0EC4F9AE02/bRdadMGgmL-i337kNxYF_2owQkk.crl rsync://rpki.apnic.net/member_repository/A91F6CB0/3556201C093211EC98B8DF0EC4F9AE02/bRdadMGgmL-i337kNxYF_2owQkk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bRdadMGgmL-i337kNxYF_2owQkk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:41:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1365 (0x555) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6CB0, serialNumber=6D175A74C1A098BFA2DF7EE4371605FF6A304249 Validity Not Before: Aug 22 23:41:30 2025 GMT Not After : Aug 29 23:41:30 2025 GMT Subject: CN=68a9002b-69b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:51:32:68:70:17:dc:c3:60:18:52:9b:9f:f0: a9:5f:c9:81:b6:8a:ae:fc:d3:fd:17:65:e8:6f:1c: 8d:73:90:53:46:df:db:3e:ec:84:e8:84:17:10:10: 41:f7:2d:63:4b:42:2a:9a:8d:b6:a3:43:02:00:c7: a3:84:48:e4:02:03:fc:b8:32:6c:78:be:58:fe:ce: 99:ae:8c:43:c9:10:85:68:b9:c2:a5:ee:35:60:ef: e3:68:f4:3e:7f:d2:56:bd:5e:da:5f:06:da:ae:de: e9:ea:76:d1:91:c5:4a:00:8b:f6:12:69:af:ea:3b: 5a:d0:40:1e:53:90:69:7d:d3:83:53:35:fa:f5:9b: e8:af:22:cc:27:92:16:05:74:55:4b:08:27:e7:07: 49:91:94:61:69:c6:a2:58:cf:a6:a9:4c:10:a4:8f: 82:ab:37:37:72:f5:d7:3d:39:88:b5:3b:c8:fa:f8: bb:92:53:24:89:44:74:19:d8:20:c4:aa:90:9f:9d: c1:88:e2:cd:83:dc:6b:03:1e:f1:81:25:4f:fd:72: d0:14:2f:c7:ac:ae:4b:ac:5b:42:25:34:77:63:82: e8:cb:44:a3:ea:64:b9:f1:19:38:2e:94:ae:81:e2: 6c:7f:c3:db:22:bd:42:c1:60:7a:1b:09:a2:60:d2: 7f:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:85:62:4A:D9:49:7F:C5:6B:AD:84:B0:72:5B:4B:F1:27:DA:20:AF X509v3 Authority Key Identifier: keyid:6D:17:5A:74:C1:A0:98:BF:A2:DF:7E:E4:37:16:05:FF:6A:30:42:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6CB0/3556201C093211EC98B8DF0EC4F9AE02/bRdadMGgmL-i337kNxYF_2owQkk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bRdadMGgmL-i337kNxYF_2owQkk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6CB0/3556201C093211EC98B8DF0EC4F9AE02/bRdadMGgmL-i337kNxYF_2owQkk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:bc:43:c0:76:1a:af:d6:9c:ab:ad:a8:7b:a3:1d:78:41:bb: 3e:a2:67:8a:cb:cf:11:75:b5:e8:c4:fc:16:bb:cb:3b:22:27: f0:08:a6:e6:bd:8e:e8:5b:67:03:ba:7b:c2:6b:c9:fc:df:2c: f3:6c:3c:eb:36:2e:3e:2c:9d:f1:50:f1:a5:73:8c:62:59:e9: fc:74:46:ed:85:2a:49:4e:e0:41:73:bc:00:e7:35:b3:e6:f0: d3:5e:a1:5b:ff:4d:87:c5:1b:f7:c8:94:25:38:03:b2:c0:5a: 09:8e:e9:5c:d0:56:b8:e5:13:04:ac:66:ae:38:f3:42:46:a8: b8:d0:82:94:01:7c:f2:29:cd:46:ec:29:27:14:d4:41:2f:a0: 5f:6d:1d:13:8a:f5:13:4e:fb:33:37:49:cd:43:7c:d6:d6:bc: fc:7a:c4:0d:33:76:34:37:93:f6:f8:ac:23:e2:b3:23:92:10: 1d:46:f3:11:a4:50:6d:7c:73:65:15:cc:98:24:53:2d:d5:93: d7:aa:e9:f0:47:f0:b5:fa:3b:79:88:46:69:09:1d:dc:d7:6c: 28:44:f3:8c:06:5d:71:97:70:79:cc:84:06:db:9f:c4:12:8e: 9c:af:8b:54:6c:1b:8b:83:18:0f:75:5a:51:25:1c:fd:7f:72: 54:9b:0e:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZDQjAxMTAvBgNVBAUTKDZEMTc1QTc0QzFBMDk4QkZBMkRGN0VFNDM3MTYwNUZG NkEzMDQyNDkwHhcNMjUwODIyMjM0MTMwWhcNMjUwODI5MjM0MTMwWjAYMRYwFAYD VQQDEw02OGE5MDAyYi02OWI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApFEyaHAX3MNgGFKbn/CpX8mBtoqu/NP9F2XobxyNc5BTRt/bPuyE6IQXEBBB 9y1jS0Iqmo22o0MCAMejhEjkAgP8uDJseL5Y/s6ZroxDyRCFaLnCpe41YO/jaPQ+ f9JWvV7aXwbart7p6nbRkcVKAIv2Emmv6jta0EAeU5BpfdODUzX69ZvoryLMJ5IW BXRVSwgn5wdJkZRhacaiWM+mqUwQpI+Cqzc3cvXXPTmItTvI+vi7klMkiUR0Gdgg xKqQn53BiOLNg9xrAx7xgSVP/XLQFC/HrK5LrFtCJTR3Y4Loy0Sj6mS58Rk4LpSu geJsf8PbIr1CwWB6GwmiYNJ/0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCeFYkrZ SX/Fa62EsHJbS/En2iCvMB8GA1UdIwQYMBaAFG0XWnTBoJi/ot9+5DcWBf9qMEJJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkNCMC8zNTU2MjAxQzA5 MzIxMUVDOThCOERGMEVDNEY5QUUwMi9iUmRhZE1HZ21MLWkzMzdrTnhZRl8yb3dR a2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JSZGFkTUdnbUwtaTMzN2tOeFlGXzJvd1Fray5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NkNCMC8zNTU2MjAxQzA5MzIxMUVDOThCOERGMEVDNEY5QUUwMi9iUmRhZE1HZ21M LWkzMzdrTnhZRl8yb3dRa2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkvEPAdhqv1pyrrah7ox14Qbs+omeKy88RdbXoxPwWu8s7IifwCKbm vY7oW2cDunvCa8n83yzzbDzrNi4+LJ3xUPGlc4xiWen8dEbthSpJTuBBc7wA5zWz 5vDTXqFb/02HxRv3yJQlOAOywFoJjulc0Fa45RMErGauOPNCRqi40IKUAXzyKc1G 7CknFNRBL6BfbR0TivUTTvszN0nNQ3zW1rz8esQNM3Y0N5P2+Kwj4rMjkhAdRvMR pFBtfHNlFcyYJFMt1ZPXqunwR/C1+jt5iEZpCR3c12woRPOMBl1xl3B5zIQG25/E Eo6cr4tUbBuLgxgPdVpRJRz9f3JUmw6h -----END CERTIFICATE-----Generated at Sat Aug 23 21:04:19 2025 by rpki-client