$ rpki-client -vvf rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.mft File: bIAwUr-WwqtKuqntJqOptGOWBaM.mft (raw, json) Hash identifier: DCpsV82MnsyYjp7W7rplb3CSI09ZLVoLufBfP7XA/dg= Subject key identifier: A1:8D:FF:A3:FE:A5:E4:06:FE:0F:02:56:B9:59:9D:BF:E9:3E:BA:7A Authority key identifier: 6C:80:30:52:BF:96:C2:AB:4A:BA:A9:ED:26:A3:A9:B4:63:96:05:A3 Certificate issuer: /CN=A91F89A2/serialNumber=6C803052BF96C2AB4ABAA9ED26A3A9B4639605A3 Certificate serial: 010C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bIAwUr-WwqtKuqntJqOptGOWBaM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.mft Manifest number: 010A Signing time: Sat 05 Jul 2025 05:17:51 +0000 Manifest this update: Sat 05 Jul 2025 05:17:50 +0000 Manifest next update: Sat 12 Jul 2025 05:17:50 +0000 Files and hashes: 1: bIAwUr-WwqtKuqntJqOptGOWBaM.crl (hash: kRSLsRHKh70eOjRx4ls5/cNfHXX0LHsne1mUX+5WotQ=) 2: 0FBF57D2F16611EEB75BE640C4F9AE02.roa (hash: pARn59mvC3EFmnc54zsYhH0vh0pFsHJXtSQmvirMetQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.crl rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bIAwUr-WwqtKuqntJqOptGOWBaM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 268 (0x10c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F89A2, serialNumber=6C803052BF96C2AB4ABAA9ED26A3A9B4639605A3 Validity Not Before: Jul 5 05:17:50 2025 GMT Not After : Jul 12 05:17:50 2025 GMT Subject: CN=6868b57e-82fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:19:89:ba:5e:02:ea:1f:97:84:5f:95:b3:fb: e2:24:b1:cf:61:4d:c3:fd:e6:d2:4b:04:b6:65:c7: 4a:f4:f8:ca:55:18:ea:29:b9:9f:64:c8:ab:33:5a: 69:08:0d:39:b1:7d:3f:51:db:ff:f1:c4:a1:db:14: df:84:6f:31:3c:2c:4f:81:ac:f0:93:cf:38:4c:4c: bf:07:0f:06:84:79:e0:5a:da:4c:94:3e:90:3f:db: 3a:d7:0c:96:33:d7:24:c6:6a:e5:fe:38:c4:20:8c: 86:dd:62:4e:53:86:56:4d:39:de:0f:40:fc:a5:53: 53:0c:b7:ba:71:20:7d:94:85:fb:da:1a:2d:4b:42: 27:dd:b1:c2:b3:c9:a8:e6:55:94:e6:f7:54:18:54: bf:c0:30:0e:6b:62:09:70:88:99:41:1e:d7:92:b4: 3b:86:6a:87:ff:b5:cb:1e:84:44:65:78:b5:5f:68: 75:62:30:14:81:b6:1f:c3:71:83:76:c9:be:0b:ed: 67:c5:bc:a6:2d:59:2d:ca:18:2c:81:4a:68:23:80: 01:42:17:01:fc:37:f0:fd:aa:5a:ef:9f:81:81:c6: 05:ba:cd:c8:17:15:86:e1:64:be:68:cf:15:ef:63: b8:bb:a8:c1:3c:ec:23:50:ef:83:80:80:d2:35:6f: 6b:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:8D:FF:A3:FE:A5:E4:06:FE:0F:02:56:B9:59:9D:BF:E9:3E:BA:7A X509v3 Authority Key Identifier: keyid:6C:80:30:52:BF:96:C2:AB:4A:BA:A9:ED:26:A3:A9:B4:63:96:05:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bIAwUr-WwqtKuqntJqOptGOWBaM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:59:3d:4f:c6:01:ae:df:c6:08:cc:71:ea:ca:45:bd:0a:dc: 4d:a8:93:ba:4e:c7:01:4e:6e:f9:5c:45:6a:ad:5d:55:f2:90: 7f:28:0a:9a:8e:b5:64:c4:de:80:5c:01:95:53:ec:f0:e1:fa: 12:9c:94:54:95:56:72:0e:17:c6:d8:8d:d9:3f:03:bd:2c:af: 17:7b:c1:97:d9:35:10:65:f4:a3:75:a4:c0:d9:81:60:57:2c: 19:34:bc:e3:87:c3:bb:56:0e:0d:88:ac:ab:14:eb:b6:94:f3: 61:66:14:43:9c:ab:da:19:f4:48:7e:a2:d0:d8:6a:71:4f:81: 6e:46:47:50:c8:be:d8:26:0a:49:ba:73:26:90:9d:68:3b:eb: e1:65:03:66:e9:c8:89:30:87:9d:4b:b1:be:0d:a0:0b:87:94: 63:5a:63:86:be:07:96:6c:ae:e8:a1:07:34:93:23:e6:8b:e3: 08:c0:48:cc:f5:0a:0e:8a:e1:5b:6b:4e:85:83:89:51:2c:3c: 0f:ea:71:df:2e:9d:1f:29:cc:b0:51:e1:6e:2f:1f:40:c1:d7: 7c:01:1d:b5:1b:08:e2:21:64:c8:74:5f:8f:b0:9a:b9:d6:37: d8:06:2f:b6:b0:61:a6:91:a5:86:06:4a:c5:82:8e:5c:c0:c5: 1d:59:2c:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg5QTIxMTAvBgNVBAUTKDZDODAzMDUyQkY5NkMyQUI0QUJBQTlFRDI2QTNBOUI0 NjM5NjA1QTMwHhcNMjUwNzA1MDUxNzUwWhcNMjUwNzEyMDUxNzUwWjAYMRYwFAYD VQQDEw02ODY4YjU3ZS04MmZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7RmJul4C6h+XhF+Vs/viJLHPYU3D/ebSSwS2ZcdK9PjKVRjqKbmfZMirM1pp CA05sX0/Udv/8cSh2xTfhG8xPCxPgazwk884TEy/Bw8GhHngWtpMlD6QP9s61wyW M9ckxmrl/jjEIIyG3WJOU4ZWTTneD0D8pVNTDLe6cSB9lIX72hotS0In3bHCs8mo 5lWU5vdUGFS/wDAOa2IJcIiZQR7XkrQ7hmqH/7XLHoREZXi1X2h1YjAUgbYfw3GD dsm+C+1nxbymLVktyhgsgUpoI4ABQhcB/Dfw/apa75+BgcYFus3IFxWG4WS+aM8V 72O4u6jBPOwjUO+DgIDSNW9rOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKGN/6P+ peQG/g8CVrlZnb/pPrp6MB8GA1UdIwQYMBaAFGyAMFK/lsKrSrqp7SajqbRjlgWj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODlBMi9CQ0JBRTBDRUM1 NDExMUVFQUJDMkMzODVDNEY5QUUwMi9iSUF3VXItV3dxdEt1cW50SnFPcHRHT1dC YU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JJQXdVci1Xd3F0S3VxbnRKcU9wdEdPV0JhTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODlBMi9CQ0JBRTBDRUM1NDExMUVFQUJDMkMzODVDNEY5QUUwMi9iSUF3VXItV3dx dEt1cW50SnFPcHRHT1dCYU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9WT1PxgGu38YIzHHqykW9CtxNqJO6TscBTm75XEVqrV1V8pB/KAqa jrVkxN6AXAGVU+zw4foSnJRUlVZyDhfG2I3ZPwO9LK8Xe8GX2TUQZfSjdaTA2YFg VywZNLzjh8O7Vg4NiKyrFOu2lPNhZhRDnKvaGfRIfqLQ2GpxT4FuRkdQyL7YJgpJ unMmkJ1oO+vhZQNm6ciJMIedS7G+DaALh5RjWmOGvgeWbK7ooQc0kyPmi+MIwEjM 9QoOiuFba06Fg4lRLDwP6nHfLp0fKcywUeFuLx9Awdd8AR21GwjiIWTIdF+PsJq5 1jfYBi+2sGGmkaWGBkrFgo5cwMUdWSxv -----END CERTIFICATE-----Generated at Sat Jul 5 14:44:19 2025 by rpki-client