$ rpki-client -vvf rpki.apnic.net/member_repository/A913DF8A/8F011C6EF37911EEB7E9DC6AC4F9AE02/bI36BDwiuKJ-q2BHCvQGYCSmhEA.mft File: bI36BDwiuKJ-q2BHCvQGYCSmhEA.mft (raw, json) Hash identifier: 9E87O9cTbKz+jNdxOP9SJZG4pD4kW7JfNiuIma5FWAo= Subject key identifier: DE:80:45:48:C3:3C:90:89:BA:90:93:EC:E4:2B:26:9A:C7:A8:29:97 Authority key identifier: 6C:8D:FA:04:3C:22:B8:A2:7E:AB:60:47:0A:F4:06:60:24:A6:84:40 Certificate issuer: /CN=A913DF8A/serialNumber=6C8DFA043C22B8A27EAB60470AF4066024A68440 Certificate serial: F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bI36BDwiuKJ-q2BHCvQGYCSmhEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913DF8A/8F011C6EF37911EEB7E9DC6AC4F9AE02/bI36BDwiuKJ-q2BHCvQGYCSmhEA.mft Manifest number: F1 Signing time: Sat 19 Jul 2025 05:30:22 +0000 Manifest this update: Sat 19 Jul 2025 05:30:22 +0000 Manifest next update: Sat 26 Jul 2025 05:30:22 +0000 Files and hashes: 1: bI36BDwiuKJ-q2BHCvQGYCSmhEA.crl (hash: MIx1LdHH5DkWGzpLxJT+R4Lh7jKokc6dXrc8r6reybM=) 2: EC873B66F37911EEA9FCAF6BC4F9AE02.roa (hash: R0DfmVDnEwGfUuvqVJCH+cmUjdIg5Xto6mNDm3yMbdg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913DF8A/8F011C6EF37911EEB7E9DC6AC4F9AE02/bI36BDwiuKJ-q2BHCvQGYCSmhEA.crl rsync://rpki.apnic.net/member_repository/A913DF8A/8F011C6EF37911EEB7E9DC6AC4F9AE02/bI36BDwiuKJ-q2BHCvQGYCSmhEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bI36BDwiuKJ-q2BHCvQGYCSmhEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 05:30:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 244 (0xf4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913DF8A, serialNumber=6C8DFA043C22B8A27EAB60470AF4066024A68440 Validity Not Before: Jul 19 05:30:22 2025 GMT Not After : Jul 26 05:30:22 2025 GMT Subject: CN=687b2d6e-2de9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ab:15:bf:27:d5:ec:26:98:37:a2:3d:9c:a8: c2:3e:7c:fb:7a:c6:54:c6:0c:3c:9f:3a:61:11:50: 1a:87:bd:d4:dd:fc:72:63:9d:2c:72:8d:00:f1:9e: e0:1f:96:13:c3:dd:55:78:a2:65:f7:66:7c:bc:09: 2b:ae:74:fa:7c:4e:63:02:2e:22:d7:24:4f:56:55: e0:54:06:a7:8d:a7:62:5e:b1:72:a1:19:fa:89:ba: 26:33:6c:f8:ed:c9:69:e0:0b:91:fa:fb:12:84:cc: 9a:a2:09:90:a7:8a:2d:23:dc:3f:7e:ef:fb:94:92: bc:62:a9:af:58:09:1c:97:da:fb:8f:03:32:44:c4: 97:d2:f8:c8:bd:b0:79:05:92:dd:63:44:fc:98:dd: c0:71:8c:82:83:d7:25:0a:1c:92:ca:27:35:91:34: e8:73:a9:38:86:2e:d2:3f:08:6c:03:aa:51:9f:b4: aa:c0:83:26:22:8d:46:df:6e:37:1a:13:1e:af:be: 16:9e:ae:34:cf:59:a3:38:9b:a2:dd:75:b3:3e:be: 27:0d:b3:1e:de:a9:84:d3:bc:5a:96:5b:3a:78:ff: 43:51:72:f1:6a:32:f8:69:17:17:a5:e6:cb:65:aa: a5:84:32:8e:4c:d1:ea:ae:63:9d:9d:74:3f:32:53: 92:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:80:45:48:C3:3C:90:89:BA:90:93:EC:E4:2B:26:9A:C7:A8:29:97 X509v3 Authority Key Identifier: keyid:6C:8D:FA:04:3C:22:B8:A2:7E:AB:60:47:0A:F4:06:60:24:A6:84:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913DF8A/8F011C6EF37911EEB7E9DC6AC4F9AE02/bI36BDwiuKJ-q2BHCvQGYCSmhEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bI36BDwiuKJ-q2BHCvQGYCSmhEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913DF8A/8F011C6EF37911EEB7E9DC6AC4F9AE02/bI36BDwiuKJ-q2BHCvQGYCSmhEA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:6d:59:da:bd:f6:62:60:52:e2:8d:25:63:59:0e:9d:34:d9: 74:1b:81:d2:e0:46:00:69:89:87:b7:b7:2b:a9:77:bc:f6:32: 98:ed:3e:86:28:3a:ac:f3:c7:91:46:de:7e:47:0f:6b:8e:39: 62:f9:b2:59:14:85:9a:9e:43:65:fe:2c:41:91:b4:81:e8:1a: d2:df:21:73:7c:b5:58:d0:a6:f7:78:ec:e0:eb:0c:4f:00:88: 5d:0a:c6:9b:ac:6b:08:0b:64:80:9a:cb:f8:9f:03:ca:81:37: 84:92:3a:18:3f:46:49:ec:8d:65:68:bc:91:51:cb:7b:35:41: 20:84:3d:f3:98:57:60:7f:04:6a:5b:2f:0f:a9:17:91:c8:5a: 10:a6:f9:37:7c:64:ec:d2:ab:fc:d7:95:d7:92:e4:81:df:b6: 60:66:f8:98:f7:9c:02:98:c4:1f:53:98:9a:45:91:5c:d0:f0: d4:27:86:9d:86:03:b1:bb:f9:4f:1e:00:f5:f9:9b:42:ef:da: 68:7f:f7:1c:0e:22:54:e0:10:a1:45:3c:c4:a6:89:83:22:fd: 55:00:f8:51:47:d1:c7:eb:6f:6f:af:fb:ab:4c:82:4a:6c:36: 3b:eb:2f:8d:f4:2e:21:b5:36:95:01:74:bc:f7:05:d5:63:07: fa:da:4f:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0RGOEExMTAvBgNVBAUTKDZDOERGQTA0M0MyMkI4QTI3RUFCNjA0NzBBRjQwNjYw MjRBNjg0NDAwHhcNMjUwNzE5MDUzMDIyWhcNMjUwNzI2MDUzMDIyWjAYMRYwFAYD VQQDEw02ODdiMmQ2ZS0yZGU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtKsVvyfV7CaYN6I9nKjCPnz7esZUxgw8nzphEVAah73U3fxyY50sco0A8Z7g H5YTw91VeKJl92Z8vAkrrnT6fE5jAi4i1yRPVlXgVAanjadiXrFyoRn6ibomM2z4 7clp4AuR+vsShMyaogmQp4otI9w/fu/7lJK8YqmvWAkcl9r7jwMyRMSX0vjIvbB5 BZLdY0T8mN3AcYyCg9clChySyic1kTToc6k4hi7SPwhsA6pRn7SqwIMmIo1G3243 GhMer74Wnq40z1mjOJui3XWzPr4nDbMe3qmE07xalls6eP9DUXLxajL4aRcXpebL ZaqlhDKOTNHqrmOdnXQ/MlOSuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN6ARUjD PJCJupCT7OQrJprHqCmXMB8GA1UdIwQYMBaAFGyN+gQ8IriifqtgRwr0BmAkpoRA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzREY4QS84RjAxMUM2RUYz NzkxMUVFQjdFOURDNkFDNEY5QUUwMi9iSTM2QkR3aXVLSi1xMkJIQ3ZRR1lDU21o RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JJMzZCRHdpdUtKLXEyQkhDdlFHWUNTbWhFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz REY4QS84RjAxMUM2RUYzNzkxMUVFQjdFOURDNkFDNEY5QUUwMi9iSTM2QkR3aXVL Si1xMkJIQ3ZRR1lDU21oRUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCebVnavfZiYFLijSVjWQ6dNNl0G4HS4EYAaYmHt7crqXe89jKY7T6G KDqs88eRRt5+Rw9rjjli+bJZFIWankNl/ixBkbSB6BrS3yFzfLVY0Kb3eOzg6wxP AIhdCsabrGsIC2SAmsv4nwPKgTeEkjoYP0ZJ7I1laLyRUct7NUEghD3zmFdgfwRq Wy8PqReRyFoQpvk3fGTs0qv815XXkuSB37ZgZviY95wCmMQfU5iaRZFc0PDUJ4ad hgOxu/lPHgD1+ZtC79pof/ccDiJU4BChRTzEpomDIv1VAPhRR9HH629vr/urTIJK bDY76y+N9C4htTaVAXS89wXVYwf62k+x -----END CERTIFICATE-----Generated at Sun Jul 20 10:39:56 2025 by rpki-client