$ rpki-client -vvf rpki.apnic.net/member_repository/A913FC26/FEA57E60B67711E8A0A0D332C4F9AE02/bKnl9NY_H1jrllKlKzuc-7vnQbw.mft File: bKnl9NY_H1jrllKlKzuc-7vnQbw.mft (raw, json) Hash identifier: HopgI+Otggq/LjyLhyp6bGGuP4VjS2P/feLBMfODHWA= Subject key identifier: 22:6C:3B:82:8F:55:23:EC:3C:B2:56:C9:A0:8C:30:AB:44:7A:B0:E6 Authority key identifier: 6C:A9:E5:F4:D6:3F:1F:58:EB:96:52:A5:2B:3B:9C:FB:BB:E7:41:BC Certificate issuer: /CN=A913FC26/serialNumber=6CA9E5F4D63F1F58EB9652A52B3B9CFBBBE741BC Certificate serial: 1306 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKnl9NY_H1jrllKlKzuc-7vnQbw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913FC26/FEA57E60B67711E8A0A0D332C4F9AE02/bKnl9NY_H1jrllKlKzuc-7vnQbw.mft Manifest number: 12FF Signing time: Sun 20 Jul 2025 17:04:10 +0000 Manifest this update: Sun 20 Jul 2025 17:04:10 +0000 Manifest next update: Sun 27 Jul 2025 17:04:10 +0000 Files and hashes: 1: bKnl9NY_H1jrllKlKzuc-7vnQbw.crl (hash: 5q/kVaBDRdXH5It+Hjdq8bZQyI3FIzizWstpgs1EnfA=) 2: 706382C2B67811E8A2696333C4F9AE02.roa (hash: rzftRMPtJ5B6XfKei48LV2pqboch+DlK8AP2NtHbsfk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913FC26/FEA57E60B67711E8A0A0D332C4F9AE02/bKnl9NY_H1jrllKlKzuc-7vnQbw.crl rsync://rpki.apnic.net/member_repository/A913FC26/FEA57E60B67711E8A0A0D332C4F9AE02/bKnl9NY_H1jrllKlKzuc-7vnQbw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKnl9NY_H1jrllKlKzuc-7vnQbw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 17:04:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4870 (0x1306) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913FC26, serialNumber=6CA9E5F4D63F1F58EB9652A52B3B9CFBBBE741BC Validity Not Before: Jul 20 17:04:10 2025 GMT Not After : Jul 27 17:04:10 2025 GMT Subject: CN=687d218a-c790 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ed:7a:7a:e6:0e:de:43:51:ca:75:70:a6:a1: d5:56:f9:66:c0:29:10:7a:2a:56:d4:4f:00:c3:19: 11:0c:e8:55:6c:9b:6d:b2:6d:94:80:83:11:a5:09: 0f:e7:76:44:64:3d:7b:ef:3c:ca:1c:03:76:0d:12: 85:66:dd:78:a6:68:3f:ad:1a:02:20:b0:db:76:c4: b2:63:23:92:7c:67:9d:0f:c0:78:9c:cd:ab:90:ec: 41:f9:32:f2:17:6a:14:b4:db:f1:2a:d0:cd:55:03: 47:7d:96:f0:2a:da:e7:73:1e:2a:23:73:b4:48:35: 67:96:04:5b:13:69:63:ee:bf:e3:ce:3b:36:b9:83: 64:b2:a8:89:a5:dd:4e:60:bf:d7:4e:3c:f3:90:85: 21:88:55:be:79:fc:88:58:12:86:d3:a2:27:ec:83: 01:5b:98:14:25:00:f6:cb:1c:af:4d:53:31:5f:5a: 83:5b:67:05:a8:44:da:9e:e4:a4:28:54:eb:f5:8b: b8:15:65:08:27:79:f1:b4:56:aa:5e:69:cc:e2:33: a6:13:dc:23:9b:d6:c3:54:c9:49:a7:0c:2e:9e:f9: ba:94:85:99:9a:87:93:43:d5:d1:10:12:55:d9:74: 97:d4:4a:24:fd:3f:1e:83:46:32:ea:2a:fd:6d:f0: ff:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:6C:3B:82:8F:55:23:EC:3C:B2:56:C9:A0:8C:30:AB:44:7A:B0:E6 X509v3 Authority Key Identifier: keyid:6C:A9:E5:F4:D6:3F:1F:58:EB:96:52:A5:2B:3B:9C:FB:BB:E7:41:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913FC26/FEA57E60B67711E8A0A0D332C4F9AE02/bKnl9NY_H1jrllKlKzuc-7vnQbw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKnl9NY_H1jrllKlKzuc-7vnQbw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913FC26/FEA57E60B67711E8A0A0D332C4F9AE02/bKnl9NY_H1jrllKlKzuc-7vnQbw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:d0:c7:45:33:69:1b:ac:75:15:44:5d:29:3d:80:1e:74:4f: 64:d1:7a:ff:1d:6f:3d:8f:db:10:ec:98:92:95:a6:4e:73:2f: ca:df:61:aa:fc:40:b3:a1:39:7d:26:7e:b2:f1:82:9c:42:c7: df:7b:e3:cc:93:49:49:72:52:b6:2d:af:db:23:ea:b3:50:bc: 8d:b5:f6:1a:73:24:3d:0b:bb:df:60:14:b0:0d:74:52:ba:f3: cb:6c:d4:25:b8:22:83:81:81:4c:8d:19:74:81:28:21:24:b9: 00:36:84:0e:b0:d0:ec:a9:1b:4c:50:1d:a6:cf:7c:e3:64:fa: 19:86:e3:59:3b:79:92:12:3c:0a:86:d7:07:3c:ae:a4:b5:41: 07:fe:2f:ab:bb:8e:df:e5:ac:14:73:3f:6d:6e:3b:75:f8:69: 17:8e:51:26:8f:e2:8c:36:28:b4:6d:70:4f:1c:53:c1:ce:2e: ee:bc:f5:51:54:9b:4f:b3:ac:2f:a7:d6:7f:4e:33:85:c5:b7: 1c:51:29:04:57:20:55:60:da:2e:c8:4a:bf:17:eb:8e:df:cb: 83:d0:8b:40:74:17:c3:93:59:64:c0:61:9a:8b:fe:42:8c:39: f8:b2:ac:58:13:5b:5c:4f:44:d3:4c:e5:b1:b8:12:a8:fb:69: 21:dc:2e:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEwYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0ZDMjYxMTAvBgNVBAUTKDZDQTlFNUY0RDYzRjFGNThFQjk2NTJBNTJCM0I5Q0ZC QkJFNzQxQkMwHhcNMjUwNzIwMTcwNDEwWhcNMjUwNzI3MTcwNDEwWjAYMRYwFAYD VQQDEw02ODdkMjE4YS1jNzkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAve16euYO3kNRynVwpqHVVvlmwCkQeipW1E8AwxkRDOhVbJttsm2UgIMRpQkP 53ZEZD177zzKHAN2DRKFZt14pmg/rRoCILDbdsSyYyOSfGedD8B4nM2rkOxB+TLy F2oUtNvxKtDNVQNHfZbwKtrncx4qI3O0SDVnlgRbE2lj7r/jzjs2uYNksqiJpd1O YL/XTjzzkIUhiFW+efyIWBKG06In7IMBW5gUJQD2yxyvTVMxX1qDW2cFqETanuSk KFTr9Yu4FWUIJ3nxtFaqXmnM4jOmE9wjm9bDVMlJpwwunvm6lIWZmoeTQ9XREBJV 2XSX1Eok/T8eg0Yy6ir9bfD/ywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCJsO4KP VSPsPLJWyaCMMKtEerDmMB8GA1UdIwQYMBaAFGyp5fTWPx9Y65ZSpSs7nPu750G8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRkMyNi9GRUE1N0U2MEI2 NzcxMUU4QTBBMEQzMzJDNEY5QUUwMi9iS25sOU5ZX0gxanJsbEtsS3p1Yy03dm5R YncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JLbmw5TllfSDFqcmxsS2xLenVjLTd2blFidy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RkMyNi9GRUE1N0U2MEI2NzcxMUU4QTBBMEQzMzJDNEY5QUUwMi9iS25sOU5ZX0gx anJsbEtsS3p1Yy03dm5RYncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCf0MdFM2kbrHUVRF0pPYAedE9k0Xr/HW89j9sQ7JiSlaZOcy/K32Gq /ECzoTl9Jn6y8YKcQsffe+PMk0lJclK2La/bI+qzULyNtfYacyQ9C7vfYBSwDXRS uvPLbNQluCKDgYFMjRl0gSghJLkANoQOsNDsqRtMUB2mz3zjZPoZhuNZO3mSEjwK htcHPK6ktUEH/i+ru47f5awUcz9tbjt1+GkXjlEmj+KMNii0bXBPHFPBzi7uvPVR VJtPs6wvp9Z/TjOFxbccUSkEVyBVYNouyEq/F+uO38uD0ItAdBfDk1lkwGGai/5C jDn4sqxYE1tcT0TTTOWxuBKo+2kh3C6d -----END CERTIFICATE-----Generated at Mon Jul 21 13:29:06 2025 by rpki-client