$ rpki-client -vvf rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft File: bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft (raw, json) Hash identifier: MhcejNf64/NsyO6CCxB5jrxMhPPe6Swum6bitCDjeYM= Subject key identifier: 29:D2:DC:3B:C5:77:2B:94:E7:B9:B9:0E:23:7F:B2:2C:92:EB:CC:C2 Authority key identifier: 6C:A2:CF:A6:88:BD:F9:E2:D6:56:16:08:67:7A:30:C9:15:24:3D:0C Certificate issuer: /CN=A9148F80/serialNumber=6CA2CFA688BDF9E2D6561608677A30C915243D0C Certificate serial: 06A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKLPpoi9-eLWVhYIZ3owyRUkPQw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft Manifest number: 069A Signing time: Thu 24 Jul 2025 22:31:57 +0000 Manifest this update: Thu 24 Jul 2025 22:31:57 +0000 Manifest next update: Thu 31 Jul 2025 22:31:57 +0000 Files and hashes: 1: bKLPpoi9-eLWVhYIZ3owyRUkPQw.crl (hash: 3i+isf254AZzBdTO8ACcqqoLJG0em/CGylyQ/Howri0=) 2: 1C93BF747CD011EB9F876E78C4F9AE02.roa (hash: vUduh0w3eSZesFepaO929FwqL1Ap+OkfqL7IQgJ/yu0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.crl rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKLPpoi9-eLWVhYIZ3owyRUkPQw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 22:31:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1697 (0x6a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148F80, serialNumber=6CA2CFA688BDF9E2D6561608677A30C915243D0C Validity Not Before: Jul 24 22:31:57 2025 GMT Not After : Jul 31 22:31:57 2025 GMT Subject: CN=6882b45d-46ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:58:e9:91:9e:83:7e:6d:44:e3:ad:41:13:5c: 59:21:bf:77:a0:96:05:9e:ae:bd:31:ce:b4:42:2a: 5b:33:54:8c:90:d1:6e:63:0b:51:7e:f0:a0:6d:db: 34:2d:f1:bc:9b:e2:a6:b2:51:1c:5e:51:bb:0a:5a: dd:7f:2c:95:a2:78:f6:7a:1d:3b:54:6e:e2:38:52: af:6f:3b:e2:2a:23:ea:ea:e9:64:12:2b:8f:2c:a4: 1f:df:a7:50:d7:66:fe:5b:23:d2:ee:89:f1:3c:77: 56:59:0d:3a:da:3d:a3:2a:ff:d3:ac:1c:80:bf:91: ca:27:99:a7:79:27:ca:4a:64:17:88:bf:9e:51:19: 83:0a:5e:62:cd:a2:3c:56:51:35:12:8c:b0:02:d5: b2:f2:bc:17:7e:92:a7:56:fb:64:1d:b2:52:06:7b: b9:74:de:fd:cb:7c:55:76:71:3d:2d:68:70:a6:4e: 16:fd:13:6d:87:2a:3b:e0:b9:f2:d1:23:7b:ca:20: 9c:f5:b3:1e:3c:52:c5:d9:86:73:3a:25:11:92:b9: 5b:3b:9f:5b:88:a1:5e:a1:1a:6f:ee:c2:2b:8a:ef: ae:61:7f:5b:ac:4a:c1:2b:86:5c:74:c3:a9:2d:48: 28:eb:15:d0:7e:b3:3c:19:47:81:e5:aa:4f:2a:89: 70:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:D2:DC:3B:C5:77:2B:94:E7:B9:B9:0E:23:7F:B2:2C:92:EB:CC:C2 X509v3 Authority Key Identifier: keyid:6C:A2:CF:A6:88:BD:F9:E2:D6:56:16:08:67:7A:30:C9:15:24:3D:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKLPpoi9-eLWVhYIZ3owyRUkPQw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:e8:ce:4e:6f:29:f6:e7:49:55:6d:88:87:f4:fb:8c:68:a7: 9a:84:e6:b8:13:9c:8c:c8:3f:1f:80:25:12:87:ea:33:b3:5b: 7c:b6:53:ab:4c:5d:05:36:47:77:39:b1:74:3a:09:4f:79:1d: 26:8e:44:bf:b9:b2:69:8b:0c:63:c2:83:1d:83:bd:5f:ee:f7: 34:f6:41:82:0d:3c:b6:d1:20:45:da:32:9b:17:5f:67:60:38: 36:30:a9:f6:43:ab:38:26:93:ed:63:28:0c:2a:e5:3b:b7:09: 03:94:6e:b7:b0:3d:d1:fe:0d:14:7f:1e:9b:a9:af:e9:03:b9: 1e:c5:ee:ba:74:c9:dc:ec:08:5d:05:ab:27:ac:84:4d:cb:78: 56:64:a8:b4:23:58:ec:6b:8a:e4:3f:01:13:4e:ea:b0:3b:d9: 58:7b:31:ab:59:6f:97:2b:4c:64:23:b4:c4:49:2d:d4:48:34: 75:82:5e:02:36:e8:06:8c:31:3d:6e:13:93:be:fc:56:07:61: a0:2f:6b:4d:48:2c:03:ae:33:81:97:be:66:ba:f2:a5:ab:f2: 8a:d5:10:e1:e5:9e:bf:aa:f6:38:9f:9a:e1:77:08:ac:93:6e: b9:4a:b9:6f:c1:e5:72:7c:ac:2a:56:c6:37:24:7a:29:30:38: d7:6e:fc:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhGODAxMTAvBgNVBAUTKDZDQTJDRkE2ODhCREY5RTJENjU2MTYwODY3N0EzMEM5 MTUyNDNEMEMwHhcNMjUwNzI0MjIzMTU3WhcNMjUwNzMxMjIzMTU3WjAYMRYwFAYD VQQDEw02ODgyYjQ1ZC00NmZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5FjpkZ6Dfm1E461BE1xZIb93oJYFnq69Mc60QipbM1SMkNFuYwtRfvCgbds0 LfG8m+KmslEcXlG7ClrdfyyVonj2eh07VG7iOFKvbzviKiPq6ulkEiuPLKQf36dQ 12b+WyPS7onxPHdWWQ062j2jKv/TrByAv5HKJ5mneSfKSmQXiL+eURmDCl5izaI8 VlE1EoywAtWy8rwXfpKnVvtkHbJSBnu5dN79y3xVdnE9LWhwpk4W/RNthyo74Lny 0SN7yiCc9bMePFLF2YZzOiURkrlbO59biKFeoRpv7sIriu+uYX9brErBK4ZcdMOp LUgo6xXQfrM8GUeB5apPKolwnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCnS3DvF dyuU57m5DiN/siyS68zCMB8GA1UdIwQYMBaAFGyiz6aIvfni1lYWCGd6MMkVJD0M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEY4MC8wNzFERUE0MDdD Q0UxMUVCQkI4ODI5NzZDNEY5QUUwMi9iS0xQcG9pOS1lTFdWaFlJWjNvd3lSVWtQ UXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JLTFBwb2k5LWVMV1ZoWUlaM293eVJVa1BRdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEY4MC8wNzFERUE0MDdDQ0UxMUVCQkI4ODI5NzZDNEY5QUUwMi9iS0xQcG9pOS1l TFdWaFlJWjNvd3lSVWtQUXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCp6M5Obyn250lVbYiH9PuMaKeahOa4E5yMyD8fgCUSh+ozs1t8tlOr TF0FNkd3ObF0OglPeR0mjkS/ubJpiwxjwoMdg71f7vc09kGCDTy20SBF2jKbF19n YDg2MKn2Q6s4JpPtYygMKuU7twkDlG63sD3R/g0Ufx6bqa/pA7kexe66dMnc7Ahd BasnrIRNy3hWZKi0I1jsa4rkPwETTuqwO9lYezGrWW+XK0xkI7TESS3USDR1gl4C NugGjDE9bhOTvvxWB2GgL2tNSCwDrjOBl75muvKlq/KK1RDh5Z6/qvY4n5rhdwis k265SrlvweVyfKwqVsY3JHopMDjXbvw3 -----END CERTIFICATE-----Generated at Fri Jul 25 07:09:13 2025 by rpki-client