$ rpki-client -vvf rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.mft File: BSmF8r4ox5507_TbTHFCKEVHc1w.mft (raw, json) Hash identifier: 7AI+CQHPythiGbNFBRqcDdhc3atG+CIdfQ4EuKsEL3g= Subject key identifier: 67:2B:A5:47:81:6B:57:F0:BF:D7:CF:CF:02:45:2F:88:95:6D:7B:31 Authority key identifier: 05:29:85:F2:BE:28:C7:9E:74:EF:F4:DB:4C:71:42:28:45:47:73:5C Certificate issuer: /CN=A9151A79/serialNumber=052985F2BE28C79E74EFF4DB4C7142284547735C Certificate serial: 01A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BSmF8r4ox5507_TbTHFCKEVHc1w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.mft Manifest number: 01A0 Signing time: Sun 27 Jul 2025 03:33:49 +0000 Manifest this update: Sun 27 Jul 2025 03:33:49 +0000 Manifest next update: Sun 03 Aug 2025 03:33:49 +0000 Files and hashes: 1: BSmF8r4ox5507_TbTHFCKEVHc1w.crl (hash: ylgGRskqDC0VTkJSxSstWqzoQxDpo4nTpshqskA34kE=) 2: A799F54AF1F111EE9D899046C4F9AE02.roa (hash: Q3/I4xZV8CvWyhr+A+P9zzW5K8pcc6S3V6pLPjC2BoQ=) 3: EA22589E373C11F0909EF25DC4F9AE02.roa (hash: pK7K0oDGB09OEHam5uLFYf312YyVDqFKY5nBRiwk3eo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.crl rsync://rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BSmF8r4ox5507_TbTHFCKEVHc1w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 Aug 2025 03:33:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 424 (0x1a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151A79, serialNumber=052985F2BE28C79E74EFF4DB4C7142284547735C Validity Not Before: Jul 27 03:33:49 2025 GMT Not After : Aug 3 03:33:49 2025 GMT Subject: CN=68859e1d-41bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:11:2c:b5:2c:c5:f4:44:6a:85:41:f5:c9:b7: 8b:38:ed:c3:df:87:5a:9f:ef:3d:2d:dc:ec:f4:13: 96:20:62:cc:8d:6d:d5:8a:5c:d3:2d:db:dc:b2:7f: 60:40:0c:f8:82:3c:6b:76:5b:87:b1:38:be:f7:37: 8e:ca:ee:c6:84:33:79:8c:62:4b:27:3b:c4:d9:36: 89:7e:b4:c3:5f:b7:b3:bd:1e:92:84:91:ef:d9:90: 28:b8:d0:a8:60:12:21:b7:40:06:ff:24:05:2e:e2: 9d:32:f3:ba:e0:20:5a:42:cd:5f:68:c8:4f:59:1d: e3:3b:13:da:f2:b7:7b:30:62:44:7d:38:13:4a:1d: 4c:15:69:33:b0:b9:b8:b7:e5:47:4e:7a:26:db:0a: 7c:00:bb:64:2f:cc:02:ac:7d:34:8c:75:f0:b6:f4: e8:e4:f8:2c:5b:95:48:7d:38:a9:8f:41:b8:e0:c2: 9c:b5:2a:7e:81:38:97:4d:42:10:d3:aa:84:38:8f: 9d:e2:5f:cb:8e:c8:b1:f6:56:ac:ae:9a:9a:8f:a6: ca:5b:9b:ee:1e:34:4d:5d:ff:ce:ed:eb:1e:2a:37: 26:0e:30:50:5e:7b:c0:79:50:21:3b:27:02:3e:8e: ef:25:63:e2:93:40:24:40:58:3e:cb:93:47:71:14: 39:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:2B:A5:47:81:6B:57:F0:BF:D7:CF:CF:02:45:2F:88:95:6D:7B:31 X509v3 Authority Key Identifier: keyid:05:29:85:F2:BE:28:C7:9E:74:EF:F4:DB:4C:71:42:28:45:47:73:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BSmF8r4ox5507_TbTHFCKEVHc1w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:1e:0e:7f:88:2a:28:30:6b:b2:02:bf:cb:87:7a:9a:8b:41: 78:f3:fb:c3:40:70:2b:ad:3a:af:f7:b6:1d:1b:a8:73:03:b6: b1:53:87:42:da:9c:d5:72:ea:78:0e:cd:19:30:80:be:22:67: 30:8c:62:ac:62:03:ad:51:be:94:98:9e:3e:ef:67:1b:83:18: ea:6c:2e:f8:b2:24:f0:a3:3f:33:b4:48:aa:c1:54:5f:97:d2: 83:60:e4:cd:be:25:89:49:ce:e7:69:f7:fd:34:e3:8f:f6:c1: 1b:8a:19:1a:94:da:2e:ab:d5:e0:5e:ac:09:f9:6b:e3:69:18: b1:bd:92:c6:da:e0:85:d4:b4:3e:af:76:33:4e:1b:62:04:f2: ac:2a:e0:b3:10:52:d7:19:ac:cf:ec:88:10:1f:35:19:38:f0: 17:97:28:72:fb:a3:50:57:06:22:c6:03:85:ee:49:5b:2f:e2: 44:b2:38:6e:dd:ed:b6:7e:4b:f6:48:22:c9:22:da:e1:ad:73: d8:c9:ce:0e:39:61:71:0d:6d:28:c8:a4:31:4a:fb:de:2c:ca: dc:c6:32:f6:5a:0f:51:e0:ed:c5:d1:c3:99:cf:14:5a:cb:b8: 0c:20:57:53:05:4a:48:98:0c:7d:0c:35:41:00:0a:e1:39:de: a4:5b:90:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAagwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTFBNzkxMTAvBgNVBAUTKDA1Mjk4NUYyQkUyOEM3OUU3NEVGRjREQjRDNzE0MjI4 NDU0NzczNUMwHhcNMjUwNzI3MDMzMzQ5WhcNMjUwODAzMDMzMzQ5WjAYMRYwFAYD VQQDEw02ODg1OWUxZC00MWJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4hEstSzF9ERqhUH1ybeLOO3D34dan+89Ldzs9BOWIGLMjW3VilzTLdvcsn9g QAz4gjxrdluHsTi+9zeOyu7GhDN5jGJLJzvE2TaJfrTDX7ezvR6ShJHv2ZAouNCo YBIht0AG/yQFLuKdMvO64CBaQs1faMhPWR3jOxPa8rd7MGJEfTgTSh1MFWkzsLm4 t+VHTnom2wp8ALtkL8wCrH00jHXwtvTo5PgsW5VIfTipj0G44MKctSp+gTiXTUIQ 06qEOI+d4l/Ljsix9lasrpqaj6bKW5vuHjRNXf/O7eseKjcmDjBQXnvAeVAhOycC Po7vJWPik0AkQFg+y5NHcRQ50QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGcrpUeB a1fwv9fPzwJFL4iVbXsxMB8GA1UdIwQYMBaAFAUphfK+KMeedO/020xxQihFR3Nc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MUE3OS9ENENBMTVDMEY5 NDcxMUVEODhDMTg3NDZDNEY5QUUwMi9CU21GOHI0b3g1NTA3X1RiVEhGQ0tFVkhj MXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JTbUY4cjRveDU1MDdfVGJUSEZDS0VWSGMxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MUE3OS9ENENBMTVDMEY5NDcxMUVEODhDMTg3NDZDNEY5QUUwMi9CU21GOHI0b3g1 NTA3X1RiVEhGQ0tFVkhjMXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEHg5/iCooMGuyAr/Lh3qai0F48/vDQHArrTqv97YdG6hzA7axU4dC 2pzVcup4Ds0ZMIC+ImcwjGKsYgOtUb6UmJ4+72cbgxjqbC74siTwoz8ztEiqwVRf l9KDYOTNviWJSc7naff9NOOP9sEbihkalNouq9XgXqwJ+WvjaRixvZLG2uCF1LQ+ r3YzThtiBPKsKuCzEFLXGazP7IgQHzUZOPAXlyhy+6NQVwYixgOF7klbL+JEsjhu 3e22fkv2SCLJItrhrXPYyc4OOWFxDW0oyKQxSvveLMrcxjL2Wg9R4O3F0cOZzxRa y7gMIFdTBUpImAx9DDVBAArhOd6kW5Av -----END CERTIFICATE-----Generated at Tue Jul 29 04:11:15 2025 by rpki-client