$ rpki-client -vvf rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.mft File: BL27YPamYNHS0BJzSQ_PCcw1m3M.mft (raw, json) Hash identifier: UnBvC40kO1MQyQU9i5Xkp91hpjWtpUIMmz/VYKUxiD4= Subject key identifier: 16:D2:16:80:11:90:5A:F7:7A:9D:2A:1A:52:23:CA:71:72:5D:83:24 Authority key identifier: 04:BD:BB:60:F6:A6:60:D1:D2:D0:12:73:49:0F:CF:09:CC:35:9B:73 Certificate issuer: /CN=A917C59F/serialNumber=04BDBB60F6A660D1D2D01273490FCF09CC359B73 Certificate serial: 08A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BL27YPamYNHS0BJzSQ_PCcw1m3M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.mft Manifest number: 089C Signing time: Thu 24 Jul 2025 20:44:36 +0000 Manifest this update: Thu 24 Jul 2025 20:44:35 +0000 Manifest next update: Thu 31 Jul 2025 20:44:35 +0000 Files and hashes: 1: BL27YPamYNHS0BJzSQ_PCcw1m3M.crl (hash: qUwprNRxn/4XeN0Dacw6wNva0za5sWWtEs9bFkNSjr0=) 2: 12482BA205A211ED81E44F6DC4F9AE02.roa (hash: XF3b1tsv84dWcHXBpSW6CLzdc6x4da3e9vI5g3fw1j4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.crl rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BL27YPamYNHS0BJzSQ_PCcw1m3M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 20:44:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2213 (0x8a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C59F, serialNumber=04BDBB60F6A660D1D2D01273490FCF09CC359B73 Validity Not Before: Jul 24 20:44:35 2025 GMT Not After : Jul 31 20:44:35 2025 GMT Subject: CN=68829b33-4468 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:59:ec:78:29:0e:b7:e8:83:b7:80:08:9b:43: c1:09:bc:ed:36:b7:77:a3:d5:47:bf:84:9a:c6:f7: c4:32:7a:68:28:72:71:79:9b:5f:e7:b8:6c:76:1e: df:01:16:fa:f6:c5:26:50:1d:14:58:90:fb:ab:de: 41:ac:18:03:0d:d7:72:60:b5:b8:f8:bf:e6:07:15: b1:f2:6a:a9:c6:4c:a4:20:a5:c5:07:ac:30:26:9b: b7:ea:79:68:1e:0e:d7:f4:8a:1f:2d:84:6d:04:33: 70:e6:c7:fa:e0:2f:f3:f1:03:dd:e1:89:82:fd:5e: bb:84:32:a6:af:94:16:54:43:8c:5b:cb:8e:2a:8c: 8b:a2:82:fe:1e:6f:f1:05:b6:99:c8:92:72:be:6f: 65:de:f5:44:72:a5:7a:10:14:dd:b4:42:f7:2e:54: c7:34:ff:9f:00:2c:41:2d:4f:0e:e1:14:79:44:f7: 4a:c8:b4:02:25:0a:80:cb:31:67:77:ff:06:3b:ac: f7:77:8a:97:e6:05:55:fa:e4:ea:eb:a0:54:23:93: 84:c1:a8:71:71:45:ce:aa:17:e7:b9:b9:74:3a:5b: 53:09:75:66:f4:ec:4b:0f:6c:01:87:d8:bd:4e:4e: 21:ec:7a:40:6b:ba:28:a2:a7:e8:e5:96:82:c7:da: 35:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:D2:16:80:11:90:5A:F7:7A:9D:2A:1A:52:23:CA:71:72:5D:83:24 X509v3 Authority Key Identifier: keyid:04:BD:BB:60:F6:A6:60:D1:D2:D0:12:73:49:0F:CF:09:CC:35:9B:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BL27YPamYNHS0BJzSQ_PCcw1m3M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:b3:30:ef:34:7a:fa:9a:d8:7f:be:bb:f7:ad:d8:76:0b:ad: 46:1f:a0:6e:14:0a:8d:e0:88:e8:05:f5:09:8f:02:69:ff:ea: 9b:cf:f4:83:fd:dd:c5:43:ec:ac:02:e2:72:34:f3:56:35:66: 29:69:b4:30:3e:ad:1e:36:b3:ca:1f:4f:6f:8c:0b:fd:50:f6: 3e:7a:b6:c7:05:49:59:ba:45:30:f6:20:a7:9f:fe:fc:ed:16: 4e:59:e3:3b:28:3c:a3:19:47:e6:26:15:af:97:2c:d6:e4:b5: df:d5:d6:6e:8c:71:98:bf:23:dd:1f:77:91:39:27:75:5f:3e: a4:29:a5:c5:9b:58:ea:05:fc:1b:03:81:c6:7b:97:e3:c7:17: b4:8f:75:93:69:31:25:95:ed:7c:2d:48:9d:36:b8:4e:84:e0: d0:1b:f5:5e:79:81:33:46:84:df:d9:39:78:c4:be:37:01:cb: 33:23:20:9a:c8:c3:4b:71:18:7d:6b:3f:b0:21:3b:57:b3:11: a5:df:9f:bf:3c:58:cc:36:65:7e:9e:b7:9e:a7:29:80:cb:ff: ab:70:af:49:d5:47:d5:7d:6e:f4:af:f6:7d:18:45:5c:16:fc: 88:52:3c:4c:3c:cf:e4:5f:f3:d7:e4:5e:99:b1:e9:84:e6:1c: 37:0a:17:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M1OUYxMTAvBgNVBAUTKDA0QkRCQjYwRjZBNjYwRDFEMkQwMTI3MzQ5MEZDRjA5 Q0MzNTlCNzMwHhcNMjUwNzI0MjA0NDM1WhcNMjUwNzMxMjA0NDM1WjAYMRYwFAYD VQQDEw02ODgyOWIzMy00NDY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6VnseCkOt+iDt4AIm0PBCbztNrd3o9VHv4SaxvfEMnpoKHJxeZtf57hsdh7f ARb69sUmUB0UWJD7q95BrBgDDddyYLW4+L/mBxWx8mqpxkykIKXFB6wwJpu36nlo Hg7X9IofLYRtBDNw5sf64C/z8QPd4YmC/V67hDKmr5QWVEOMW8uOKoyLooL+Hm/x BbaZyJJyvm9l3vVEcqV6EBTdtEL3LlTHNP+fACxBLU8O4RR5RPdKyLQCJQqAyzFn d/8GO6z3d4qX5gVV+uTq66BUI5OEwahxcUXOqhfnubl0OltTCXVm9OxLD2wBh9i9 Tk4h7HpAa7oooqfo5ZaCx9o1PwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBbSFoAR kFr3ep0qGlIjynFyXYMkMB8GA1UdIwQYMBaAFAS9u2D2pmDR0tASc0kPzwnMNZtz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzU5Ri80MjVFODkwMkMx NDQxMUVBOTFGMDNBNkZDNEY5QUUwMi9CTDI3WVBhbVlOSFMwQkp6U1FfUENjdzFt M00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JMMjdZUGFtWU5IUzBCSnpTUV9QQ2N3MW0zTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzU5Ri80MjVFODkwMkMxNDQxMUVBOTFGMDNBNkZDNEY5QUUwMi9CTDI3WVBhbVlO SFMwQkp6U1FfUENjdzFtM00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbszDvNHr6mth/vrv3rdh2C61GH6BuFAqN4IjoBfUJjwJp/+qbz/SD /d3FQ+ysAuJyNPNWNWYpabQwPq0eNrPKH09vjAv9UPY+erbHBUlZukUw9iCnn/78 7RZOWeM7KDyjGUfmJhWvlyzW5LXf1dZujHGYvyPdH3eROSd1Xz6kKaXFm1jqBfwb A4HGe5fjxxe0j3WTaTElle18LUidNrhOhODQG/VeeYEzRoTf2Tl4xL43AcszIyCa yMNLcRh9az+wITtXsxGl35+/PFjMNmV+nreepymAy/+rcK9J1UfVfW70r/Z9GEVc FvyIUjxMPM/kX/PX5F6ZsemE5hw3CheU -----END CERTIFICATE-----Generated at Fri Jul 25 07:03:08 2025 by rpki-client