$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/BdNlUA2kssABifPGyllQ4AdMfEo.mft File: BdNlUA2kssABifPGyllQ4AdMfEo.mft (raw, json) Hash identifier: 4QBuOsI1J9hq3PoejtYpSYjBomYDO+lKyMxVK2MsMK8= Subject key identifier: 57:41:58:15:57:DE:A3:6C:BB:F9:4D:16:1B:0A:DB:00:21:5B:27:B9 Authority key identifier: 05:D3:65:50:0D:A4:B2:C0:01:89:F3:C6:CA:59:50:E0:07:4C:7C:4A Certificate issuer: /CN=A91C8EDF/serialNumber=05D365500DA4B2C00189F3C6CA5950E0074C7C4A Certificate serial: 0201 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BdNlUA2kssABifPGyllQ4AdMfEo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/BdNlUA2kssABifPGyllQ4AdMfEo.mft Manifest number: 01F4 Signing time: Sat 19 Jul 2025 02:49:55 +0000 Manifest this update: Sat 19 Jul 2025 02:49:55 +0000 Manifest next update: Sat 26 Jul 2025 02:49:55 +0000 Files and hashes: 1: BdNlUA2kssABifPGyllQ4AdMfEo.crl (hash: /JK76PmS2wcsd+6dR9wNtgxjC+BKFAkldTTNY6tP9Qs=) 2: 999FA66011C711EF80B27457C4F9AE02.roa (hash: O9DoSIXGoRGfPB1leReaXjE3LSp6RO52qLUkhTkRojY=) 3: AD0CC70C122411EF8BEED51AC4F9AE02.roa (hash: sLDSVMLU6jI3BpmMuSVMPzt56rvnKddxBYgL4QmGgG0=) 4: A6524550C4E411EEAFF83C50C4F9AE02.roa (hash: d4lk9eKDk4hQ5jM/CM/7dtQ4pw21vQcp7xDVqjydE4E=) 5: C44A1D987E0511EDBA2BAF7FC4F9AE02.roa (hash: UGxKabSt5VefJdKh3JQwjTM53St2aD5lvYeCqBjnhKg=) 6: 99D4FC3212DC11EFB2470B7FC4F9AE02.roa (hash: E6NCI4JuiZoY4K+zXIld9/zlqD6qc3HulCUWdCEuTgY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/BdNlUA2kssABifPGyllQ4AdMfEo.crl rsync://rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/BdNlUA2kssABifPGyllQ4AdMfEo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BdNlUA2kssABifPGyllQ4AdMfEo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 02:49:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 513 (0x201) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8EDF, serialNumber=05D365500DA4B2C00189F3C6CA5950E0074C7C4A Validity Not Before: Jul 19 02:49:55 2025 GMT Not After : Jul 26 02:49:55 2025 GMT Subject: CN=687b07d3-e252 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:2f:3c:cc:a0:78:95:51:47:c8:c0:6f:6f:da: 60:65:40:bc:bb:56:bf:61:0c:8e:ac:06:0a:5b:f4: 50:08:04:b2:96:95:e5:87:54:99:82:8e:1a:53:20: b8:1f:e7:f2:ee:21:fc:ce:2c:9f:e7:24:5a:7e:59: 04:fb:48:ba:24:7f:9f:d1:5a:64:6b:44:45:fa:cf: bd:11:d6:2f:93:34:1d:ee:ee:9f:b5:79:1b:57:1e: 99:41:61:09:3e:b7:b4:fb:5a:65:1c:07:4c:69:40: 42:7f:a4:3a:80:2d:ce:38:6a:2a:2f:7e:42:fa:c7: a6:bb:f8:3e:00:71:5f:bd:46:bd:bb:54:26:09:52: 0f:72:51:c5:44:ea:59:e2:a7:fa:04:41:7d:aa:7a: 2b:64:4e:6d:d2:ba:89:65:5d:7a:1d:13:3c:fb:b0: a9:4d:cf:ab:64:45:be:b9:5d:f6:58:6e:2a:74:4b: 71:1b:bd:96:22:ce:ef:01:05:07:58:12:da:50:69: b3:11:2d:79:9a:ad:a6:11:33:6f:af:3b:d5:b1:94: f8:36:21:c8:a5:a6:cc:43:e1:00:1f:b3:7c:ab:5c: b7:dd:28:18:8d:80:79:f1:ce:b8:bd:24:1a:81:b5: 7c:cb:06:91:9a:57:28:96:9c:64:d0:50:54:55:62: 50:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:41:58:15:57:DE:A3:6C:BB:F9:4D:16:1B:0A:DB:00:21:5B:27:B9 X509v3 Authority Key Identifier: keyid:05:D3:65:50:0D:A4:B2:C0:01:89:F3:C6:CA:59:50:E0:07:4C:7C:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/BdNlUA2kssABifPGyllQ4AdMfEo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BdNlUA2kssABifPGyllQ4AdMfEo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/BdNlUA2kssABifPGyllQ4AdMfEo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:61:ae:08:73:4d:5c:b4:f5:d2:fd:e3:94:71:3a:89:cf:46: 6f:a6:98:3d:69:f5:ef:f6:17:68:d0:90:92:ec:70:31:e4:28: 44:d3:e9:ae:6f:a7:e7:11:74:93:48:48:a2:32:c0:d7:17:ce: cb:1b:c1:49:2f:43:56:4d:14:d0:ce:ee:8e:b7:e6:c3:04:c0: aa:79:81:69:0b:fb:dd:58:26:0b:d9:36:ff:b8:6e:d5:be:a7: 23:e0:8d:3e:28:1d:93:9f:d1:15:07:34:8a:69:5a:b0:3f:01: 52:b7:f4:3c:1a:f9:31:98:35:f7:f7:39:3e:ba:c8:0d:cd:dd: c8:20:ce:ec:79:58:f9:42:92:58:88:65:8e:12:c8:c0:02:ef: 03:a1:6e:9b:13:98:1a:6b:34:a4:2d:c8:75:94:54:79:4c:cb: 8a:e6:00:23:b0:fc:b7:ed:bb:09:ad:ca:ea:ab:4e:ba:07:58: 52:a8:a4:3e:82:09:52:7f:a4:79:97:71:24:88:3c:ac:1e:22: 77:94:74:cd:d3:98:6f:86:02:d4:55:ae:13:9f:95:82:7e:ce: a1:6d:73:98:6b:11:2d:98:7a:0c:02:9e:fb:d5:7d:64:be:ff: 9f:1b:75:0a:68:ef:dc:02:20:d8:14:a6:95:cd:93:30:a3:8b: cc:f9:35:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhFREYxMTAvBgNVBAUTKDA1RDM2NTUwMERBNEIyQzAwMTg5RjNDNkNBNTk1MEUw MDc0QzdDNEEwHhcNMjUwNzE5MDI0OTU1WhcNMjUwNzI2MDI0OTU1WjAYMRYwFAYD VQQDEw02ODdiMDdkMy1lMjUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6C88zKB4lVFHyMBvb9pgZUC8u1a/YQyOrAYKW/RQCASylpXlh1SZgo4aUyC4 H+fy7iH8ziyf5yRaflkE+0i6JH+f0Vpka0RF+s+9EdYvkzQd7u6ftXkbVx6ZQWEJ Pre0+1plHAdMaUBCf6Q6gC3OOGoqL35C+semu/g+AHFfvUa9u1QmCVIPclHFROpZ 4qf6BEF9qnorZE5t0rqJZV16HRM8+7CpTc+rZEW+uV32WG4qdEtxG72WIs7vAQUH WBLaUGmzES15mq2mETNvrzvVsZT4NiHIpabMQ+EAH7N8q1y33SgYjYB58c64vSQa gbV8ywaRmlcolpxk0FBUVWJQ7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFdBWBVX 3qNsu/lNFhsK2wAhWye5MB8GA1UdIwQYMBaAFAXTZVANpLLAAYnzxspZUOAHTHxK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEVERi9FQTY3QTk4QzdD NTcxMUVEQkYyMTM3NjdDNEY5QUUwMi9CZE5sVUEya3NzQUJpZlBHeWxsUTRBZE1m RW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JkTmxVQTJrc3NBQmlmUEd5bGxRNEFkTWZFby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEVERi9FQTY3QTk4QzdDNTcxMUVEQkYyMTM3NjdDNEY5QUUwMi9CZE5sVUEya3Nz QUJpZlBHeWxsUTRBZE1mRW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvYa4Ic01ctPXS/eOUcTqJz0Zvppg9afXv9hdo0JCS7HAx5ChE0+mu b6fnEXSTSEiiMsDXF87LG8FJL0NWTRTQzu6Ot+bDBMCqeYFpC/vdWCYL2Tb/uG7V vqcj4I0+KB2Tn9EVBzSKaVqwPwFSt/Q8GvkxmDX39zk+usgNzd3IIM7seVj5QpJY iGWOEsjAAu8DoW6bE5gaazSkLch1lFR5TMuK5gAjsPy37bsJrcrqq066B1hSqKQ+ gglSf6R5l3EkiDysHiJ3lHTN05hvhgLUVa4Tn5WCfs6hbXOYaxEtmHoMAp771X1k vv+fG3UKaO/cAiDYFKaVzZMwo4vM+TW0 -----END CERTIFICATE-----Generated at Sun Jul 20 02:43:18 2025 by rpki-client