$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEBCC/2AE8981A272711EF9143E622C4F9AE02/bath0S4_GW9RaThyPIAnWZxddVI.mft File: bath0S4_GW9RaThyPIAnWZxddVI.mft (raw, json) Hash identifier: Clunc4Wth46ZqbFppNkTop54iKT1Fu4wHEPqxfe1lB0= Subject key identifier: ED:64:49:02:C2:0C:B9:F4:45:4A:03:5C:27:A7:36:9F:A7:A2:1F:EB Authority key identifier: 6D:AB:61:D1:2E:3F:19:6F:51:69:38:72:3C:80:27:59:9C:5D:75:52 Certificate issuer: /CN=A91CEBCC/serialNumber=6DAB61D12E3F196F516938723C8027599C5D7552 Certificate serial: D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bath0S4_GW9RaThyPIAnWZxddVI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEBCC/2AE8981A272711EF9143E622C4F9AE02/bath0S4_GW9RaThyPIAnWZxddVI.mft Manifest number: D0 Signing time: Sat 19 Jul 2025 05:51:36 +0000 Manifest this update: Sat 19 Jul 2025 05:51:36 +0000 Manifest next update: Sat 26 Jul 2025 05:51:36 +0000 Files and hashes: 1: bath0S4_GW9RaThyPIAnWZxddVI.crl (hash: kXrzCwcECz0fxFqDDNEFf/tbo3E/0l2Totpc/G9UMO4=) 2: F2022074272711EF91A40124C4F9AE02.roa (hash: xhUsDiNlcxZBUBnV9JFR4AclyG5SZwCFLfalTWcGiyI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEBCC/2AE8981A272711EF9143E622C4F9AE02/bath0S4_GW9RaThyPIAnWZxddVI.crl rsync://rpki.apnic.net/member_repository/A91CEBCC/2AE8981A272711EF9143E622C4F9AE02/bath0S4_GW9RaThyPIAnWZxddVI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bath0S4_GW9RaThyPIAnWZxddVI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 05:51:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 210 (0xd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEBCC, serialNumber=6DAB61D12E3F196F516938723C8027599C5D7552 Validity Not Before: Jul 19 05:51:36 2025 GMT Not After : Jul 26 05:51:36 2025 GMT Subject: CN=687b3268-a317 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:8d:fe:41:29:6b:12:4f:06:76:cd:31:c5:99: f8:76:a7:07:7d:69:31:02:b0:5e:ad:4f:e8:6f:86: cb:ca:3f:b1:53:c1:2d:db:80:38:e8:42:a1:30:9f: e5:8a:b8:7f:8d:2f:c8:db:b3:63:b5:11:71:fa:57: bb:66:ac:55:4d:ce:29:6e:e0:0d:36:d9:44:61:35: 65:87:6c:71:50:3b:2c:2c:4e:a8:18:0d:6e:b4:f6: 26:fd:ff:94:cb:f6:e5:22:ce:88:fe:5f:46:dc:9d: 38:aa:27:b1:1e:d8:bb:d4:7a:e3:ae:52:d3:a6:70: c4:fc:10:1f:ce:05:b2:77:8a:56:00:87:c3:84:98: 5e:6c:49:d4:d5:b5:bd:58:b5:9a:db:b2:b9:a5:1b: f3:04:46:b3:14:76:96:d3:e8:f5:0a:d3:31:94:a1: 69:72:9d:b0:f2:88:bb:06:62:3f:f3:fe:32:a5:fc: 16:31:ab:e6:2f:79:ec:4f:74:16:45:bb:63:96:73: 4f:ce:4d:04:a7:e8:d3:fa:26:b9:35:9d:d0:bf:ec: a6:70:43:d4:b7:4c:9a:c8:bf:a7:9f:b1:2c:e9:ba: c4:3f:71:61:da:9a:a4:d5:24:fa:7b:9c:fe:0b:39: ab:66:f5:4d:3f:b3:f2:dc:37:0a:f7:fe:49:d2:7b: 61:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:64:49:02:C2:0C:B9:F4:45:4A:03:5C:27:A7:36:9F:A7:A2:1F:EB X509v3 Authority Key Identifier: keyid:6D:AB:61:D1:2E:3F:19:6F:51:69:38:72:3C:80:27:59:9C:5D:75:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEBCC/2AE8981A272711EF9143E622C4F9AE02/bath0S4_GW9RaThyPIAnWZxddVI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bath0S4_GW9RaThyPIAnWZxddVI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEBCC/2AE8981A272711EF9143E622C4F9AE02/bath0S4_GW9RaThyPIAnWZxddVI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:c8:39:36:9a:31:a2:e6:7d:1c:c3:28:c1:4e:3b:a7:09:7c: d9:4f:37:af:42:62:3e:54:d2:b9:02:df:e7:09:66:ec:1e:8a: 34:53:cc:7e:37:36:74:10:64:06:09:11:ef:03:a6:59:eb:e7: 70:5e:8a:36:86:52:b5:ad:ca:16:80:32:1b:c6:e1:a5:af:5a: b4:eb:99:33:0c:21:59:23:04:c2:0a:a7:15:ad:6b:bb:ef:48: 3f:08:a2:dd:5e:c4:d2:c9:fe:2a:45:95:ba:53:95:20:f8:52: 63:fd:2c:df:b0:c8:02:c8:71:bf:f4:db:26:16:20:ac:88:49: 26:ed:83:ac:f1:ad:07:57:8d:23:16:50:d2:9a:5f:91:c8:b2: 13:1f:18:ac:e7:31:4c:31:df:31:23:39:05:9d:6a:fe:9f:51: 8b:62:d6:7c:14:74:0c:0f:15:ae:58:31:76:08:36:39:e1:f9: d6:4e:07:ed:f2:f8:ee:6c:81:c9:64:e9:c1:f1:90:ad:06:d2: 93:d6:8e:88:86:89:5b:7d:94:cc:8f:04:47:0c:f1:0a:af:e3: fe:57:74:77:be:16:0f:09:79:24:91:38:96:48:c9:5e:95:63: e2:62:59:7e:2d:3f:fa:15:df:54:96:45:7a:c3:65:38:c9:bd: b0:dc:9b:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VCQ0MxMTAvBgNVBAUTKDZEQUI2MUQxMkUzRjE5NkY1MTY5Mzg3MjNDODAyNzU5 OUM1RDc1NTIwHhcNMjUwNzE5MDU1MTM2WhcNMjUwNzI2MDU1MTM2WjAYMRYwFAYD VQQDEw02ODdiMzI2OC1hMzE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Y3+QSlrEk8Gds0xxZn4dqcHfWkxArBerU/ob4bLyj+xU8Et24A46EKhMJ/l irh/jS/I27NjtRFx+le7ZqxVTc4pbuANNtlEYTVlh2xxUDssLE6oGA1utPYm/f+U y/blIs6I/l9G3J04qiexHti71HrjrlLTpnDE/BAfzgWyd4pWAIfDhJhebEnU1bW9 WLWa27K5pRvzBEazFHaW0+j1CtMxlKFpcp2w8oi7BmI/8/4ypfwWMavmL3nsT3QW RbtjlnNPzk0Ep+jT+ia5NZ3Qv+ymcEPUt0yayL+nn7Es6brEP3Fh2pqk1ST6e5z+ CzmrZvVNP7Py3DcK9/5J0nthzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO1kSQLC DLn0RUoDXCenNp+noh/rMB8GA1UdIwQYMBaAFG2rYdEuPxlvUWk4cjyAJ1mcXXVS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUJDQy8yQUU4OTgxQTI3 MjcxMUVGOTE0M0U2MjJDNEY5QUUwMi9iYXRoMFM0X0dXOVJhVGh5UElBbldaeGRk VkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JhdGgwUzRfR1c5UmFUaHlQSUFuV1p4ZGRWSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUJDQy8yQUU4OTgxQTI3MjcxMUVGOTE0M0U2MjJDNEY5QUUwMi9iYXRoMFM0X0dX OVJhVGh5UElBbldaeGRkVkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKyDk2mjGi5n0cwyjBTjunCXzZTzevQmI+VNK5At/nCWbsHoo0U8x+ NzZ0EGQGCRHvA6ZZ6+dwXoo2hlK1rcoWgDIbxuGlr1q065kzDCFZIwTCCqcVrWu7 70g/CKLdXsTSyf4qRZW6U5Ug+FJj/SzfsMgCyHG/9NsmFiCsiEkm7YOs8a0HV40j FlDSml+RyLITHxis5zFMMd8xIzkFnWr+n1GLYtZ8FHQMDxWuWDF2CDY54fnWTgft 8vjubIHJZOnB8ZCtBtKT1o6IholbfZTMjwRHDPEKr+P+V3R3vhYPCXkkkTiWSMle lWPiYll+LT/6Fd9UlkV6w2U4yb2w3Jvn -----END CERTIFICATE-----Generated at Sun Jul 20 02:07:02 2025 by rpki-client