$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5DB6/13F96B82186211E8B1E31729C4F9AE02/-BaXnSqJmynqWV8rVO6jmQokNvk.mft File: -BaXnSqJmynqWV8rVO6jmQokNvk.mft (raw, json) Hash identifier: nw1eCabtdCjsJ4L79VAL4D15Z2/T+mwuxXH2kiRM4GA= Subject key identifier: 78:84:1C:70:54:11:63:F2:26:AE:E2:34:9D:07:2E:68:75:8B:71:66 Authority key identifier: F8:16:97:9D:2A:89:9B:29:EA:59:5F:2B:54:EE:A3:99:0A:24:36:F9 Certificate issuer: /CN=A91D5DB6/serialNumber=F816979D2A899B29EA595F2B54EEA3990A2436F9 Certificate serial: 160D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-BaXnSqJmynqWV8rVO6jmQokNvk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5DB6/13F96B82186211E8B1E31729C4F9AE02/-BaXnSqJmynqWV8rVO6jmQokNvk.mft Manifest number: 160D Signing time: Sun 20 Jul 2025 16:45:58 +0000 Manifest this update: Sun 20 Jul 2025 16:45:57 +0000 Manifest next update: Sun 27 Jul 2025 16:45:57 +0000 Files and hashes: 1: -BaXnSqJmynqWV8rVO6jmQokNvk.crl (hash: FbP+LrD98kaY/70nwlLVaY/a1U5GTg1JrPiHq0ZQ28Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5DB6/13F96B82186211E8B1E31729C4F9AE02/-BaXnSqJmynqWV8rVO6jmQokNvk.crl rsync://rpki.apnic.net/member_repository/A91D5DB6/13F96B82186211E8B1E31729C4F9AE02/-BaXnSqJmynqWV8rVO6jmQokNvk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-BaXnSqJmynqWV8rVO6jmQokNvk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 16:45:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5645 (0x160d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5DB6, serialNumber=F816979D2A899B29EA595F2B54EEA3990A2436F9 Validity Not Before: Jul 20 16:45:57 2025 GMT Not After : Jul 27 16:45:57 2025 GMT Subject: CN=687d1d45-f960 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:2d:41:59:ec:2c:40:4c:19:ee:4e:44:48:e6: d7:65:45:9b:33:27:ea:1d:30:8f:1b:51:49:21:63: 8c:7e:ad:4a:a2:f6:0a:e9:da:25:dc:c5:a1:41:87: 4d:5d:da:84:46:b1:f7:ed:89:8c:d1:1c:f1:9a:9d: 75:70:99:ff:34:f9:f9:40:c7:b1:a0:f3:08:87:60: c2:79:08:32:a9:10:37:6b:00:e3:ef:fe:db:4f:71: da:52:1e:fd:72:c4:19:14:a8:09:e5:d8:1f:eb:08: b8:1e:34:ff:ff:cd:36:e0:ee:cd:a9:a8:0d:ce:1c: d2:a2:a7:79:c0:f7:36:da:60:eb:b8:13:74:9f:54: 31:ef:29:5e:ef:50:d2:bc:ee:31:bc:35:0f:c7:d5: 6b:bd:95:7c:7e:e7:50:ab:75:01:03:19:8e:06:6e: 74:72:e0:20:87:13:bc:fe:07:28:d4:3d:02:66:38: 92:03:8d:25:f1:87:dc:b7:d5:98:50:80:46:34:3c: d2:67:37:55:77:c8:20:5e:24:99:c9:ce:5e:19:ee: 34:d9:14:c6:f8:1e:d4:a2:65:eb:71:83:5e:42:68: e8:8f:38:e6:7d:3a:62:52:c9:7c:b5:39:0f:dd:73: 9a:f3:e7:fc:24:bb:8b:9d:c1:5f:15:38:1a:90:4b: c4:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:84:1C:70:54:11:63:F2:26:AE:E2:34:9D:07:2E:68:75:8B:71:66 X509v3 Authority Key Identifier: keyid:F8:16:97:9D:2A:89:9B:29:EA:59:5F:2B:54:EE:A3:99:0A:24:36:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5DB6/13F96B82186211E8B1E31729C4F9AE02/-BaXnSqJmynqWV8rVO6jmQokNvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-BaXnSqJmynqWV8rVO6jmQokNvk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5DB6/13F96B82186211E8B1E31729C4F9AE02/-BaXnSqJmynqWV8rVO6jmQokNvk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:c2:c2:31:c4:13:76:ce:0a:4f:9c:b1:cb:5d:f4:f4:d2:cd: b4:77:23:34:e7:f6:08:0e:11:57:2a:1c:71:40:92:7e:82:57: 87:0a:be:c2:a6:ba:90:27:12:fd:b8:96:a6:8b:9e:5a:81:35: 99:35:6f:5f:eb:4d:7d:15:b2:8b:59:56:8b:f9:1d:af:62:b8: a1:d6:ec:cc:b4:51:74:91:4c:f0:34:d5:83:b4:bb:cd:d1:05: 7f:88:0e:31:68:a0:02:97:04:f1:ad:8f:10:58:66:0d:4a:9f: 8d:e5:29:31:b0:7f:4b:7f:c0:e5:9e:9e:e3:13:0a:a2:b7:80: f5:4a:35:49:79:85:ca:32:a7:42:9e:75:27:f3:45:16:b1:a7: 7f:ad:70:b4:07:a8:31:4c:f6:63:2b:f0:26:87:e3:69:df:89: 09:9b:be:3e:36:04:79:c6:df:de:2d:60:47:a0:8a:92:7e:84: 19:e4:b1:89:0e:37:f9:85:cd:c6:d4:ad:4a:b3:f0:ab:5b:58: 63:75:ca:57:3f:51:65:43:49:63:61:ab:82:74:ba:f5:26:f8: 08:ac:8d:1d:ef:f6:0e:28:6e:a9:74:1b:da:e8:b7:39:eb:8a: 4f:18:83:3b:bd:5f:af:87:bd:71:a2:89:b1:a5:1c:18:01:24: 92:84:bd:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFg0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVEQjYxMTAvBgNVBAUTKEY4MTY5NzlEMkE4OTlCMjlFQTU5NUYyQjU0RUVBMzk5 MEEyNDM2RjkwHhcNMjUwNzIwMTY0NTU3WhcNMjUwNzI3MTY0NTU3WjAYMRYwFAYD VQQDEw02ODdkMWQ0NS1mOTYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwC1BWewsQEwZ7k5ESObXZUWbMyfqHTCPG1FJIWOMfq1KovYK6dol3MWhQYdN XdqERrH37YmM0Rzxmp11cJn/NPn5QMexoPMIh2DCeQgyqRA3awDj7/7bT3HaUh79 csQZFKgJ5dgf6wi4HjT//8024O7NqagNzhzSoqd5wPc22mDruBN0n1Qx7yle71DS vO4xvDUPx9VrvZV8fudQq3UBAxmOBm50cuAghxO8/gco1D0CZjiSA40l8Yfct9WY UIBGNDzSZzdVd8ggXiSZyc5eGe402RTG+B7UomXrcYNeQmjojzjmfTpiUsl8tTkP 3XOa8+f8JLuLncFfFTgakEvECQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHiEHHBU EWPyJq7iNJ0HLmh1i3FmMB8GA1UdIwQYMBaAFPgWl50qiZsp6llfK1Tuo5kKJDb5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENURCNi8xM0Y5NkI4MjE4 NjIxMUU4QjFFMzE3MjlDNEY5QUUwMi8tQmFYblNxSm15bnFXVjhyVk82am1Rb2tO dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1CYVhuU3FKbXlucVdWOHJWTzZqbVFva052ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NURCNi8xM0Y5NkI4MjE4NjIxMUU4QjFFMzE3MjlDNEY5QUUwMi8tQmFYblNxSm15 bnFXVjhyVk82am1Rb2tOdmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwwsIxxBN2zgpPnLHLXfT00s20dyM05/YIDhFXKhxxQJJ+gleHCr7C prqQJxL9uJami55agTWZNW9f6019FbKLWVaL+R2vYrih1uzMtFF0kUzwNNWDtLvN 0QV/iA4xaKAClwTxrY8QWGYNSp+N5SkxsH9Lf8Dlnp7jEwqit4D1SjVJeYXKMqdC nnUn80UWsad/rXC0B6gxTPZjK/Amh+Np34kJm74+NgR5xt/eLWBHoIqSfoQZ5LGJ Djf5hc3G1K1Ks/CrW1hjdcpXP1FlQ0ljYauCdLr1JvgIrI0d7/YOKG6pdBva6Lc5 64pPGIM7vV+vh71xoomxpRwYASSShL3i -----END CERTIFICATE-----Generated at Mon Jul 21 07:05:32 2025 by rpki-client