$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6CB0/3556201C093211EC98B8DF0EC4F9AE02/bRdadMGgmL-i337kNxYF_2owQkk.mft File: bRdadMGgmL-i337kNxYF_2owQkk.mft (raw, json) Hash identifier: IIVvJYAgXmT91rwuaoy9kaTgnwpCQDRe9gVtp/v0hKs= Subject key identifier: EF:14:8E:3F:24:19:32:5E:84:2F:B3:DA:6B:3F:9C:D3:50:67:A5:8C Authority key identifier: 6D:17:5A:74:C1:A0:98:BF:A2:DF:7E:E4:37:16:05:FF:6A:30:42:49 Certificate issuer: /CN=A91F6CB0/serialNumber=6D175A74C1A098BFA2DF7EE4371605FF6A304249 Certificate serial: 0540 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bRdadMGgmL-i337kNxYF_2owQkk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6CB0/3556201C093211EC98B8DF0EC4F9AE02/bRdadMGgmL-i337kNxYF_2owQkk.mft Manifest number: 052D Signing time: Fri 18 Jul 2025 23:54:22 +0000 Manifest this update: Fri 18 Jul 2025 23:54:22 +0000 Manifest next update: Fri 25 Jul 2025 23:54:22 +0000 Files and hashes: 1: bRdadMGgmL-i337kNxYF_2owQkk.crl (hash: HBwXatfLyylPjXsDJq/VtKvK4X9NSVGCSs52pY/aiws=) 2: 80379A8A09EA11EC8762242CC4F9AE02.roa (hash: bLDcJFTKOtM843ZtxHRVBda6/t9v0F+nd+NQWcmzuYk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6CB0/3556201C093211EC98B8DF0EC4F9AE02/bRdadMGgmL-i337kNxYF_2owQkk.crl rsync://rpki.apnic.net/member_repository/A91F6CB0/3556201C093211EC98B8DF0EC4F9AE02/bRdadMGgmL-i337kNxYF_2owQkk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bRdadMGgmL-i337kNxYF_2owQkk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 23:54:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1344 (0x540) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6CB0, serialNumber=6D175A74C1A098BFA2DF7EE4371605FF6A304249 Validity Not Before: Jul 18 23:54:22 2025 GMT Not After : Jul 25 23:54:22 2025 GMT Subject: CN=687adeae-6a96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:9e:e5:8f:c9:37:3e:3d:1f:2f:9f:0c:79:15: 06:e0:fa:9d:8d:6c:4e:45:19:e7:db:81:0d:a7:fe: 86:81:12:67:f5:3d:f6:ba:7a:53:57:da:af:74:d5: bf:d7:c5:3e:6d:25:34:3d:b9:52:40:8c:db:cc:7a: 9e:ac:a2:18:7d:47:c6:f8:e5:1d:82:9b:08:e0:f9: 4e:2f:07:ac:95:ed:e1:fd:16:4f:29:d1:6f:57:51: a7:72:e7:ca:d0:be:a4:ff:8f:a7:d8:19:8e:5b:3d: 8d:94:be:a4:70:60:fa:8b:ef:fa:6a:62:6d:be:7b: 9d:f3:2e:db:07:48:61:19:29:30:8e:ca:5a:1a:42: b0:89:2d:04:c7:10:fc:1a:c9:f2:51:e7:c6:8e:57: 2e:ba:3c:46:a7:66:d9:2b:55:28:21:58:67:b0:0a: 43:75:99:d3:8a:f9:71:fe:3f:04:d2:54:4b:70:b6: 77:a8:0d:23:ce:68:58:97:c8:b1:69:d5:c3:a3:9a: 2e:58:86:79:46:53:2f:88:04:fb:fc:05:07:f8:41: 7f:a0:c7:56:7e:3b:84:1b:7c:6f:3a:4e:93:8b:b6: 0b:7f:49:55:7e:96:47:a7:e7:ec:a8:16:46:e3:61: 4b:48:c1:68:40:82:ea:b2:36:6c:8b:9e:c4:6d:75: ed:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:14:8E:3F:24:19:32:5E:84:2F:B3:DA:6B:3F:9C:D3:50:67:A5:8C X509v3 Authority Key Identifier: keyid:6D:17:5A:74:C1:A0:98:BF:A2:DF:7E:E4:37:16:05:FF:6A:30:42:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6CB0/3556201C093211EC98B8DF0EC4F9AE02/bRdadMGgmL-i337kNxYF_2owQkk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bRdadMGgmL-i337kNxYF_2owQkk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6CB0/3556201C093211EC98B8DF0EC4F9AE02/bRdadMGgmL-i337kNxYF_2owQkk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:09:8b:52:14:06:71:f4:12:1d:96:e9:e9:bf:dd:8a:82:66: f5:f3:43:2e:06:ae:c6:a9:81:3c:5b:97:d8:db:0e:75:e3:fa: 9a:81:41:a6:bc:9a:96:fc:08:47:d4:50:11:7e:7f:67:d5:fa: 7e:78:7c:ad:ac:d6:6e:75:87:75:30:38:59:90:9d:1f:aa:3e: c0:76:7f:d8:c5:01:8a:a4:b8:c4:7a:c2:7b:ab:d5:51:62:56: 91:5b:eb:ba:2c:f7:c3:99:cb:39:70:4a:c4:14:20:c8:92:6c: bf:7f:92:fd:06:a8:7c:63:79:45:86:a3:92:eb:4b:2c:f0:67: 35:99:57:7e:92:20:f3:db:89:b1:74:39:31:bc:73:1e:8c:46: 2e:79:16:2d:f1:35:47:fc:23:cc:31:64:22:8a:7d:35:26:af: e7:c5:16:1d:63:69:35:a4:76:e4:4f:05:18:57:7c:11:fb:16: ee:67:64:e0:7d:e1:4e:55:a9:03:73:27:71:6b:8e:5b:a2:bf: 04:34:8f:da:f5:70:ea:fc:1d:8c:5b:7d:9d:f6:b0:97:68:af: 54:d7:d5:17:cd:0d:28:17:f5:d1:22:75:22:31:d2:99:59:36: 33:a3:99:df:e0:4f:12:db:bb:22:92:72:7b:d9:a0:21:3f:49: be:e9:94:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBUAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZDQjAxMTAvBgNVBAUTKDZEMTc1QTc0QzFBMDk4QkZBMkRGN0VFNDM3MTYwNUZG NkEzMDQyNDkwHhcNMjUwNzE4MjM1NDIyWhcNMjUwNzI1MjM1NDIyWjAYMRYwFAYD VQQDEw02ODdhZGVhZS02YTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtp7lj8k3Pj0fL58MeRUG4PqdjWxORRnn24ENp/6GgRJn9T32unpTV9qvdNW/ 18U+bSU0PblSQIzbzHqerKIYfUfG+OUdgpsI4PlOLwesle3h/RZPKdFvV1GncufK 0L6k/4+n2BmOWz2NlL6kcGD6i+/6amJtvnud8y7bB0hhGSkwjspaGkKwiS0ExxD8 GsnyUefGjlcuujxGp2bZK1UoIVhnsApDdZnTivlx/j8E0lRLcLZ3qA0jzmhYl8ix adXDo5ouWIZ5RlMviAT7/AUH+EF/oMdWfjuEG3xvOk6Ti7YLf0lVfpZHp+fsqBZG 42FLSMFoQILqsjZsi57EbXXtzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO8Ujj8k GTJehC+z2ms/nNNQZ6WMMB8GA1UdIwQYMBaAFG0XWnTBoJi/ot9+5DcWBf9qMEJJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkNCMC8zNTU2MjAxQzA5 MzIxMUVDOThCOERGMEVDNEY5QUUwMi9iUmRhZE1HZ21MLWkzMzdrTnhZRl8yb3dR a2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JSZGFkTUdnbUwtaTMzN2tOeFlGXzJvd1Fray5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NkNCMC8zNTU2MjAxQzA5MzIxMUVDOThCOERGMEVDNEY5QUUwMi9iUmRhZE1HZ21M LWkzMzdrTnhZRl8yb3dRa2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgCYtSFAZx9BIdlunpv92Kgmb180MuBq7GqYE8W5fY2w514/qagUGm vJqW/AhH1FARfn9n1fp+eHytrNZudYd1MDhZkJ0fqj7Adn/YxQGKpLjEesJ7q9VR YlaRW+u6LPfDmcs5cErEFCDIkmy/f5L9Bqh8Y3lFhqOS60ss8Gc1mVd+kiDz24mx dDkxvHMejEYueRYt8TVH/CPMMWQiin01Jq/nxRYdY2k1pHbkTwUYV3wR+xbuZ2Tg feFOVakDcydxa45bor8ENI/a9XDq/B2MW32d9rCXaK9U19UXzQ0oF/XRInUiMdKZ WTYzo5nf4E8S27siknJ72aAhP0m+6ZS+ -----END CERTIFICATE-----Generated at Sun Jul 20 22:33:59 2025 by rpki-client