$ rpki-client -vvf rpki.apnic.net/member_repository/A911D415/64B7762E67BA11EEA912DE37C4F9AE02/baLnsgc31v3aKTEYAyM4Tcf4AXI.mft File: baLnsgc31v3aKTEYAyM4Tcf4AXI.mft (raw, json) Hash identifier: TYTMUEC9Hund7x1FIoMGt1cNY+unbdy8jwKTxzECuTY= Subject key identifier: EC:55:70:E4:57:CC:61:2A:B8:F5:AC:7E:9B:48:65:DF:F6:4F:71:04 Authority key identifier: 6D:A2:E7:B2:07:37:D6:FD:DA:29:31:18:03:23:38:4D:C7:F8:01:72 Certificate issuer: /CN=A911D415/serialNumber=6DA2E7B20737D6FDDA2931180323384DC7F80172 Certificate serial: 0169 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baLnsgc31v3aKTEYAyM4Tcf4AXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D415/64B7762E67BA11EEA912DE37C4F9AE02/baLnsgc31v3aKTEYAyM4Tcf4AXI.mft Manifest number: 0166 Signing time: Fri 05 Sep 2025 04:17:21 +0000 Manifest this update: Fri 05 Sep 2025 04:17:21 +0000 Manifest next update: Fri 12 Sep 2025 04:17:21 +0000 Files and hashes: 1: baLnsgc31v3aKTEYAyM4Tcf4AXI.crl (hash: x4ZtpRc2zf6LDUtcQCmvipyHCVAW0s6LrzQcxL9OC+I=) 2: B2B7B96067BA11EE99370352C4F9AE02.roa (hash: P/WWt5eI8v2C+zoec4Zd9OnVnDcSJ3bbXF6r7+A0KgE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D415/64B7762E67BA11EEA912DE37C4F9AE02/baLnsgc31v3aKTEYAyM4Tcf4AXI.crl rsync://rpki.apnic.net/member_repository/A911D415/64B7762E67BA11EEA912DE37C4F9AE02/baLnsgc31v3aKTEYAyM4Tcf4AXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baLnsgc31v3aKTEYAyM4Tcf4AXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 04:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 361 (0x169) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D415, serialNumber=6DA2E7B20737D6FDDA2931180323384DC7F80172 Validity Not Before: Sep 5 04:17:21 2025 GMT Not After : Sep 12 04:17:21 2025 GMT Subject: CN=68ba6451-66af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:38:f9:7c:20:bd:b1:df:f3:39:2a:81:20:9f: 62:5b:f8:21:de:35:c3:3d:3e:da:2d:46:4f:39:f2: 42:c6:4d:d2:2f:f6:ef:e0:8b:4b:bd:ea:b5:5b:b7: fd:a9:ff:85:65:b3:13:bf:07:3e:d8:d2:7b:7c:5a: c0:9b:be:a5:2c:e1:1e:d9:4d:3d:e4:f7:07:b5:09: e3:df:f0:de:37:16:f0:17:4d:bd:ff:11:11:ff:bb: 51:01:00:f0:4c:8d:d4:a1:71:a8:b6:86:03:60:00: e9:ec:d0:1d:6e:ae:6a:b1:17:22:de:d4:59:21:c5: be:94:6f:2b:3d:34:82:ef:d8:b3:a7:cf:23:fd:df: 14:a9:e8:e8:ea:14:d3:bb:71:5b:49:a2:3f:9b:ef: 47:2e:ac:c6:b6:a7:54:f1:d1:c1:5c:7b:71:2a:94: 6e:c9:9f:e1:f7:c9:3f:72:04:96:1c:5c:f8:de:44: 49:6f:1e:1d:63:d4:d5:fb:f8:41:3a:f3:d6:31:a9: ac:34:69:6a:1f:63:28:ba:05:7e:fc:48:58:d1:b8: 57:e3:cf:7b:e2:cf:99:ed:c2:e8:4f:6e:e3:f8:58: 6e:87:a4:44:86:38:ff:e4:a7:e4:d1:cb:88:98:81: fa:1c:f9:0e:dd:29:51:34:2f:f2:f4:bc:c1:02:85: 44:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:55:70:E4:57:CC:61:2A:B8:F5:AC:7E:9B:48:65:DF:F6:4F:71:04 X509v3 Authority Key Identifier: keyid:6D:A2:E7:B2:07:37:D6:FD:DA:29:31:18:03:23:38:4D:C7:F8:01:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D415/64B7762E67BA11EEA912DE37C4F9AE02/baLnsgc31v3aKTEYAyM4Tcf4AXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baLnsgc31v3aKTEYAyM4Tcf4AXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D415/64B7762E67BA11EEA912DE37C4F9AE02/baLnsgc31v3aKTEYAyM4Tcf4AXI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:ef:9e:11:54:58:90:8c:6b:d6:93:56:b7:8a:62:b6:6a:0a: 51:ac:b1:e1:bf:a9:d9:d0:96:b7:92:d4:69:32:40:03:e7:bf: eb:5c:c3:4e:ca:8a:6a:71:60:4d:f1:4d:43:83:1d:6a:d0:2b: 6e:b9:b0:3c:13:ba:a8:7f:ef:64:c5:78:f2:d7:5a:75:b7:7b: 40:3b:d8:87:56:55:c1:4b:96:49:5d:48:e6:6d:11:4f:a9:f9: 23:51:a2:e1:a4:c5:6c:43:1b:61:91:ff:a1:c2:83:8b:fb:19: ed:13:ec:59:04:e3:5e:1c:55:49:e8:31:ca:5c:96:f2:75:bf: 7b:d0:be:25:eb:a0:d5:68:5b:3c:e9:35:e5:d8:60:51:41:40: 70:12:e3:a8:c6:a7:d9:61:52:87:fb:d1:52:3a:ad:44:b0:cf: e8:64:a7:92:80:e4:9e:85:ce:b0:a3:22:ae:45:dd:38:10:c3: a0:d4:35:a0:30:4e:16:b9:87:48:e7:2a:a8:cc:49:ea:7e:45: 39:d1:fc:5b:32:b1:e2:4b:fe:35:22:b8:b6:9c:09:d2:a9:3f: 2b:8b:a8:9a:f1:4d:9b:4a:2c:a6:77:41:8b:6f:eb:f3:13:b1: a3:5b:a0:67:c0:9e:dd:de:cf:a7:56:f3:b5:85:9c:08:a9:69: 78:45:1d:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQ0MTUxMTAvBgNVBAUTKDZEQTJFN0IyMDczN0Q2RkREQTI5MzExODAzMjMzODRE QzdGODAxNzIwHhcNMjUwOTA1MDQxNzIxWhcNMjUwOTEyMDQxNzIxWjAYMRYwFAYD VQQDEw02OGJhNjQ1MS02NmFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvzj5fCC9sd/zOSqBIJ9iW/gh3jXDPT7aLUZPOfJCxk3SL/bv4ItLveq1W7f9 qf+FZbMTvwc+2NJ7fFrAm76lLOEe2U095PcHtQnj3/DeNxbwF029/xER/7tRAQDw TI3UoXGotoYDYADp7NAdbq5qsRci3tRZIcW+lG8rPTSC79izp88j/d8Uqejo6hTT u3FbSaI/m+9HLqzGtqdU8dHBXHtxKpRuyZ/h98k/cgSWHFz43kRJbx4dY9TV+/hB OvPWMamsNGlqH2MougV+/EhY0bhX48974s+Z7cLoT27j+Fhuh6REhjj/5Kfk0cuI mIH6HPkO3SlRNC/y9LzBAoVEvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOxVcORX zGEquPWsfptIZd/2T3EEMB8GA1UdIwQYMBaAFG2i57IHN9b92ikxGAMjOE3H+AFy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDQxNS82NEI3NzYyRTY3 QkExMUVFQTkxMkRFMzdDNEY5QUUwMi9iYUxuc2djMzF2M2FLVEVZQXlNNFRjZjRB WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JhTG5zZ2MzMXYzYUtURVlBeU00VGNmNEFYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDQxNS82NEI3NzYyRTY3QkExMUVFQTkxMkRFMzdDNEY5QUUwMi9iYUxuc2djMzF2 M2FLVEVZQXlNNFRjZjRBWEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZ754RVFiQjGvWk1a3imK2agpRrLHhv6nZ0Ja3ktRpMkAD57/rXMNO yopqcWBN8U1Dgx1q0CtuubA8E7qof+9kxXjy11p1t3tAO9iHVlXBS5ZJXUjmbRFP qfkjUaLhpMVsQxthkf+hwoOL+xntE+xZBONeHFVJ6DHKXJbydb970L4l66DVaFs8 6TXl2GBRQUBwEuOoxqfZYVKH+9FSOq1EsM/oZKeSgOSehc6woyKuRd04EMOg1DWg ME4WuYdI5yqozEnqfkU50fxbMrHiS/41Iri2nAnSqT8ri6ia8U2bSiymd0GLb+vz E7GjW6BnwJ7d3s+nVvO1hZwIqWl4RR3Z -----END CERTIFICATE-----Generated at Sat Sep 6 13:48:21 2025 by rpki-client