$ rpki-client -vvf rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft File: bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft (raw, json) Hash identifier: ZJx01rRjSyZvAjHPPYTjdVYthuYY0vUzIptqE3dMlLQ= Subject key identifier: 02:B1:A0:DA:54:89:91:25:18:D9:A7:D6:4E:7D:F8:23:42:D1:57:CA Authority key identifier: 6D:CE:52:F9:A2:28:CB:F6:F3:0C:D5:5D:43:38:4D:12:68:48:7B:65 Certificate issuer: /CN=A91240E6/serialNumber=6DCE52F9A228CBF6F30CD55D43384D1268487B65 Certificate serial: 2646 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bc5S-aIoy_bzDNVdQzhNEmhIe2U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft Manifest number: 262D Signing time: Fri 22 Aug 2025 15:44:46 +0000 Manifest this update: Fri 22 Aug 2025 15:44:45 +0000 Manifest next update: Fri 29 Aug 2025 15:44:45 +0000 Files and hashes: 1: bc5S-aIoy_bzDNVdQzhNEmhIe2U.crl (hash: I9sl3QKl4gCezb70RJYmNTBhlU4I4Sn/8trfmNRZubQ=) 2: 8A721F4EB10C11E5BB6B2A16C4F9AE02.roa (hash: mvyjt+3dRIE1/Krz/XL4fNVu3c2fcm82NTuO/MfHBcQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.crl rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bc5S-aIoy_bzDNVdQzhNEmhIe2U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:44:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9798 (0x2646) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91240E6, serialNumber=6DCE52F9A228CBF6F30CD55D43384D1268487B65 Validity Not Before: Aug 22 15:44:45 2025 GMT Not After : Aug 29 15:44:45 2025 GMT Subject: CN=68a8906e-3278 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:76:e6:56:49:9d:bd:04:5d:fa:2c:c4:dc:85: 4e:d3:fd:e4:35:ca:41:12:63:8c:ee:a7:77:98:cd: 1e:13:a1:55:33:91:28:65:6a:ee:0a:f6:fb:ed:5d: 44:24:80:a9:c2:86:94:a5:ec:55:92:10:94:8d:ab: 91:f4:59:58:38:88:8b:a6:c1:e1:f2:6e:bb:4b:2d: 88:ca:31:19:fa:0d:38:8f:fa:76:8d:08:0e:ad:fe: e7:99:f2:01:03:8a:8f:38:21:1a:a5:f0:08:ca:35: 1f:60:a1:25:ef:b3:98:2a:11:12:58:63:ab:6b:39: b8:69:6b:f1:58:e8:65:d4:e9:70:9a:6f:71:b5:86: 59:af:9f:d1:4b:64:df:fc:92:bc:e7:6e:dd:ee:81: 0b:bc:f6:52:0e:27:09:1a:94:ae:5b:a2:5a:d3:03: 73:71:5f:95:65:61:c7:f2:51:2e:41:1c:22:8d:48: 85:c5:82:62:2d:f9:f3:f5:9e:00:7b:b3:26:9d:bc: 2a:40:c5:60:70:eb:d8:24:44:13:bd:5a:1c:73:4a: 98:fd:dc:df:ae:63:42:d2:6b:23:47:0f:dd:a6:e3: d9:6f:28:66:f6:de:a8:36:7f:f3:50:60:a6:26:34: fa:7d:30:b3:08:c9:dd:51:38:27:0a:cd:d8:a0:07: f9:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:B1:A0:DA:54:89:91:25:18:D9:A7:D6:4E:7D:F8:23:42:D1:57:CA X509v3 Authority Key Identifier: keyid:6D:CE:52:F9:A2:28:CB:F6:F3:0C:D5:5D:43:38:4D:12:68:48:7B:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bc5S-aIoy_bzDNVdQzhNEmhIe2U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:c5:ec:10:72:2c:23:d1:37:11:28:5f:14:6d:29:ad:12:2c: 82:d2:62:0d:be:17:00:04:b6:16:a2:3f:75:e9:b6:c3:ea:87: ef:f3:51:03:19:b3:92:7d:e0:86:0e:6e:5f:19:be:fa:8b:d0: c7:93:2b:08:21:6e:59:3f:ff:45:37:fd:ec:ee:4b:0e:73:30: 1c:0f:dd:da:61:bf:10:6c:ea:11:b0:81:b0:51:ee:46:09:b4: 71:b3:69:83:af:b4:b7:97:98:0d:c6:05:21:36:67:0d:35:5b: fc:85:47:01:d4:77:06:81:ef:aa:e8:54:a8:ee:5d:05:aa:9a: ff:6d:35:7b:6b:9a:a0:8e:ef:ac:d5:42:41:19:4c:85:b1:38: fa:35:d8:74:47:33:5d:6c:fb:7b:5e:76:39:84:7c:9a:c7:71: 55:14:53:1d:46:bc:92:86:f4:04:f5:5b:6e:af:b6:e9:55:b6: 10:c6:7e:07:72:ac:a1:7a:b9:3d:96:b5:81:d9:45:1a:2d:da: 46:4c:e8:a4:41:91:4c:83:4b:ec:2e:f8:4a:7b:6b:77:78:b9: 2f:17:c9:af:0f:cd:ab:b2:ec:c1:33:69:e7:57:71:fd:f3:ff: 3f:1a:45:da:c0:86:77:e1:4d:bc:e6:61:e1:77:7c:09:38:13: 06:f0:2e:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJkYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQwRTYxMTAvBgNVBAUTKDZEQ0U1MkY5QTIyOENCRjZGMzBDRDU1RDQzMzg0RDEy Njg0ODdCNjUwHhcNMjUwODIyMTU0NDQ1WhcNMjUwODI5MTU0NDQ1WjAYMRYwFAYD VQQDEw02OGE4OTA2ZS0zMjc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs3bmVkmdvQRd+izE3IVO0/3kNcpBEmOM7qd3mM0eE6FVM5EoZWruCvb77V1E JICpwoaUpexVkhCUjauR9FlYOIiLpsHh8m67Sy2IyjEZ+g04j/p2jQgOrf7nmfIB A4qPOCEapfAIyjUfYKEl77OYKhESWGOrazm4aWvxWOhl1Olwmm9xtYZZr5/RS2Tf /JK8527d7oELvPZSDicJGpSuW6Ja0wNzcV+VZWHH8lEuQRwijUiFxYJiLfnz9Z4A e7MmnbwqQMVgcOvYJEQTvVocc0qY/dzfrmNC0msjRw/dpuPZbyhm9t6oNn/zUGCm JjT6fTCzCMndUTgnCs3YoAf5ewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAKxoNpU iZElGNmn1k59+CNC0VfKMB8GA1UdIwQYMBaAFG3OUvmiKMv28wzVXUM4TRJoSHtl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDBFNi82NjA3NDJDOEZE MjExMUU0ODhBQjBDMzRDNEY5QUUwMi9iYzVTLWFJb3lfYnpETlZkUXpoTkVtaEll MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JjNVMtYUlveV9iekROVmRRemhORW1oSWUyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NDBFNi82NjA3NDJDOEZEMjExMUU0ODhBQjBDMzRDNEY5QUUwMi9iYzVTLWFJb3lf YnpETlZkUXpoTkVtaEllMlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUxewQciwj0TcRKF8UbSmtEiyC0mINvhcABLYWoj916bbD6ofv81ED GbOSfeCGDm5fGb76i9DHkysIIW5ZP/9FN/3s7ksOczAcD93aYb8QbOoRsIGwUe5G CbRxs2mDr7S3l5gNxgUhNmcNNVv8hUcB1HcGge+q6FSo7l0Fqpr/bTV7a5qgju+s 1UJBGUyFsTj6Ndh0RzNdbPt7XnY5hHyax3FVFFMdRryShvQE9Vtur7bpVbYQxn4H cqyherk9lrWB2UUaLdpGTOikQZFMg0vsLvhKe2t3eLkvF8mvD82rsuzBM2nnV3H9 8/8/GkXawIZ34U285mHhd3wJOBMG8C51 -----END CERTIFICATE-----Generated at Sat Aug 23 03:26:54 2025 by rpki-client