$ rpki-client -vvf rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft File: BN7ay9uvpcHBT5KBe5b39QMQCig.mft (raw, json) Hash identifier: HSAxChrUCqNCCHx9smdywcJW/6n2VuCBnBA61xttNcg= Subject key identifier: E6:BF:D4:89:54:9C:33:8A:4D:95:16:F9:61:2F:BC:35:61:18:EF:10 Authority key identifier: 04:DE:DA:CB:DB:AF:A5:C1:C1:4F:92:81:7B:96:F7:F5:03:10:0A:28 Certificate issuer: /CN=A912DD36/serialNumber=04DEDACBDBAFA5C1C14F92817B96F7F503100A28 Certificate serial: F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft Manifest number: F3 Signing time: Wed 17 Sep 2025 05:53:51 +0000 Manifest this update: Wed 17 Sep 2025 05:53:50 +0000 Manifest next update: Wed 24 Sep 2025 05:53:50 +0000 Files and hashes: 1: BN7ay9uvpcHBT5KBe5b39QMQCig.crl (hash: SWsostcYLP/PGKo/p5R5Ta8jTbrdgMED7iDf5YBWNho=) 2: 09EC8E16662211EFB6FA446CC4F9AE02.roa (hash: KgWGTanyX6yUWjTf/f+n7HM6qpw4Ft2mJJiD1oMoEsc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.crl rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 05:53:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 247 (0xf7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DD36, serialNumber=04DEDACBDBAFA5C1C14F92817B96F7F503100A28 Validity Not Before: Sep 17 05:53:50 2025 GMT Not After : Sep 24 05:53:50 2025 GMT Subject: CN=68ca4cef-61bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:9c:e9:5c:c3:a9:12:3e:a1:38:f9:16:6f:f3: 7f:6f:5f:87:2b:15:bc:a3:eb:e7:85:cc:7d:89:3f: 68:d4:f8:00:47:bb:7e:be:e6:ee:fd:e4:b4:e9:80: fb:a2:f7:92:12:19:dd:ce:56:21:02:89:08:28:57: b6:dc:e8:f4:0b:6b:18:fc:a1:70:47:35:ff:b7:59: d8:a0:11:f2:2e:68:98:b0:f5:31:ab:1b:c8:06:bb: 1b:12:9b:f0:1f:33:13:2d:f8:81:ad:fa:b8:48:c4: c5:9d:5e:b0:7b:f9:f3:9f:d9:43:98:88:c5:36:f5: 45:1c:a9:b7:19:5c:ae:30:be:18:7c:96:96:25:d6: 07:08:79:61:94:d2:6e:0d:1d:8d:d8:af:0c:25:e7: 07:4d:16:b8:93:32:4a:d7:09:92:38:ed:71:86:db: df:ec:91:56:01:be:19:dd:3b:9d:58:53:44:4e:39: 1f:2c:ca:60:0d:95:a8:35:c8:1c:03:2d:97:86:df: af:9e:8d:4b:06:49:1a:a0:e2:1d:f2:77:fd:be:0c: d2:41:18:0e:d0:64:b1:5c:67:98:80:c2:7e:02:ca: 8e:17:98:2d:c5:00:72:7d:13:f5:a3:de:8b:ef:d5: 95:a5:c1:55:90:9d:18:5f:20:71:de:56:06:07:07: 58:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:BF:D4:89:54:9C:33:8A:4D:95:16:F9:61:2F:BC:35:61:18:EF:10 X509v3 Authority Key Identifier: keyid:04:DE:DA:CB:DB:AF:A5:C1:C1:4F:92:81:7B:96:F7:F5:03:10:0A:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:f4:81:b4:d4:16:e9:96:2a:14:7a:91:f1:e5:e8:65:f0:af: 59:07:12:a4:da:38:06:a4:eb:6e:5d:44:21:c9:f6:cd:77:7d: b8:42:2e:43:e7:c0:a0:d8:59:33:f2:2b:c5:10:2e:c4:0c:25: 13:af:b7:ca:1e:28:04:05:3a:28:94:eb:87:ce:66:54:7e:8e: 37:22:ac:b1:aa:66:e9:7a:2d:2e:5a:9d:7a:8e:15:35:f2:81: f1:65:76:e3:0a:c1:b4:8e:36:f7:a5:69:3a:0c:83:e9:ca:90: 15:21:9d:77:0d:91:25:60:2b:6f:d5:fd:12:1c:2d:38:24:de: 7e:1e:df:1a:03:9a:9b:89:5d:bf:a6:ec:b0:0c:f3:6f:81:cb: 07:85:82:fa:a6:b5:6b:55:88:c3:b7:ca:c8:f6:b5:55:8d:f6: 95:73:e8:aa:21:b3:28:62:7a:aa:d5:c0:74:1a:18:be:9a:8d: 98:a4:43:0d:97:d8:8a:fb:3a:9d:09:0c:ce:e5:33:6f:af:be: a8:2d:bd:e2:27:97:10:5d:fb:4f:3e:ff:2a:79:d9:22:1c:94: b3:87:a5:2d:95:f1:3f:b2:06:48:70:c6:6e:ee:bf:f3:6b:41: ab:89:56:8b:13:da:9c:14:83:ac:4e:02:0e:55:67:74:4f:07: f4:14:cc:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkREMzYxMTAvBgNVBAUTKDA0REVEQUNCREJBRkE1QzFDMTRGOTI4MTdCOTZGN0Y1 MDMxMDBBMjgwHhcNMjUwOTE3MDU1MzUwWhcNMjUwOTI0MDU1MzUwWjAYMRYwFAYD VQQDEw02OGNhNGNlZi02MWJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA75zpXMOpEj6hOPkWb/N/b1+HKxW8o+vnhcx9iT9o1PgAR7t+vubu/eS06YD7 oveSEhndzlYhAokIKFe23Oj0C2sY/KFwRzX/t1nYoBHyLmiYsPUxqxvIBrsbEpvw HzMTLfiBrfq4SMTFnV6we/nzn9lDmIjFNvVFHKm3GVyuML4YfJaWJdYHCHlhlNJu DR2N2K8MJecHTRa4kzJK1wmSOO1xhtvf7JFWAb4Z3TudWFNETjkfLMpgDZWoNcgc Ay2Xht+vno1LBkkaoOId8nf9vgzSQRgO0GSxXGeYgMJ+AsqOF5gtxQByfRP1o96L 79WVpcFVkJ0YXyBx3lYGBwdYCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOa/1IlU nDOKTZUW+WEvvDVhGO8QMB8GA1UdIwQYMBaAFATe2svbr6XBwU+SgXuW9/UDEAoo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREQzNi83RjQwMjNGMjI1 MzIxMUVGQkM5MzIxMUFDNEY5QUUwMi9CTjdheTl1dnBjSEJUNUtCZTViMzlRTVFD aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JON2F5OXV2cGNIQlQ1S0JlNWIzOVFNUUNpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REQzNi83RjQwMjNGMjI1MzIxMUVGQkM5MzIxMUFDNEY5QUUwMi9CTjdheTl1dnBj SEJUNUtCZTViMzlRTVFDaWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDD9IG01BbplioUepHx5ehl8K9ZBxKk2jgGpOtuXUQhyfbNd324Qi5D 58Cg2Fkz8ivFEC7EDCUTr7fKHigEBToolOuHzmZUfo43Iqyxqmbpei0uWp16jhU1 8oHxZXbjCsG0jjb3pWk6DIPpypAVIZ13DZElYCtv1f0SHC04JN5+Ht8aA5qbiV2/ puywDPNvgcsHhYL6prVrVYjDt8rI9rVVjfaVc+iqIbMoYnqq1cB0Ghi+mo2YpEMN l9iK+zqdCQzO5TNvr76oLb3iJ5cQXftPPv8qedkiHJSzh6UtlfE/sgZIcMZu7r/z a0GriVaLE9qcFIOsTgIOVWd0Twf0FMyv -----END CERTIFICATE-----Generated at Fri Sep 19 02:31:39 2025 by rpki-client