$ rpki-client -vvf rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/bk5pvhPWE6cCdMDOdzg5I_FWJy0.mft File: bk5pvhPWE6cCdMDOdzg5I_FWJy0.mft (raw, json) Hash identifier: wxTbLY3cCSWRU7zHs1rsWjLd/lOTXTTRvJQSPPPGOJo= Subject key identifier: DD:8C:DA:B9:ED:51:B7:22:A4:F6:9A:B0:29:C6:5C:6D:34:1C:55:AD Authority key identifier: 6E:4E:69:BE:13:D6:13:A7:02:74:C0:CE:77:38:39:23:F1:56:27:2D Certificate issuer: /CN=A9130A53/serialNumber=6E4E69BE13D613A70274C0CE77383923F156272D Certificate serial: 0926 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bk5pvhPWE6cCdMDOdzg5I_FWJy0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/bk5pvhPWE6cCdMDOdzg5I_FWJy0.mft Manifest number: 091A Signing time: Sun 24 Aug 2025 20:18:23 +0000 Manifest this update: Sun 24 Aug 2025 20:18:22 +0000 Manifest next update: Sun 31 Aug 2025 20:18:22 +0000 Files and hashes: 1: bk5pvhPWE6cCdMDOdzg5I_FWJy0.crl (hash: H6K+mZrrRJWSs5D9E7knZYNtjX33KN/VedIHPSckdrs=) 2: F36A0E2EAB4B11EAA2CA585BC4F9AE02.roa (hash: BidxYSVmBabzb42KTEQRZnYy7Sbks/SN1w8y9yUGtJQ=) 3: F2CD89AAAB4B11EAA2CA585BC4F9AE02.roa (hash: OlzMxXAfrSP6Nj86W0pq9Qh2aWjxJmFySgPE4i+83ow=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/bk5pvhPWE6cCdMDOdzg5I_FWJy0.crl rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/bk5pvhPWE6cCdMDOdzg5I_FWJy0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bk5pvhPWE6cCdMDOdzg5I_FWJy0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 19:03:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2342 (0x926) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130A53, serialNumber=6E4E69BE13D613A70274C0CE77383923F156272D Validity Not Before: Aug 24 20:18:22 2025 GMT Not After : Aug 31 20:18:22 2025 GMT Subject: CN=68ab738f-7d2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:47:2e:94:83:4a:8e:7b:fc:d7:65:7b:a9:77: f0:8e:d2:61:26:d3:35:31:5b:73:b8:9d:11:15:fd: ee:33:b7:1c:ad:39:49:44:fd:e3:09:f4:83:e2:30: d2:98:28:99:1e:83:0b:9d:be:e8:20:38:aa:16:39: e3:f1:53:35:71:f1:03:54:d6:8e:40:0a:d1:dc:30: db:32:d6:ba:3f:0a:51:6d:08:33:00:55:c6:20:bc: 21:81:e1:50:69:48:b9:bd:27:fa:cf:66:b7:1a:01: be:d0:9c:59:90:de:e6:83:ba:21:f2:91:f0:9a:0f: 9a:eb:cf:3d:99:b2:88:ff:d0:d5:38:0d:22:d0:b8: 87:08:5c:d5:d1:ba:0c:4d:24:ed:94:c4:37:1b:59: fd:97:9b:7a:85:61:26:5a:13:6e:05:fd:5d:e9:a6: 2c:bf:f4:40:e7:2e:25:cc:26:a3:06:1c:5d:f0:39: d0:57:b8:53:f9:d4:b9:3e:f4:8f:8e:ee:34:75:c1: 72:f4:ab:ef:b5:38:1f:20:fe:83:49:a1:8d:46:55: d5:72:93:89:a9:4f:18:74:77:89:4c:af:74:74:5e: e9:5b:2a:b7:58:78:6e:b3:69:23:2f:80:aa:c1:33: ff:ce:43:1b:b8:1d:02:79:8c:48:7c:3b:a9:fb:de: bd:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:8C:DA:B9:ED:51:B7:22:A4:F6:9A:B0:29:C6:5C:6D:34:1C:55:AD X509v3 Authority Key Identifier: keyid:6E:4E:69:BE:13:D6:13:A7:02:74:C0:CE:77:38:39:23:F1:56:27:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/bk5pvhPWE6cCdMDOdzg5I_FWJy0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bk5pvhPWE6cCdMDOdzg5I_FWJy0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/bk5pvhPWE6cCdMDOdzg5I_FWJy0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cb:c2:6f:27:5c:6d:91:3b:d0:1a:32:48:ba:c3:bf:5a:47:08: 12:0a:d7:ae:69:cc:3c:0c:b6:0e:3d:e1:57:72:89:91:b8:13: 1b:5f:4b:b9:cb:92:19:50:1d:88:48:2a:03:88:94:b0:6c:d3: 19:72:88:10:e9:f8:9f:96:46:4e:eb:e6:47:4b:a4:3d:39:c9: 90:0e:68:20:10:80:14:cc:fb:e2:95:11:b4:11:c4:f5:5e:8c: 54:b3:43:e0:53:e5:63:94:1d:72:33:c4:91:c3:47:04:f2:8e: 56:da:2e:f8:7e:4a:d9:31:19:09:02:2a:db:c0:1a:07:0b:52: 90:f9:f6:ab:eb:70:b1:fd:f9:8f:ad:33:79:ee:c1:94:90:29: 82:80:37:f9:ff:66:45:28:6a:53:23:a9:5e:c8:b7:c7:af:16: 97:94:b7:d4:47:02:2a:70:56:be:49:cb:f9:90:6a:19:57:02: 15:77:51:85:fc:24:b7:36:a5:1c:9a:65:da:1c:89:7f:54:69: 9a:70:81:68:15:e2:80:fc:92:7e:af:8e:f4:e4:8d:8f:94:0b: 2b:06:bb:a3:8d:b5:17:2a:d4:28:45:db:3c:98:da:e9:d4:29: 22:6c:89:21:a3:90:27:ab:17:68:e3:a4:f3:d1:8a:c3:e6:6b: 05:d2:fe:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCSYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzBBNTMxMTAvBgNVBAUTKDZFNEU2OUJFMTNENjEzQTcwMjc0QzBDRTc3MzgzOTIz RjE1NjI3MkQwHhcNMjUwODI0MjAxODIyWhcNMjUwODMxMjAxODIyWjAYMRYwFAYD VQQDEw02OGFiNzM4Zi03ZDJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8UculINKjnv812V7qXfwjtJhJtM1MVtzuJ0RFf3uM7ccrTlJRP3jCfSD4jDS mCiZHoMLnb7oIDiqFjnj8VM1cfEDVNaOQArR3DDbMta6PwpRbQgzAFXGILwhgeFQ aUi5vSf6z2a3GgG+0JxZkN7mg7oh8pHwmg+a6889mbKI/9DVOA0i0LiHCFzV0boM TSTtlMQ3G1n9l5t6hWEmWhNuBf1d6aYsv/RA5y4lzCajBhxd8DnQV7hT+dS5PvSP ju40dcFy9KvvtTgfIP6DSaGNRlXVcpOJqU8YdHeJTK90dF7pWyq3WHhus2kjL4Cq wTP/zkMbuB0CeYxIfDup+969swIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN2M2rnt UbcipPaasCnGXG00HFWtMB8GA1UdIwQYMBaAFG5Oab4T1hOnAnTAznc4OSPxVict MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMEE1My83MUI3RDQ3MEFC NEExMUVBODlEMTYzNTlDNEY5QUUwMi9iazVwdmhQV0U2Y0NkTURPZHpnNUlfRldK eTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JrNXB2aFBXRTZjQ2RNRE9kemc1SV9GV0p5MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MEE1My83MUI3RDQ3MEFCNEExMUVBODlEMTYzNTlDNEY5QUUwMi9iazVwdmhQV0U2 Y0NkTURPZHpnNUlfRldKeTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDLwm8nXG2RO9AaMki6w79aRwgSCteuacw8DLYOPeFXcomRuBMbX0u5 y5IZUB2ISCoDiJSwbNMZcogQ6fiflkZO6+ZHS6Q9OcmQDmggEIAUzPvilRG0EcT1 XoxUs0PgU+VjlB1yM8SRw0cE8o5W2i74fkrZMRkJAirbwBoHC1KQ+far63Cx/fmP rTN57sGUkCmCgDf5/2ZFKGpTI6leyLfHrxaXlLfURwIqcFa+Scv5kGoZVwIVd1GF /CS3NqUcmmXaHIl/VGmacIFoFeKA/JJ+r4705I2PlAsrBrujjbUXKtQoRds8mNrp 1CkibIkho5Anqxdo46Tz0YrD5msF0v62 -----END CERTIFICATE-----Generated at Sun Aug 24 22:18:37 2025 by rpki-client