$ rpki-client -vvf rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/-bspsKvoSef-GA4znkscKCNoxSE.mft File: -bspsKvoSef-GA4znkscKCNoxSE.mft (raw, json) Hash identifier: dWBVHTfvacsIimfuQW2R99MGRByz3ZCkmG02ZKfGfL8= Subject key identifier: 3A:A2:B6:03:58:16:90:39:7B:EB:C5:48:1F:8A:1B:42:E0:49:E9:5B Authority key identifier: F9:BB:29:B0:AB:E8:49:E7:FE:18:0E:33:9E:4B:1C:28:23:68:C5:21 Certificate issuer: /CN=A913E8F3/serialNumber=F9BB29B0ABE849E7FE180E339E4B1C282368C521 Certificate serial: 1016 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-bspsKvoSef-GA4znkscKCNoxSE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/-bspsKvoSef-GA4znkscKCNoxSE.mft Manifest number: 0FFE Signing time: Sun 20 Jul 2025 17:30:26 +0000 Manifest this update: Sun 20 Jul 2025 17:30:26 +0000 Manifest next update: Sun 27 Jul 2025 17:30:26 +0000 Files and hashes: 1: -bspsKvoSef-GA4znkscKCNoxSE.crl (hash: wx9I15OllehcKLyUVKnGrXvIq/CkT4VKq4SWD8HnszQ=) 2: F7F18D8C2BA711F09514D439C4F9AE02.roa (hash: RQ31QQqNnbR7hUGab4NBe2n82ZvCRfsZ20QWiB5eLdE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/-bspsKvoSef-GA4znkscKCNoxSE.crl rsync://rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/-bspsKvoSef-GA4znkscKCNoxSE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-bspsKvoSef-GA4znkscKCNoxSE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4118 (0x1016) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E8F3, serialNumber=F9BB29B0ABE849E7FE180E339E4B1C282368C521 Validity Not Before: Jul 20 17:30:26 2025 GMT Not After : Jul 27 17:30:26 2025 GMT Subject: CN=687d27b2-5610 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:19:71:f6:71:f1:b8:96:91:be:2a:52:57:b4: 65:6a:04:84:62:0a:69:90:4c:e0:30:f3:d9:82:2b: ff:fb:8c:96:ab:a8:44:67:d8:56:63:d2:00:18:68: 90:93:e2:55:a9:23:78:47:62:db:c8:9e:cc:13:aa: d4:be:0c:15:2d:02:b2:9f:12:5e:48:e3:e8:5c:00: 42:ab:d8:7b:54:ab:8d:bd:ff:dd:5e:de:83:30:45: 5b:3e:56:cf:d5:9b:ad:98:1b:8e:46:4b:e5:8d:24: 12:2c:00:3e:9f:23:58:46:98:da:a9:5e:55:32:f2: 55:e5:88:c3:ba:0e:20:7c:e6:9c:31:3b:89:4c:b2: 13:2c:a0:c3:3b:d1:ea:9a:bb:3d:72:ae:13:d6:f8: 40:0f:a2:1d:e7:11:34:82:82:3e:01:10:47:b1:75: b7:86:9a:fc:e5:ff:af:9c:f1:c9:d2:32:77:fc:66: eb:01:df:85:16:aa:46:47:9f:bc:91:38:9d:ae:08: b3:33:59:4d:d6:dd:80:3b:4b:d8:42:b9:f2:26:ff: ff:9f:01:93:2a:c6:70:14:87:b1:88:f3:9e:f9:30: ce:5e:a1:6f:35:0a:42:a5:25:b8:e5:e4:5c:a7:f0: f2:a8:5d:2d:f7:75:be:4b:5b:74:c1:17:41:7f:76: e5:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:A2:B6:03:58:16:90:39:7B:EB:C5:48:1F:8A:1B:42:E0:49:E9:5B X509v3 Authority Key Identifier: keyid:F9:BB:29:B0:AB:E8:49:E7:FE:18:0E:33:9E:4B:1C:28:23:68:C5:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/-bspsKvoSef-GA4znkscKCNoxSE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-bspsKvoSef-GA4znkscKCNoxSE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/-bspsKvoSef-GA4znkscKCNoxSE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:09:c8:f6:b6:be:4d:a2:46:ad:2c:dc:d7:54:e4:a7:97:cc: c0:ac:68:f8:e4:d4:a7:ed:f8:f4:af:ae:31:5e:04:32:cb:73: 46:d3:39:2d:43:cd:e9:5e:c8:9d:d0:00:c1:7f:55:29:bf:97: 47:4e:9f:4f:0a:cc:b1:c6:62:f3:9b:be:bf:57:28:68:ed:07: d1:95:cb:86:4d:08:21:be:d9:63:0f:9f:4b:23:d3:b9:d5:9e: 84:8c:59:53:a0:4b:cf:19:40:f2:83:7a:28:6f:81:d4:f7:e5: 54:86:05:2f:2c:d2:e1:2e:04:28:dd:f2:45:b1:4c:88:cf:5e: 9a:bf:5b:39:32:38:b9:34:1f:08:a6:07:ff:f3:13:ec:3a:0e: 35:43:17:fa:8b:4a:d6:a3:ad:93:0a:f5:30:ab:e7:9b:83:f2: f8:4b:cf:e1:77:74:53:ae:b9:3b:0a:da:91:7c:f5:90:21:d0: ea:ff:a5:85:50:8a:6b:64:4a:52:c2:1b:a7:c9:78:88:03:4a: 52:7b:e4:7a:45:65:4b:bb:e2:4e:8d:54:d6:87:84:ab:45:3f: 37:10:4a:67:a8:3b:65:5e:88:73:e5:9d:fa:c2:db:a2:46:c6: e9:e5:e9:09:08:90:c3:6d:c8:2a:30:17:aa:d5:bb:23:38:46: 3c:d6:bd:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEBYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0U4RjMxMTAvBgNVBAUTKEY5QkIyOUIwQUJFODQ5RTdGRTE4MEUzMzlFNEIxQzI4 MjM2OEM1MjEwHhcNMjUwNzIwMTczMDI2WhcNMjUwNzI3MTczMDI2WjAYMRYwFAYD VQQDEw02ODdkMjdiMi01NjEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1xlx9nHxuJaRvipSV7RlagSEYgppkEzgMPPZgiv/+4yWq6hEZ9hWY9IAGGiQ k+JVqSN4R2LbyJ7ME6rUvgwVLQKynxJeSOPoXABCq9h7VKuNvf/dXt6DMEVbPlbP 1ZutmBuORkvljSQSLAA+nyNYRpjaqV5VMvJV5YjDug4gfOacMTuJTLITLKDDO9Hq mrs9cq4T1vhAD6Id5xE0goI+ARBHsXW3hpr85f+vnPHJ0jJ3/GbrAd+FFqpGR5+8 kTidrgizM1lN1t2AO0vYQrnyJv//nwGTKsZwFIexiPOe+TDOXqFvNQpCpSW45eRc p/DyqF0t93W+S1t0wRdBf3blFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDqitgNY FpA5e+vFSB+KG0LgSelbMB8GA1UdIwQYMBaAFPm7KbCr6Enn/hgOM55LHCgjaMUh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRThGMy8wQTA0RjRFMjU0 OTQxMUU5QjU5N0U1NzFDNEY5QUUwMi8tYnNwc0t2b1NlZi1HQTR6bmtzY0tDTm94 U0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy1ic3BzS3ZvU2VmLUdBNHpua3NjS0NOb3hTRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RThGMy8wQTA0RjRFMjU0OTQxMUU5QjU5N0U1NzFDNEY5QUUwMi8tYnNwc0t2b1Nl Zi1HQTR6bmtzY0tDTm94U0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhCcj2tr5NokatLNzXVOSnl8zArGj45NSn7fj0r64xXgQyy3NG0zkt Q83pXsid0ADBf1Upv5dHTp9PCsyxxmLzm76/Vyho7QfRlcuGTQghvtljD59LI9O5 1Z6EjFlToEvPGUDyg3oob4HU9+VUhgUvLNLhLgQo3fJFsUyIz16av1s5Mji5NB8I pgf/8xPsOg41Qxf6i0rWo62TCvUwq+ebg/L4S8/hd3RTrrk7CtqRfPWQIdDq/6WF UIprZEpSwhunyXiIA0pSe+R6RWVLu+JOjVTWh4SrRT83EEpnqDtlXohz5Z36wtui Rsbp5ekJCJDDbcgqMBeq1bsjOEY81r1P -----END CERTIFICATE-----Generated at Sun Jul 20 19:07:15 2025 by rpki-client