$ rpki-client -vvf rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/-bspsKvoSef-GA4znkscKCNoxSE.mft File: -bspsKvoSef-GA4znkscKCNoxSE.mft (raw, json) Hash identifier: Lvo9dpwATR78BpTJ7xZFyciEM4iCPIPF9W9OrfEGABw= Subject key identifier: 4A:E7:26:2D:A3:65:97:D1:A6:FD:23:C1:A9:90:FE:C9:BE:10:34:89 Authority key identifier: F9:BB:29:B0:AB:E8:49:E7:FE:18:0E:33:9E:4B:1C:28:23:68:C5:21 Certificate issuer: /CN=A913E8F3/serialNumber=F9BB29B0ABE849E7FE180E339E4B1C282368C521 Certificate serial: 102F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-bspsKvoSef-GA4znkscKCNoxSE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/-bspsKvoSef-GA4znkscKCNoxSE.mft Manifest number: 1017 Signing time: Sat 06 Sep 2025 17:34:39 +0000 Manifest this update: Sat 06 Sep 2025 17:34:39 +0000 Manifest next update: Sat 13 Sep 2025 17:34:39 +0000 Files and hashes: 1: -bspsKvoSef-GA4znkscKCNoxSE.crl (hash: 7wM2lygNyvjgSPsjlpGnv0ij3Y7Q1jaaYc9WXXiAQLY=) 2: F7F18D8C2BA711F09514D439C4F9AE02.roa (hash: RQ31QQqNnbR7hUGab4NBe2n82ZvCRfsZ20QWiB5eLdE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/-bspsKvoSef-GA4znkscKCNoxSE.crl rsync://rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/-bspsKvoSef-GA4znkscKCNoxSE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-bspsKvoSef-GA4znkscKCNoxSE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 17:34:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4143 (0x102f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E8F3, serialNumber=F9BB29B0ABE849E7FE180E339E4B1C282368C521 Validity Not Before: Sep 6 17:34:39 2025 GMT Not After : Sep 13 17:34:39 2025 GMT Subject: CN=68bc70af-e870 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:3b:0d:8e:ef:5b:2a:8d:66:9c:ac:af:74:aa: 85:9e:26:59:d2:31:2e:a5:fd:e3:a8:c1:ae:08:b1: ba:b4:e8:71:c7:13:a3:79:b2:48:6a:e0:50:8e:c4: 5d:e3:bb:bc:a9:8f:8f:af:a3:0f:05:2a:f9:61:2e: c0:98:da:98:83:fc:e0:5e:62:da:0b:c2:95:1c:3f: 18:71:9c:f5:6f:d9:d1:6b:26:63:30:9e:a5:f2:66: a3:44:98:53:4c:4a:26:f1:4f:9b:cb:ad:01:0a:0b: c9:86:99:12:a2:aa:71:54:d9:d3:c0:16:45:ca:dc: 4c:5f:1e:02:c1:15:38:e2:b6:bc:ad:9d:6d:e8:7a: e6:e8:4e:87:08:6c:0f:95:b1:99:73:7e:12:f3:ba: ac:36:4c:6d:f6:6d:52:85:b5:56:29:a7:6b:59:e0: 43:bc:72:39:5f:74:d3:d3:de:cd:98:0d:b7:c0:ba: 85:3a:e9:c6:71:44:74:e5:33:06:38:78:5d:4d:4b: 75:95:d4:de:be:ff:c9:11:c5:ba:fb:2f:df:7f:63: c9:23:9d:ed:be:5d:19:62:1b:1b:a4:d5:77:99:f7: 70:bc:6a:37:f4:08:dc:4c:7b:01:e6:b0:6d:25:43: 62:11:ab:19:11:45:e7:22:d3:61:cd:95:48:0f:b5: 7e:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:E7:26:2D:A3:65:97:D1:A6:FD:23:C1:A9:90:FE:C9:BE:10:34:89 X509v3 Authority Key Identifier: keyid:F9:BB:29:B0:AB:E8:49:E7:FE:18:0E:33:9E:4B:1C:28:23:68:C5:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/-bspsKvoSef-GA4znkscKCNoxSE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-bspsKvoSef-GA4znkscKCNoxSE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E8F3/0A04F4E2549411E9B597E571C4F9AE02/-bspsKvoSef-GA4znkscKCNoxSE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:34:e5:b5:f6:d6:aa:2c:55:aa:9f:ac:6b:cc:93:a5:cd:e3: a1:f1:e6:50:f8:d7:c0:e7:c0:96:20:05:8a:5c:03:8b:cd:65: 77:ac:ac:24:e4:c0:13:af:cf:4f:97:2a:27:f2:d0:ac:1d:cf: 91:14:e0:5f:55:23:f2:8c:04:af:2d:74:5a:f9:c5:0c:2a:9d: 8d:65:8a:53:b4:22:a9:3d:23:9e:9c:b5:02:0e:c2:56:df:e4: d6:88:dd:6b:e6:2c:cd:82:45:60:66:12:de:e1:6a:31:40:ed: 74:2e:a5:9a:bc:3b:46:4b:52:6e:e4:ce:1a:44:26:a3:79:49: 4a:bf:0b:8d:bf:1d:d9:21:36:d8:ff:47:79:92:40:d1:dd:b8: 53:da:8f:ca:ae:85:c0:8d:79:91:28:53:9d:74:a5:92:48:ee: 75:ed:63:f6:57:be:91:45:a0:00:34:5a:9e:93:e4:ac:41:d3: bd:f1:aa:50:b3:fe:68:9a:a4:bf:c9:0f:1d:42:82:bd:23:4e: a9:04:2a:58:46:62:76:a0:89:35:3a:43:94:6a:fe:97:26:6c: 82:f9:b1:c3:df:b3:2a:39:48:99:4c:a5:0d:b7:20:94:a5:d5: e6:9f:ef:62:fc:f4:0a:63:c3:86:2d:a8:6e:73:5a:f2:2a:69: b5:e7:24:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEC8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0U4RjMxMTAvBgNVBAUTKEY5QkIyOUIwQUJFODQ5RTdGRTE4MEUzMzlFNEIxQzI4 MjM2OEM1MjEwHhcNMjUwOTA2MTczNDM5WhcNMjUwOTEzMTczNDM5WjAYMRYwFAYD VQQDEw02OGJjNzBhZi1lODcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoDsNju9bKo1mnKyvdKqFniZZ0jEupf3jqMGuCLG6tOhxxxOjebJIauBQjsRd 47u8qY+Pr6MPBSr5YS7AmNqYg/zgXmLaC8KVHD8YcZz1b9nRayZjMJ6l8majRJhT TEom8U+by60BCgvJhpkSoqpxVNnTwBZFytxMXx4CwRU44ra8rZ1t6Hrm6E6HCGwP lbGZc34S87qsNkxt9m1ShbVWKadrWeBDvHI5X3TT097NmA23wLqFOunGcUR05TMG OHhdTUt1ldTevv/JEcW6+y/ff2PJI53tvl0ZYhsbpNV3mfdwvGo39AjcTHsB5rBt JUNiEasZEUXnItNhzZVID7V+QQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFErnJi2j ZZfRpv0jwamQ/sm+EDSJMB8GA1UdIwQYMBaAFPm7KbCr6Enn/hgOM55LHCgjaMUh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRThGMy8wQTA0RjRFMjU0 OTQxMUU5QjU5N0U1NzFDNEY5QUUwMi8tYnNwc0t2b1NlZi1HQTR6bmtzY0tDTm94 U0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy1ic3BzS3ZvU2VmLUdBNHpua3NjS0NOb3hTRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RThGMy8wQTA0RjRFMjU0OTQxMUU5QjU5N0U1NzFDNEY5QUUwMi8tYnNwc0t2b1Nl Zi1HQTR6bmtzY0tDTm94U0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNNOW19taqLFWqn6xrzJOlzeOh8eZQ+NfA58CWIAWKXAOLzWV3rKwk 5MATr89Plyon8tCsHc+RFOBfVSPyjASvLXRa+cUMKp2NZYpTtCKpPSOenLUCDsJW 3+TWiN1r5izNgkVgZhLe4WoxQO10LqWavDtGS1Ju5M4aRCajeUlKvwuNvx3ZITbY /0d5kkDR3bhT2o/KroXAjXmRKFOddKWSSO517WP2V76RRaAANFqek+SsQdO98apQ s/5omqS/yQ8dQoK9I06pBCpYRmJ2oIk1OkOUav6XJmyC+bHD37MqOUiZTKUNtyCU pdXmn+9i/PQKY8OGLahuc1ryKmm15ySp -----END CERTIFICATE-----Generated at Sat Sep 6 21:11:00 2025 by rpki-client