$ rpki-client -vvf rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.mft File: BfhBmvmqMYTqsf-HQkpq4zz3MsQ.mft (raw, json) Hash identifier: 3ulKKoASNkTR4tiYjWv0yoKnt2sCXg+Mtzx5JweFFqE= Subject key identifier: 31:66:91:C7:0C:EC:15:47:47:68:88:0A:A0:2D:54:51:FE:0B:F8:52 Authority key identifier: 05:F8:41:9A:F9:AA:31:84:EA:B1:FF:87:42:4A:6A:E3:3C:F7:32:C4 Certificate issuer: /CN=A915E575/serialNumber=05F8419AF9AA3184EAB1FF87424A6AE33CF732C4 Certificate serial: 03E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.mft Manifest number: 03E2 Signing time: Sat 23 Aug 2025 00:47:01 +0000 Manifest this update: Sat 23 Aug 2025 00:47:00 +0000 Manifest next update: Sat 30 Aug 2025 00:47:00 +0000 Files and hashes: 1: BfhBmvmqMYTqsf-HQkpq4zz3MsQ.crl (hash: LYKdoEP863zVeahoTCEQNT3cln7XU6oyOr/J/WnXPTY=) 2: D86008008FAA11ECB0728B0FC4F9AE02.roa (hash: RsMIAFkbpydCDPohis69ldhzmBpnzB7IY6eRBCKfLas=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.crl rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:47:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 998 (0x3e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E575, serialNumber=05F8419AF9AA3184EAB1FF87424A6AE33CF732C4 Validity Not Before: Aug 23 00:47:00 2025 GMT Not After : Aug 30 00:47:00 2025 GMT Subject: CN=68a90f85-c37f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:76:6c:b8:30:e9:91:9c:9b:3d:2a:97:81:8f: 9c:85:6b:b4:e2:b6:32:e3:c7:03:1f:f1:6e:fd:f0: b1:0f:8d:f8:94:b8:c5:f0:7d:9f:c1:fd:80:19:b0: 99:ce:98:17:e6:0b:01:64:e1:c6:1e:f7:78:af:97: 96:29:90:fd:51:1e:b6:a3:bf:98:d7:c1:b5:e3:bd: 27:97:aa:99:c2:13:6b:12:86:8a:a6:80:40:40:4a: fc:be:b0:81:ab:de:dc:ed:58:2d:06:75:88:83:4a: fb:be:58:5d:2d:bc:02:c0:07:6a:05:03:5a:84:d8: 2e:7d:aa:bc:b7:b6:c8:ae:2e:9b:24:d6:bf:83:f4: 77:28:22:20:4e:5e:c4:ec:c8:af:db:aa:a0:02:b1: 29:1b:f7:96:f9:fc:0e:54:be:0f:5f:7c:31:2d:eb: 1f:de:82:7f:29:ad:f9:65:04:eb:df:f7:6d:ee:6b: 25:25:df:47:1c:a4:4b:fb:00:4e:6b:05:b2:17:e7: 5a:99:9c:94:a3:da:48:f2:42:e6:6c:cb:91:27:81: af:42:c7:e9:d4:d8:8d:8f:c2:e1:c4:98:72:9e:22: d2:9f:c0:0e:70:80:0b:25:08:2a:dc:d3:a6:48:af: 97:53:82:03:06:ea:3f:1e:8d:b7:79:2e:50:c2:86: d0:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:66:91:C7:0C:EC:15:47:47:68:88:0A:A0:2D:54:51:FE:0B:F8:52 X509v3 Authority Key Identifier: keyid:05:F8:41:9A:F9:AA:31:84:EA:B1:FF:87:42:4A:6A:E3:3C:F7:32:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:6a:66:02:ad:81:d1:17:ff:0a:c4:14:99:37:ad:12:26:82: 44:1f:dd:d0:87:31:d3:00:9a:b1:c9:4a:39:65:33:ff:91:ea: 6f:0b:7b:f8:57:2a:e8:d7:40:22:b8:c1:95:36:9a:03:03:70: d4:e5:0c:14:97:4c:9d:75:bd:d3:be:6f:3a:68:d6:f7:5d:3d: fc:f5:78:0d:d1:aa:a8:84:3c:c2:b8:f4:a1:3d:e1:fa:65:a3: 5b:9e:cb:a0:9e:1c:85:eb:89:cd:4b:0c:60:6d:e3:a0:22:0a: 50:c9:64:b2:9c:e3:10:ac:58:41:61:16:33:c6:19:ba:be:8b: b3:9b:fd:67:42:2f:67:0e:2b:b6:90:c1:35:c4:c7:02:65:55: d2:8f:d5:0a:91:a9:5f:64:ba:8b:6d:9c:75:7f:c4:1d:fc:47: 93:3c:79:72:cf:11:68:53:9c:fa:4e:72:17:6e:a0:9b:55:62: ed:58:20:d6:74:52:4f:5f:24:be:21:d5:c5:5c:5e:d1:01:fa: a1:d5:cc:34:06:6b:34:e9:fb:22:f4:69:49:2f:29:67:71:5f: 84:28:74:f8:a4:45:09:e6:3f:d3:44:83:4c:eb:d4:83:eb:b4: bc:d0:19:9e:91:04:83:48:10:19:98:4c:b8:97:2d:e8:19:33: fe:cf:1b:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUU1NzUxMTAvBgNVBAUTKDA1Rjg0MTlBRjlBQTMxODRFQUIxRkY4NzQyNEE2QUUz M0NGNzMyQzQwHhcNMjUwODIzMDA0NzAwWhcNMjUwODMwMDA0NzAwWjAYMRYwFAYD VQQDEw02OGE5MGY4NS1jMzdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw3ZsuDDpkZybPSqXgY+chWu04rYy48cDH/Fu/fCxD434lLjF8H2fwf2AGbCZ zpgX5gsBZOHGHvd4r5eWKZD9UR62o7+Y18G1470nl6qZwhNrEoaKpoBAQEr8vrCB q97c7VgtBnWIg0r7vlhdLbwCwAdqBQNahNgufaq8t7bIri6bJNa/g/R3KCIgTl7E 7Miv26qgArEpG/eW+fwOVL4PX3wxLesf3oJ/Ka35ZQTr3/dt7mslJd9HHKRL+wBO awWyF+damZyUo9pI8kLmbMuRJ4GvQsfp1NiNj8LhxJhyniLSn8AOcIALJQgq3NOm SK+XU4IDBuo/Ho23eS5QwobQhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDFmkccM 7BVHR2iICqAtVFH+C/hSMB8GA1UdIwQYMBaAFAX4QZr5qjGE6rH/h0JKauM89zLE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTU3NS9GMEIyNDIxNDhG QTYxMUVDOUMzOTc3NjJDNEY5QUUwMi9CZmhCbXZtcU1ZVHFzZi1IUWtwcTR6ejNN c1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JmaEJtdm1xTVlUcXNmLUhRa3BxNHp6M01zUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RTU3NS9GMEIyNDIxNDhGQTYxMUVDOUMzOTc3NjJDNEY5QUUwMi9CZmhCbXZtcU1Z VHFzZi1IUWtwcTR6ejNNc1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNamYCrYHRF/8KxBSZN60SJoJEH93QhzHTAJqxyUo5ZTP/kepvC3v4 Vyro10AiuMGVNpoDA3DU5QwUl0yddb3Tvm86aNb3XT389XgN0aqohDzCuPShPeH6 ZaNbnsugnhyF64nNSwxgbeOgIgpQyWSynOMQrFhBYRYzxhm6vouzm/1nQi9nDiu2 kME1xMcCZVXSj9UKkalfZLqLbZx1f8Qd/EeTPHlyzxFoU5z6TnIXbqCbVWLtWCDW dFJPXyS+IdXFXF7RAfqh1cw0Bms06fsi9GlJLylncV+EKHT4pEUJ5j/TRINM69SD 67S80BmekQSDSBAZmEy4ly3oGTP+zxua -----END CERTIFICATE-----Generated at Sun Aug 24 22:14:37 2025 by rpki-client