$ rpki-client -vvf rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/bDt_HBM9qcUdRE2oXmAqloRR_lQ.mft File: bDt_HBM9qcUdRE2oXmAqloRR_lQ.mft (raw, json) Hash identifier: GeAZgyRgDsLsNZzSSIy+A5YooIOu3MIRxC6LmWXPhEk= Subject key identifier: 83:B8:1F:1A:62:94:CD:B7:1F:6F:FF:AC:AF:F6:74:D6:02:6B:62:7D Authority key identifier: 6C:3B:7F:1C:13:3D:A9:C5:1D:44:4D:A8:5E:60:2A:96:84:51:FE:54 Certificate issuer: /CN=A91626D2/serialNumber=6C3B7F1C133DA9C51D444DA85E602A968451FE54 Certificate serial: EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bDt_HBM9qcUdRE2oXmAqloRR_lQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/bDt_HBM9qcUdRE2oXmAqloRR_lQ.mft Manifest number: ED Signing time: Thu 21 Aug 2025 05:28:27 +0000 Manifest this update: Thu 21 Aug 2025 05:28:26 +0000 Manifest next update: Thu 28 Aug 2025 05:28:26 +0000 Files and hashes: 1: bDt_HBM9qcUdRE2oXmAqloRR_lQ.crl (hash: gDWKP10PLjIAw2iMlrcUkTNOKew2EaJlvojqpzfxVyE=) 2: 8093CCBA13F611EF8ED7D71EC4F9AE02.roa (hash: J6cm0tDS7Sdy7/sJGsGgF8rSkOKz7v9OX913NFApE9A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/bDt_HBM9qcUdRE2oXmAqloRR_lQ.crl rsync://rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/bDt_HBM9qcUdRE2oXmAqloRR_lQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bDt_HBM9qcUdRE2oXmAqloRR_lQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 05:28:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 239 (0xef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91626D2, serialNumber=6C3B7F1C133DA9C51D444DA85E602A968451FE54 Validity Not Before: Aug 21 05:28:26 2025 GMT Not After : Aug 28 05:28:26 2025 GMT Subject: CN=68a6ae7b-fc70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:63:48:cd:83:dc:f8:63:1f:d4:42:b4:22:d0: 22:4c:77:cf:ce:f0:f2:36:d9:84:60:bf:d1:20:58: 97:9d:b2:bf:b5:45:d1:1c:da:a0:4b:3b:78:2f:a6: a0:f2:8a:14:fa:74:f4:f1:6a:f7:d3:16:e8:0f:02: 8a:48:01:70:f8:84:0a:5a:37:c7:8e:3f:4a:8f:01: 59:ef:e9:46:c3:03:f0:3a:41:7c:8a:b5:46:a3:4d: ae:69:3c:71:22:4f:a1:31:f5:56:ff:aa:c8:40:46: cf:35:e0:3b:73:c9:54:ae:29:0c:7a:7d:5e:c1:11: 6e:ff:5c:b8:d5:44:6f:c2:27:15:0a:16:8d:7a:23: 6c:d4:e6:22:83:8b:97:d8:4c:60:7a:1c:0f:ea:58: e0:96:1c:d2:2b:c8:fc:98:db:da:a1:c2:c5:d2:de: 4d:c1:c9:b2:f7:f7:09:12:5a:f6:c3:c4:7e:8a:a6: 0a:13:c0:4f:73:75:63:f2:aa:96:db:b9:f7:6c:b5: be:f3:fa:df:09:f6:d5:05:36:c3:16:cb:29:86:d1: 06:da:08:b6:51:11:96:7b:10:8a:8d:23:d0:79:e5: 9f:7d:d1:b4:8f:e8:c0:86:da:5d:bf:9d:85:0e:d8: 9b:98:13:67:f9:49:21:ab:ce:ca:88:a4:75:26:5c: 58:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:B8:1F:1A:62:94:CD:B7:1F:6F:FF:AC:AF:F6:74:D6:02:6B:62:7D X509v3 Authority Key Identifier: keyid:6C:3B:7F:1C:13:3D:A9:C5:1D:44:4D:A8:5E:60:2A:96:84:51:FE:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/bDt_HBM9qcUdRE2oXmAqloRR_lQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bDt_HBM9qcUdRE2oXmAqloRR_lQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/bDt_HBM9qcUdRE2oXmAqloRR_lQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:95:d2:37:97:f6:2f:10:16:4f:df:bb:e7:3b:90:c3:0c:9f: 69:9d:05:1c:4d:5b:ff:13:f5:87:c0:6f:5c:68:5a:9a:ca:8a: e0:33:6e:8b:16:a2:40:82:57:23:71:d5:0b:0b:c1:98:ca:fb: af:68:f5:10:89:a6:a8:1b:84:c3:d3:35:12:ad:5a:c1:4f:ee: 07:02:47:d0:42:7e:5f:12:2b:65:1a:22:bf:0a:7a:58:54:ee: a2:d6:9e:e6:5b:94:01:f5:89:4f:30:5d:91:b5:76:3a:6a:ad: 8d:9e:39:5b:d8:ac:33:8b:9b:10:02:e4:2d:03:1a:14:49:44: 63:29:79:2c:9c:36:88:7f:24:02:f1:3a:b8:2f:60:eb:55:e9: 88:70:58:03:0c:95:07:20:78:c3:90:60:4c:47:3c:32:63:f2: b8:a3:af:d4:e5:69:5c:ef:0b:65:bd:90:a3:36:d0:42:25:3f: bd:c5:89:62:31:cb:9e:eb:ae:fd:cb:1c:1f:b9:5c:e7:49:18: af:7f:b1:0c:71:29:c5:14:63:81:15:f8:53:bb:7a:3b:f9:94: 9b:f1:e6:9a:3c:51:01:2b:c2:fc:e7:c7:61:c5:91:b9:63:cb: cf:ca:82:9d:0c:15:e0:e5:e6:14:1d:3d:2f:79:bf:2d:a4:74: ef:04:3e:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI2RDIxMTAvBgNVBAUTKDZDM0I3RjFDMTMzREE5QzUxRDQ0NERBODVFNjAyQTk2 ODQ1MUZFNTQwHhcNMjUwODIxMDUyODI2WhcNMjUwODI4MDUyODI2WjAYMRYwFAYD VQQDEw02OGE2YWU3Yi1mYzcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsmNIzYPc+GMf1EK0ItAiTHfPzvDyNtmEYL/RIFiXnbK/tUXRHNqgSzt4L6ag 8ooU+nT08Wr30xboDwKKSAFw+IQKWjfHjj9KjwFZ7+lGwwPwOkF8irVGo02uaTxx Ik+hMfVW/6rIQEbPNeA7c8lUrikMen1ewRFu/1y41URvwicVChaNeiNs1OYig4uX 2ExgehwP6ljglhzSK8j8mNvaocLF0t5Nwcmy9/cJElr2w8R+iqYKE8BPc3Vj8qqW 27n3bLW+8/rfCfbVBTbDFssphtEG2gi2URGWexCKjSPQeeWffdG0j+jAhtpdv52F DtibmBNn+Ukhq87KiKR1JlxYJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIO4Hxpi lM23H2//rK/2dNYCa2J9MB8GA1UdIwQYMBaAFGw7fxwTPanFHURNqF5gKpaEUf5U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjZEMi9BRjIwODM0RTEz RjUxMUVGQTA5RDMyMUJDNEY5QUUwMi9iRHRfSEJNOXFjVWRSRTJvWG1BcWxvUlJf bFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JEdF9IQk05cWNVZFJFMm9YbUFxbG9SUl9sUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjZEMi9BRjIwODM0RTEzRjUxMUVGQTA5RDMyMUJDNEY5QUUwMi9iRHRfSEJNOXFj VWRSRTJvWG1BcWxvUlJfbFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoldI3l/YvEBZP37vnO5DDDJ9pnQUcTVv/E/WHwG9caFqayorgM26L FqJAglcjcdULC8GYyvuvaPUQiaaoG4TD0zUSrVrBT+4HAkfQQn5fEitlGiK/CnpY VO6i1p7mW5QB9YlPMF2RtXY6aq2Nnjlb2Kwzi5sQAuQtAxoUSURjKXksnDaIfyQC 8Tq4L2DrVemIcFgDDJUHIHjDkGBMRzwyY/K4o6/U5Wlc7wtlvZCjNtBCJT+9xYli Mcue6679yxwfuVznSRivf7EMcSnFFGOBFfhTu3o7+ZSb8eaaPFEBK8L858dhxZG5 Y8vPyoKdDBXg5eYUHT0veb8tpHTvBD7Q -----END CERTIFICATE-----Generated at Fri Aug 22 16:31:37 2025 by rpki-client