$ rpki-client -vvf rpki.apnic.net/member_repository/A916B6AA/A2988F3840AE11EE9850A263C4F9AE02/9bzqkIXorbqorCGgTlPb_sMgvOI.mft File: 9bzqkIXorbqorCGgTlPb_sMgvOI.mft (raw, json) Hash identifier: 6wl1HkYWViRESSU/lg86f5Llk9ayKDWpMdVQmeM8xqY= Subject key identifier: E5:50:19:4E:E9:84:5E:C1:2D:B9:21:D7:E4:0E:DE:58:9E:48:9C:26 Authority key identifier: F5:BC:EA:90:85:E8:AD:BA:A8:AC:21:A0:4E:53:DB:FE:C3:20:BC:E2 Certificate issuer: /CN=A916B6AA/serialNumber=F5BCEA9085E8ADBAA8AC21A04E53DBFEC320BCE2 Certificate serial: 016C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9bzqkIXorbqorCGgTlPb_sMgvOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B6AA/A2988F3840AE11EE9850A263C4F9AE02/9bzqkIXorbqorCGgTlPb_sMgvOI.mft Manifest number: 016C Signing time: Sun 20 Jul 2025 15:48:28 +0000 Manifest this update: Sun 20 Jul 2025 15:48:27 +0000 Manifest next update: Sun 27 Jul 2025 15:48:27 +0000 Files and hashes: 1: 9bzqkIXorbqorCGgTlPb_sMgvOI.crl (hash: RuasCzLOMaw/XsV1zOotgcW3YMUU2IrAA64grGrhwSw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B6AA/A2988F3840AE11EE9850A263C4F9AE02/9bzqkIXorbqorCGgTlPb_sMgvOI.crl rsync://rpki.apnic.net/member_repository/A916B6AA/A2988F3840AE11EE9850A263C4F9AE02/9bzqkIXorbqorCGgTlPb_sMgvOI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9bzqkIXorbqorCGgTlPb_sMgvOI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 15:48:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 364 (0x16c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B6AA, serialNumber=F5BCEA9085E8ADBAA8AC21A04E53DBFEC320BCE2 Validity Not Before: Jul 20 15:48:27 2025 GMT Not After : Jul 27 15:48:27 2025 GMT Subject: CN=687d0fcb-6be8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:aa:02:18:2a:38:9c:c1:ae:98:c5:bc:bb:4f: 88:84:85:3c:13:23:e3:bb:42:6c:d0:61:f6:4c:65: 60:f6:a6:85:5d:5e:c5:13:d3:74:f1:0c:08:af:c4: c8:d5:a6:3b:3e:e5:c8:16:d1:e8:a5:ec:c5:2d:a0: de:35:f7:ec:d9:18:04:aa:b0:f7:2b:28:76:8d:6d: 5c:7a:45:1d:7b:3b:67:af:22:e5:98:ad:5a:dc:97: 2a:3f:75:73:11:fb:6d:f3:06:8f:6c:fa:42:73:71: 1b:90:d3:79:cb:67:af:07:60:1e:f5:cb:b2:7a:ed: 56:1b:5b:ac:4d:d4:9c:eb:9a:a3:0d:f5:e6:5e:e3: cb:f5:9c:26:a5:27:f4:35:e7:72:99:5a:1b:d1:dc: be:25:01:af:c2:00:c8:96:6b:09:28:a7:1b:12:4e: c9:b4:85:6f:d3:72:67:18:9f:96:36:e9:49:b8:f2: 73:03:3b:40:0f:02:9d:dc:5f:dc:28:d2:31:ff:fe: c3:62:2b:d1:52:50:1f:40:d3:6a:f4:95:1e:37:1f: 4e:f2:ae:14:72:50:08:2c:98:a1:6d:c8:fa:ed:01: a3:9e:10:af:c0:d7:df:78:f7:55:4d:bd:aa:50:1c: 5e:ff:5e:5a:38:27:44:0c:52:1b:7e:d0:59:49:fb: 85:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:50:19:4E:E9:84:5E:C1:2D:B9:21:D7:E4:0E:DE:58:9E:48:9C:26 X509v3 Authority Key Identifier: keyid:F5:BC:EA:90:85:E8:AD:BA:A8:AC:21:A0:4E:53:DB:FE:C3:20:BC:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B6AA/A2988F3840AE11EE9850A263C4F9AE02/9bzqkIXorbqorCGgTlPb_sMgvOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9bzqkIXorbqorCGgTlPb_sMgvOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B6AA/A2988F3840AE11EE9850A263C4F9AE02/9bzqkIXorbqorCGgTlPb_sMgvOI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:e9:8a:d2:31:a6:75:79:54:bc:49:aa:bd:c9:2a:72:cd:27: c1:42:c8:d3:41:55:e2:d9:0a:94:c8:d0:6d:66:1d:b1:4e:20: bc:69:26:b5:b3:f4:a7:c5:c5:e4:cf:a2:47:cc:a2:11:b2:41: 1a:53:0d:11:75:b4:8b:af:bb:60:27:d2:b1:9b:33:cf:54:a3: 78:cc:2a:41:24:35:fe:6f:27:81:0a:34:58:d3:71:c9:75:9a: 1e:9c:7e:6d:c9:0f:3e:4b:71:ad:1b:5d:9b:9f:5f:6b:c1:b4: b7:38:aa:83:6a:b7:bf:2c:f9:bc:89:12:80:b8:a1:62:a8:c3: 7c:da:a8:ed:43:23:30:d9:80:df:ed:9b:99:c5:8c:d2:3c:4d: 74:06:af:56:c8:fc:17:1d:a6:b3:de:41:9e:65:7e:ed:b5:04: 76:cf:6e:e6:5d:a4:99:1e:f4:c1:dd:d2:9f:c6:4e:38:c4:19: 54:be:ee:f6:e8:e6:d1:0b:df:7a:78:cf:ca:39:f6:6e:19:8f: cc:8a:ec:68:e1:63:dd:24:a3:49:23:31:12:d2:27:1c:a0:d7: 62:bb:2a:04:c8:72:38:87:72:49:ce:6e:ef:ca:8f:d2:88:14: 0f:47:c1:df:46:30:9e:22:d8:0b:13:86:0e:83:65:36:09:cb: 09:56:f4:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI2QUExMTAvBgNVBAUTKEY1QkNFQTkwODVFOEFEQkFBOEFDMjFBMDRFNTNEQkZF QzMyMEJDRTIwHhcNMjUwNzIwMTU0ODI3WhcNMjUwNzI3MTU0ODI3WjAYMRYwFAYD VQQDEw02ODdkMGZjYi02YmU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuKoCGCo4nMGumMW8u0+IhIU8EyPju0Js0GH2TGVg9qaFXV7FE9N08QwIr8TI 1aY7PuXIFtHopezFLaDeNffs2RgEqrD3Kyh2jW1cekUdeztnryLlmK1a3JcqP3Vz Eftt8waPbPpCc3EbkNN5y2evB2Ae9cuyeu1WG1usTdSc65qjDfXmXuPL9ZwmpSf0 NedymVob0dy+JQGvwgDIlmsJKKcbEk7JtIVv03JnGJ+WNulJuPJzAztADwKd3F/c KNIx//7DYivRUlAfQNNq9JUeNx9O8q4UclAILJihbcj67QGjnhCvwNffePdVTb2q UBxe/15aOCdEDFIbftBZSfuF3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOVQGU7p hF7BLbkh1+QO3lieSJwmMB8GA1UdIwQYMBaAFPW86pCF6K26qKwhoE5T2/7DILzi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjZBQS9BMjk4OEYzODQw QUUxMUVFOTg1MEEyNjNDNEY5QUUwMi85Ynpxa0lYb3JicW9yQ0dnVGxQYl9zTWd2 T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzlienFrSVhvcmJxb3JDR2dUbFBiX3NNZ3ZPSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjZBQS9BMjk4OEYzODQwQUUxMUVFOTg1MEEyNjNDNEY5QUUwMi85Ynpxa0lYb3Ji cW9yQ0dnVGxQYl9zTWd2T0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCp6YrSMaZ1eVS8Saq9ySpyzSfBQsjTQVXi2QqUyNBtZh2xTiC8aSa1 s/SnxcXkz6JHzKIRskEaUw0RdbSLr7tgJ9KxmzPPVKN4zCpBJDX+byeBCjRY03HJ dZoenH5tyQ8+S3GtG12bn19rwbS3OKqDare/LPm8iRKAuKFiqMN82qjtQyMw2YDf 7ZuZxYzSPE10Bq9WyPwXHaaz3kGeZX7ttQR2z27mXaSZHvTB3dKfxk44xBlUvu72 6ObRC996eM/KOfZuGY/Miuxo4WPdJKNJIzES0iccoNdiuyoEyHI4h3JJzm7vyo/S iBQPR8HfRjCeItgLE4YOg2U2CcsJVvR4 -----END CERTIFICATE-----Generated at Mon Jul 21 13:17:03 2025 by rpki-client