$ rpki-client -vvf rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/cBB77LhKxM5elcxh0RCmcj-QycM.mft File: cBB77LhKxM5elcxh0RCmcj-QycM.mft (raw, json) Hash identifier: dA9ZIDCDNrOk9Xp4ftzwQBRd2d5r8BYwUSd1vKHduN4= Subject key identifier: 8D:63:6F:46:F6:60:EB:F5:92:2F:EE:3F:CC:56:C3:6D:9D:37:84:2D Authority key identifier: 70:10:7B:EC:B8:4A:C4:CE:5E:95:CC:61:D1:10:A6:72:3F:90:C9:C3 Certificate issuer: /CN=A916C2B9/serialNumber=70107BECB84AC4CE5E95CC61D110A6723F90C9C3 Certificate serial: 012E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cBB77LhKxM5elcxh0RCmcj-QycM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/cBB77LhKxM5elcxh0RCmcj-QycM.mft Manifest number: 012C Signing time: Fri 05 Sep 2025 05:00:59 +0000 Manifest this update: Fri 05 Sep 2025 05:00:58 +0000 Manifest next update: Fri 12 Sep 2025 05:00:58 +0000 Files and hashes: 1: cBB77LhKxM5elcxh0RCmcj-QycM.crl (hash: XykTdMc2NRBmS5UILDooM4ocdWQjnaBC1Ms17D+IQf0=) 2: 4FB5C8F4C43D11EE973ADE48C4F9AE02.roa (hash: 1zjPjAAMi/TzSsloil5toyL9PUAMXEmH20tRK4X3XV8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/cBB77LhKxM5elcxh0RCmcj-QycM.crl rsync://rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/cBB77LhKxM5elcxh0RCmcj-QycM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cBB77LhKxM5elcxh0RCmcj-QycM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 05:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 302 (0x12e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C2B9, serialNumber=70107BECB84AC4CE5E95CC61D110A6723F90C9C3 Validity Not Before: Sep 5 05:00:58 2025 GMT Not After : Sep 12 05:00:58 2025 GMT Subject: CN=68ba6e8a-2466 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:35:a6:b7:ac:a6:e9:90:58:9f:b7:06:f1:67: 61:06:4b:22:a7:a0:c4:66:a6:39:3f:be:02:ef:ac: 1c:ad:3a:cd:08:bb:34:9c:ca:53:6c:63:09:68:5f: 0a:08:a7:e4:d2:61:b0:05:65:0c:d3:6d:26:24:0b: 3e:b6:ae:13:6b:74:29:74:8d:e8:fe:6c:7d:8b:72: 43:2f:5d:fb:5a:43:63:c5:fb:b0:55:ff:83:4b:6d: 9c:a0:3d:37:fc:fc:4f:6e:ab:d4:7a:66:18:a2:e2: 89:51:fd:b7:5e:b3:65:30:2e:54:fe:14:7d:d6:99: be:1e:01:a7:b6:83:d4:1f:49:8e:6a:56:73:01:b9: 4c:0f:15:9a:2c:e6:09:3d:f8:97:e5:5c:67:ee:bb: 7e:0e:9d:77:10:e2:b4:9a:21:85:e8:73:6b:c1:09: d1:37:e9:79:d1:2e:d5:df:94:f9:ca:9d:ad:a1:81: 7e:bb:90:5a:92:33:e5:ba:40:b7:26:c0:d8:cd:07: 54:d4:2a:cb:ba:24:08:a5:a7:c9:11:e4:a0:d9:32: 16:d4:94:43:72:8b:09:63:7b:3d:b6:f8:69:f4:38: de:32:f4:ed:8d:91:08:a1:0c:f7:7c:f4:bb:5b:57: d6:ec:e4:42:c4:e2:08:00:27:b1:99:c9:23:bb:2d: 4a:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:63:6F:46:F6:60:EB:F5:92:2F:EE:3F:CC:56:C3:6D:9D:37:84:2D X509v3 Authority Key Identifier: keyid:70:10:7B:EC:B8:4A:C4:CE:5E:95:CC:61:D1:10:A6:72:3F:90:C9:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/cBB77LhKxM5elcxh0RCmcj-QycM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cBB77LhKxM5elcxh0RCmcj-QycM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/cBB77LhKxM5elcxh0RCmcj-QycM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:50:17:29:fb:17:77:88:1c:2a:3b:2f:fa:68:2c:e4:9f:f4: 90:0b:cb:a2:a0:0a:05:b6:e9:a9:f8:11:ed:75:fb:dc:4b:06: e7:6c:fb:e8:1b:97:c4:1f:ff:b8:03:fc:c2:c3:92:2e:54:53: df:5f:8f:0e:39:41:d3:af:54:97:d7:1e:71:eb:35:ce:98:7b: 0a:db:36:c6:99:f9:db:80:03:1e:e0:96:1c:2b:6c:12:f6:c3: 46:f2:ff:4c:d7:87:d3:4e:b5:3a:5b:0e:99:89:f7:ee:dc:ef: 72:5d:02:99:81:8b:31:c0:0e:30:34:16:23:2c:1c:3b:de:47: a5:65:b3:ba:8d:88:f7:a7:f8:07:4b:a0:3e:78:ee:98:67:a7: 1c:18:37:d8:93:3c:76:fa:f9:18:4c:7b:f4:f4:4c:7c:5c:63: 94:ea:3f:45:7e:94:93:da:4e:33:76:c9:9e:6a:69:52:66:bd: ce:3b:10:98:66:3b:39:03:47:9c:f7:4c:c0:e0:77:19:96:ed: ee:31:f5:d7:fb:76:a1:50:86:8a:aa:31:64:21:c3:5c:37:6b: b9:48:5c:48:58:ec:29:ed:f1:46:00:48:c8:6e:0f:60:27:83: 9b:26:b4:94:5a:9b:db:5f:67:2c:33:ef:7f:52:6b:45:e1:33: 0f:f8:e6:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAS4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkMyQjkxMTAvBgNVBAUTKDcwMTA3QkVDQjg0QUM0Q0U1RTk1Q0M2MUQxMTBBNjcy M0Y5MEM5QzMwHhcNMjUwOTA1MDUwMDU4WhcNMjUwOTEyMDUwMDU4WjAYMRYwFAYD VQQDEw02OGJhNmU4YS0yNDY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtzWmt6ym6ZBYn7cG8WdhBksip6DEZqY5P74C76wcrTrNCLs0nMpTbGMJaF8K CKfk0mGwBWUM020mJAs+tq4Ta3QpdI3o/mx9i3JDL137WkNjxfuwVf+DS22coD03 /PxPbqvUemYYouKJUf23XrNlMC5U/hR91pm+HgGntoPUH0mOalZzAblMDxWaLOYJ PfiX5Vxn7rt+Dp13EOK0miGF6HNrwQnRN+l50S7V35T5yp2toYF+u5BakjPlukC3 JsDYzQdU1CrLuiQIpafJEeSg2TIW1JRDcosJY3s9tvhp9DjeMvTtjZEIoQz3fPS7 W1fW7ORCxOIIACexmckjuy1KRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI1jb0b2 YOv1ki/uP8xWw22dN4QtMB8GA1UdIwQYMBaAFHAQe+y4SsTOXpXMYdEQpnI/kMnD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzJCOS8zMDY2OTlDQUMy QTIxMUVFOTFEOTUzNUNDNEY5QUUwMi9jQkI3N0xoS3hNNWVsY3hoMFJDbWNqLVF5 Y00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2NCQjc3TGhLeE01ZWxjeGgwUkNtY2otUXljTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzJCOS8zMDY2OTlDQUMyQTIxMUVFOTFEOTUzNUNDNEY5QUUwMi9jQkI3N0xoS3hN NWVsY3hoMFJDbWNqLVF5Y00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXUBcp+xd3iBwqOy/6aCzkn/SQC8uioAoFtump+BHtdfvcSwbnbPvo G5fEH/+4A/zCw5IuVFPfX48OOUHTr1SX1x5x6zXOmHsK2zbGmfnbgAMe4JYcK2wS 9sNG8v9M14fTTrU6Ww6Ziffu3O9yXQKZgYsxwA4wNBYjLBw73kelZbO6jYj3p/gH S6A+eO6YZ6ccGDfYkzx2+vkYTHv09Ex8XGOU6j9FfpST2k4zdsmeamlSZr3OOxCY Zjs5A0ec90zA4HcZlu3uMfXX+3ahUIaKqjFkIcNcN2u5SFxIWOwp7fFGAEjIbg9g J4ObJrSUWpvbX2csM+9/UmtF4TMP+OYL -----END CERTIFICATE-----Generated at Sat Sep 6 21:12:15 2025 by rpki-client