$ rpki-client -vvf rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.mft File: bBH4O5qMvdIVMt3w6mHek4jRPGs.mft (raw, json) Hash identifier: nJ+65lj5rkXcuLQhl8DgLK5T1Cip3QIDrf+MXQ6BFvs= Subject key identifier: 17:6F:49:2C:53:7F:52:A2:25:34:30:BF:33:1D:4B:5D:89:85:A7:AB Authority key identifier: 6C:11:F8:3B:9A:8C:BD:D2:15:32:DD:F0:EA:61:DE:93:88:D1:3C:6B Certificate issuer: /CN=A917D958/serialNumber=6C11F83B9A8CBDD21532DDF0EA61DE9388D13C6B Certificate serial: 93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBH4O5qMvdIVMt3w6mHek4jRPGs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.mft Manifest number: 93 Signing time: Wed 17 Sep 2025 07:10:29 +0000 Manifest this update: Wed 17 Sep 2025 07:10:29 +0000 Manifest next update: Wed 24 Sep 2025 07:10:28 +0000 Files and hashes: 1: bBH4O5qMvdIVMt3w6mHek4jRPGs.crl (hash: kikaF/mNGFqcmrrPHmMwKNo3W23mHB4EoCSPxhEIaZA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.crl rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBH4O5qMvdIVMt3w6mHek4jRPGs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 07:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 147 (0x93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D958, serialNumber=6C11F83B9A8CBDD21532DDF0EA61DE9388D13C6B Validity Not Before: Sep 17 07:10:29 2025 GMT Not After : Sep 24 07:10:28 2025 GMT Subject: CN=68ca5ee5-1a12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:02:74:01:bc:dd:48:80:35:c3:cc:1d:ba:31: a1:d3:d1:bc:93:76:0e:6e:74:ed:06:a7:64:58:fc: 3c:85:a3:df:ae:c4:01:24:12:bb:4f:40:21:22:be: bb:ea:0e:db:fb:48:30:d8:02:44:bf:f2:fb:f6:74: 35:05:4a:50:cf:9f:52:98:63:b3:40:55:42:2f:21: 7d:c6:61:d9:14:af:0f:d0:f2:fc:7f:6a:57:44:81: 95:a0:2a:7b:45:5f:f7:78:f1:c4:04:8e:c7:25:c7: 85:04:43:cf:e9:d3:29:a7:44:00:17:8d:88:cb:54: df:32:f3:25:a0:2f:7d:6a:94:f2:56:60:79:45:42: 11:3d:2a:bd:d4:b9:89:46:eb:c3:7c:f7:86:d2:37: 85:51:09:17:b3:8e:0f:54:a0:05:bb:e3:05:b7:dd: 04:da:5d:04:3d:85:55:ca:e7:9a:bf:a4:4d:94:aa: b4:22:08:07:7f:1c:92:51:3c:dc:ac:7a:95:f0:71: 77:d1:12:1d:1c:9f:a3:7d:9a:49:83:28:f2:4c:e8: ce:32:d6:13:b8:fa:e3:c2:68:3c:bd:d4:f1:9b:d5: 80:43:38:b8:7d:8b:6d:c1:44:7d:da:ff:69:b0:14: e4:47:71:8f:c1:0b:36:57:ce:ae:68:fc:26:b9:53: 33:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:6F:49:2C:53:7F:52:A2:25:34:30:BF:33:1D:4B:5D:89:85:A7:AB X509v3 Authority Key Identifier: keyid:6C:11:F8:3B:9A:8C:BD:D2:15:32:DD:F0:EA:61:DE:93:88:D1:3C:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBH4O5qMvdIVMt3w6mHek4jRPGs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:84:63:a6:e1:62:9f:f6:9d:0c:36:f9:2b:95:af:d0:2f:78: a2:d7:35:a1:87:fe:89:4e:dd:e0:b2:2a:ae:14:09:21:78:e2: 28:1e:01:a9:aa:f9:0e:ad:00:43:f2:f7:0b:7f:39:cc:07:4c: a5:74:ee:39:18:c4:a1:8a:d5:26:73:e9:58:b2:b6:11:2e:95: 94:4c:5c:50:8b:cf:7c:10:35:ef:9f:62:5a:61:3b:2f:9d:7f: d4:d5:9e:c7:61:a9:00:91:b7:3f:0b:be:6c:eb:79:c2:99:1e: 3e:21:39:39:30:fb:84:8f:f9:36:a9:09:c8:95:24:20:70:df: ca:70:ca:d1:1c:43:a5:a6:15:ab:96:42:29:2c:a8:95:04:93: 48:18:dc:e9:99:67:48:53:bd:c6:b4:23:02:b7:72:e5:cf:fa: a7:99:6c:28:fe:67:60:53:16:16:a1:1e:06:6b:12:69:63:12: 59:e7:37:84:c2:0c:f2:10:60:12:17:23:48:96:04:d4:b6:44: 82:a2:76:bd:4c:83:e8:ef:94:29:9d:3c:8f:6e:e9:cc:7e:d3: c6:e8:79:24:1b:e6:b2:26:97:73:2d:e1:fa:83:ef:e8:53:c5: 51:33:9d:83:cf:ba:c3:3c:d2:b3:80:d9:94:3d:00:6e:33:4e: 36:7d:0b:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q5NTgxMTAvBgNVBAUTKDZDMTFGODNCOUE4Q0JERDIxNTMyRERGMEVBNjFERTkz ODhEMTNDNkIwHhcNMjUwOTE3MDcxMDI5WhcNMjUwOTI0MDcxMDI4WjAYMRYwFAYD VQQDEw02OGNhNWVlNS0xYTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsgJ0AbzdSIA1w8wdujGh09G8k3YObnTtBqdkWPw8haPfrsQBJBK7T0AhIr67 6g7b+0gw2AJEv/L79nQ1BUpQz59SmGOzQFVCLyF9xmHZFK8P0PL8f2pXRIGVoCp7 RV/3ePHEBI7HJceFBEPP6dMpp0QAF42Iy1TfMvMloC99apTyVmB5RUIRPSq91LmJ RuvDfPeG0jeFUQkXs44PVKAFu+MFt90E2l0EPYVVyueav6RNlKq0IggHfxySUTzc rHqV8HF30RIdHJ+jfZpJgyjyTOjOMtYTuPrjwmg8vdTxm9WAQzi4fYttwUR92v9p sBTkR3GPwQs2V86uaPwmuVMzMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBdvSSxT f1KiJTQwvzMdS12JhaerMB8GA1UdIwQYMBaAFGwR+DuajL3SFTLd8Oph3pOI0Txr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDk1OC82RjYyODM4OEIz OUIxMUVGODBGNjQzNUVDNEY5QUUwMi9iQkg0TzVxTXZkSVZNdDN3Nm1IZWs0alJQ R3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JCSDRPNXFNdmRJVk10M3c2bUhlazRqUlBHcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDk1OC82RjYyODM4OEIzOUIxMUVGODBGNjQzNUVDNEY5QUUwMi9iQkg0TzVxTXZk SVZNdDN3Nm1IZWs0alJQR3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFhGOm4WKf9p0MNvkrla/QL3ii1zWhh/6JTt3gsiquFAkheOIoHgGp qvkOrQBD8vcLfznMB0yldO45GMShitUmc+lYsrYRLpWUTFxQi898EDXvn2JaYTsv nX/U1Z7HYakAkbc/C75s63nCmR4+ITk5MPuEj/k2qQnIlSQgcN/KcMrRHEOlphWr lkIpLKiVBJNIGNzpmWdIU73GtCMCt3Llz/qnmWwo/mdgUxYWoR4GaxJpYxJZ5zeE wgzyEGASFyNIlgTUtkSCona9TIPo75QpnTyPbunMftPG6HkkG+ayJpdzLeH6g+/o U8VRM52Dz7rDPNKzgNmUPQBuM042fQsI -----END CERTIFICATE-----Generated at Fri Sep 19 08:50:58 2025 by rpki-client