$ rpki-client -vvf rpki.apnic.net/member_repository/A9199B85/7D86A238C61511EEA718E338C4F9AE02/BaM29kbGgzeJtq58kgcrf5TZ3Ck.mft File: BaM29kbGgzeJtq58kgcrf5TZ3Ck.mft (raw, json) Hash identifier: dvtMD5aI8GTKLKSTm3o/NGHY0h/ijHBb9Y617+WWuLo= Subject key identifier: 47:3D:F2:35:88:44:8B:50:34:CF:11:AF:E0:5C:D6:52:31:38:C1:A8 Authority key identifier: 05:A3:36:F6:46:C6:83:37:89:B6:AE:7C:92:07:2B:7F:94:D9:DC:29 Certificate issuer: /CN=A9199B85/serialNumber=05A336F646C6833789B6AE7C92072B7F94D9DC29 Certificate serial: 0128 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BaM29kbGgzeJtq58kgcrf5TZ3Ck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199B85/7D86A238C61511EEA718E338C4F9AE02/BaM29kbGgzeJtq58kgcrf5TZ3Ck.mft Manifest number: 0128 Signing time: Fri 05 Sep 2025 01:39:56 +0000 Manifest this update: Fri 05 Sep 2025 01:39:55 +0000 Manifest next update: Fri 12 Sep 2025 01:39:55 +0000 Files and hashes: 1: BaM29kbGgzeJtq58kgcrf5TZ3Ck.crl (hash: JZBATXECR25ZE19xRvJJQkC1Wb2KR1OiOuzR6J2Fy0E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199B85/7D86A238C61511EEA718E338C4F9AE02/BaM29kbGgzeJtq58kgcrf5TZ3Ck.crl rsync://rpki.apnic.net/member_repository/A9199B85/7D86A238C61511EEA718E338C4F9AE02/BaM29kbGgzeJtq58kgcrf5TZ3Ck.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BaM29kbGgzeJtq58kgcrf5TZ3Ck.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 01:39:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 296 (0x128) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199B85, serialNumber=05A336F646C6833789B6AE7C92072B7F94D9DC29 Validity Not Before: Sep 5 01:39:55 2025 GMT Not After : Sep 12 01:39:55 2025 GMT Subject: CN=68ba3f6c-1c49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:bc:54:a3:62:ef:c2:26:d4:2b:0f:31:c6:f9: 63:81:cf:e8:ab:a3:43:3f:13:96:59:e7:be:a0:dc: 96:25:9a:a2:c9:d1:8d:fe:fd:40:8c:69:7e:f4:8b: 9a:8b:26:18:8d:85:60:ca:44:e4:f9:08:78:71:e6: c5:a5:23:8f:00:3f:09:02:ea:48:9c:59:8e:37:e9: f7:7b:dc:14:89:1f:97:ca:3e:ed:a9:57:a0:23:55: bb:0a:12:69:c7:07:26:14:0f:b5:a0:ef:e3:59:d8: 37:99:0a:fd:cb:e0:02:d4:50:67:8d:39:b2:10:d8: d6:1e:81:29:7f:cf:cc:fb:d0:7f:ca:cd:e3:3f:a1: 5a:56:68:8f:32:21:86:2c:d5:d1:e6:c0:cc:ec:64: e6:a6:79:ac:96:74:35:e6:38:17:03:2c:39:fe:b3: 36:35:c1:ba:07:2b:ac:39:01:26:8f:68:87:98:71: f0:0a:01:e4:04:bd:dd:cb:8a:6f:8c:0b:ba:bd:b1: 6f:7b:fc:10:fb:14:3d:20:47:7b:da:77:b9:5f:b3: d8:9f:bf:fb:53:ca:f4:d7:64:1a:73:6f:b6:47:1b: 44:1a:33:bc:cb:9c:d4:25:8a:07:e9:07:7d:c2:1b: 0b:98:f9:56:de:1c:16:ea:e4:cb:86:68:92:08:1a: 55:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:3D:F2:35:88:44:8B:50:34:CF:11:AF:E0:5C:D6:52:31:38:C1:A8 X509v3 Authority Key Identifier: keyid:05:A3:36:F6:46:C6:83:37:89:B6:AE:7C:92:07:2B:7F:94:D9:DC:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199B85/7D86A238C61511EEA718E338C4F9AE02/BaM29kbGgzeJtq58kgcrf5TZ3Ck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BaM29kbGgzeJtq58kgcrf5TZ3Ck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199B85/7D86A238C61511EEA718E338C4F9AE02/BaM29kbGgzeJtq58kgcrf5TZ3Ck.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:a7:83:f2:80:f3:5d:0f:01:aa:89:1e:02:c2:9d:88:b5:cb: e0:fc:d5:0e:08:67:64:67:bf:ed:ef:1e:ec:28:58:c8:e0:28: a5:d3:41:d6:ba:69:aa:bd:44:56:df:64:34:32:22:cb:f1:51: 5c:ee:8b:60:e4:d9:da:a1:54:9b:77:34:f1:d1:5b:10:4e:cc: 0f:6d:44:1f:3c:0d:75:87:a1:45:e6:9a:8b:76:1e:8a:3d:cf: df:7e:68:ed:b3:ec:5f:94:30:a6:05:64:db:e4:de:77:b5:87: 9f:f8:ee:0b:cb:55:94:a8:22:7e:ac:9f:1b:f5:af:18:86:43: a8:12:0a:f4:20:67:c7:d2:ed:29:11:ac:0a:de:c6:87:7c:f1: d9:b4:9b:dd:2a:b3:11:bc:ac:44:83:6c:c2:56:68:b8:91:55: b9:ba:6e:6d:87:c7:54:23:3f:b7:82:f3:c7:3e:f9:d0:97:3d: 5d:23:f5:4e:4a:c1:84:fb:f0:5d:74:b5:cb:03:78:53:32:e0: a0:b4:41:8c:69:b6:90:49:08:18:24:26:bb:89:2a:40:28:61: b0:cf:79:55:8b:24:32:66:8d:ed:69:90:d2:d4:34:c9:bd:e3: 46:31:6a:1f:06:94:df:31:ca:8d:7b:a8:cf:de:f0:fc:da:37: ad:21:a5:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTlCODUxMTAvBgNVBAUTKDA1QTMzNkY2NDZDNjgzMzc4OUI2QUU3QzkyMDcyQjdG OTREOURDMjkwHhcNMjUwOTA1MDEzOTU1WhcNMjUwOTEyMDEzOTU1WjAYMRYwFAYD VQQDEw02OGJhM2Y2Yy0xYzQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxbxUo2LvwibUKw8xxvljgc/oq6NDPxOWWee+oNyWJZqiydGN/v1AjGl+9Iua iyYYjYVgykTk+Qh4cebFpSOPAD8JAupInFmON+n3e9wUiR+Xyj7tqVegI1W7ChJp xwcmFA+1oO/jWdg3mQr9y+AC1FBnjTmyENjWHoEpf8/M+9B/ys3jP6FaVmiPMiGG LNXR5sDM7GTmpnmslnQ15jgXAyw5/rM2NcG6ByusOQEmj2iHmHHwCgHkBL3dy4pv jAu6vbFve/wQ+xQ9IEd72ne5X7PYn7/7U8r012Qac2+2RxtEGjO8y5zUJYoH6Qd9 whsLmPlW3hwW6uTLhmiSCBpVtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEc98jWI RItQNM8Rr+Bc1lIxOMGoMB8GA1UdIwQYMBaAFAWjNvZGxoM3ibaufJIHK3+U2dwp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OUI4NS83RDg2QTIzOEM2 MTUxMUVFQTcxOEUzMzhDNEY5QUUwMi9CYU0yOWtiR2d6ZUp0cTU4a2djcmY1VFoz Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JhTTI5a2JHZ3plSnRxNThrZ2NyZjVUWjNDay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OUI4NS83RDg2QTIzOEM2MTUxMUVFQTcxOEUzMzhDNEY5QUUwMi9CYU0yOWtiR2d6 ZUp0cTU4a2djcmY1VFozQ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMp4PygPNdDwGqiR4Cwp2Itcvg/NUOCGdkZ7/t7x7sKFjI4Cil00HW ummqvURW32Q0MiLL8VFc7otg5NnaoVSbdzTx0VsQTswPbUQfPA11h6FF5pqLdh6K Pc/ffmjts+xflDCmBWTb5N53tYef+O4Ly1WUqCJ+rJ8b9a8YhkOoEgr0IGfH0u0p EawK3saHfPHZtJvdKrMRvKxEg2zCVmi4kVW5um5th8dUIz+3gvPHPvnQlz1dI/VO SsGE+/BddLXLA3hTMuCgtEGMabaQSQgYJCa7iSpAKGGwz3lViyQyZo3taZDS1DTJ veNGMWofBpTfMcqNe6jP3vD82jetIaWs -----END CERTIFICATE-----Generated at Sat Sep 6 21:09:04 2025 by rpki-client