$ rpki-client -vvf rpki.apnic.net/member_repository/A9199B85/7D86A238C61511EEA718E338C4F9AE02/BaM29kbGgzeJtq58kgcrf5TZ3Ck.mft File: BaM29kbGgzeJtq58kgcrf5TZ3Ck.mft (raw, json) Hash identifier: GwJ8+g0MVmUc8YCkLnFGHsqec+uerOxx/sbQnuWif7k= Subject key identifier: 92:D1:D8:AB:14:9E:F1:0F:11:42:AA:60:0D:28:B8:B6:2D:C8:BA:55 Authority key identifier: 05:A3:36:F6:46:C6:83:37:89:B6:AE:7C:92:07:2B:7F:94:D9:DC:29 Certificate issuer: /CN=A9199B85/serialNumber=05A336F646C6833789B6AE7C92072B7F94D9DC29 Certificate serial: 0110 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BaM29kbGgzeJtq58kgcrf5TZ3Ck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199B85/7D86A238C61511EEA718E338C4F9AE02/BaM29kbGgzeJtq58kgcrf5TZ3Ck.mft Manifest number: 0110 Signing time: Mon 21 Jul 2025 01:42:00 +0000 Manifest this update: Mon 21 Jul 2025 01:41:58 +0000 Manifest next update: Mon 28 Jul 2025 01:41:58 +0000 Files and hashes: 1: BaM29kbGgzeJtq58kgcrf5TZ3Ck.crl (hash: vxxt5YOKTj6I0YdjYBVIO+eOQ9dn3+592YDVCeeKmCI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199B85/7D86A238C61511EEA718E338C4F9AE02/BaM29kbGgzeJtq58kgcrf5TZ3Ck.crl rsync://rpki.apnic.net/member_repository/A9199B85/7D86A238C61511EEA718E338C4F9AE02/BaM29kbGgzeJtq58kgcrf5TZ3Ck.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BaM29kbGgzeJtq58kgcrf5TZ3Ck.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 01:41:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 272 (0x110) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199B85, serialNumber=05A336F646C6833789B6AE7C92072B7F94D9DC29 Validity Not Before: Jul 21 01:41:58 2025 GMT Not After : Jul 28 01:41:58 2025 GMT Subject: CN=687d9ae7-5aa9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:23:0d:16:66:98:f2:c1:e6:88:4b:ad:e3:59: 74:f2:79:97:45:ff:d0:75:22:56:89:f8:4d:8c:c8: 30:80:9a:c2:88:29:e6:1b:de:be:a7:b7:fe:72:a2: 8e:3c:23:47:ef:f1:45:8c:42:1c:f5:08:43:09:14: b2:44:59:c4:89:bc:68:9c:40:62:33:45:48:f0:cd: 3e:c9:bd:21:fb:d6:a5:ba:10:c6:fb:a2:fc:84:42: 47:8f:d6:2e:87:24:df:5e:c7:a8:52:1d:96:09:6d: 4a:c8:a4:41:07:a6:96:e6:f1:67:2b:aa:99:e8:fd: 54:8b:82:50:f6:70:4b:d0:4c:57:2e:f0:b2:aa:23: df:ad:18:54:79:32:d1:25:e0:69:a4:6e:e3:1c:8f: 17:b9:d2:a4:59:c6:e1:52:d4:6a:0b:b6:59:51:27: 0b:71:2a:4d:76:16:9e:c2:b7:54:fd:8d:2d:09:70: 30:75:94:c6:11:f9:94:31:2d:80:e1:8b:34:3a:cf: 63:aa:49:53:27:74:c9:48:d5:23:a3:2a:a3:6e:78: e2:a5:2e:84:bf:ec:f4:a2:85:05:24:e8:a0:bd:22: 92:20:68:64:76:af:21:76:db:fa:3a:9c:bf:56:11: 54:98:eb:df:fa:14:29:28:cd:dd:41:07:4f:e3:20: 2e:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:D1:D8:AB:14:9E:F1:0F:11:42:AA:60:0D:28:B8:B6:2D:C8:BA:55 X509v3 Authority Key Identifier: keyid:05:A3:36:F6:46:C6:83:37:89:B6:AE:7C:92:07:2B:7F:94:D9:DC:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199B85/7D86A238C61511EEA718E338C4F9AE02/BaM29kbGgzeJtq58kgcrf5TZ3Ck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BaM29kbGgzeJtq58kgcrf5TZ3Ck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199B85/7D86A238C61511EEA718E338C4F9AE02/BaM29kbGgzeJtq58kgcrf5TZ3Ck.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:6c:29:70:45:b1:a8:c2:80:a1:44:dc:d9:b2:e7:28:1e:48: 27:60:47:31:5a:5d:20:ad:ae:0b:83:f6:e4:4c:9a:aa:c6:2d: c7:72:75:c9:59:5d:40:11:d5:2d:04:eb:7c:ae:34:00:16:2e: 28:c7:60:87:ee:a0:a0:b3:77:3a:bf:a9:5f:05:09:b2:30:d8: 76:c5:03:e9:e6:b5:d0:0f:66:36:aa:fe:ca:ce:0f:38:ad:3e: c1:f7:f0:bd:09:e9:d5:5c:2e:ec:82:d6:57:dc:81:db:ef:27: fc:dc:03:0f:d9:6e:4d:3c:ca:a3:e7:f7:99:bb:bc:fd:4f:fc: f5:8f:b4:30:ae:c9:20:7c:86:aa:e6:86:c5:91:ce:ac:6a:f2: c3:af:eb:1b:39:a7:7f:69:16:ce:0f:9e:98:0c:d0:fa:9a:dd: d4:15:c8:ed:73:5f:c9:5f:4c:28:70:5b:4d:0c:c0:cd:c2:20: cb:75:e9:c7:17:b6:f6:10:53:66:03:39:ef:ce:fe:b6:09:9d: 39:c7:d1:05:fa:55:b6:4e:c9:6b:18:f0:e1:ba:45:07:62:ba: 94:ea:12:ea:fc:da:fc:4e:5d:a5:a5:ed:83:f8:d2:43:52:82: 0b:5b:48:01:9f:bb:15:36:5b:3d:04:a2:fc:4d:14:6b:a3:90: 04:28:14:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTlCODUxMTAvBgNVBAUTKDA1QTMzNkY2NDZDNjgzMzc4OUI2QUU3QzkyMDcyQjdG OTREOURDMjkwHhcNMjUwNzIxMDE0MTU4WhcNMjUwNzI4MDE0MTU4WjAYMRYwFAYD VQQDEw02ODdkOWFlNy01YWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqyMNFmaY8sHmiEut41l08nmXRf/QdSJWifhNjMgwgJrCiCnmG96+p7f+cqKO PCNH7/FFjEIc9QhDCRSyRFnEibxonEBiM0VI8M0+yb0h+9aluhDG+6L8hEJHj9Yu hyTfXseoUh2WCW1KyKRBB6aW5vFnK6qZ6P1Ui4JQ9nBL0ExXLvCyqiPfrRhUeTLR JeBppG7jHI8XudKkWcbhUtRqC7ZZUScLcSpNdhaewrdU/Y0tCXAwdZTGEfmUMS2A 4Ys0Os9jqklTJ3TJSNUjoyqjbnjipS6Ev+z0ooUFJOigvSKSIGhkdq8hdtv6Opy/ VhFUmOvf+hQpKM3dQQdP4yAuRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJLR2KsU nvEPEUKqYA0ouLYtyLpVMB8GA1UdIwQYMBaAFAWjNvZGxoM3ibaufJIHK3+U2dwp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OUI4NS83RDg2QTIzOEM2 MTUxMUVFQTcxOEUzMzhDNEY5QUUwMi9CYU0yOWtiR2d6ZUp0cTU4a2djcmY1VFoz Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JhTTI5a2JHZ3plSnRxNThrZ2NyZjVUWjNDay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OUI4NS83RDg2QTIzOEM2MTUxMUVFQTcxOEUzMzhDNEY5QUUwMi9CYU0yOWtiR2d6 ZUp0cTU4a2djcmY1VFozQ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTbClwRbGowoChRNzZsucoHkgnYEcxWl0gra4Lg/bkTJqqxi3HcnXJ WV1AEdUtBOt8rjQAFi4ox2CH7qCgs3c6v6lfBQmyMNh2xQPp5rXQD2Y2qv7Kzg84 rT7B9/C9CenVXC7sgtZX3IHb7yf83AMP2W5NPMqj5/eZu7z9T/z1j7QwrskgfIaq 5obFkc6savLDr+sbOad/aRbOD56YDND6mt3UFcjtc1/JX0wocFtNDMDNwiDLdenH F7b2EFNmAznvzv62CZ05x9EF+lW2TslrGPDhukUHYrqU6hLq/Nr8Tl2lpe2D+NJD UoILW0gBn7sVNls9BKL8TRRro5AEKBTT -----END CERTIFICATE-----Generated at Mon Jul 21 18:29:53 2025 by rpki-client