$ rpki-client -vvf rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/bkWq8A0m8fB31nRzkUTUuMOU87g.mft File: bkWq8A0m8fB31nRzkUTUuMOU87g.mft (raw, json) Hash identifier: lxCI43eGIixHv8iy9zGpet/S6tYTU5LEgLjvt7dfcyU= Subject key identifier: B1:F5:73:E8:D3:83:E4:21:5B:6E:8D:31:4C:3A:48:43:CD:BB:EC:8B Authority key identifier: 6E:45:AA:F0:0D:26:F1:F0:77:D6:74:73:91:44:D4:B8:C3:94:F3:B8 Certificate issuer: /CN=A919F0DA/serialNumber=6E45AAF00D26F1F077D674739144D4B8C394F3B8 Certificate serial: 240B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bkWq8A0m8fB31nRzkUTUuMOU87g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/bkWq8A0m8fB31nRzkUTUuMOU87g.mft Manifest number: 60B8 Signing time: Sun 24 Aug 2025 14:15:26 +0000 Manifest this update: Sun 24 Aug 2025 14:15:25 +0000 Manifest next update: Sun 31 Aug 2025 14:15:25 +0000 Files and hashes: 1: bkWq8A0m8fB31nRzkUTUuMOU87g.crl (hash: TWiNHXWnQerVo4uNsfBwIVMS8CW8ZiiX9qv6GgZVeUM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/bkWq8A0m8fB31nRzkUTUuMOU87g.crl rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/bkWq8A0m8fB31nRzkUTUuMOU87g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bkWq8A0m8fB31nRzkUTUuMOU87g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 14:15:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9227 (0x240b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F0DA, serialNumber=6E45AAF00D26F1F077D674739144D4B8C394F3B8 Validity Not Before: Aug 24 14:15:25 2025 GMT Not After : Aug 31 14:15:25 2025 GMT Subject: CN=68ab1e7e-02dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:58:81:21:53:39:3c:ed:66:d0:06:a6:e3:57: 45:bd:7f:91:8e:5c:b8:8b:44:36:4c:b0:70:4e:f6: 5a:35:89:18:7d:0c:56:3d:3f:09:be:ba:70:f9:a4: 32:4d:e0:b5:de:8c:fa:93:30:a1:b8:9b:75:f3:4f: 45:fe:43:c0:5d:54:ae:45:81:cb:51:09:2a:73:7b: 93:91:b0:ca:77:5d:b0:b4:7f:1a:d3:cc:16:34:ad: 62:3e:ff:7e:5d:ff:a2:41:41:be:76:80:3c:cf:c7: 8b:11:68:8e:49:00:a2:35:c9:86:84:21:28:8e:36: c5:84:c8:5f:00:35:84:06:5f:b5:9e:11:c0:14:67: ee:a1:22:17:6d:b4:3a:1f:13:d2:3d:41:a6:50:b6: ec:3d:17:49:29:71:30:75:e3:cc:5b:e3:d5:e9:d5: 47:8c:d9:5c:89:3a:97:21:6b:d0:92:5f:16:60:5d: ff:17:23:f9:a5:eb:c6:75:63:90:8b:20:44:65:f0: 5e:53:87:f6:ef:10:6f:18:4d:7f:ac:a4:bc:32:82: ac:d1:a0:62:b0:73:e9:e8:57:3c:56:80:c3:04:3b: 13:69:b6:65:13:ad:ed:c0:cd:9c:eb:b7:02:bc:82: 66:e3:c2:03:82:92:8e:a5:d2:a0:2f:f7:47:32:c3: 4c:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:F5:73:E8:D3:83:E4:21:5B:6E:8D:31:4C:3A:48:43:CD:BB:EC:8B X509v3 Authority Key Identifier: keyid:6E:45:AA:F0:0D:26:F1:F0:77:D6:74:73:91:44:D4:B8:C3:94:F3:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/bkWq8A0m8fB31nRzkUTUuMOU87g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bkWq8A0m8fB31nRzkUTUuMOU87g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/bkWq8A0m8fB31nRzkUTUuMOU87g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:e7:0f:00:db:20:ae:39:a3:fe:d6:69:fb:47:3d:2b:ad:7b: 9a:3d:64:04:47:85:20:61:73:3d:1b:ca:a2:bb:8a:84:0e:f1: 70:f4:ab:87:c1:b0:f1:4a:56:06:a4:fd:b3:f0:8d:03:39:fa: e4:fc:31:62:f1:6c:98:61:41:24:aa:f6:ae:7b:d0:e2:d0:14: 91:12:d1:9a:10:98:e7:b2:58:26:5b:bd:f5:24:c4:4b:bf:f7: 12:71:f5:b1:fb:d5:19:be:13:1c:80:03:9c:af:7c:56:c3:d7: ba:d8:c6:a7:a3:ba:c7:a4:e4:4f:76:42:ad:2d:a6:9b:03:eb: 49:96:32:ce:a1:e0:b7:6e:45:aa:94:cd:7f:b4:1e:8d:2f:f7: 9e:40:6d:43:f9:da:27:65:f2:1d:f6:1b:98:40:31:42:4f:53: e6:fd:bd:5e:2f:3d:08:fa:51:95:5d:4b:54:96:0d:93:87:02: 45:01:57:e2:25:6a:1b:52:97:01:50:6c:53:50:3e:6d:3b:b2: 04:cc:03:fa:40:84:c0:82:14:d6:54:8b:62:59:b9:ca:95:cb: 28:e9:ce:f4:2d:fa:a9:b6:d0:5b:01:35:c0:9f:59:68:d3:13: a3:60:2e:99:9a:48:f8:a7:dc:55:78:9e:de:4e:a5:e5:1e:c5: ab:7a:02:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJAswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUYwREExMTAvBgNVBAUTKDZFNDVBQUYwMEQyNkYxRjA3N0Q2NzQ3MzkxNDRENEI4 QzM5NEYzQjgwHhcNMjUwODI0MTQxNTI1WhcNMjUwODMxMTQxNTI1WjAYMRYwFAYD VQQDEw02OGFiMWU3ZS0wMmRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9ViBIVM5PO1m0Aam41dFvX+Rjly4i0Q2TLBwTvZaNYkYfQxWPT8Jvrpw+aQy TeC13oz6kzChuJt1809F/kPAXVSuRYHLUQkqc3uTkbDKd12wtH8a08wWNK1iPv9+ Xf+iQUG+doA8z8eLEWiOSQCiNcmGhCEojjbFhMhfADWEBl+1nhHAFGfuoSIXbbQ6 HxPSPUGmULbsPRdJKXEwdePMW+PV6dVHjNlciTqXIWvQkl8WYF3/FyP5pevGdWOQ iyBEZfBeU4f27xBvGE1/rKS8MoKs0aBisHPp6Fc8VoDDBDsTabZlE63twM2c67cC vIJm48IDgpKOpdKgL/dHMsNMfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLH1c+jT g+QhW26NMUw6SEPNu+yLMB8GA1UdIwQYMBaAFG5FqvANJvHwd9Z0c5FE1LjDlPO4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjBEQS8xNTBEM0VGNDFE NjgxMUUyOEMxODI4QTQwOEIwMkNEMi9ia1dxOEEwbThmQjMxblJ6a1VUVXVNT1U4 N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JrV3E4QTBtOGZCMzFuUnprVVRVdU1PVTg3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RjBEQS8xNTBEM0VGNDFENjgxMUUyOEMxODI4QTQwOEIwMkNEMi9ia1dxOEEwbThm QjMxblJ6a1VUVXVNT1U4N2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA15w8A2yCuOaP+1mn7Rz0rrXuaPWQER4UgYXM9G8qiu4qEDvFw9KuH wbDxSlYGpP2z8I0DOfrk/DFi8WyYYUEkqvaue9Di0BSREtGaEJjnslgmW731JMRL v/cScfWx+9UZvhMcgAOcr3xWw9e62Mano7rHpORPdkKtLaabA+tJljLOoeC3bkWq lM1/tB6NL/eeQG1D+donZfId9huYQDFCT1Pm/b1eLz0I+lGVXUtUlg2ThwJFAVfi JWobUpcBUGxTUD5tO7IEzAP6QITAghTWVItiWbnKlcso6c70LfqpttBbATXAn1lo 0xOjYC6Zmkj4p9xVeJ7eTqXlHsWregLn -----END CERTIFICATE-----Generated at Sun Aug 24 22:02:51 2025 by rpki-client