$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft File: bzPCWtM2F4RBLEKweYYz0Dslvso.mft (raw, json) Hash identifier: z53twmBJBoaeC+H1LZi/odazm5Q+JnscZ1rL+DoRTpk= Subject key identifier: 2C:75:F8:CA:85:60:25:DC:1D:3A:6B:09:D1:3D:1A:1B:2A:04:48:F1 Authority key identifier: 6F:33:C2:5A:D3:36:17:84:41:2C:42:B0:79:86:33:D0:3B:25:BE:CA Certificate issuer: /CN=A91AB027/serialNumber=6F33C25AD3361784412C42B0798633D03B25BECA Certificate serial: 0F60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bzPCWtM2F4RBLEKweYYz0Dslvso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft Manifest number: 0F57 Signing time: Sun 24 Aug 2025 17:33:45 +0000 Manifest this update: Sun 24 Aug 2025 17:33:45 +0000 Manifest next update: Sun 31 Aug 2025 17:33:45 +0000 Files and hashes: 1: bzPCWtM2F4RBLEKweYYz0Dslvso.crl (hash: SZzQF5L7tSKf8E57iOgwpi8Gc+KlQDVTcOtH3N/0cp4=) 2: 62C1F5587ACD11E9AC0A867BC4F9AE02.roa (hash: zJtFuv9ERKF2VcP0kXnp4PcKZFEJbjxQnX3bWZEEZas=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.crl rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bzPCWtM2F4RBLEKweYYz0Dslvso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 17:33:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3936 (0xf60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB027, serialNumber=6F33C25AD3361784412C42B0798633D03B25BECA Validity Not Before: Aug 24 17:33:45 2025 GMT Not After : Aug 31 17:33:45 2025 GMT Subject: CN=68ab4cf9-c0a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:84:04:3d:8a:b4:6c:c3:63:d2:36:95:6b:49: 0e:5a:39:b6:33:df:17:23:e9:d4:7b:64:da:fc:13: 31:40:f4:51:47:8e:43:fe:f9:14:0b:00:e9:7c:2a: 2b:ef:73:ca:be:a5:03:85:48:24:bc:92:81:52:ea: f8:40:5f:b9:a6:41:b5:ba:ce:2f:41:36:06:b3:58: 61:26:b1:81:f2:67:f7:15:7a:e5:5e:10:dd:25:bf: 0b:0c:8e:c4:4c:a7:39:5c:4d:4d:c4:7a:7a:a6:6a: 73:67:ad:04:cd:81:d2:6c:3b:ab:45:e7:b8:51:89: d6:3d:44:73:d5:dd:0b:fd:aa:89:31:cf:35:32:3b: c4:1e:1f:6d:41:f4:dd:e5:3c:81:5f:55:f6:0e:02: 99:4f:6a:16:ef:36:e9:54:d7:07:30:d1:6c:c4:12: c6:12:57:1d:27:a6:0a:8e:22:86:a0:7b:b0:ab:fb: 15:9f:34:0a:1a:96:f7:3e:55:96:37:8e:30:4e:85: dd:82:c0:a5:9c:ec:be:b8:8c:72:25:b2:e9:df:27: f6:c4:95:ac:15:bb:58:68:73:4e:7a:ad:2f:8e:2d: ad:5c:27:70:9b:4d:39:d4:ed:f0:ee:94:5d:6a:1d: 6c:49:02:3f:3c:ba:18:92:e7:ba:eb:0f:fe:4e:e6: 77:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:75:F8:CA:85:60:25:DC:1D:3A:6B:09:D1:3D:1A:1B:2A:04:48:F1 X509v3 Authority Key Identifier: keyid:6F:33:C2:5A:D3:36:17:84:41:2C:42:B0:79:86:33:D0:3B:25:BE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bzPCWtM2F4RBLEKweYYz0Dslvso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:49:f0:c0:e1:24:58:11:6e:00:b3:05:a9:7d:60:af:79:3d: a6:29:3b:07:dc:66:3c:1d:b1:0c:df:c0:e7:63:1e:e1:0f:c3: 88:2a:a1:a8:e8:be:b0:83:c1:39:0d:0d:30:58:dd:75:dd:88: b0:d8:ab:6c:a6:8b:09:98:f4:fa:55:8f:fe:78:c2:e9:06:5b: 49:33:05:d0:78:8b:39:13:53:38:c6:36:4a:2a:d3:be:76:09: 65:eb:ec:56:6c:70:75:9b:5b:13:3f:06:9f:e5:65:89:25:f7: 8c:bd:3c:34:ea:14:f1:b1:8a:0f:f9:89:13:bb:c9:bb:c8:55: 9c:09:63:d0:8c:ec:53:21:c5:15:2a:3b:50:5a:9d:c3:85:21: 6c:97:be:4c:33:0d:31:b9:d7:b2:8d:1a:98:2c:b6:94:29:e2: de:d7:33:e2:35:06:e7:37:81:70:5d:e9:a0:6a:54:0e:56:66: a9:3b:a3:33:d3:7f:ba:4d:cf:01:2b:fd:67:44:63:a8:ac:a9: 78:1d:20:20:8f:ea:f6:b4:5c:55:f0:6b:a3:88:b1:28:da:c4: 80:30:b3:22:18:bc:5f:83:5f:ec:fc:11:3e:95:95:f0:9e:7b: 20:a5:ca:76:cb:54:f5:aa:cb:df:16:b4:21:24:3f:cf:12:96: 9c:e4:61:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD2AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIwMjcxMTAvBgNVBAUTKDZGMzNDMjVBRDMzNjE3ODQ0MTJDNDJCMDc5ODYzM0Qw M0IyNUJFQ0EwHhcNMjUwODI0MTczMzQ1WhcNMjUwODMxMTczMzQ1WjAYMRYwFAYD VQQDEw02OGFiNGNmOS1jMGE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxYQEPYq0bMNj0jaVa0kOWjm2M98XI+nUe2Ta/BMxQPRRR45D/vkUCwDpfCor 73PKvqUDhUgkvJKBUur4QF+5pkG1us4vQTYGs1hhJrGB8mf3FXrlXhDdJb8LDI7E TKc5XE1NxHp6pmpzZ60EzYHSbDurRee4UYnWPURz1d0L/aqJMc81MjvEHh9tQfTd 5TyBX1X2DgKZT2oW7zbpVNcHMNFsxBLGElcdJ6YKjiKGoHuwq/sVnzQKGpb3PlWW N44wToXdgsClnOy+uIxyJbLp3yf2xJWsFbtYaHNOeq0vji2tXCdwm0051O3w7pRd ah1sSQI/PLoYkue66w/+TuZ3lQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCx1+MqF YCXcHTprCdE9GhsqBEjxMB8GA1UdIwQYMBaAFG8zwlrTNheEQSxCsHmGM9A7Jb7K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjAyNy82OEY3NTkxMDcz NDYxMUU5QUQ1NjFCNDdDNEY5QUUwMi9ielBDV3RNMkY0UkJMRUt3ZVlZejBEc2x2 c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J6UENXdE0yRjRSQkxFS3dlWVl6MERzbHZzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjAyNy82OEY3NTkxMDczNDYxMUU5QUQ1NjFCNDdDNEY5QUUwMi9ielBDV3RNMkY0 UkJMRUt3ZVlZejBEc2x2c28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsSfDA4SRYEW4AswWpfWCveT2mKTsH3GY8HbEM38DnYx7hD8OIKqGo 6L6wg8E5DQ0wWN113Yiw2KtsposJmPT6VY/+eMLpBltJMwXQeIs5E1M4xjZKKtO+ dgll6+xWbHB1m1sTPwaf5WWJJfeMvTw06hTxsYoP+YkTu8m7yFWcCWPQjOxTIcUV KjtQWp3DhSFsl75MMw0xudeyjRqYLLaUKeLe1zPiNQbnN4FwXemgalQOVmapO6Mz 03+6Tc8BK/1nRGOorKl4HSAgj+r2tFxV8GujiLEo2sSAMLMiGLxfg1/s/BE+lZXw nnsgpcp2y1T1qsvfFrQhJD/PEpac5GHp -----END CERTIFICATE-----Generated at Sun Aug 24 21:29:02 2025 by rpki-client