$ rpki-client -vvf rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.mft File: bz4CYgDVU58n4POqUNMgokUo1X0.mft (raw, json) Hash identifier: dfJcjCvVfMTGeIFBKI9VrUB603W6KBhRbjhDBhxWulY= Subject key identifier: 6E:C8:4A:C9:E0:68:5B:30:8E:C7:51:C5:C5:70:33:91:64:C8:4E:0D Authority key identifier: 6F:3E:02:62:00:D5:53:9F:27:E0:F3:AA:50:D3:20:A2:45:28:D5:7D Certificate issuer: /CN=A91B732A/serialNumber=6F3E026200D5539F27E0F3AA50D320A24528D57D Certificate serial: 90 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bz4CYgDVU58n4POqUNMgokUo1X0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.mft Manifest number: 8E Signing time: Fri 05 Sep 2025 07:02:27 +0000 Manifest this update: Fri 05 Sep 2025 07:02:27 +0000 Manifest next update: Fri 12 Sep 2025 07:02:27 +0000 Files and hashes: 1: bz4CYgDVU58n4POqUNMgokUo1X0.crl (hash: qNDbYgWXCR5f1UVmlamsQXyRlJvXeCalkIovR6ATGRI=) 2: 31EC2E5CBAAB11EFA97B2C66C4F9AE02.roa (hash: QpBoEt1C2EBI43s0+/uUFeo0zNr6mDnCWlKa7GcSILU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.crl rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bz4CYgDVU58n4POqUNMgokUo1X0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 07:02:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 144 (0x90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B732A, serialNumber=6F3E026200D5539F27E0F3AA50D320A24528D57D Validity Not Before: Sep 5 07:02:27 2025 GMT Not After : Sep 12 07:02:27 2025 GMT Subject: CN=68ba8b03-9eac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f1:56:a4:ab:26:87:26:a2:09:de:a5:52:f2: a2:aa:35:a3:29:0a:41:7a:89:9c:a3:f5:0e:02:fb: 28:51:57:ff:86:68:d9:e8:09:90:7a:f8:1f:77:64: 45:4b:f1:0a:d1:34:63:4a:f2:ba:5a:77:74:a0:bb: 5f:04:3b:ea:8a:60:93:64:62:4d:9c:25:7b:8d:aa: 7c:15:e2:4c:81:d5:fa:d8:60:ee:e4:f9:57:a9:74: ff:03:e8:78:c3:1e:5a:6c:fe:b4:ff:f0:e8:4a:b0: 35:64:eb:f4:4e:43:a2:6f:2c:b8:cd:1b:15:a1:31: 64:22:22:73:de:75:d1:89:63:f0:ea:fe:7c:8c:5c: 49:02:64:b2:3c:2c:9d:1e:23:8c:71:ba:82:05:e1: e5:7b:f3:5f:5a:ab:b8:f3:12:38:d3:9c:ce:3c:39: ca:34:6f:15:aa:8f:99:b5:5c:75:f1:5d:8c:ca:5f: 59:49:39:85:27:8a:0d:d9:cd:56:30:d5:e9:13:a8: b0:33:f8:e5:9b:68:0a:6c:ef:07:ec:ad:c5:de:2e: 43:e7:de:44:1f:87:ae:b5:45:52:36:30:bf:98:4d: 10:25:de:e5:42:51:9d:2f:2c:03:6b:7d:86:53:2c: 2d:64:29:ef:65:d0:af:c6:c2:1c:e8:26:29:56:1b: 13:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:C8:4A:C9:E0:68:5B:30:8E:C7:51:C5:C5:70:33:91:64:C8:4E:0D X509v3 Authority Key Identifier: keyid:6F:3E:02:62:00:D5:53:9F:27:E0:F3:AA:50:D3:20:A2:45:28:D5:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bz4CYgDVU58n4POqUNMgokUo1X0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B732A/FFF2E6A8B63011EFA2D7FB63C4F9AE02/bz4CYgDVU58n4POqUNMgokUo1X0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:69:c9:24:de:8e:3e:c6:d7:67:c2:4f:50:82:83:d9:16:ab: 54:07:5e:58:3f:33:74:42:0e:4c:79:4f:5c:70:10:2d:9f:bd: 2e:62:80:1b:f7:16:3b:85:ac:ac:b6:a3:2c:57:50:7b:d9:fb: 12:bf:65:e6:fc:8a:b8:9e:66:b1:86:15:3c:c7:15:cd:41:bc: 48:38:e6:18:7f:d0:04:00:00:ac:74:81:a3:39:b8:0f:07:89: 36:a1:67:1f:90:a7:91:d6:85:0e:cd:00:a4:5b:6d:ed:39:99: 34:4a:1a:f8:23:29:ea:e8:d7:b2:d8:f6:9a:21:62:5c:55:af: 77:13:9a:fc:c8:66:0b:17:6c:a4:36:27:c0:1b:c7:b4:7e:b5: e2:4e:89:5b:a4:6f:67:05:87:d2:af:c7:b6:37:c7:47:56:db: ce:f8:7d:07:c1:2f:c0:84:1a:d4:8c:1f:d9:05:bc:c4:36:5b: ae:e1:29:f6:11:61:04:f3:b8:ab:5d:ea:17:86:07:96:53:f2: e3:0c:dc:8c:10:1a:e7:5b:64:54:db:19:e0:4c:6f:d4:7b:27: f5:ae:27:3d:3d:9a:1a:4f:10:60:12:7d:73:91:72:ea:03:8f: 4e:64:82:8a:e9:a8:e7:84:7c:5c:f8:fe:25:b8:e5:5f:55:d0: 52:40:98:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjczMkExMTAvBgNVBAUTKDZGM0UwMjYyMDBENTUzOUYyN0UwRjNBQTUwRDMyMEEy NDUyOEQ1N0QwHhcNMjUwOTA1MDcwMjI3WhcNMjUwOTEyMDcwMjI3WjAYMRYwFAYD VQQDEw02OGJhOGIwMy05ZWFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv/FWpKsmhyaiCd6lUvKiqjWjKQpBeomco/UOAvsoUVf/hmjZ6AmQevgfd2RF S/EK0TRjSvK6Wnd0oLtfBDvqimCTZGJNnCV7jap8FeJMgdX62GDu5PlXqXT/A+h4 wx5abP60//DoSrA1ZOv0TkOibyy4zRsVoTFkIiJz3nXRiWPw6v58jFxJAmSyPCyd HiOMcbqCBeHle/NfWqu48xI405zOPDnKNG8Vqo+ZtVx18V2Myl9ZSTmFJ4oN2c1W MNXpE6iwM/jlm2gKbO8H7K3F3i5D595EH4eutUVSNjC/mE0QJd7lQlGdLywDa32G UywtZCnvZdCvxsIc6CYpVhsTkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG7ISsng aFswjsdRxcVwM5FkyE4NMB8GA1UdIwQYMBaAFG8+AmIA1VOfJ+DzqlDTIKJFKNV9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzMyQS9GRkYyRTZBOEI2 MzAxMUVGQTJEN0ZCNjNDNEY5QUUwMi9iejRDWWdEVlU1OG40UE9xVU5NZ29rVW8x WDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2J6NENZZ0RWVTU4bjRQT3FVTk1nb2tVbzFYMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NzMyQS9GRkYyRTZBOEI2MzAxMUVGQTJEN0ZCNjNDNEY5QUUwMi9iejRDWWdEVlU1 OG40UE9xVU5NZ29rVW8xWDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0ackk3o4+xtdnwk9QgoPZFqtUB15YPzN0Qg5MeU9ccBAtn70uYoAb 9xY7haystqMsV1B72fsSv2Xm/Iq4nmaxhhU8xxXNQbxIOOYYf9AEAACsdIGjObgP B4k2oWcfkKeR1oUOzQCkW23tOZk0Shr4Iynq6Ney2PaaIWJcVa93E5r8yGYLF2yk NifAG8e0frXiTolbpG9nBYfSr8e2N8dHVtvO+H0HwS/AhBrUjB/ZBbzENluu4Sn2 EWEE87irXeoXhgeWU/LjDNyMEBrnW2RU2xngTG/Ueyf1ric9PZoaTxBgEn1zkXLq A49OZIKK6ajnhHxc+P4luOVfVdBSQJhb -----END CERTIFICATE-----Generated at Sat Sep 6 21:41:22 2025 by rpki-client