$ rpki-client -vvf rpki.apnic.net/member_repository/A91BE056/003E1158D78B11EEA2EBD712C4F9AE02/fBlP7bilyMl2697IST3zw_CMyOI.mft File: fBlP7bilyMl2697IST3zw_CMyOI.mft (raw, json) Hash identifier: VE45xQuS96ge3JZM/+jvrXP+iZkrZhBMc40Jp6SWubo= Subject key identifier: D2:53:08:72:A6:EF:14:B7:B7:AC:C0:00:13:6B:7E:61:61:51:BC:B3 Authority key identifier: 7C:19:4F:ED:B8:A5:C8:C9:76:EB:DE:C8:49:3D:F3:C3:F0:8C:C8:E2 Certificate issuer: /CN=A91BE056/serialNumber=7C194FEDB8A5C8C976EBDEC8493DF3C3F08CC8E2 Certificate serial: 012B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fBlP7bilyMl2697IST3zw_CMyOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BE056/003E1158D78B11EEA2EBD712C4F9AE02/fBlP7bilyMl2697IST3zw_CMyOI.mft Manifest number: 0125 Signing time: Thu 04 Sep 2025 23:37:54 +0000 Manifest this update: Thu 04 Sep 2025 23:37:54 +0000 Manifest next update: Thu 11 Sep 2025 23:37:54 +0000 Files and hashes: 1: fBlP7bilyMl2697IST3zw_CMyOI.crl (hash: iev9WEPtqsfpB3UTpumXBvFucOVzr2jHGrb+cPYKmRo=) 2: C7AAEA76637311EF97465324C4F9AE02.roa (hash: 7qAgqeHaZPQYvPPHuv1+My9lZgN4hj2uJJ26C3QxuHc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BE056/003E1158D78B11EEA2EBD712C4F9AE02/fBlP7bilyMl2697IST3zw_CMyOI.crl rsync://rpki.apnic.net/member_repository/A91BE056/003E1158D78B11EEA2EBD712C4F9AE02/fBlP7bilyMl2697IST3zw_CMyOI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fBlP7bilyMl2697IST3zw_CMyOI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 23:37:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 299 (0x12b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BE056, serialNumber=7C194FEDB8A5C8C976EBDEC8493DF3C3F08CC8E2 Validity Not Before: Sep 4 23:37:54 2025 GMT Not After : Sep 11 23:37:54 2025 GMT Subject: CN=68ba22d2-7831 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:2c:4b:78:21:98:35:4d:44:ea:c6:2d:e8:a0: 08:d4:69:24:4a:5f:3b:ff:15:ac:9e:45:51:cf:ee: e3:99:59:da:59:d2:ac:f3:d9:76:8b:8e:dd:9e:bf: 8f:6c:03:b5:4c:82:50:69:ea:e3:04:b5:59:97:e1: 52:ef:7d:eb:eb:5d:fe:58:b2:b6:9e:77:30:e1:46: 6e:ca:22:59:db:30:0d:2e:bd:c0:2e:b4:2e:81:17: d2:fd:8c:86:22:da:1f:87:c9:93:df:eb:7c:78:33: b2:1e:b9:bf:b9:0d:80:c8:d1:69:48:ba:d6:4b:dc: e3:e1:b0:5b:e2:ee:35:4a:60:d8:18:bc:73:c3:38: af:02:5b:f2:0e:dd:58:39:97:24:af:ed:a8:b2:b0: f6:ef:e6:30:d5:f9:a7:35:a0:31:a1:b6:bf:b3:11: 40:82:92:95:16:8e:ac:09:85:43:f2:81:46:26:ce: bc:1b:08:14:e6:0b:68:a8:a6:f3:6a:5d:86:a1:de: 73:f1:76:1f:d1:37:b0:da:1a:8a:0e:d2:8f:e0:01: b7:4f:dc:78:19:00:19:32:1c:3f:33:1b:95:c0:61: 81:31:ce:7a:ce:60:83:e9:77:6c:bd:4e:29:0e:a9: 09:d2:cc:7d:71:5a:b0:9c:8d:87:78:1e:fd:9b:da: 44:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:53:08:72:A6:EF:14:B7:B7:AC:C0:00:13:6B:7E:61:61:51:BC:B3 X509v3 Authority Key Identifier: keyid:7C:19:4F:ED:B8:A5:C8:C9:76:EB:DE:C8:49:3D:F3:C3:F0:8C:C8:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BE056/003E1158D78B11EEA2EBD712C4F9AE02/fBlP7bilyMl2697IST3zw_CMyOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fBlP7bilyMl2697IST3zw_CMyOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BE056/003E1158D78B11EEA2EBD712C4F9AE02/fBlP7bilyMl2697IST3zw_CMyOI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:b2:7e:f1:71:40:5b:85:13:d7:1c:30:79:4a:45:9b:19:df: 09:26:2b:b1:ad:30:70:f4:51:56:81:0a:fa:ae:32:9c:2a:0a: 49:8f:54:4f:64:05:11:a7:c8:8e:30:b3:e2:a5:1e:46:7d:2c: 92:bb:83:cd:7d:7a:a0:b7:4d:21:0a:9f:b2:10:c9:91:0b:00: e7:cf:14:2d:1d:ac:e1:0a:db:00:a9:39:0b:7b:4f:e3:f1:ed: dd:d0:88:a7:2b:20:1d:c5:a6:d4:31:b3:ef:1e:3d:aa:ca:b1: 4f:47:96:fc:04:b0:e1:b9:94:72:fb:21:8a:aa:c2:72:c6:de: ed:89:f6:8c:32:a4:79:99:1e:64:57:0e:3c:a7:c9:70:ab:7b: 94:20:c1:7b:ad:78:3a:bc:36:93:35:45:b0:95:8e:25:f4:c3: dc:c5:89:8d:3f:04:1b:1b:82:ee:6b:15:cd:35:9b:3e:c8:cb: b8:5d:0e:f6:6b:e5:e7:ab:4e:5d:9c:de:5b:13:f0:d7:0a:5c: 88:17:86:9e:71:9d:1f:3b:50:4f:d1:15:f9:af:c9:2b:00:59: 53:2b:ae:51:a7:bb:30:5c:e4:e3:8b:6e:a1:7c:37:17:a8:c6: de:93:16:48:c8:93:70:20:46:67:65:8c:6b:cf:15:62:07:34: 21:91:90:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkUwNTYxMTAvBgNVBAUTKDdDMTk0RkVEQjhBNUM4Qzk3NkVCREVDODQ5M0RGM0Mz RjA4Q0M4RTIwHhcNMjUwOTA0MjMzNzU0WhcNMjUwOTExMjMzNzU0WjAYMRYwFAYD VQQDEw02OGJhMjJkMi03ODMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAryxLeCGYNU1E6sYt6KAI1GkkSl87/xWsnkVRz+7jmVnaWdKs89l2i47dnr+P bAO1TIJQaerjBLVZl+FS733r613+WLK2nncw4UZuyiJZ2zANLr3ALrQugRfS/YyG Itofh8mT3+t8eDOyHrm/uQ2AyNFpSLrWS9zj4bBb4u41SmDYGLxzwzivAlvyDt1Y OZckr+2osrD27+Yw1fmnNaAxoba/sxFAgpKVFo6sCYVD8oFGJs68GwgU5gtoqKbz al2God5z8XYf0Tew2hqKDtKP4AG3T9x4GQAZMhw/MxuVwGGBMc56zmCD6XdsvU4p DqkJ0sx9cVqwnI2HeB79m9pEtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNJTCHKm 7xS3t6zAABNrfmFhUbyzMB8GA1UdIwQYMBaAFHwZT+24pcjJduveyEk988PwjMji MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRTA1Ni8wMDNFMTE1OEQ3 OEIxMUVFQTJFQkQ3MTJDNEY5QUUwMi9mQmxQN2JpbHlNbDI2OTdJU1QzendfQ015 T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ZCbFA3YmlseU1sMjY5N0lTVDN6d19DTXlPSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RTA1Ni8wMDNFMTE1OEQ3OEIxMUVFQTJFQkQ3MTJDNEY5QUUwMi9mQmxQN2JpbHlN bDI2OTdJU1QzendfQ015T0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlsn7xcUBbhRPXHDB5SkWbGd8JJiuxrTBw9FFWgQr6rjKcKgpJj1RP ZAURp8iOMLPipR5GfSySu4PNfXqgt00hCp+yEMmRCwDnzxQtHazhCtsAqTkLe0/j 8e3d0IinKyAdxabUMbPvHj2qyrFPR5b8BLDhuZRy+yGKqsJyxt7tifaMMqR5mR5k Vw48p8lwq3uUIMF7rXg6vDaTNUWwlY4l9MPcxYmNPwQbG4LuaxXNNZs+yMu4XQ72 a+Xnq05dnN5bE/DXClyIF4aecZ0fO1BP0RX5r8krAFlTK65Rp7swXOTji26hfDcX qMbekxZIyJNwIEZnZYxrzxViBzQhkZCy -----END CERTIFICATE-----Generated at Fri Sep 5 11:54:54 2025 by rpki-client