$ rpki-client -vvf rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.mft File: bLMNwI7ylzDp3wScVPOVgquFvpQ.mft (raw, json) Hash identifier: 7x8h6ilXUYyS4NT8ogSujBQMQjx6w1GeUZ91TESqgnE= Subject key identifier: E2:90:AA:F3:4B:4F:C5:9E:F9:39:93:D7:AA:16:C7:F9:2E:79:67:01 Authority key identifier: 6C:B3:0D:C0:8E:F2:97:30:E9:DF:04:9C:54:F3:95:82:AB:85:BE:94 Certificate issuer: /CN=A91C40D1/serialNumber=6CB30DC08EF29730E9DF049C54F39582AB85BE94 Certificate serial: 12E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLMNwI7ylzDp3wScVPOVgquFvpQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.mft Manifest number: 12DD Signing time: Sun 24 Aug 2025 17:01:36 +0000 Manifest this update: Sun 24 Aug 2025 17:01:36 +0000 Manifest next update: Sun 31 Aug 2025 17:01:36 +0000 Files and hashes: 1: bLMNwI7ylzDp3wScVPOVgquFvpQ.crl (hash: tGmElrmhDxqYk8uqyVDj7gJK9HssIWmY6fP5jNA9aBA=) 2: 18272628C30B11E8A6851824C4F9AE02.roa (hash: zhAB02c7MO6g0ZjU60Q0NOMxZrMu/KXiBvCTRD/ktbM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.crl rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLMNwI7ylzDp3wScVPOVgquFvpQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 17:01:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4840 (0x12e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C40D1, serialNumber=6CB30DC08EF29730E9DF049C54F39582AB85BE94 Validity Not Before: Aug 24 17:01:36 2025 GMT Not After : Aug 31 17:01:36 2025 GMT Subject: CN=68ab4570-b360 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:ce:26:d7:d0:5e:f0:4c:0b:18:9a:ce:a2:29: 63:18:50:17:da:c6:a2:b7:fc:bf:b0:66:ba:57:a4: fa:fb:a6:5a:56:5a:74:40:97:fd:38:3c:05:77:40: 10:54:31:4e:d0:e3:4a:a5:a9:d5:74:01:b5:17:a7: b3:db:da:f7:d8:4d:22:1e:8c:25:c3:16:59:b2:e8: fe:8c:31:07:dc:89:04:2a:99:d3:d8:92:c2:3b:bf: c9:6a:a3:9a:1e:92:21:05:83:31:85:df:4a:d7:2d: 0d:ba:f4:fc:eb:8f:9e:72:22:58:03:09:79:01:82: ad:64:02:ef:ca:94:a6:6a:33:60:a2:5f:22:86:39: fb:12:51:58:f5:99:2e:44:0d:7c:eb:2b:45:bf:f2: 4c:1e:c2:9c:7b:7a:47:e2:b1:88:18:79:0e:a5:0b: 71:26:5f:b5:b5:07:a2:04:a9:65:b5:0f:51:b8:2c: 48:f0:8e:85:ed:f1:cc:ac:e4:35:58:77:d2:c8:a6: e8:0d:3a:74:7e:0f:9c:c5:2d:1e:f6:21:cd:5e:47: 94:fa:5b:f2:8f:7a:8d:31:be:c5:2c:34:37:88:2b: 36:41:79:d7:22:7b:da:82:9a:94:0c:ff:a8:75:e1: e9:c6:83:f5:9b:90:19:86:55:37:39:77:be:e9:91: d8:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:90:AA:F3:4B:4F:C5:9E:F9:39:93:D7:AA:16:C7:F9:2E:79:67:01 X509v3 Authority Key Identifier: keyid:6C:B3:0D:C0:8E:F2:97:30:E9:DF:04:9C:54:F3:95:82:AB:85:BE:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLMNwI7ylzDp3wScVPOVgquFvpQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C40D1/CC7830B0C30911E8900E5F21C4F9AE02/bLMNwI7ylzDp3wScVPOVgquFvpQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:fb:69:b3:e2:29:31:61:0d:79:19:c7:09:6d:73:2b:26:9d: 38:df:34:84:f5:b3:4e:ce:95:18:92:d7:31:37:9a:33:1a:61: ee:c4:63:ff:96:47:63:da:e8:91:56:04:1c:f2:8e:f4:a7:ca: 5f:b4:36:ce:10:4f:c1:96:ff:f2:0d:99:6e:e7:56:bb:ae:31: 22:2f:8f:d5:e1:64:43:77:6b:6f:38:9e:92:2b:f4:99:b1:39: f1:f5:96:20:2f:61:40:16:1f:87:3b:3a:0a:57:8d:41:5d:7a: e6:5d:dc:e5:8f:83:77:56:a6:b0:9c:84:87:d4:83:ce:8b:64: dc:85:c9:5d:7a:32:b3:b5:3a:96:e6:25:2e:5e:dd:f1:04:80: 3d:3c:25:78:d1:36:39:15:bd:42:ac:b1:cd:20:a2:09:6c:62: 21:a4:2e:61:a0:a9:13:6b:2c:a0:ec:68:7e:e6:c6:dd:02:73: 21:66:5d:f1:8c:35:ef:ed:d9:86:8f:6e:48:23:c1:2e:88:37: 78:4b:c8:ae:19:b1:f3:2c:8a:2a:18:fb:c7:ce:13:fa:82:25: 4b:6b:a2:9c:ed:e5:9a:59:08:ed:f9:09:ea:dd:f5:c0:8b:04: e1:1a:7c:16:6b:99:bd:7d:bf:01:17:48:71:6d:91:70:a8:3b: ee:53:94:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEugwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQwRDExMTAvBgNVBAUTKDZDQjMwREMwOEVGMjk3MzBFOURGMDQ5QzU0RjM5NTgy QUI4NUJFOTQwHhcNMjUwODI0MTcwMTM2WhcNMjUwODMxMTcwMTM2WjAYMRYwFAYD VQQDEw02OGFiNDU3MC1iMzYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0s4m19Be8EwLGJrOoiljGFAX2sait/y/sGa6V6T6+6ZaVlp0QJf9ODwFd0AQ VDFO0ONKpanVdAG1F6ez29r32E0iHowlwxZZsuj+jDEH3IkEKpnT2JLCO7/JaqOa HpIhBYMxhd9K1y0NuvT864+eciJYAwl5AYKtZALvypSmajNgol8ihjn7ElFY9Zku RA186ytFv/JMHsKce3pH4rGIGHkOpQtxJl+1tQeiBKlltQ9RuCxI8I6F7fHMrOQ1 WHfSyKboDTp0fg+cxS0e9iHNXkeU+lvyj3qNMb7FLDQ3iCs2QXnXInvagpqUDP+o deHpxoP1m5AZhlU3OXe+6ZHYoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOKQqvNL T8We+TmT16oWx/kueWcBMB8GA1UdIwQYMBaAFGyzDcCO8pcw6d8EnFTzlYKrhb6U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDBEMS9DQzc4MzBCMEMz MDkxMUU4OTAwRTVGMjFDNEY5QUUwMi9iTE1Od0k3eWx6RHAzd1NjVlBPVmdxdUZ2 cFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JMTU53STd5bHpEcDN3U2NWUE9WZ3F1RnZwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDBEMS9DQzc4MzBCMEMzMDkxMUU4OTAwRTVGMjFDNEY5QUUwMi9iTE1Od0k3eWx6 RHAzd1NjVlBPVmdxdUZ2cFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAU+2mz4ikxYQ15GccJbXMrJp043zSE9bNOzpUYktcxN5ozGmHuxGP/ lkdj2uiRVgQc8o70p8pftDbOEE/Blv/yDZlu51a7rjEiL4/V4WRDd2tvOJ6SK/SZ sTnx9ZYgL2FAFh+HOzoKV41BXXrmXdzlj4N3VqawnISH1IPOi2TchcldejKztTqW 5iUuXt3xBIA9PCV40TY5Fb1CrLHNIKIJbGIhpC5hoKkTayyg7Gh+5sbdAnMhZl3x jDXv7dmGj25II8EuiDd4S8iuGbHzLIoqGPvHzhP6giVLa6Kc7eWaWQjt+Qnq3fXA iwThGnwWa5m9fb8BF0hxbZFwqDvuU5Q4 -----END CERTIFICATE-----Generated at Sun Aug 24 22:18:28 2025 by rpki-client