$ rpki-client -vvf rpki.apnic.net/member_repository/A91C95AA/156BD89E242711EDB3EA3480C4F9AE02/bJuWh9BeK1vlNhCaavm_-hmYc9Q.mft File: bJuWh9BeK1vlNhCaavm_-hmYc9Q.mft (raw, json) Hash identifier: h4U21YTxx080kZbkSfKHnibhtQ4e7anm33kqwFUMJoU= Subject key identifier: 5E:19:D3:E9:66:0C:12:3F:87:7D:DE:22:7E:53:82:DE:7A:4E:23:DC Authority key identifier: 6C:9B:96:87:D0:5E:2B:5B:E5:36:10:9A:6A:F9:BF:FA:19:98:73:D4 Certificate issuer: /CN=A91C95AA/serialNumber=6C9B9687D05E2B5BE536109A6AF9BFFA199873D4 Certificate serial: 0277 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bJuWh9BeK1vlNhCaavm_-hmYc9Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C95AA/156BD89E242711EDB3EA3480C4F9AE02/bJuWh9BeK1vlNhCaavm_-hmYc9Q.mft Manifest number: 0272 Signing time: Fri 05 Sep 2025 02:04:51 +0000 Manifest this update: Fri 05 Sep 2025 02:04:51 +0000 Manifest next update: Fri 12 Sep 2025 02:04:51 +0000 Files and hashes: 1: bJuWh9BeK1vlNhCaavm_-hmYc9Q.crl (hash: KImnX/Q4AxfRwVMi9K/b8zDESA5nbR52rRIsjYYEoPw=) 2: FB1F8158242A11ED9547B486C4F9AE02.roa (hash: F+DLJ1aQV5oLLpGFe5erh1ip1G2eNsPVMkZyfdufJjc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C95AA/156BD89E242711EDB3EA3480C4F9AE02/bJuWh9BeK1vlNhCaavm_-hmYc9Q.crl rsync://rpki.apnic.net/member_repository/A91C95AA/156BD89E242711EDB3EA3480C4F9AE02/bJuWh9BeK1vlNhCaavm_-hmYc9Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bJuWh9BeK1vlNhCaavm_-hmYc9Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 02:04:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 631 (0x277) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C95AA, serialNumber=6C9B9687D05E2B5BE536109A6AF9BFFA199873D4 Validity Not Before: Sep 5 02:04:51 2025 GMT Not After : Sep 12 02:04:51 2025 GMT Subject: CN=68ba4543-55d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d2:a7:65:11:20:ee:5a:32:40:8e:7f:90:f0: 5d:03:25:6d:b6:b9:3c:80:f7:3d:0f:05:26:77:aa: 73:d4:16:32:fb:b2:f7:e5:e2:4e:b9:75:f5:58:d2: 35:66:18:5f:8f:17:0e:1c:82:af:53:02:0c:02:3c: 80:43:d5:39:e4:ee:b3:8d:0f:93:fa:57:9c:9b:b7: 96:f0:7c:70:f0:f3:64:95:fb:e2:e1:6b:29:7d:61: 21:e6:a3:90:2f:47:ad:d4:c2:ad:1d:dc:c4:12:50: 96:87:c1:3b:5a:28:64:80:cc:c6:10:05:0e:2f:ad: 53:3a:c9:a5:e6:2c:9a:35:cb:84:9f:80:8d:df:83: 99:9e:55:98:73:67:61:a2:42:f5:32:cb:90:3e:d2: be:5e:09:52:a7:82:63:c2:0f:1e:dc:d6:4e:65:fc: 08:15:7c:2d:5c:73:29:8a:82:1f:be:d8:35:05:79: 0a:0e:64:1b:1f:d1:3d:77:c0:50:a6:bd:3d:6f:5c: 94:e8:4e:a9:42:07:e2:c4:2a:6d:84:bd:aa:3e:f0: 27:d9:86:50:e4:06:8e:ab:2c:59:17:0a:37:9c:43: f2:89:24:3d:cf:26:32:60:dd:e1:b3:a8:06:db:20: 2b:dc:47:16:14:a9:1e:cf:19:53:33:3b:94:36:9f: 13:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:19:D3:E9:66:0C:12:3F:87:7D:DE:22:7E:53:82:DE:7A:4E:23:DC X509v3 Authority Key Identifier: keyid:6C:9B:96:87:D0:5E:2B:5B:E5:36:10:9A:6A:F9:BF:FA:19:98:73:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C95AA/156BD89E242711EDB3EA3480C4F9AE02/bJuWh9BeK1vlNhCaavm_-hmYc9Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bJuWh9BeK1vlNhCaavm_-hmYc9Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C95AA/156BD89E242711EDB3EA3480C4F9AE02/bJuWh9BeK1vlNhCaavm_-hmYc9Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:3a:91:79:b4:96:e9:3e:3f:c1:18:38:ad:07:26:13:94:87: c4:38:37:dd:bf:ed:bd:11:92:a9:50:60:a3:18:4f:11:11:e7: f5:5a:ef:ef:ac:38:de:7c:ff:f9:8c:95:ae:5d:34:ba:76:c3: f1:82:35:c8:a4:a9:23:06:11:f2:0b:b1:40:c1:d3:35:a3:40: 41:1b:1e:de:fb:b6:a1:b0:9f:33:6a:b1:98:36:f1:3f:7a:f9: 01:a9:2b:75:1e:87:54:b1:f9:6e:aa:5b:15:74:ba:6d:c1:20: 86:7d:9e:89:76:23:37:ee:e8:15:b7:44:c1:2b:13:41:57:6f: a4:c1:42:ca:1b:b3:e7:d0:a2:97:d7:75:ae:d5:a1:c0:72:07: 0a:de:cb:18:ea:5a:60:59:a0:b7:6d:66:95:a7:63:c7:c6:a8: 33:50:f9:50:01:e1:67:bb:42:9b:6b:70:ca:3d:7e:2e:d9:8c: bc:62:38:80:21:ed:74:c6:a5:87:ef:c3:c5:aa:7a:2a:09:d9: 6e:80:56:0c:22:33:78:a0:e2:4a:4d:75:c7:6e:b4:50:15:fd: 7e:c2:60:60:3e:e0:0a:dd:12:aa:4b:7d:1f:79:7c:d4:f0:af: da:73:5f:23:dd:08:aa:ab:16:c3:1a:e4:f2:1b:1e:62:67:c7: aa:ca:4c:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAncwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk1QUExMTAvBgNVBAUTKDZDOUI5Njg3RDA1RTJCNUJFNTM2MTA5QTZBRjlCRkZB MTk5ODczRDQwHhcNMjUwOTA1MDIwNDUxWhcNMjUwOTEyMDIwNDUxWjAYMRYwFAYD VQQDEw02OGJhNDU0My01NWQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvtKnZREg7loyQI5/kPBdAyVttrk8gPc9DwUmd6pz1BYy+7L35eJOuXX1WNI1 ZhhfjxcOHIKvUwIMAjyAQ9U55O6zjQ+T+lecm7eW8Hxw8PNklfvi4WspfWEh5qOQ L0et1MKtHdzEElCWh8E7WihkgMzGEAUOL61TOsml5iyaNcuEn4CN34OZnlWYc2dh okL1MsuQPtK+XglSp4Jjwg8e3NZOZfwIFXwtXHMpioIfvtg1BXkKDmQbH9E9d8BQ pr09b1yU6E6pQgfixCpthL2qPvAn2YZQ5AaOqyxZFwo3nEPyiSQ9zyYyYN3hs6gG 2yAr3EcWFKkezxlTMzuUNp8TWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF4Z0+lm DBI/h33eIn5Tgt56TiPcMB8GA1UdIwQYMBaAFGyblofQXitb5TYQmmr5v/oZmHPU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTVBQS8xNTZCRDg5RTI0 MjcxMUVEQjNFQTM0ODBDNEY5QUUwMi9iSnVXaDlCZUsxdmxOaENhYXZtXy1obVlj OVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2JKdVdoOUJlSzF2bE5oQ2Fhdm1fLWhtWWM5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTVBQS8xNTZCRDg5RTI0MjcxMUVEQjNFQTM0ODBDNEY5QUUwMi9iSnVXaDlCZUsx dmxOaENhYXZtXy1obVljOVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQOpF5tJbpPj/BGDitByYTlIfEODfdv+29EZKpUGCjGE8REef1Wu/v rDjefP/5jJWuXTS6dsPxgjXIpKkjBhHyC7FAwdM1o0BBGx7e+7ahsJ8zarGYNvE/ evkBqSt1HodUsfluqlsVdLptwSCGfZ6JdiM37ugVt0TBKxNBV2+kwULKG7Pn0KKX 13Wu1aHAcgcK3ssY6lpgWaC3bWaVp2PHxqgzUPlQAeFnu0Kba3DKPX4u2Yy8YjiA Ie10xqWH78PFqnoqCdlugFYMIjN4oOJKTXXHbrRQFf1+wmBgPuAK3RKqS30feXzU 8K/ac18j3QiqqxbDGuTyGx5iZ8eqykxE -----END CERTIFICATE-----Generated at Sat Sep 6 15:19:19 2025 by rpki-client