$ rpki-client -vvf rpki.apnic.net/member_repository/A91C95AA/156BD89E242711EDB3EA3480C4F9AE02/bJuWh9BeK1vlNhCaavm_-hmYc9Q.mft File: bJuWh9BeK1vlNhCaavm_-hmYc9Q.mft (raw, json) Hash identifier: pU8RrqSbVx7E3B5VRnnGp5LBeD4tnAbb8hxMZWj4T1I= Subject key identifier: 0E:12:3B:21:69:3A:C7:89:76:31:84:C7:3A:4D:21:C7:8C:51:07:45 Authority key identifier: 6C:9B:96:87:D0:5E:2B:5B:E5:36:10:9A:6A:F9:BF:FA:19:98:73:D4 Certificate issuer: /CN=A91C95AA/serialNumber=6C9B9687D05E2B5BE536109A6AF9BFFA199873D4 Certificate serial: 025E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bJuWh9BeK1vlNhCaavm_-hmYc9Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C95AA/156BD89E242711EDB3EA3480C4F9AE02/bJuWh9BeK1vlNhCaavm_-hmYc9Q.mft Manifest number: 0259 Signing time: Sat 19 Jul 2025 02:14:07 +0000 Manifest this update: Sat 19 Jul 2025 02:14:07 +0000 Manifest next update: Sat 26 Jul 2025 02:14:07 +0000 Files and hashes: 1: bJuWh9BeK1vlNhCaavm_-hmYc9Q.crl (hash: 2+zZIGj7AFpPFqSqFsKvImb8ZBHpspisc/qQLWvWVj0=) 2: FB1F8158242A11ED9547B486C4F9AE02.roa (hash: F+DLJ1aQV5oLLpGFe5erh1ip1G2eNsPVMkZyfdufJjc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C95AA/156BD89E242711EDB3EA3480C4F9AE02/bJuWh9BeK1vlNhCaavm_-hmYc9Q.crl rsync://rpki.apnic.net/member_repository/A91C95AA/156BD89E242711EDB3EA3480C4F9AE02/bJuWh9BeK1vlNhCaavm_-hmYc9Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bJuWh9BeK1vlNhCaavm_-hmYc9Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 02:14:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 606 (0x25e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C95AA, serialNumber=6C9B9687D05E2B5BE536109A6AF9BFFA199873D4 Validity Not Before: Jul 19 02:14:07 2025 GMT Not After : Jul 26 02:14:07 2025 GMT Subject: CN=687aff6f-6578 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:97:eb:3e:fa:ee:63:1c:80:b0:0b:67:12:cf: 7f:9b:e3:5a:98:1b:eb:8c:6e:33:a7:4d:60:b8:2f: 51:4e:09:93:a4:0f:0a:7b:67:8b:3a:d6:a0:d7:b8: bf:81:89:9f:55:ad:18:a7:ae:14:b8:63:bf:1c:d2: 1f:a2:9e:f0:8f:24:0f:d6:2c:b3:52:d4:e8:3b:48: 2e:3c:f6:da:8c:d5:7a:05:1f:81:fe:fc:c6:65:07: d9:1e:a4:ba:9d:ad:c7:1a:04:e6:09:98:21:81:ba: fe:6f:a7:f2:55:aa:63:9c:6d:d0:51:68:02:a2:5e: 38:5b:98:1e:22:8a:b7:86:d1:05:b0:33:2d:7a:0d: 42:15:da:89:76:c6:2b:44:2e:b4:2e:54:91:8f:d3: a4:e8:23:0e:d8:c5:4d:5f:80:82:51:d7:ec:f1:ed: 0b:09:aa:b9:04:78:25:30:d5:04:34:d8:53:6d:1e: ce:da:2f:ff:98:05:30:eb:06:c8:7a:a1:d7:25:03: 09:07:09:e8:ec:9e:97:4f:5a:cb:89:e9:01:96:f4: 2a:87:8a:6a:cd:9f:77:83:4e:fa:cd:25:c8:22:11: ea:fc:86:12:e8:1a:d0:89:c7:81:c8:3b:41:3f:d0: fb:0e:42:4c:13:41:93:c9:57:91:5d:8d:3b:d0:19: 8f:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:12:3B:21:69:3A:C7:89:76:31:84:C7:3A:4D:21:C7:8C:51:07:45 X509v3 Authority Key Identifier: keyid:6C:9B:96:87:D0:5E:2B:5B:E5:36:10:9A:6A:F9:BF:FA:19:98:73:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C95AA/156BD89E242711EDB3EA3480C4F9AE02/bJuWh9BeK1vlNhCaavm_-hmYc9Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bJuWh9BeK1vlNhCaavm_-hmYc9Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C95AA/156BD89E242711EDB3EA3480C4F9AE02/bJuWh9BeK1vlNhCaavm_-hmYc9Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:59:ec:e8:a4:d8:b5:cb:8b:0a:eb:1f:56:10:e6:fc:6e:da: c8:62:3b:69:02:25:6b:44:48:aa:f5:eb:44:9b:3e:5d:9c:a3: d1:5b:7e:7b:e3:14:f2:f9:64:fc:57:65:16:fc:8a:bf:c4:94: e7:99:ad:38:98:28:5f:32:7a:7f:ba:d8:b2:48:0e:ce:e7:16: 64:24:60:d1:9a:cb:1f:62:43:65:c3:e9:1d:9d:a0:62:a1:1e: 64:e3:0e:a5:cf:a4:b0:1d:0a:d0:cd:c1:b7:16:11:da:00:e4: 35:bc:0e:a5:e3:6d:5d:4d:79:8d:d4:3f:77:26:29:45:0c:05: 00:6d:9a:b9:3c:21:5d:02:fe:47:fc:e1:58:20:5c:a3:e2:bb: 30:aa:f6:62:14:41:a0:44:3f:3e:60:9e:12:19:a1:ab:79:9e: 2e:6b:60:30:52:32:3c:cd:4e:40:8b:a4:ed:d7:d7:aa:c4:f3: fc:19:16:da:e0:99:2f:0d:ba:cb:29:2f:8d:77:b4:63:5a:6f: 7a:6b:29:63:70:a5:69:e2:b4:56:af:ad:38:f9:7c:e9:97:f9: ce:91:9e:a4:e1:74:25:9a:4f:a0:6d:53:3e:7e:b6:6b:f7:40: 01:2b:c4:66:09:77:8f:5c:67:67:61:e2:56:23:f9:fe:a8:68: 67:9a:a7:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAl4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk1QUExMTAvBgNVBAUTKDZDOUI5Njg3RDA1RTJCNUJFNTM2MTA5QTZBRjlCRkZB MTk5ODczRDQwHhcNMjUwNzE5MDIxNDA3WhcNMjUwNzI2MDIxNDA3WjAYMRYwFAYD VQQDEw02ODdhZmY2Zi02NTc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo5frPvruYxyAsAtnEs9/m+NamBvrjG4zp01guC9RTgmTpA8Ke2eLOtag17i/ gYmfVa0Yp64UuGO/HNIfop7wjyQP1iyzUtToO0guPPbajNV6BR+B/vzGZQfZHqS6 na3HGgTmCZghgbr+b6fyVapjnG3QUWgCol44W5geIoq3htEFsDMteg1CFdqJdsYr RC60LlSRj9Ok6CMO2MVNX4CCUdfs8e0LCaq5BHglMNUENNhTbR7O2i//mAUw6wbI eqHXJQMJBwno7J6XT1rLiekBlvQqh4pqzZ93g076zSXIIhHq/IYS6BrQiceByDtB P9D7DkJME0GTyVeRXY070BmPfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA4SOyFp OseJdjGExzpNIceMUQdFMB8GA1UdIwQYMBaAFGyblofQXitb5TYQmmr5v/oZmHPU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTVBQS8xNTZCRDg5RTI0 MjcxMUVEQjNFQTM0ODBDNEY5QUUwMi9iSnVXaDlCZUsxdmxOaENhYXZtXy1obVlj OVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2JKdVdoOUJlSzF2bE5oQ2Fhdm1fLWhtWWM5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTVBQS8xNTZCRDg5RTI0MjcxMUVEQjNFQTM0ODBDNEY5QUUwMi9iSnVXaDlCZUsx dmxOaENhYXZtXy1obVljOVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIWezopNi1y4sK6x9WEOb8btrIYjtpAiVrREiq9etEmz5dnKPRW357 4xTy+WT8V2UW/Iq/xJTnma04mChfMnp/utiySA7O5xZkJGDRmssfYkNlw+kdnaBi oR5k4w6lz6SwHQrQzcG3FhHaAOQ1vA6l421dTXmN1D93JilFDAUAbZq5PCFdAv5H /OFYIFyj4rswqvZiFEGgRD8+YJ4SGaGreZ4ua2AwUjI8zU5Ai6Tt19eqxPP8GRba 4JkvDbrLKS+Nd7RjWm96ayljcKVp4rRWr604+Xzpl/nOkZ6k4XQlmk+gbVM+frZr 90ABK8RmCXePXGdnYeJWI/n+qGhnmqfH -----END CERTIFICATE-----Generated at Mon Jul 21 00:32:03 2025 by rpki-client