$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft File: bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft (raw, json) Hash identifier: iK3qH8Ayf8FBzrIux84WHshLnxQ6Xp1bZbgGARFaF0g= Subject key identifier: F6:60:0A:50:24:E3:B4:A5:8B:BB:55:69:6A:4F:A2:8B:B8:14:84:C9 Authority key identifier: 6C:19:46:97:81:6F:9B:13:0B:A5:3C:F4:BE:E6:76:01:59:4E:8C:B1 Certificate issuer: /CN=A91CCAF1/serialNumber=6C194697816F9B130BA53CF4BEE67601594E8CB1 Certificate serial: AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft Manifest number: AA Signing time: Tue 09 Sep 2025 06:15:24 +0000 Manifest this update: Tue 09 Sep 2025 06:15:23 +0000 Manifest next update: Tue 16 Sep 2025 06:15:23 +0000 Files and hashes: 1: bBlGl4FvmxMLpTz0vuZ2AVlOjLE.crl (hash: a6bLau/7aEvyyAUf8BsnHmNTcxgijXNZlVIWd9ePBy4=) 2: BF71D9D0F26811EFBC446868C4F9AE02.roa (hash: 7+qKEqRnu4TPJKKakjwpNT1iFIHMXPBmy/g9UJm3iJo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.crl rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 06:15:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 171 (0xab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CCAF1, serialNumber=6C194697816F9B130BA53CF4BEE67601594E8CB1 Validity Not Before: Sep 9 06:15:23 2025 GMT Not After : Sep 16 06:15:23 2025 GMT Subject: CN=68bfc5fb-d1cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d2:19:24:1f:1c:e0:3f:29:a1:3f:96:da:40: 12:69:d2:d4:30:9e:ca:10:ad:13:ba:da:14:0c:5e: 3a:a6:90:e3:81:5b:31:b2:eb:aa:ce:3a:ac:11:26: 4e:bc:22:92:00:cc:af:ae:e4:1f:23:0e:8b:d8:55: da:b6:0b:4c:14:1f:1c:27:47:69:f9:3c:0e:2a:f4: c3:f5:19:63:74:23:98:7d:81:f7:df:89:a9:8d:e5: 2c:b1:51:ea:5c:be:02:48:69:bf:79:cc:44:9c:66: 9c:e8:4e:f0:dc:f3:00:24:34:93:2c:08:70:67:88: 51:d9:fd:a8:ea:e9:b1:87:71:6d:e4:d9:86:5e:67: 22:dd:09:fc:6e:42:59:4b:5b:55:f3:3f:53:65:fc: a7:cb:a5:b2:55:60:bf:a3:60:a7:6a:4f:0a:24:e3: 10:60:25:42:bb:a5:bd:83:ff:48:74:01:f0:a0:b4: 9a:28:bb:99:88:75:23:ed:44:d5:34:d3:e6:25:08: 58:ed:6e:14:af:1e:32:2e:25:9d:21:b6:2f:f4:46: f7:85:a7:bc:e0:11:9d:8f:11:df:e3:f2:bd:e8:6d: fa:1c:b3:dd:94:84:03:84:d2:1d:61:fa:ba:8f:e0: 8a:ea:18:da:71:a7:07:46:bb:86:80:fb:91:3f:91: f6:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:60:0A:50:24:E3:B4:A5:8B:BB:55:69:6A:4F:A2:8B:B8:14:84:C9 X509v3 Authority Key Identifier: keyid:6C:19:46:97:81:6F:9B:13:0B:A5:3C:F4:BE:E6:76:01:59:4E:8C:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:9f:fe:57:c6:dd:96:20:a1:19:0d:a5:7d:30:c6:3b:d5:09: d0:05:ad:6e:5a:bb:94:50:4f:9d:a8:b2:55:7f:7a:0f:0d:13: f2:eb:b1:4e:14:73:89:00:1e:3b:15:8e:81:79:fa:00:2c:fb: 6d:e8:87:a1:8b:99:ad:2e:d4:72:0c:1d:4d:52:03:d3:d9:9c: 18:27:8f:8e:b9:20:d7:d1:1e:0b:b6:9f:00:9d:c7:ed:d9:1e: f7:5f:a1:bc:25:84:83:82:87:14:4d:da:23:12:63:ce:04:ff: 34:a2:ac:c2:f4:e4:83:e3:52:fc:61:84:1b:8c:e8:6b:a4:a2: c6:22:07:70:63:55:1b:6c:dc:05:7c:ba:05:c9:b7:5d:3c:65: bb:f7:4e:83:13:31:73:25:98:6d:11:84:03:3e:ae:f3:48:0a: 9c:7b:38:a5:e9:86:27:d8:3c:c3:8c:50:c6:e0:25:64:2b:56: 5d:00:e2:8b:0a:1c:b4:4d:c6:fe:15:ab:a4:7f:95:eb:25:6a: f0:cf:15:72:d3:cf:95:bb:0b:48:53:57:f2:7e:db:1e:18:40: 0d:a3:e4:6d:d1:0a:2f:31:d5:ce:2f:65:28:9b:c8:0e:c2:36: d9:6b:85:bf:2e:77:17:41:44:37:85:a1:8b:11:9f:e7:ad:9a: a7:b1:de:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0NBRjExMTAvBgNVBAUTKDZDMTk0Njk3ODE2RjlCMTMwQkE1M0NGNEJFRTY3NjAx NTk0RThDQjEwHhcNMjUwOTA5MDYxNTIzWhcNMjUwOTE2MDYxNTIzWjAYMRYwFAYD VQQDEw02OGJmYzVmYi1kMWNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAudIZJB8c4D8poT+W2kASadLUMJ7KEK0TutoUDF46ppDjgVsxsuuqzjqsESZO vCKSAMyvruQfIw6L2FXatgtMFB8cJ0dp+TwOKvTD9RljdCOYfYH334mpjeUssVHq XL4CSGm/ecxEnGac6E7w3PMAJDSTLAhwZ4hR2f2o6umxh3Ft5NmGXmci3Qn8bkJZ S1tV8z9TZfyny6WyVWC/o2Cnak8KJOMQYCVCu6W9g/9IdAHwoLSaKLuZiHUj7UTV NNPmJQhY7W4Urx4yLiWdIbYv9Eb3hae84BGdjxHf4/K96G36HLPdlIQDhNIdYfq6 j+CK6hjacacHRruGgPuRP5H2VwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPZgClAk 47Sli7tVaWpPoou4FITJMB8GA1UdIwQYMBaAFGwZRpeBb5sTC6U89L7mdgFZToyx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQ0FGMS8wOUMwRDM2NjhB QUQxMUVGQkVGOTE2NkFDNEY5QUUwMi9iQmxHbDRGdm14TUxwVHowdnVaMkFWbE9q TEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JCbEdsNEZ2bXhNTHBUejB2dVoyQVZsT2pMRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Q0FGMS8wOUMwRDM2NjhBQUQxMUVGQkVGOTE2NkFDNEY5QUUwMi9iQmxHbDRGdm14 TUxwVHowdnVaMkFWbE9qTEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKn/5Xxt2WIKEZDaV9MMY71QnQBa1uWruUUE+dqLJVf3oPDRPy67FO FHOJAB47FY6BefoALPtt6Iehi5mtLtRyDB1NUgPT2ZwYJ4+OuSDX0R4Ltp8Ancft 2R73X6G8JYSDgocUTdojEmPOBP80oqzC9OSD41L8YYQbjOhrpKLGIgdwY1UbbNwF fLoFybddPGW7906DEzFzJZhtEYQDPq7zSAqcezil6YYn2DzDjFDG4CVkK1ZdAOKL Chy0Tcb+Faukf5XrJWrwzxVy08+VuwtIU1fyftseGEANo+Rt0QovMdXOL2Uom8gO wjbZa4W/LncXQUQ3haGLEZ/nrZqnsd4D -----END CERTIFICATE-----Generated at Tue Sep 9 09:12:58 2025 by rpki-client