$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft File: bb1cTQEh_LMY54xFG29WcyCYYAI.mft (raw, json) Hash identifier: r1GhMCgSfdcwAEVGZQYZTZd5+duq+GvOvEIB85cT+bM= Subject key identifier: 21:1A:D6:F8:09:35:80:E4:09:34:B6:14:A4:1B:44:67:AA:E1:BA:7D Authority key identifier: 6D:BD:5C:4D:01:21:FC:B3:18:E7:8C:45:1B:6F:56:73:20:98:60:02 Certificate issuer: /CN=A91D1216/serialNumber=6DBD5C4D0121FCB318E78C451B6F567320986002 Certificate serial: 03F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft Manifest number: 03BD Signing time: Sun 07 Sep 2025 01:14:54 +0000 Manifest this update: Sun 07 Sep 2025 01:14:53 +0000 Manifest next update: Sun 14 Sep 2025 01:14:53 +0000 Files and hashes: 1: bb1cTQEh_LMY54xFG29WcyCYYAI.crl (hash: GtFasIrWBkXXW+I8YhAcsxyu7cQUEraFb45qN4YyRAU=) 2: AEE9F9E6326011ED9031BC4FC4F9AE02.roa (hash: uzprXmLZAeVeFEFGMakzKpKMKq1iIlqcTuQSaK0YrGo=) 3: AD17704445F611EE97DF317CC4F9AE02.roa (hash: sdrVSjIs8Qd6YgjT3RuNMeG76kE1PDfBoWYkgwiCgcM=) 4: 943D15902D1011EFBBEBA67BC4F9AE02.roa (hash: r7+Epywiay/UAmGWjEXTbZ6MxuYjSj6zJi2sl5IN5FE=) 5: 9B0C244C73B611EEB18A0385C4F9AE02.roa (hash: YgWtLAFjeyb8EUf6jgk5P6z3rHF4ij9vs7WYRKlGxPw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.crl rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 01:14:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1009 (0x3f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1216, serialNumber=6DBD5C4D0121FCB318E78C451B6F567320986002 Validity Not Before: Sep 7 01:14:53 2025 GMT Not After : Sep 14 01:14:53 2025 GMT Subject: CN=68bcdc8e-7ada Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c1:8e:1a:7f:fd:cf:ad:48:bc:0d:37:19:68: f7:1d:a7:fd:78:d8:ae:56:30:ed:19:f3:9c:59:cf: a1:4a:c8:c4:20:7f:47:22:54:dc:80:32:89:ea:a5: b6:36:99:78:9d:1a:9d:34:15:f8:ac:42:2a:39:04: 96:c4:5e:b7:a3:2f:14:e9:36:8a:64:9d:9e:2f:e8: 05:ad:64:07:7d:af:c5:ef:9c:4d:ed:06:4a:78:ed: 3c:51:c6:52:06:3d:3d:7f:2b:05:fd:1f:4c:c9:57: f4:ea:58:53:15:1f:a4:8f:21:2a:0a:fd:43:8d:d2: ad:81:2b:1d:ab:91:d8:a1:ea:70:a4:0b:94:a9:62: 21:5c:ad:cd:52:ae:d3:6d:e9:04:1f:c0:b5:01:f5: ee:a8:68:43:ec:3a:a2:a3:66:ff:77:58:92:71:e0: bb:c7:df:03:c6:88:97:88:e5:e9:dc:b3:27:fb:1d: ac:a0:66:5e:f7:9c:07:58:94:5a:53:17:35:36:b6: 23:38:7e:30:ec:7a:17:24:99:26:49:7f:c5:51:b4: 93:48:eb:6e:7a:1a:1e:6a:b7:62:49:cd:cd:91:a3: fb:e4:70:d8:cb:4c:c4:59:3d:df:4d:8e:69:e8:cc: 51:a6:57:02:e1:be:57:c8:b1:00:96:5d:9c:ad:44: ec:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:1A:D6:F8:09:35:80:E4:09:34:B6:14:A4:1B:44:67:AA:E1:BA:7D X509v3 Authority Key Identifier: keyid:6D:BD:5C:4D:01:21:FC:B3:18:E7:8C:45:1B:6F:56:73:20:98:60:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:59:b8:7e:3d:bb:48:65:56:1c:53:a1:19:87:22:16:b4:34: 12:6f:86:47:0f:de:94:fd:b5:b7:28:2d:c5:75:7c:4c:d7:f9: b9:f2:fd:e1:4c:d3:b9:35:ca:7e:04:db:2f:35:80:6e:ad:74: 17:47:a4:66:3e:c4:be:9d:4c:ff:ae:ba:a7:1a:98:d0:a3:92: a6:44:26:89:cf:ca:bb:33:18:03:09:a9:ad:11:65:30:8c:d3: 4a:21:55:49:26:50:00:3e:33:29:e6:b6:72:a1:c1:e4:db:5e: bb:e1:3a:9a:24:d0:de:ad:4e:af:ac:2d:69:38:bd:a3:9d:00: 4e:ce:68:43:62:16:2a:4a:d1:69:d8:f2:14:d8:b9:72:f6:8d: 39:3c:dd:69:ad:01:4c:e9:a5:9f:6e:ad:b5:6c:13:a0:37:da: 8d:3a:01:c1:80:86:b6:ed:7e:21:88:39:25:a1:e3:53:32:43: 1e:9d:6b:57:d5:c0:ae:ce:9a:27:fb:47:9f:b3:5b:8a:a8:0c: 1d:97:86:e4:04:a5:4e:65:ef:6a:79:ee:4f:78:62:6d:fe:14: 39:fa:96:1f:fa:67:a7:e8:21:ce:ab:4a:06:d7:ca:64:13:1d: f0:38:0a:e6:e2:fa:39:6c:cb:9c:33:20:74:c1:ac:de:8d:a4: 24:d7:f2:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDEyMTYxMTAvBgNVBAUTKDZEQkQ1QzREMDEyMUZDQjMxOEU3OEM0NTFCNkY1Njcz MjA5ODYwMDIwHhcNMjUwOTA3MDExNDUzWhcNMjUwOTE0MDExNDUzWjAYMRYwFAYD VQQDEw02OGJjZGM4ZS03YWRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu8GOGn/9z61IvA03GWj3Haf9eNiuVjDtGfOcWc+hSsjEIH9HIlTcgDKJ6qW2 Npl4nRqdNBX4rEIqOQSWxF63oy8U6TaKZJ2eL+gFrWQHfa/F75xN7QZKeO08UcZS Bj09fysF/R9MyVf06lhTFR+kjyEqCv1DjdKtgSsdq5HYoepwpAuUqWIhXK3NUq7T bekEH8C1AfXuqGhD7Dqio2b/d1iSceC7x98DxoiXiOXp3LMn+x2soGZe95wHWJRa Uxc1NrYjOH4w7HoXJJkmSX/FUbSTSOtuehoeardiSc3NkaP75HDYy0zEWT3fTY5p 6MxRplcC4b5XyLEAll2crUTsxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCEa1vgJ NYDkCTS2FKQbRGeq4bp9MB8GA1UdIwQYMBaAFG29XE0BIfyzGOeMRRtvVnMgmGAC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTIxNi9EQzc4MjY4Q0I5 NEIxMUVDODMyQjc0MTlDNEY5QUUwMi9iYjFjVFFFaF9MTVk1NHhGRzI5V2N5Q1lZ QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JiMWNUUUVoX0xNWTU0eEZHMjlXY3lDWVlBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTIxNi9EQzc4MjY4Q0I5NEIxMUVDODMyQjc0MTlDNEY5QUUwMi9iYjFjVFFFaF9M TVk1NHhGRzI5V2N5Q1lZQUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlWbh+PbtIZVYcU6EZhyIWtDQSb4ZHD96U/bW3KC3FdXxM1/m58v3h TNO5Ncp+BNsvNYBurXQXR6RmPsS+nUz/rrqnGpjQo5KmRCaJz8q7MxgDCamtEWUw jNNKIVVJJlAAPjMp5rZyocHk21674TqaJNDerU6vrC1pOL2jnQBOzmhDYhYqStFp 2PIU2Lly9o05PN1prQFM6aWfbq21bBOgN9qNOgHBgIa27X4hiDkloeNTMkMenWtX 1cCuzpon+0efs1uKqAwdl4bkBKVOZe9qee5PeGJt/hQ5+pYf+men6CHOq0oG18pk Ex3wOArm4vo5bMucMyB0wazejaQk1/JA -----END CERTIFICATE-----Generated at Mon Sep 8 14:06:31 2025 by rpki-client