$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD468/5B4A33C68C8F11EDBC8A6114C4F9AE02/7Tl4HnyiYyxUt_riJU4h8Bugdoc.mft File: 7Tl4HnyiYyxUt_riJU4h8Bugdoc.mft (raw, json) Hash identifier: a4ZpN5b3B75yPx9PYcHGZxY07zkrVK55REf7qcBsMxY= Subject key identifier: 7C:0D:11:6E:3E:83:52:EB:61:5E:B8:AF:FA:E7:D5:17:9C:70:45:2B Authority key identifier: ED:39:78:1E:7C:A2:63:2C:54:B7:FA:E2:25:4E:21:F0:1B:A0:76:87 Certificate issuer: /CN=A91DD468/serialNumber=ED39781E7CA2632C54B7FAE2254E21F01BA07687 Certificate serial: 01EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Tl4HnyiYyxUt_riJU4h8Bugdoc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD468/5B4A33C68C8F11EDBC8A6114C4F9AE02/7Tl4HnyiYyxUt_riJU4h8Bugdoc.mft Manifest number: 01EB Signing time: Sat 23 Aug 2025 02:40:08 +0000 Manifest this update: Sat 23 Aug 2025 02:40:07 +0000 Manifest next update: Sat 30 Aug 2025 02:40:07 +0000 Files and hashes: 1: 7Tl4HnyiYyxUt_riJU4h8Bugdoc.crl (hash: oXLvRlT+gLfvvZCfxYD4FTuMkNqXHiF8yeL/+9elzX0=) 2: 3FF7C9468C9211ED8D052619C4F9AE02.roa (hash: 5zp05k5VVLn+h5FTDM7wh1ceYmuMlTAzc+yFX4p/lNI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD468/5B4A33C68C8F11EDBC8A6114C4F9AE02/7Tl4HnyiYyxUt_riJU4h8Bugdoc.crl rsync://rpki.apnic.net/member_repository/A91DD468/5B4A33C68C8F11EDBC8A6114C4F9AE02/7Tl4HnyiYyxUt_riJU4h8Bugdoc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Tl4HnyiYyxUt_riJU4h8Bugdoc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:40:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 494 (0x1ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD468, serialNumber=ED39781E7CA2632C54B7FAE2254E21F01BA07687 Validity Not Before: Aug 23 02:40:07 2025 GMT Not After : Aug 30 02:40:07 2025 GMT Subject: CN=68a92a08-914c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:16:5c:f5:a4:d1:57:e8:06:52:e9:e4:34:e8: 47:b8:fb:41:32:6d:00:6d:30:03:ba:b9:ef:24:87: a8:f1:73:81:f3:61:34:48:27:ef:9f:12:8d:17:e9: aa:05:56:cd:81:ab:70:1d:69:d9:49:64:f3:85:09: e3:2c:d8:2f:24:a7:3b:60:20:9d:ae:18:fb:b4:9a: 65:b8:e1:c8:00:06:39:e9:6c:21:e8:1f:35:31:78: f0:be:ed:35:12:3f:df:da:f9:65:57:1a:08:83:c1: 40:06:9d:22:67:f7:46:66:45:84:82:80:c5:be:bc: 6a:e8:ae:0b:f4:e0:20:f4:9e:e7:16:d7:06:66:7e: 4a:00:4c:23:ac:da:59:1a:f4:4e:84:7c:87:e0:ff: 7f:82:ea:79:d2:43:dc:5b:a6:ea:62:36:2d:3d:70: 13:7b:4d:09:42:45:71:64:95:10:9a:2c:9a:0d:f2: c3:c5:36:53:e0:84:ac:c2:1d:64:02:f4:d0:4f:c1: 4c:46:d5:4a:a5:e0:3c:e3:3b:ae:be:cd:db:ff:89: f6:79:91:69:8f:ec:e3:fb:d6:3d:90:08:a7:13:02: ae:e5:40:51:d0:22:05:6a:1e:a7:aa:57:e2:ae:b8: 86:91:51:e1:84:95:79:20:94:1b:0b:6b:21:34:e0: 36:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:0D:11:6E:3E:83:52:EB:61:5E:B8:AF:FA:E7:D5:17:9C:70:45:2B X509v3 Authority Key Identifier: keyid:ED:39:78:1E:7C:A2:63:2C:54:B7:FA:E2:25:4E:21:F0:1B:A0:76:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD468/5B4A33C68C8F11EDBC8A6114C4F9AE02/7Tl4HnyiYyxUt_riJU4h8Bugdoc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Tl4HnyiYyxUt_riJU4h8Bugdoc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD468/5B4A33C68C8F11EDBC8A6114C4F9AE02/7Tl4HnyiYyxUt_riJU4h8Bugdoc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:0f:60:3f:43:89:39:8e:43:90:5a:0b:82:b2:d9:e4:43:30: 7e:15:82:aa:e8:aa:1f:fa:97:82:d3:31:97:0b:a3:5a:a6:f6: 22:f2:bc:cc:77:ee:85:4d:65:f2:49:8d:c9:e6:2d:a0:70:aa: 93:04:20:df:bc:0d:a8:af:ef:53:1f:ea:b9:02:b0:93:ca:17: 97:bb:d2:d2:bd:5e:b6:2f:3e:f2:64:36:d0:7c:a3:3b:01:4e: 0d:70:2d:74:b3:ea:2e:48:e9:fb:43:e0:88:07:1f:ca:d8:fd: a1:5f:1a:7e:26:37:98:1c:77:c8:1a:65:f8:8d:d0:39:c2:da: 33:61:fb:99:a7:5e:01:c9:ec:32:92:c9:c8:96:78:f4:77:71: 5e:6d:03:fc:40:9d:44:45:5e:ec:ac:6c:86:2e:3f:af:95:e4: b4:3e:ac:02:19:14:aa:0c:05:2d:6a:81:b4:85:bf:18:f0:21: e6:e9:06:61:2a:28:fd:38:69:95:0d:a7:13:d3:83:e8:bf:20: dd:22:59:58:7e:6f:b0:71:a6:61:ab:a7:cb:ed:93:f5:9c:35: 68:72:b0:26:14:5f:5a:ea:a9:c3:cd:fb:5a:40:46:cf:74:66: 72:b0:10:85:91:96:fd:18:9c:37:a9:54:56:82:e5:48:fc:2c: ae:06:0a:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAe4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ0NjgxMTAvBgNVBAUTKEVEMzk3ODFFN0NBMjYzMkM1NEI3RkFFMjI1NEUyMUYw MUJBMDc2ODcwHhcNMjUwODIzMDI0MDA3WhcNMjUwODMwMDI0MDA3WjAYMRYwFAYD VQQDEw02OGE5MmEwOC05MTRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0BZc9aTRV+gGUunkNOhHuPtBMm0AbTADurnvJIeo8XOB82E0SCfvnxKNF+mq BVbNgatwHWnZSWTzhQnjLNgvJKc7YCCdrhj7tJpluOHIAAY56Wwh6B81MXjwvu01 Ej/f2vllVxoIg8FABp0iZ/dGZkWEgoDFvrxq6K4L9OAg9J7nFtcGZn5KAEwjrNpZ GvROhHyH4P9/gup50kPcW6bqYjYtPXATe00JQkVxZJUQmiyaDfLDxTZT4ISswh1k AvTQT8FMRtVKpeA84zuuvs3b/4n2eZFpj+zj+9Y9kAinEwKu5UBR0CIFah6nqlfi rriGkVHhhJV5IJQbC2shNOA2ewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHwNEW4+ g1LrYV64r/rn1ReccEUrMB8GA1UdIwQYMBaAFO05eB58omMsVLf64iVOIfAboHaH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDQ2OC81QjRBMzNDNjhD OEYxMUVEQkM4QTYxMTRDNEY5QUUwMi83VGw0SG55aVl5eFV0X3JpSlU0aDhCdWdk b2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdUbDRIbnlpWXl4VXRfcmlKVTRoOEJ1Z2RvYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDQ2OC81QjRBMzNDNjhDOEYxMUVEQkM4QTYxMTRDNEY5QUUwMi83VGw0SG55aVl5 eFV0X3JpSlU0aDhCdWdkb2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhD2A/Q4k5jkOQWguCstnkQzB+FYKq6Kof+peC0zGXC6NapvYi8rzM d+6FTWXySY3J5i2gcKqTBCDfvA2or+9TH+q5ArCTyheXu9LSvV62Lz7yZDbQfKM7 AU4NcC10s+ouSOn7Q+CIBx/K2P2hXxp+JjeYHHfIGmX4jdA5wtozYfuZp14Byewy ksnIlnj0d3FebQP8QJ1ERV7srGyGLj+vleS0PqwCGRSqDAUtaoG0hb8Y8CHm6QZh Kij9OGmVDacT04PovyDdIllYfm+wcaZhq6fL7ZP1nDVocrAmFF9a6qnDzftaQEbP dGZysBCFkZb9GJw3qVRWguVI/CyuBgoD -----END CERTIFICATE-----Generated at Sun Aug 24 21:46:22 2025 by rpki-client