$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0CE8/900D2646066A11E8B9BAF682C4F9AE02/BsYn2cMSx7R9HDpTtEdVoQpoSHw.mft File: BsYn2cMSx7R9HDpTtEdVoQpoSHw.mft (raw, json) Hash identifier: j0ri4gkNLN0FJAtUoDLXMCo2do88mTI7N5exa/uWfvw= Subject key identifier: C1:69:B9:F6:43:D4:53:72:54:3A:DB:08:20:3D:A6:83:B8:DE:62:E8 Authority key identifier: 06:C6:27:D9:C3:12:C7:B4:7D:1C:3A:53:B4:47:55:A1:0A:68:48:7C Certificate issuer: /CN=A91E0CE8/serialNumber=06C627D9C312C7B47D1C3A53B44755A10A68487C Certificate serial: 16C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BsYn2cMSx7R9HDpTtEdVoQpoSHw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0CE8/900D2646066A11E8B9BAF682C4F9AE02/BsYn2cMSx7R9HDpTtEdVoQpoSHw.mft Manifest number: 16AD Signing time: Mon 08 Sep 2025 16:41:42 +0000 Manifest this update: Mon 08 Sep 2025 16:41:42 +0000 Manifest next update: Mon 15 Sep 2025 16:41:42 +0000 Files and hashes: 1: BsYn2cMSx7R9HDpTtEdVoQpoSHw.crl (hash: XL4ZA43MX9g/0AFe4935KFMnGcISn1NiNcT7/kbTIo0=) 2: 091435C84FA911EFB86F4D40C4F9AE02.roa (hash: e5jgIESXFxNT6NU+78fDrpwylXFQS920y6o/aeQL2pY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0CE8/900D2646066A11E8B9BAF682C4F9AE02/BsYn2cMSx7R9HDpTtEdVoQpoSHw.crl rsync://rpki.apnic.net/member_repository/A91E0CE8/900D2646066A11E8B9BAF682C4F9AE02/BsYn2cMSx7R9HDpTtEdVoQpoSHw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BsYn2cMSx7R9HDpTtEdVoQpoSHw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 16:41:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5830 (0x16c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0CE8, serialNumber=06C627D9C312C7B47D1C3A53B44755A10A68487C Validity Not Before: Sep 8 16:41:42 2025 GMT Not After : Sep 15 16:41:42 2025 GMT Subject: CN=68bf0746-0dd8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:53:8a:3a:43:8f:a2:97:64:7e:b0:6f:c1:11: 33:8c:e6:a6:70:56:2e:fd:29:40:3a:76:b6:5c:f9: 9f:35:bb:77:12:26:09:3d:b1:13:01:7b:a4:99:53: b0:fc:16:ab:14:0c:1b:47:73:1e:6c:fd:1c:ba:3d: a8:f3:41:08:ed:72:05:93:f5:c8:30:1d:da:9d:48: 71:25:00:40:61:11:59:2c:9e:0c:a2:7f:55:39:0c: 30:11:10:56:e7:43:5f:b5:10:21:55:ae:22:c5:f3: e6:df:ab:db:f3:2e:9d:24:b7:b5:69:af:03:54:1f: 50:f5:8e:74:c5:69:1b:58:cd:8d:61:80:92:5d:7b: a5:2f:f2:10:42:28:89:8d:3c:b7:41:46:ca:ec:f5: 79:6e:96:17:e8:9f:9f:ba:75:94:f1:50:b0:bf:52: c7:b1:60:ea:af:ae:e2:6f:d7:9b:09:3c:08:50:53: 03:8e:cd:25:1c:b2:fc:15:d3:bc:e5:86:eb:6b:5f: 01:19:77:2a:f3:5b:ed:f4:c2:8a:df:fb:fc:97:20: e7:00:c6:f6:a7:3c:cd:08:27:84:41:f2:32:52:d5: bc:8e:1a:35:b9:92:af:9a:bb:96:63:47:04:3f:8a: 48:fa:10:66:bd:6f:46:f7:cf:f0:3d:76:b0:17:d4: e5:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:69:B9:F6:43:D4:53:72:54:3A:DB:08:20:3D:A6:83:B8:DE:62:E8 X509v3 Authority Key Identifier: keyid:06:C6:27:D9:C3:12:C7:B4:7D:1C:3A:53:B4:47:55:A1:0A:68:48:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0CE8/900D2646066A11E8B9BAF682C4F9AE02/BsYn2cMSx7R9HDpTtEdVoQpoSHw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BsYn2cMSx7R9HDpTtEdVoQpoSHw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0CE8/900D2646066A11E8B9BAF682C4F9AE02/BsYn2cMSx7R9HDpTtEdVoQpoSHw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:4c:64:5b:87:d7:62:ec:a7:55:42:0c:47:47:ae:61:87:dc: 80:22:a9:18:0a:df:cb:a8:9a:c3:d8:a1:96:ef:6d:5a:3f:7e: 70:5b:95:4b:d0:aa:93:c8:01:12:7a:a1:c8:f7:ac:a7:76:4b: ec:ba:44:66:67:da:12:92:72:82:82:7b:10:b5:d7:d1:b7:8c: 18:1d:80:13:59:14:40:f6:d0:77:e1:5c:da:7f:c6:42:d9:d4: b9:69:5b:55:b0:fa:bc:4e:eb:8b:8b:b5:d0:bb:d1:10:d7:cf: 9d:df:68:c0:62:39:6e:c1:27:f9:36:66:71:f7:16:f9:9c:32: ce:44:6c:a3:cf:39:10:d6:72:03:02:fe:be:c0:7a:96:c1:53: 40:d0:6d:a2:60:99:70:0d:30:a4:9b:79:94:9e:7a:a9:b2:e2: 28:d9:c7:1e:8b:6f:05:c0:26:b8:b9:45:29:f7:d5:0a:7b:b0: 06:22:60:f8:c9:c6:b3:a5:15:a7:2c:38:70:db:6c:24:28:bf: f7:09:57:89:6d:af:11:6c:5e:99:c4:3e:3c:08:0c:ac:5f:93: ae:0f:0b:31:32:4f:85:ab:f6:5a:3d:4d:1c:0c:62:83:af:68: 23:7f:5d:2c:64:70:ee:bf:bb:c5:59:11:df:f7:d7:9e:ac:c3: 1d:cf:f3:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFsYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBDRTgxMTAvBgNVBAUTKDA2QzYyN0Q5QzMxMkM3QjQ3RDFDM0E1M0I0NDc1NUEx MEE2ODQ4N0MwHhcNMjUwOTA4MTY0MTQyWhcNMjUwOTE1MTY0MTQyWjAYMRYwFAYD VQQDEw02OGJmMDc0Ni0wZGQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv1OKOkOPopdkfrBvwREzjOamcFYu/SlAOna2XPmfNbt3EiYJPbETAXukmVOw /BarFAwbR3MebP0cuj2o80EI7XIFk/XIMB3anUhxJQBAYRFZLJ4Mon9VOQwwERBW 50NftRAhVa4ixfPm36vb8y6dJLe1aa8DVB9Q9Y50xWkbWM2NYYCSXXulL/IQQiiJ jTy3QUbK7PV5bpYX6J+funWU8VCwv1LHsWDqr67ib9ebCTwIUFMDjs0lHLL8FdO8 5Ybra18BGXcq81vt9MKK3/v8lyDnAMb2pzzNCCeEQfIyUtW8jho1uZKvmruWY0cE P4pI+hBmvW9G98/wPXawF9TlhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMFpufZD 1FNyVDrbCCA9poO43mLoMB8GA1UdIwQYMBaAFAbGJ9nDEse0fRw6U7RHVaEKaEh8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMENFOC85MDBEMjY0NjA2 NkExMUU4QjlCQUY2ODJDNEY5QUUwMi9Cc1luMmNNU3g3UjlIRHBUdEVkVm9RcG9T SHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JzWW4yY01TeDdSOUhEcFR0RWRWb1Fwb1NIdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MENFOC85MDBEMjY0NjA2NkExMUU4QjlCQUY2ODJDNEY5QUUwMi9Cc1luMmNNU3g3 UjlIRHBUdEVkVm9RcG9TSHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjTGRbh9di7KdVQgxHR65hh9yAIqkYCt/LqJrD2KGW721aP35wW5VL 0KqTyAESeqHI96yndkvsukRmZ9oSknKCgnsQtdfRt4wYHYATWRRA9tB34Vzaf8ZC 2dS5aVtVsPq8TuuLi7XQu9EQ18+d32jAYjluwSf5NmZx9xb5nDLORGyjzzkQ1nID Av6+wHqWwVNA0G2iYJlwDTCkm3mUnnqpsuIo2ccei28FwCa4uUUp99UKe7AGImD4 ycazpRWnLDhw22wkKL/3CVeJba8RbF6ZxD48CAysX5OuDwsxMk+Fq/ZaPU0cDGKD r2gjf10sZHDuv7vFWRHf99eerMMdz/P+ -----END CERTIFICATE-----Generated at Tue Sep 9 20:14:20 2025 by rpki-client