$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0CE8/900D2646066A11E8B9BAF682C4F9AE02/BsYn2cMSx7R9HDpTtEdVoQpoSHw.mft File: BsYn2cMSx7R9HDpTtEdVoQpoSHw.mft (raw, json) Hash identifier: xgACraht9+aFMVNwB79Ar1OyOS4SNuNbYDx2wqJOY3Q= Subject key identifier: 76:75:C0:AE:33:09:0A:7E:6F:08:76:6A:29:90:4F:7A:90:BC:5E:E1 Authority key identifier: 06:C6:27:D9:C3:12:C7:B4:7D:1C:3A:53:B4:47:55:A1:0A:68:48:7C Certificate issuer: /CN=A91E0CE8/serialNumber=06C627D9C312C7B47D1C3A53B44755A10A68487C Certificate serial: 16AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BsYn2cMSx7R9HDpTtEdVoQpoSHw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0CE8/900D2646066A11E8B9BAF682C4F9AE02/BsYn2cMSx7R9HDpTtEdVoQpoSHw.mft Manifest number: 1693 Signing time: Sun 20 Jul 2025 16:42:52 +0000 Manifest this update: Sun 20 Jul 2025 16:42:52 +0000 Manifest next update: Sun 27 Jul 2025 16:42:52 +0000 Files and hashes: 1: BsYn2cMSx7R9HDpTtEdVoQpoSHw.crl (hash: yeId0XsZpwmRpQ0DKYQw1m8Z8ACkKRo7XOzTzNBknTY=) 2: 091435C84FA911EFB86F4D40C4F9AE02.roa (hash: e5jgIESXFxNT6NU+78fDrpwylXFQS920y6o/aeQL2pY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0CE8/900D2646066A11E8B9BAF682C4F9AE02/BsYn2cMSx7R9HDpTtEdVoQpoSHw.crl rsync://rpki.apnic.net/member_repository/A91E0CE8/900D2646066A11E8B9BAF682C4F9AE02/BsYn2cMSx7R9HDpTtEdVoQpoSHw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BsYn2cMSx7R9HDpTtEdVoQpoSHw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 16:42:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5804 (0x16ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0CE8, serialNumber=06C627D9C312C7B47D1C3A53B44755A10A68487C Validity Not Before: Jul 20 16:42:52 2025 GMT Not After : Jul 27 16:42:52 2025 GMT Subject: CN=687d1c8c-f321 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:39:20:89:08:dc:ee:ce:b9:32:6c:97:9b:0d: 7e:d4:0b:46:61:41:ec:d0:f1:00:e7:28:41:77:7c: 12:19:f2:de:cb:61:02:32:24:49:30:94:7e:2c:d0: 81:7f:81:90:d3:77:32:02:05:cc:c4:1f:2f:ac:b9: 2e:f2:5c:aa:60:0d:d1:60:a0:b4:80:4d:9d:14:1a: f5:8f:04:ba:59:32:85:1d:a3:84:eb:c0:06:42:81: e5:97:1f:03:11:50:33:7c:6c:63:a2:3c:82:4e:9d: f4:fe:0b:6b:fd:13:86:7d:bf:2e:61:4a:a8:7e:d4: c5:1f:20:ae:13:a4:11:54:24:a0:d6:34:6f:36:07: e7:85:06:69:13:78:9a:ca:45:e8:ab:71:c6:1f:9c: d6:ea:6e:09:f1:16:ab:d0:d9:d3:73:d7:48:30:57: d2:02:8f:70:73:f3:3f:e6:e4:58:7f:79:6f:b7:a8: c0:87:93:d1:99:97:e9:a2:b0:6d:88:6b:81:ec:c5: 28:a4:9e:03:c2:a8:97:64:8e:0b:ad:1b:69:57:39: f9:b6:7d:77:74:7d:d7:ce:d7:0d:8e:b7:4d:89:11: e6:24:43:46:af:d1:c0:f9:74:a0:81:f4:e3:b9:a3: 45:d4:7c:d3:4c:a1:cf:4b:dd:cc:78:a7:d9:7d:8b: f7:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:75:C0:AE:33:09:0A:7E:6F:08:76:6A:29:90:4F:7A:90:BC:5E:E1 X509v3 Authority Key Identifier: keyid:06:C6:27:D9:C3:12:C7:B4:7D:1C:3A:53:B4:47:55:A1:0A:68:48:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0CE8/900D2646066A11E8B9BAF682C4F9AE02/BsYn2cMSx7R9HDpTtEdVoQpoSHw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BsYn2cMSx7R9HDpTtEdVoQpoSHw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0CE8/900D2646066A11E8B9BAF682C4F9AE02/BsYn2cMSx7R9HDpTtEdVoQpoSHw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:52:f1:20:97:8a:e4:1d:86:0e:95:77:21:6e:f7:e9:06:ce: 20:65:dc:26:c3:0b:76:3b:0e:15:06:53:19:4a:5d:72:21:f6: b0:04:96:b3:a4:82:0f:a0:28:16:87:1b:56:2c:0d:ff:fd:32: 1c:85:d0:f8:e1:9e:57:4d:f7:79:0a:92:23:80:b8:85:b5:61: 96:25:ea:bd:6b:09:82:42:89:d2:5a:55:96:3a:30:ca:af:29: 6d:c4:83:2a:eb:12:d8:50:99:01:f5:f3:fc:1f:37:1f:ed:95: 10:76:1d:73:3d:61:d4:52:6b:e6:7f:53:ba:bc:3f:30:60:90: db:8f:9a:f7:3f:8b:e0:af:48:c7:b0:bc:c8:7b:f6:89:59:07: 8f:52:aa:54:17:77:92:b6:21:61:a5:15:c2:de:8d:c8:6c:67: 01:e2:b3:5e:c0:df:d9:30:5a:5a:98:1a:9e:d4:42:03:fe:b6: 1e:22:66:5b:fe:dc:78:7b:a3:a5:cc:1e:0a:91:c6:64:73:2b: cb:89:63:6c:86:94:38:23:b5:34:28:0d:f8:6a:66:fd:3f:67: 54:6c:30:7f:f5:9e:a6:46:2a:f9:8a:63:ae:01:04:33:a9:65: 61:96:22:f7:dd:61:d3:4e:4b:56:47:f2:f6:ec:13:44:b8:a1: 98:4c:57:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFqwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBDRTgxMTAvBgNVBAUTKDA2QzYyN0Q5QzMxMkM3QjQ3RDFDM0E1M0I0NDc1NUEx MEE2ODQ4N0MwHhcNMjUwNzIwMTY0MjUyWhcNMjUwNzI3MTY0MjUyWjAYMRYwFAYD VQQDEw02ODdkMWM4Yy1mMzIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0TkgiQjc7s65MmyXmw1+1AtGYUHs0PEA5yhBd3wSGfLey2ECMiRJMJR+LNCB f4GQ03cyAgXMxB8vrLku8lyqYA3RYKC0gE2dFBr1jwS6WTKFHaOE68AGQoHllx8D EVAzfGxjojyCTp30/gtr/ROGfb8uYUqoftTFHyCuE6QRVCSg1jRvNgfnhQZpE3ia ykXoq3HGH5zW6m4J8Rar0NnTc9dIMFfSAo9wc/M/5uRYf3lvt6jAh5PRmZfporBt iGuB7MUopJ4DwqiXZI4LrRtpVzn5tn13dH3XztcNjrdNiRHmJENGr9HA+XSggfTj uaNF1HzTTKHPS93MeKfZfYv3VQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHZ1wK4z CQp+bwh2aimQT3qQvF7hMB8GA1UdIwQYMBaAFAbGJ9nDEse0fRw6U7RHVaEKaEh8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMENFOC85MDBEMjY0NjA2 NkExMUU4QjlCQUY2ODJDNEY5QUUwMi9Cc1luMmNNU3g3UjlIRHBUdEVkVm9RcG9T SHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JzWW4yY01TeDdSOUhEcFR0RWRWb1Fwb1NIdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MENFOC85MDBEMjY0NjA2NkExMUU4QjlCQUY2ODJDNEY5QUUwMi9Cc1luMmNNU3g3 UjlIRHBUdEVkVm9RcG9TSHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPUvEgl4rkHYYOlXchbvfpBs4gZdwmwwt2Ow4VBlMZSl1yIfawBJaz pIIPoCgWhxtWLA3//TIchdD44Z5XTfd5CpIjgLiFtWGWJeq9awmCQonSWlWWOjDK ryltxIMq6xLYUJkB9fP8Hzcf7ZUQdh1zPWHUUmvmf1O6vD8wYJDbj5r3P4vgr0jH sLzIe/aJWQePUqpUF3eStiFhpRXC3o3IbGcB4rNewN/ZMFpamBqe1EID/rYeImZb /tx4e6OlzB4KkcZkcyvLiWNshpQ4I7U0KA34amb9P2dUbDB/9Z6mRir5imOuAQQz qWVhliL33WHTTktWR/L27BNEuKGYTFfP -----END CERTIFICATE-----Generated at Mon Jul 21 18:27:38 2025 by rpki-client