$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft File: 1bm7ozBeiMAA9WKTnROLpQYieyo.mft (raw, json) Hash identifier: xM3poWAVse6MqNPe2YvuganXB3EsghsFkMFTIsOWLJA= Subject key identifier: 5C:C8:23:DF:6E:DC:C9:BB:11:3E:81:33:C4:30:38:98:AB:5C:EE:D4 Authority key identifier: D5:B9:BB:A3:30:5E:88:C0:00:F5:62:93:9D:13:8B:A5:06:22:7B:2A Certificate issuer: /CN=A91EAF4B/serialNumber=D5B9BBA3305E88C000F562939D138BA506227B2A Certificate serial: 0B40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bm7ozBeiMAA9WKTnROLpQYieyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft Manifest number: 0C56 Signing time: Tue 16 Sep 2025 19:28:07 +0000 Manifest this update: Tue 16 Sep 2025 19:28:06 +0000 Manifest next update: Tue 23 Sep 2025 19:28:06 +0000 Files and hashes: 1: 1bm7ozBeiMAA9WKTnROLpQYieyo.crl (hash: YlzFusTGuKK+7aDeuW1YsgS8dcXzh3aKXtjyH7h/Mzo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.crl rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bm7ozBeiMAA9WKTnROLpQYieyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Sep 2025 19:28:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2880 (0xb40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAF4B, serialNumber=D5B9BBA3305E88C000F562939D138BA506227B2A Validity Not Before: Sep 16 19:28:06 2025 GMT Not After : Sep 23 19:28:06 2025 GMT Subject: CN=68c9ba46-5e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:9d:56:6b:9e:b6:ad:08:05:d5:02:b4:4d:eb: d6:84:1c:82:f6:16:0f:d5:aa:fc:15:56:39:df:6a: 4d:49:17:88:6f:59:6a:c1:dd:bd:6b:36:34:92:67: 7f:5e:5a:2c:63:cd:73:64:70:4a:1f:a5:38:90:89: 99:25:cd:e4:04:27:65:87:f4:90:e5:dd:77:a1:8a: 61:08:a2:bf:01:90:49:cc:3c:31:e6:1e:97:c9:a1: 07:5d:cd:ad:69:10:b0:c6:d8:ed:c7:ad:75:92:86: 49:0f:58:2e:92:88:7d:f0:08:a1:57:e8:52:97:81: 07:e4:5a:39:8d:ff:d2:f2:21:1c:7c:8d:61:72:66: 0d:09:87:77:ac:b2:a2:7a:aa:0b:35:23:6e:f9:84: 03:bf:3d:08:7d:18:40:c4:09:ab:0e:69:c2:59:91: ce:12:e1:61:e4:78:71:ef:8e:57:9a:4d:f4:a0:5b: 87:03:9b:3d:61:42:a5:d4:15:b2:20:51:9c:5d:84: bf:8c:22:eb:e3:12:f2:40:5c:e7:21:2a:04:7a:38: 65:e2:c4:ad:0c:fa:ce:4d:e7:9d:e8:78:97:e1:cb: 48:f2:67:05:4a:0e:a0:7e:aa:c6:c4:b9:c3:de:f8: 9f:16:be:c8:80:fd:aa:62:ae:24:24:65:94:a3:51: 60:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:C8:23:DF:6E:DC:C9:BB:11:3E:81:33:C4:30:38:98:AB:5C:EE:D4 X509v3 Authority Key Identifier: keyid:D5:B9:BB:A3:30:5E:88:C0:00:F5:62:93:9D:13:8B:A5:06:22:7B:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bm7ozBeiMAA9WKTnROLpQYieyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/1bm7ozBeiMAA9WKTnROLpQYieyo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:00:99:41:9c:05:af:14:e5:ca:4f:7b:bf:00:50:e3:3c:8a: 29:dd:a7:7a:ad:74:74:cf:d5:69:9b:03:f7:53:2f:49:e9:6d: 66:13:67:8b:3c:fb:55:d6:87:b1:cd:63:6d:03:47:c8:5e:c3: e5:7e:1a:7a:e1:e7:c3:5f:5e:6a:f0:a9:a4:f6:28:8c:36:0a: 1c:30:99:5f:ba:af:1e:00:cb:9b:bf:ab:bf:29:39:87:89:f1: ad:8f:45:36:d1:ba:e8:44:e7:f1:ff:06:8f:a0:45:1f:90:8a: 92:18:9e:fb:80:38:e6:a1:a6:fa:38:da:0a:e4:02:ea:2d:05: ef:52:0d:bd:bf:e5:fe:3f:fe:d3:24:ac:d4:64:cb:1b:ab:05: 38:c0:a1:62:f9:b8:40:4c:93:55:01:68:a9:ec:c2:6d:2e:8d: b5:b7:7c:08:71:89:22:b2:16:7f:db:3b:b7:df:15:57:f2:12: 2a:96:3a:5d:a2:b4:1c:b5:04:18:8a:fd:77:47:b3:d6:98:11: b6:28:b9:20:a6:d6:f2:c6:57:14:62:f1:e4:ad:03:e0:77:f8: 4d:74:ac:85:31:65:99:cc:ba:54:c6:6d:e7:2b:17:a9:eb:f6: 1b:f6:cb:31:b3:e8:f2:bb:92:01:33:a7:2a:98:c8:da:b2:f3: 4d:ed:f9:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC0AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFGNEIxMTAvBgNVBAUTKEQ1QjlCQkEzMzA1RTg4QzAwMEY1NjI5MzlEMTM4QkE1 MDYyMjdCMkEwHhcNMjUwOTE2MTkyODA2WhcNMjUwOTIzMTkyODA2WjAYMRYwFAYD VQQDEw02OGM5YmE0Ni01ZTIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy51Wa562rQgF1QK0TevWhByC9hYP1ar8FVY532pNSReIb1lqwd29azY0kmd/ XlosY81zZHBKH6U4kImZJc3kBCdlh/SQ5d13oYphCKK/AZBJzDwx5h6XyaEHXc2t aRCwxtjtx611koZJD1gukoh98AihV+hSl4EH5Fo5jf/S8iEcfI1hcmYNCYd3rLKi eqoLNSNu+YQDvz0IfRhAxAmrDmnCWZHOEuFh5Hhx745Xmk30oFuHA5s9YUKl1BWy IFGcXYS/jCLr4xLyQFznISoEejhl4sStDPrOTeed6HiX4ctI8mcFSg6gfqrGxLnD 3vifFr7IgP2qYq4kJGWUo1FgvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFzII99u 3Mm7ET6BM8QwOJirXO7UMB8GA1UdIwQYMBaAFNW5u6MwXojAAPVik50Ti6UGInsq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUY0Qi84NDg1OEY2QTQ3 MTkxMUVBOTA4NjMwNzJDNEY5QUUwMi8xYm03b3pCZWlNQUE5V0tUblJPTHBRWWll eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFibTdvekJlaU1BQTlXS1RuUk9McFFZaWV5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUY0Qi84NDg1OEY2QTQ3MTkxMUVBOTA4NjMwNzJDNEY5QUUwMi8xYm03b3pCZWlN QUE5V0tUblJPTHBRWWlleW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKAJlBnAWvFOXKT3u/AFDjPIop3ad6rXR0z9VpmwP3Uy9J6W1mE2eL PPtV1oexzWNtA0fIXsPlfhp64efDX15q8Kmk9iiMNgocMJlfuq8eAMubv6u/KTmH ifGtj0U20broROfx/waPoEUfkIqSGJ77gDjmoab6ONoK5ALqLQXvUg29v+X+P/7T JKzUZMsbqwU4wKFi+bhATJNVAWip7MJtLo21t3wIcYkishZ/2zu33xVX8hIqljpd orQctQQYiv13R7PWmBG2KLkgptbyxlcUYvHkrQPgd/hNdKyFMWWZzLpUxm3nKxep 6/Yb9ssxs+jyu5IBM6cqmMjasvNN7fnD -----END CERTIFICATE-----Generated at Thu Sep 18 20:52:17 2025 by rpki-client