$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft File: BNhIIeE7gDAzVMS-NDMdURHyvKY.mft (raw, json) Hash identifier: U8v1I9WnBuIt49dn3Q9B7Gh5gUPgAFvKr4fHo3szqn0= Subject key identifier: 4C:94:27:C3:CA:F5:7E:A8:D3:61:23:25:5C:E5:AC:77:E0:7B:53:27 Authority key identifier: 04:D8:48:21:E1:3B:80:30:33:54:C4:BE:34:33:1D:51:11:F2:BC:A6 Certificate issuer: /CN=A91F0721/serialNumber=04D84821E13B80303354C4BE34331D5111F2BCA6 Certificate serial: 01E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BNhIIeE7gDAzVMS-NDMdURHyvKY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft Manifest number: 01E3 Signing time: Wed 17 Sep 2025 03:06:46 +0000 Manifest this update: Wed 17 Sep 2025 03:06:45 +0000 Manifest next update: Wed 24 Sep 2025 03:06:45 +0000 Files and hashes: 1: BNhIIeE7gDAzVMS-NDMdURHyvKY.crl (hash: XTvbhSSp6xjen6Ynm/JpVV8jaOcvMNr1hJVHy/pVN/w=) 2: 7659B89AADCC11ED84051211C4F9AE02.roa (hash: S0QCets6nYQwhXbRnwnSRy3OBYGEXLOm6h5sFxoClJ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.crl rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BNhIIeE7gDAzVMS-NDMdURHyvKY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 03:06:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 486 (0x1e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0721, serialNumber=04D84821E13B80303354C4BE34331D5111F2BCA6 Validity Not Before: Sep 17 03:06:45 2025 GMT Not After : Sep 24 03:06:45 2025 GMT Subject: CN=68ca25c5-df0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:2a:e4:23:88:8d:24:61:e4:64:b3:dc:76:1b: 90:7d:b8:88:18:10:11:d2:33:3c:45:2d:05:75:4e: 8c:63:6f:77:26:76:72:2b:da:16:68:a9:67:c5:95: 07:e0:22:d1:d5:fb:e1:79:d8:7f:4c:10:d4:e7:6d: d2:93:d3:f8:46:61:68:4c:08:e5:d3:da:68:1d:b0: a9:4f:8f:71:50:20:e7:6b:1b:97:46:07:f4:a9:f5: 21:c3:2f:33:9b:43:94:9b:16:63:c3:8e:35:21:ee: e4:20:ce:30:a3:f8:f6:52:f8:2d:cb:8b:d4:17:c0: 31:34:22:e1:21:56:f3:ee:cd:02:37:50:30:2b:1a: 8e:e5:54:9a:1d:d2:46:87:66:37:8b:1c:39:ba:32: 1f:eb:00:79:68:2e:3c:47:27:da:8d:e1:3b:36:db: 65:4d:b9:0f:fe:da:50:9a:cc:c3:3d:9b:90:26:6a: 2a:f0:83:71:81:e8:d5:08:cc:4f:a6:1e:8f:37:17: cd:5a:8c:96:ca:a1:c1:00:44:af:ab:45:84:a1:93: 33:6b:99:ae:ab:a3:4b:b2:1d:fc:49:95:ed:7e:b8: 5d:88:24:76:da:aa:a6:65:85:c6:f0:d5:d5:8c:2f: cf:e7:dc:21:db:62:11:c7:f7:e0:b8:78:d4:f6:b8: 7f:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:94:27:C3:CA:F5:7E:A8:D3:61:23:25:5C:E5:AC:77:E0:7B:53:27 X509v3 Authority Key Identifier: keyid:04:D8:48:21:E1:3B:80:30:33:54:C4:BE:34:33:1D:51:11:F2:BC:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BNhIIeE7gDAzVMS-NDMdURHyvKY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:71:d4:5d:22:38:5a:7a:df:ee:60:9d:18:83:3f:43:e7:af: 33:1b:ea:97:87:d5:ed:80:28:ef:ab:6c:6c:f0:57:a8:76:88: 1b:24:17:a5:dd:f3:c9:3e:fd:45:1b:22:d8:05:f6:29:12:ef: 0e:0d:a7:03:b5:2c:1d:71:07:07:c7:8c:37:ff:48:ac:df:1f: bb:b2:1e:fe:e8:c7:6c:cb:2d:fd:58:03:09:73:f8:65:60:35: 46:a9:70:18:4a:d6:a0:d1:86:6c:24:b3:38:62:ed:2b:c4:70: 93:68:43:4b:67:83:cc:be:f2:f9:45:e4:21:9e:44:9d:8c:29: b2:34:26:2b:67:c5:7a:d8:1f:72:0c:3e:e5:33:32:97:7e:09: 98:4f:4a:e1:d6:5a:7f:5d:ae:d4:4d:29:b9:df:bb:66:8c:97: f1:35:9c:4f:82:18:c4:2a:22:52:a6:55:d0:c3:8c:ec:73:5f: f9:10:25:eb:03:ad:62:48:ef:98:71:3b:5a:b4:c5:b6:c3:91: 4a:31:51:e2:cf:49:21:d7:71:70:41:d2:98:e9:8d:49:eb:7e: 9f:e6:a6:23:8a:37:49:95:51:7c:4b:7c:83:82:90:41:f5:1b: 5b:0e:d7:1f:9a:1d:f7:a4:d6:a9:13:ce:d8:39:b1:40:49:a3: fa:94:e5:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjA3MjExMTAvBgNVBAUTKDA0RDg0ODIxRTEzQjgwMzAzMzU0QzRCRTM0MzMxRDUx MTFGMkJDQTYwHhcNMjUwOTE3MDMwNjQ1WhcNMjUwOTI0MDMwNjQ1WjAYMRYwFAYD VQQDEw02OGNhMjVjNS1kZjBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0SrkI4iNJGHkZLPcdhuQfbiIGBAR0jM8RS0FdU6MY293JnZyK9oWaKlnxZUH 4CLR1fvhedh/TBDU523Sk9P4RmFoTAjl09poHbCpT49xUCDnaxuXRgf0qfUhwy8z m0OUmxZjw441Ie7kIM4wo/j2Uvgty4vUF8AxNCLhIVbz7s0CN1AwKxqO5VSaHdJG h2Y3ixw5ujIf6wB5aC48RyfajeE7NttlTbkP/tpQmszDPZuQJmoq8INxgejVCMxP ph6PNxfNWoyWyqHBAESvq0WEoZMza5muq6NLsh38SZXtfrhdiCR22qqmZYXG8NXV jC/P59wh22IRx/fguHjU9rh/IQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEyUJ8PK 9X6o02EjJVzlrHfge1MnMB8GA1UdIwQYMBaAFATYSCHhO4AwM1TEvjQzHVER8rym MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMDcyMS9DOTEyN0IzRUFE QzgxMUVEOTIxNjIyMEVDNEY5QUUwMi9CTmhJSWVFN2dEQXpWTVMtTkRNZFVSSHl2 S1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JOaElJZUU3Z0RBelZNUy1ORE1kVVJIeXZLWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MDcyMS9DOTEyN0IzRUFEQzgxMUVEOTIxNjIyMEVDNEY5QUUwMi9CTmhJSWVFN2dE QXpWTVMtTkRNZFVSSHl2S1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBncdRdIjhaet/uYJ0Ygz9D568zG+qXh9XtgCjvq2xs8FeodogbJBel 3fPJPv1FGyLYBfYpEu8ODacDtSwdcQcHx4w3/0is3x+7sh7+6Mdsyy39WAMJc/hl YDVGqXAYStag0YZsJLM4Yu0rxHCTaENLZ4PMvvL5ReQhnkSdjCmyNCYrZ8V62B9y DD7lMzKXfgmYT0rh1lp/Xa7UTSm537tmjJfxNZxPghjEKiJSplXQw4zsc1/5ECXr A61iSO+YcTtatMW2w5FKMVHiz0kh13FwQdKY6Y1J636f5qYjijdJlVF8S3yDgpBB 9RtbDtcfmh33pNapE87YObFASaP6lOV0 -----END CERTIFICATE-----Generated at Thu Sep 18 23:35:43 2025 by rpki-client