$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2E76/8F3C9E6A0D7711EBBBAE3440C4F9AE02/1BN478zNyo5lN-lfJ6o7NTdYCvM.mft File: 1BN478zNyo5lN-lfJ6o7NTdYCvM.mft (raw, json) Hash identifier: U2LgWjim1bkdMBjm0+U/zlpvvakp+Kzv4IeBIsaZmvk= Subject key identifier: 73:6B:66:A1:C8:F2:36:44:5B:0F:30:54:5A:56:0B:E9:D1:34:2A:23 Authority key identifier: D4:13:78:EF:CC:CD:CA:8E:65:37:E9:5F:27:AA:3B:35:37:58:0A:F3 Certificate issuer: /CN=A91F2E76/serialNumber=D41378EFCCCDCA8E6537E95F27AA3B3537580AF3 Certificate serial: 07BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1BN478zNyo5lN-lfJ6o7NTdYCvM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2E76/8F3C9E6A0D7711EBBBAE3440C4F9AE02/1BN478zNyo5lN-lfJ6o7NTdYCvM.mft Manifest number: 07B4 Signing time: Mon 18 Aug 2025 21:34:36 +0000 Manifest this update: Mon 18 Aug 2025 21:34:36 +0000 Manifest next update: Mon 25 Aug 2025 21:34:36 +0000 Files and hashes: 1: 1BN478zNyo5lN-lfJ6o7NTdYCvM.crl (hash: h0R6b2FW0G6STswuVfUt/wN+n/mK2Maw9yZSMwGCMQ8=) 2: 86AE60140D7A11EB9D346C48C4F9AE02.roa (hash: IYriA7iqlPrIGEwVZWLwnn3g/0OVL8pkTIBJVf9/TyA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2E76/8F3C9E6A0D7711EBBBAE3440C4F9AE02/1BN478zNyo5lN-lfJ6o7NTdYCvM.crl rsync://rpki.apnic.net/member_repository/A91F2E76/8F3C9E6A0D7711EBBBAE3440C4F9AE02/1BN478zNyo5lN-lfJ6o7NTdYCvM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1BN478zNyo5lN-lfJ6o7NTdYCvM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 21:34:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1978 (0x7ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2E76, serialNumber=D41378EFCCCDCA8E6537E95F27AA3B3537580AF3 Validity Not Before: Aug 18 21:34:36 2025 GMT Not After : Aug 25 21:34:36 2025 GMT Subject: CN=68a39c6c-bed8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:da:51:70:38:b5:17:ca:d3:b0:1f:b8:4b:2f: 7a:31:d0:11:c7:90:2b:d0:58:80:f1:c4:75:0c:45: a7:c8:06:63:87:d5:77:30:d3:39:5b:43:19:00:86: 94:fd:5a:da:59:78:51:9e:72:60:7f:40:07:e5:be: 1a:48:d7:25:c1:c6:bd:75:51:50:10:a3:90:25:26: ed:94:d0:e4:b3:4c:e3:28:f1:0b:44:92:da:2e:99: e6:f4:71:0e:17:31:68:7c:90:a8:fd:7a:0e:65:72: eb:68:57:df:89:df:67:10:8e:36:84:e0:3b:bf:64: 23:35:d5:28:20:4e:82:08:5d:a0:53:8c:e7:0b:b3: d8:8e:47:bc:5e:66:35:14:d9:58:3f:12:6a:eb:f2: d4:90:45:05:81:97:d1:4e:7d:ee:4f:6e:41:d2:f0: 27:23:3d:d3:53:aa:fe:61:4e:f3:f8:3c:a4:5e:29: fd:31:bc:44:be:fe:ae:13:0e:97:14:d6:42:37:5d: e8:9f:a7:fe:35:f3:d7:8b:5f:62:94:a7:09:ae:73: eb:bb:0f:7d:c4:04:3f:ef:ff:a9:e8:f5:d0:9e:36: 34:1a:40:a7:36:39:97:2d:c9:36:5e:0c:13:7b:03: 5e:ff:ee:57:26:c7:a4:66:ac:9c:75:32:81:83:f6: 2a:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:6B:66:A1:C8:F2:36:44:5B:0F:30:54:5A:56:0B:E9:D1:34:2A:23 X509v3 Authority Key Identifier: keyid:D4:13:78:EF:CC:CD:CA:8E:65:37:E9:5F:27:AA:3B:35:37:58:0A:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2E76/8F3C9E6A0D7711EBBBAE3440C4F9AE02/1BN478zNyo5lN-lfJ6o7NTdYCvM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1BN478zNyo5lN-lfJ6o7NTdYCvM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2E76/8F3C9E6A0D7711EBBBAE3440C4F9AE02/1BN478zNyo5lN-lfJ6o7NTdYCvM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:f0:a8:eb:47:0b:74:c3:42:52:b0:c2:23:e5:06:17:c9:94: 5f:b4:09:68:16:7a:ed:05:25:3e:75:ea:5c:c2:f4:16:25:8e: 80:57:c8:11:b2:20:fa:68:dd:b8:b7:72:62:99:89:c1:7a:fe: 67:d2:78:16:75:62:54:55:0f:57:a8:61:7b:aa:03:8f:3c:d7: 98:0c:34:9f:c0:07:a8:09:9e:f1:7f:58:f3:46:eb:4d:b0:be: 88:7d:62:b1:fc:26:25:3c:12:63:c9:65:9e:5f:59:2a:bc:48: e5:cf:e4:2b:17:e3:08:9b:fc:21:83:3a:2f:a8:ee:17:da:63: 9a:93:f3:d9:bc:64:a4:f1:8e:8a:98:4a:17:c8:b0:52:2f:22: e1:af:6d:66:eb:51:5f:03:bd:71:f0:b2:12:93:1d:c4:a6:05: fd:33:5e:83:c4:0b:83:4b:24:1b:6d:f7:43:6e:d4:07:78:68: 9e:e5:3c:92:ed:67:80:a0:49:5c:58:ec:d0:1d:7e:ba:50:42: 6a:ec:24:44:eb:dd:80:14:52:cd:bf:a6:9c:3b:8a:e4:8e:86: 81:65:d0:47:85:64:cb:a5:1c:6c:c2:fd:cd:b3:f1:03:e0:2e: 3c:d5:de:89:fc:36:1c:b0:b9:7e:54:9a:35:3e:de:f4:45:0a: 0c:38:9f:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJFNzYxMTAvBgNVBAUTKEQ0MTM3OEVGQ0NDRENBOEU2NTM3RTk1RjI3QUEzQjM1 Mzc1ODBBRjMwHhcNMjUwODE4MjEzNDM2WhcNMjUwODI1MjEzNDM2WjAYMRYwFAYD VQQDEw02OGEzOWM2Yy1iZWQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwdpRcDi1F8rTsB+4Sy96MdARx5Ar0FiA8cR1DEWnyAZjh9V3MNM5W0MZAIaU /VraWXhRnnJgf0AH5b4aSNclwca9dVFQEKOQJSbtlNDks0zjKPELRJLaLpnm9HEO FzFofJCo/XoOZXLraFffid9nEI42hOA7v2QjNdUoIE6CCF2gU4znC7PYjke8XmY1 FNlYPxJq6/LUkEUFgZfRTn3uT25B0vAnIz3TU6r+YU7z+DykXin9MbxEvv6uEw6X FNZCN13on6f+NfPXi19ilKcJrnPruw99xAQ/7/+p6PXQnjY0GkCnNjmXLck2XgwT ewNe/+5XJsekZqycdTKBg/Yq+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHNrZqHI 8jZEWw8wVFpWC+nRNCojMB8GA1UdIwQYMBaAFNQTeO/MzcqOZTfpXyeqOzU3WArz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkU3Ni84RjNDOUU2QTBE NzcxMUVCQkJBRTM0NDBDNEY5QUUwMi8xQk40Nzh6TnlvNWxOLWxmSjZvN05UZFlD dk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFCTjQ3OHpOeW81bE4tbGZKNm83TlRkWUN2TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MkU3Ni84RjNDOUU2QTBENzcxMUVCQkJBRTM0NDBDNEY5QUUwMi8xQk40Nzh6Tnlv NWxOLWxmSjZvN05UZFlDdk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAF8KjrRwt0w0JSsMIj5QYXyZRftAloFnrtBSU+depcwvQWJY6AV8gR siD6aN24t3JimYnBev5n0ngWdWJUVQ9XqGF7qgOPPNeYDDSfwAeoCZ7xf1jzRutN sL6IfWKx/CYlPBJjyWWeX1kqvEjlz+QrF+MIm/whgzovqO4X2mOak/PZvGSk8Y6K mEoXyLBSLyLhr21m61FfA71x8LISkx3EpgX9M16DxAuDSyQbbfdDbtQHeGie5TyS 7WeAoElcWOzQHX66UEJq7CRE692AFFLNv6acO4rkjoaBZdBHhWTLpRxswv3Ns/ED 4C481d6J/DYcsLl+VJo1Pt70RQoMOJ8a -----END CERTIFICATE-----Generated at Wed Aug 20 13:54:00 2025 by rpki-client