$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3D37/5EE9782ADCEE11ED8C38D031C4F9AE02/bPYEPvYahE8I4lOhk9XZRlSWJ50.mft File: bPYEPvYahE8I4lOhk9XZRlSWJ50.mft (raw, json) Hash identifier: 1n7HVieO/RJs5cRdSAFp1kZCGazJvP+JALO2/pqa8No= Subject key identifier: 25:B9:8C:F3:E3:10:74:0E:6A:BA:4D:E8:73:DA:C2:3D:EB:CF:99:4A Authority key identifier: 6C:F6:04:3E:F6:1A:84:4F:08:E2:53:A1:93:D5:D9:46:54:96:27:9D Certificate issuer: /CN=A91F3D37/serialNumber=6CF6043EF61A844F08E253A193D5D9465496279D Certificate serial: 01C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bPYEPvYahE8I4lOhk9XZRlSWJ50.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3D37/5EE9782ADCEE11ED8C38D031C4F9AE02/bPYEPvYahE8I4lOhk9XZRlSWJ50.mft Manifest number: 01C5 Signing time: Wed 17 Sep 2025 03:26:30 +0000 Manifest this update: Wed 17 Sep 2025 03:26:29 +0000 Manifest next update: Wed 24 Sep 2025 03:26:29 +0000 Files and hashes: 1: bPYEPvYahE8I4lOhk9XZRlSWJ50.crl (hash: OGF4H5w3Ng8vyoMenTUkadtFklwNOTJtDpQvHJe29XY=) 2: 6F67CF8CDCF111ED9828F232C4F9AE02.roa (hash: UUhAaQeYrl7H0iCSeqj7JAOZrw6JcIfsjlzbvaWf61k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3D37/5EE9782ADCEE11ED8C38D031C4F9AE02/bPYEPvYahE8I4lOhk9XZRlSWJ50.crl rsync://rpki.apnic.net/member_repository/A91F3D37/5EE9782ADCEE11ED8C38D031C4F9AE02/bPYEPvYahE8I4lOhk9XZRlSWJ50.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bPYEPvYahE8I4lOhk9XZRlSWJ50.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 03:26:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 456 (0x1c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3D37, serialNumber=6CF6043EF61A844F08E253A193D5D9465496279D Validity Not Before: Sep 17 03:26:29 2025 GMT Not After : Sep 24 03:26:29 2025 GMT Subject: CN=68ca2a65-9feb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:c9:46:26:83:b7:18:09:ac:a7:86:2c:a5:b1: 45:22:b8:32:ed:05:89:98:48:65:bc:57:7c:4d:33: a2:7f:3b:b1:1f:74:b2:75:49:28:ea:89:b6:67:fb: 0b:b6:fd:1d:74:00:75:dc:41:5b:8c:0d:e4:23:95: bf:16:50:5a:b4:b1:bf:63:89:05:27:dc:28:9a:8c: 7b:fc:25:08:f9:04:3e:29:36:03:62:f2:e9:ff:16: ad:df:cd:7e:b6:44:5b:e0:a0:1a:66:c1:c5:8a:43: 45:11:76:d1:61:3d:2f:38:4b:f1:de:c6:2c:2b:93: e1:29:99:97:37:c8:41:03:25:67:60:e4:11:d7:5c: 39:51:f4:7b:0f:c7:b3:0d:17:37:84:14:0c:77:90: a4:2f:d2:bd:f3:da:b4:a4:bf:3a:88:54:d5:c7:b2: 4a:99:55:9c:bd:08:b5:ac:d1:ec:99:05:2c:92:40: f7:d1:e3:af:93:a1:9b:1d:c4:b2:24:37:7b:f9:7c: fb:06:37:df:0a:26:ef:f5:1f:00:f6:65:24:31:70: e2:b1:5d:a8:20:8c:2a:7f:53:ef:26:e4:69:f2:b3: 1e:db:b6:c4:53:9f:e2:d6:28:11:4f:60:2d:72:69: ca:b1:6f:b5:40:63:86:0b:36:bc:eb:22:9c:2b:43: be:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:B9:8C:F3:E3:10:74:0E:6A:BA:4D:E8:73:DA:C2:3D:EB:CF:99:4A X509v3 Authority Key Identifier: keyid:6C:F6:04:3E:F6:1A:84:4F:08:E2:53:A1:93:D5:D9:46:54:96:27:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3D37/5EE9782ADCEE11ED8C38D031C4F9AE02/bPYEPvYahE8I4lOhk9XZRlSWJ50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bPYEPvYahE8I4lOhk9XZRlSWJ50.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3D37/5EE9782ADCEE11ED8C38D031C4F9AE02/bPYEPvYahE8I4lOhk9XZRlSWJ50.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:a9:1a:27:6a:ed:e0:83:df:99:3f:db:cb:fb:c6:bc:ba:49: 65:ab:62:ec:94:06:63:69:15:cf:0e:f1:28:c6:7b:12:24:ea: 50:1e:9b:44:ce:44:4f:27:f7:fb:07:9f:29:f8:a3:d8:46:2e: 8f:1e:c6:66:a8:0c:fc:60:27:21:dc:11:23:87:ab:85:96:f8: 44:95:43:35:6c:96:0c:d5:cd:ac:af:4a:c7:b4:a1:a5:ea:37: dc:2a:af:73:95:96:ab:f5:fa:ad:27:b5:7b:35:2a:b3:7a:f6: 1f:10:3c:63:0a:db:de:52:3f:1a:dc:38:ae:1e:a6:61:d2:e2: 13:8d:88:f0:e0:99:a9:47:7c:8f:08:47:4f:ba:27:f9:4b:d1: 15:2c:c3:81:36:ce:d4:6f:04:f7:1d:cb:86:4c:d9:86:f9:82: 3f:f8:f3:04:3b:88:d5:32:d9:55:7e:d2:f7:92:dc:30:5f:5d: 4f:79:ff:51:04:1a:dc:38:59:ff:26:8d:40:df:f0:5b:1b:e7: 2e:d6:9b:f6:42:b6:25:d0:ca:76:b8:13:77:e5:2d:e6:c6:4c: 79:df:e7:eb:90:f4:b0:fd:5a:f5:fe:f2:a3:7e:ac:ea:33:61: 08:cb:41:08:19:f9:2c:9f:44:b8:95:f6:c5:21:22:fc:41:f6: ef:ab:72:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNEMzcxMTAvBgNVBAUTKDZDRjYwNDNFRjYxQTg0NEYwOEUyNTNBMTkzRDVEOTQ2 NTQ5NjI3OUQwHhcNMjUwOTE3MDMyNjI5WhcNMjUwOTI0MDMyNjI5WjAYMRYwFAYD VQQDEw02OGNhMmE2NS05ZmViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxclGJoO3GAmsp4YspbFFIrgy7QWJmEhlvFd8TTOifzuxH3SydUko6om2Z/sL tv0ddAB13EFbjA3kI5W/FlBatLG/Y4kFJ9womox7/CUI+QQ+KTYDYvLp/xat381+ tkRb4KAaZsHFikNFEXbRYT0vOEvx3sYsK5PhKZmXN8hBAyVnYOQR11w5UfR7D8ez DRc3hBQMd5CkL9K989q0pL86iFTVx7JKmVWcvQi1rNHsmQUskkD30eOvk6GbHcSy JDd7+Xz7BjffCibv9R8A9mUkMXDisV2oIIwqf1PvJuRp8rMe27bEU5/i1igRT2At cmnKsW+1QGOGCza86yKcK0O+rwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCW5jPPj EHQOarpN6HPawj3rz5lKMB8GA1UdIwQYMBaAFGz2BD72GoRPCOJToZPV2UZUlied MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0QzNy81RUU5NzgyQURD RUUxMUVEOEMzOEQwMzFDNEY5QUUwMi9iUFlFUHZZYWhFOEk0bE9oazlYWlJsU1dK NTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JQWUVQdllhaEU4STRsT2hrOVhaUmxTV0o1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG M0QzNy81RUU5NzgyQURDRUUxMUVEOEMzOEQwMzFDNEY5QUUwMi9iUFlFUHZZYWhF OEk0bE9oazlYWlJsU1dKNTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9qRonau3gg9+ZP9vL+8a8ukllq2LslAZjaRXPDvEoxnsSJOpQHptE zkRPJ/f7B58p+KPYRi6PHsZmqAz8YCch3BEjh6uFlvhElUM1bJYM1c2sr0rHtKGl 6jfcKq9zlZar9fqtJ7V7NSqzevYfEDxjCtveUj8a3DiuHqZh0uITjYjw4JmpR3yP CEdPuif5S9EVLMOBNs7UbwT3HcuGTNmG+YI/+PMEO4jVMtlVftL3ktwwX11Pef9R BBrcOFn/Jo1A3/BbG+cu1pv2QrYl0Mp2uBN35S3mxkx53+frkPSw/Vr1/vKjfqzq M2EIy0EIGfksn0S4lfbFISL8Qfbvq3LD -----END CERTIFICATE-----Generated at Thu Sep 18 21:51:10 2025 by rpki-client