$ rpki-client -vvf rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.mft File: bIAwUr-WwqtKuqntJqOptGOWBaM.mft (raw, json) Hash identifier: q5oea2gePuX/FB/oh5RNiHu70ybrnxT1vsdfNksYKAI= Subject key identifier: C8:C0:0D:55:57:21:E3:BF:F3:BE:D3:2D:C8:40:9C:A4:25:5B:25:FC Authority key identifier: 6C:80:30:52:BF:96:C2:AB:4A:BA:A9:ED:26:A3:A9:B4:63:96:05:A3 Certificate issuer: /CN=A91F89A2/serialNumber=6C803052BF96C2AB4ABAA9ED26A3A9B4639605A3 Certificate serial: 012E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bIAwUr-WwqtKuqntJqOptGOWBaM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.mft Manifest number: 012C Signing time: Tue 09 Sep 2025 04:42:48 +0000 Manifest this update: Tue 09 Sep 2025 04:42:48 +0000 Manifest next update: Tue 16 Sep 2025 04:42:48 +0000 Files and hashes: 1: bIAwUr-WwqtKuqntJqOptGOWBaM.crl (hash: teYAdFiS/UHSgRK1JsGRLGjHmcdXisWoTUTV4YhuMS0=) 2: 0FBF57D2F16611EEB75BE640C4F9AE02.roa (hash: pARn59mvC3EFmnc54zsYhH0vh0pFsHJXtSQmvirMetQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.crl rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bIAwUr-WwqtKuqntJqOptGOWBaM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 04:42:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 302 (0x12e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F89A2, serialNumber=6C803052BF96C2AB4ABAA9ED26A3A9B4639605A3 Validity Not Before: Sep 9 04:42:48 2025 GMT Not After : Sep 16 04:42:48 2025 GMT Subject: CN=68bfb048-3738 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:e2:91:4c:d2:14:65:68:ca:65:f8:59:93:d7: d4:45:1d:fd:c6:8f:25:ea:65:31:48:39:7f:02:db: c2:74:1f:e8:59:48:0f:22:df:3b:6d:4e:04:46:98: 04:6d:c3:92:c7:8e:29:6a:7e:ad:37:e4:95:4c:65: 47:cb:8f:e0:a0:80:36:01:68:80:75:e2:da:60:50: b1:82:06:d1:83:00:54:d3:b8:07:c2:07:0a:12:34: a1:7b:10:b9:fc:e7:83:2e:78:d0:29:27:db:dd:5d: 98:a6:7c:82:0e:ef:8b:d0:c3:97:bd:f9:32:5d:6f: 96:c9:43:3e:09:a7:76:db:49:8c:ce:46:4c:d1:3b: 04:8b:af:71:0c:dc:90:d5:30:1e:f7:65:63:e8:65: 26:9d:47:bc:31:1b:fe:82:5e:16:5c:56:df:9e:53: 42:12:fd:2d:cd:d9:e5:78:fe:cf:80:16:7a:58:60: f3:91:f9:c8:a0:76:e7:01:9f:4e:81:a0:df:54:12: ed:05:b0:a9:d9:d0:dd:94:57:28:f3:f4:c8:30:3a: 87:78:dc:82:06:ba:5b:61:9f:28:c7:03:1e:e0:36: e9:09:1f:ff:d2:d0:3b:62:31:b7:ae:4f:5f:5f:28: e7:a5:11:2d:d0:23:11:db:a1:b4:bd:92:73:33:8f: 6f:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:C0:0D:55:57:21:E3:BF:F3:BE:D3:2D:C8:40:9C:A4:25:5B:25:FC X509v3 Authority Key Identifier: keyid:6C:80:30:52:BF:96:C2:AB:4A:BA:A9:ED:26:A3:A9:B4:63:96:05:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bIAwUr-WwqtKuqntJqOptGOWBaM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:dd:1d:a2:c7:d2:49:6d:9e:49:da:3b:ff:40:d1:b2:29:d9: 1c:db:f3:0c:04:51:b8:6c:c2:d8:0f:14:67:0b:ff:77:f4:de: bc:0b:5a:ff:72:5b:89:c0:44:11:6b:13:47:3a:46:a2:d2:e0: db:45:e7:bc:40:3f:5c:bc:20:0d:74:3c:a1:09:40:0a:27:63: de:55:97:e2:9f:23:fe:68:aa:27:bc:52:6d:f5:87:b8:61:da: d9:b9:12:cd:f7:d0:a0:ce:4e:7f:c0:33:f9:67:33:55:c6:20: 4a:7c:5b:7a:18:5e:dd:48:9a:14:f5:81:7a:4f:95:22:13:a8: d7:ae:9d:84:ad:f6:ad:76:5e:9b:16:64:41:1b:31:80:d4:04: 96:97:4b:7d:bc:bb:24:89:c0:91:e3:1d:e7:9b:35:0d:03:24: bd:bb:70:ca:d8:94:59:ae:c1:91:5c:18:72:ad:7a:7d:6f:8f: d2:e7:3c:09:b1:b1:80:b7:88:89:36:de:b2:60:05:4a:d7:1b: 43:12:eb:54:a2:fc:bd:bd:79:59:aa:f2:b1:5d:96:d1:16:f8: b6:16:f7:b8:9f:1b:d9:02:e5:e9:b1:7c:9f:0f:bd:04:e0:b7: 88:68:cb:29:af:1c:a2:b5:52:3e:fd:2b:10:49:d9:7c:34:7f: 80:a7:c0:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAS4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg5QTIxMTAvBgNVBAUTKDZDODAzMDUyQkY5NkMyQUI0QUJBQTlFRDI2QTNBOUI0 NjM5NjA1QTMwHhcNMjUwOTA5MDQ0MjQ4WhcNMjUwOTE2MDQ0MjQ4WjAYMRYwFAYD VQQDEw02OGJmYjA0OC0zNzM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq+KRTNIUZWjKZfhZk9fURR39xo8l6mUxSDl/AtvCdB/oWUgPIt87bU4ERpgE bcOSx44pan6tN+SVTGVHy4/goIA2AWiAdeLaYFCxggbRgwBU07gHwgcKEjShexC5 /OeDLnjQKSfb3V2YpnyCDu+L0MOXvfkyXW+WyUM+Cad220mMzkZM0TsEi69xDNyQ 1TAe92Vj6GUmnUe8MRv+gl4WXFbfnlNCEv0tzdnleP7PgBZ6WGDzkfnIoHbnAZ9O gaDfVBLtBbCp2dDdlFco8/TIMDqHeNyCBrpbYZ8oxwMe4DbpCR//0tA7YjG3rk9f XyjnpREt0CMR26G0vZJzM49vpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMjADVVX IeO/877TLchAnKQlWyX8MB8GA1UdIwQYMBaAFGyAMFK/lsKrSrqp7SajqbRjlgWj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODlBMi9CQ0JBRTBDRUM1 NDExMUVFQUJDMkMzODVDNEY5QUUwMi9iSUF3VXItV3dxdEt1cW50SnFPcHRHT1dC YU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JJQXdVci1Xd3F0S3VxbnRKcU9wdEdPV0JhTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODlBMi9CQ0JBRTBDRUM1NDExMUVFQUJDMkMzODVDNEY5QUUwMi9iSUF3VXItV3dx dEt1cW50SnFPcHRHT1dCYU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAK3R2ix9JJbZ5J2jv/QNGyKdkc2/MMBFG4bMLYDxRnC/939N68C1r/ cluJwEQRaxNHOkai0uDbRee8QD9cvCANdDyhCUAKJ2PeVZfinyP+aKonvFJt9Ye4 YdrZuRLN99Cgzk5/wDP5ZzNVxiBKfFt6GF7dSJoU9YF6T5UiE6jXrp2Erfatdl6b FmRBGzGA1ASWl0t9vLskicCR4x3nmzUNAyS9u3DK2JRZrsGRXBhyrXp9b4/S5zwJ sbGAt4iJNt6yYAVK1xtDEutUovy9vXlZqvKxXZbRFvi2Fve4nxvZAuXpsXyfD70E 4LeIaMsprxyitVI+/SsQSdl8NH+Ap8CK -----END CERTIFICATE-----Generated at Tue Sep 9 13:20:53 2025 by rpki-client