$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft File: BZ5vA652dqnQ8J1fbL25CGGFWlc.mft (raw, json) Hash identifier: QU3Ad6obpOEqILzuEao1RP6WMK6IhC+dKliBCWZYIUA= Subject key identifier: 2E:85:14:30:FD:DD:D8:A0:60:D3:05:AB:70:30:56:20:29:E5:DE:57 Authority key identifier: 05:9E:6F:03:AE:76:76:A9:D0:F0:9D:5F:6C:BD:B9:08:61:85:5A:57 Certificate issuer: /CN=A91FF74B/serialNumber=059E6F03AE7676A9D0F09D5F6CBDB90861855A57 Certificate serial: 06E8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BZ5vA652dqnQ8J1fbL25CGGFWlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft Manifest number: 06CC Signing time: Thu 24 Jul 2025 21:54:56 +0000 Manifest this update: Thu 24 Jul 2025 21:54:55 +0000 Manifest next update: Thu 31 Jul 2025 21:54:55 +0000 Files and hashes: 1: BZ5vA652dqnQ8J1fbL25CGGFWlc.crl (hash: gKvoUJVWPE+kzmbbKAEFp5wZL4Uco0xjzUuubCWr46Y=) 2: 7E0AB01C782C11EBB0B71971C4F9AE02.roa (hash: k3Hyvnta3NTSihzOI6GhNOzxp4Li4ZxAgK0C//8NE4o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.crl rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BZ5vA652dqnQ8J1fbL25CGGFWlc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 21:54:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1768 (0x6e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF74B, serialNumber=059E6F03AE7676A9D0F09D5F6CBDB90861855A57 Validity Not Before: Jul 24 21:54:55 2025 GMT Not After : Jul 31 21:54:55 2025 GMT Subject: CN=6882abb0-fe16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:d4:1f:fc:b8:59:26:02:5c:23:d0:ae:96:1e: e9:ed:a3:1b:09:ea:76:9d:18:f3:75:52:80:cb:d4: 9b:f9:df:0d:4d:89:52:0d:a5:8b:f8:e9:84:5d:e5: ff:f6:ab:fd:fc:e5:9f:4d:c5:49:32:b9:85:8f:ae: ff:90:b6:ae:e3:5f:09:68:b7:a1:62:e5:50:87:08: 69:39:90:de:90:cc:d7:19:00:9a:b5:57:3b:f7:17: 8a:aa:14:82:89:6b:58:71:5e:3c:91:59:86:3f:77: 01:b7:67:a0:65:f6:da:01:e2:07:65:73:9c:43:70: e0:88:54:39:c7:c4:92:06:be:87:0d:58:ed:b2:e6: 99:36:76:40:1e:1d:58:fa:6f:02:37:30:a2:5b:76: ff:92:6a:36:d1:eb:d5:08:86:e8:9b:15:0e:36:22: 36:e9:97:fd:36:91:cb:5b:0b:b2:26:27:fd:a3:c0: 86:54:52:a6:7d:cb:33:8d:64:88:10:e0:8c:9a:eb: 42:be:5b:1b:7a:c1:b5:c1:9a:7b:f9:b7:43:ad:a6: 33:a9:a3:fa:20:9e:3f:0d:de:e0:2b:66:01:8c:dc: 88:2b:f8:39:54:bc:c6:da:d1:17:ca:3f:69:0d:dd: df:45:c8:00:4e:19:53:56:81:a0:96:8e:65:fd:69: 82:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:85:14:30:FD:DD:D8:A0:60:D3:05:AB:70:30:56:20:29:E5:DE:57 X509v3 Authority Key Identifier: keyid:05:9E:6F:03:AE:76:76:A9:D0:F0:9D:5F:6C:BD:B9:08:61:85:5A:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BZ5vA652dqnQ8J1fbL25CGGFWlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:33:6e:d3:fb:8b:98:04:ad:7a:c7:e4:eb:10:92:f5:46:59: c4:d9:7b:3b:ab:74:4e:fa:3a:cc:43:8a:46:71:35:fe:88:34: 41:76:ee:17:b7:61:45:13:e2:07:dc:12:bc:46:2b:89:47:bf: 07:7e:2d:95:4d:89:a1:f5:a7:d9:1c:a1:09:50:06:1b:33:e7: 52:83:b5:12:da:3d:e8:3e:fb:7c:d7:f8:13:6d:e9:03:62:53: 41:56:b1:cf:41:2b:9e:81:2d:27:0d:f3:4b:44:56:2d:33:4f: 0e:51:57:52:34:ce:30:0a:ac:bd:c2:1d:f1:ee:de:53:02:d6: d5:51:85:30:64:04:46:f1:96:07:4e:0a:f9:22:11:03:10:43: b6:9e:4e:41:9b:24:d5:75:0d:e1:b3:76:fb:c1:2a:11:b5:55: f2:54:cb:4f:0b:dc:dd:05:8f:1a:29:70:ea:b1:8c:3c:8c:89: 10:02:ff:92:50:a7:68:5c:11:0b:08:30:d9:87:c8:98:37:98: 81:18:80:fc:24:67:5b:22:5e:f6:9d:0f:94:d3:de:19:39:2d: 6a:f2:79:d6:59:ab:56:f6:19:f1:50:f8:b8:45:ed:7e:f0:1d: 86:57:80:ae:c3:49:4f:62:63:dd:1f:e9:72:04:18:e9:6f:7a: 03:07:f2:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBugwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY3NEIxMTAvBgNVBAUTKDA1OUU2RjAzQUU3Njc2QTlEMEYwOUQ1RjZDQkRCOTA4 NjE4NTVBNTcwHhcNMjUwNzI0MjE1NDU1WhcNMjUwNzMxMjE1NDU1WjAYMRYwFAYD VQQDEw02ODgyYWJiMC1mZTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAutQf/LhZJgJcI9Culh7p7aMbCep2nRjzdVKAy9Sb+d8NTYlSDaWL+OmEXeX/ 9qv9/OWfTcVJMrmFj67/kLau418JaLehYuVQhwhpOZDekMzXGQCatVc79xeKqhSC iWtYcV48kVmGP3cBt2egZfbaAeIHZXOcQ3DgiFQ5x8SSBr6HDVjtsuaZNnZAHh1Y +m8CNzCiW3b/kmo20evVCIbomxUONiI26Zf9NpHLWwuyJif9o8CGVFKmfcszjWSI EOCMmutCvlsbesG1wZp7+bdDraYzqaP6IJ4/Dd7gK2YBjNyIK/g5VLzG2tEXyj9p Dd3fRcgAThlTVoGglo5l/WmCpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC6FFDD9 3digYNMFq3AwViAp5d5XMB8GA1UdIwQYMBaAFAWebwOudnap0PCdX2y9uQhhhVpX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjc0Qi82MUEzMzg0QTc4 MkMxMUVCQUMwNEY2NzJDNEY5QUUwMi9CWjV2QTY1MmRxblE4SjFmYkwyNUNHR0ZX bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JaNXZBNjUyZHFuUThKMWZiTDI1Q0dHRldsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Rjc0Qi82MUEzMzg0QTc4MkMxMUVCQUMwNEY2NzJDNEY5QUUwMi9CWjV2QTY1MmRx blE4SjFmYkwyNUNHR0ZXbGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmM27T+4uYBK16x+TrEJL1RlnE2Xs7q3RO+jrMQ4pGcTX+iDRBdu4X t2FFE+IH3BK8RiuJR78Hfi2VTYmh9afZHKEJUAYbM+dSg7US2j3oPvt81/gTbekD YlNBVrHPQSuegS0nDfNLRFYtM08OUVdSNM4wCqy9wh3x7t5TAtbVUYUwZARG8ZYH Tgr5IhEDEEO2nk5BmyTVdQ3hs3b7wSoRtVXyVMtPC9zdBY8aKXDqsYw8jIkQAv+S UKdoXBELCDDZh8iYN5iBGID8JGdbIl72nQ+U094ZOS1q8nnWWatW9hnxUPi4Re1+ 8B2GV4Cuw0lPYmPdH+lyBBjpb3oDB/J0 -----END CERTIFICATE-----Generated at Sat Jul 26 01:59:38 2025 by rpki-client