$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft File: BZ5vA652dqnQ8J1fbL25CGGFWlc.mft (raw, json) Hash identifier: EeEZttrAaDHmD1AW1DzVdsY6itw9Mq1Ut6zW3q27Nh8= Subject key identifier: 8A:1F:0D:7B:55:D6:5C:C4:F3:9A:34:46:B4:26:F2:9E:01:11:1A:31 Authority key identifier: 05:9E:6F:03:AE:76:76:A9:D0:F0:9D:5F:6C:BD:B9:08:61:85:5A:57 Certificate issuer: /CN=A91FF74B/serialNumber=059E6F03AE7676A9D0F09D5F6CBDB90861855A57 Certificate serial: 0700 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BZ5vA652dqnQ8J1fbL25CGGFWlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft Manifest number: 06E4 Signing time: Mon 08 Sep 2025 21:40:18 +0000 Manifest this update: Mon 08 Sep 2025 21:40:17 +0000 Manifest next update: Mon 15 Sep 2025 21:40:17 +0000 Files and hashes: 1: BZ5vA652dqnQ8J1fbL25CGGFWlc.crl (hash: zWHTxBlAgTeDdft+x3r5JyzdbcPe4kK6p7YsXeNGy6k=) 2: 7E0AB01C782C11EBB0B71971C4F9AE02.roa (hash: k3Hyvnta3NTSihzOI6GhNOzxp4Li4ZxAgK0C//8NE4o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.crl rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BZ5vA652dqnQ8J1fbL25CGGFWlc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 21:40:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1792 (0x700) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF74B, serialNumber=059E6F03AE7676A9D0F09D5F6CBDB90861855A57 Validity Not Before: Sep 8 21:40:17 2025 GMT Not After : Sep 15 21:40:17 2025 GMT Subject: CN=68bf4d42-08b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:83:cb:7c:9e:f2:c1:5d:7c:75:21:48:cf:a4: 75:c8:42:14:f8:b9:9c:97:85:6b:c2:77:e1:48:f9: 96:b4:0a:5e:6b:0b:9c:c1:bc:3c:de:18:85:6f:7a: 00:b3:69:9c:bc:12:a3:ff:f1:4f:8b:a7:35:41:3a: 2e:ed:0a:13:ed:3b:75:fd:8b:94:0c:41:82:ec:08: 2d:51:05:37:7e:6d:43:92:47:48:58:df:9d:9c:6f: f8:9a:4b:6d:75:ef:80:24:20:d0:e8:f0:b1:81:83: c7:97:e6:26:aa:84:78:b2:f4:63:7f:34:f3:87:a9: 90:08:4c:12:4b:5f:28:e1:8d:05:68:a9:3b:02:78: c3:be:36:d8:77:00:11:04:15:28:ff:41:a1:7f:2d: b2:29:de:e0:8a:58:6a:af:2a:cb:5f:6f:27:fb:5d: c5:01:12:2a:ff:77:3b:9f:34:3f:a4:9a:19:c6:8d: 14:d0:a6:9a:18:36:1f:ef:ac:d7:d6:96:28:3f:e5: 96:1a:a9:2b:f5:de:af:0a:e2:fb:38:a1:29:40:05: 49:09:4a:2e:04:4f:6f:92:af:7a:39:26:7d:ab:34: 3f:50:a0:91:01:d4:8e:08:dd:1f:52:75:fe:13:1f: ae:6a:e0:68:f8:dd:35:91:0c:11:01:ad:ed:17:a2: d4:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:1F:0D:7B:55:D6:5C:C4:F3:9A:34:46:B4:26:F2:9E:01:11:1A:31 X509v3 Authority Key Identifier: keyid:05:9E:6F:03:AE:76:76:A9:D0:F0:9D:5F:6C:BD:B9:08:61:85:5A:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BZ5vA652dqnQ8J1fbL25CGGFWlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:f0:73:b1:ba:e3:9a:bf:25:74:3b:e1:cd:c2:e1:4a:df:32: 9e:70:cc:78:bc:ff:99:71:5d:92:95:60:ef:a0:bd:0d:fc:3a: eb:ec:22:7a:09:1e:e7:cd:cc:5d:43:3e:c8:e9:68:e2:5c:24: 13:e4:e1:ae:ef:53:bf:0f:39:0f:50:82:1b:8e:42:ed:d3:28: da:f6:3b:d0:17:2b:16:21:27:f3:c4:d3:7e:0f:e3:12:96:b2: c1:93:21:3b:2a:3c:b9:fd:f4:af:96:c5:c8:be:63:ea:fe:b1: 4f:48:f9:41:54:ce:c1:03:e4:29:33:e7:48:34:25:64:88:c8: a0:63:df:39:44:3e:40:05:c3:a9:8e:3c:67:ea:4c:50:dd:2c: cb:6a:61:54:36:68:2c:95:85:95:bd:9c:04:5c:14:e9:d9:9e: 6d:d9:78:56:8b:54:7c:02:8f:18:1d:77:62:34:b3:89:54:05: 38:6c:24:8f:06:ca:ee:b2:68:fc:65:26:72:dc:fe:f3:02:11: ea:7f:91:80:82:f4:f5:90:10:51:57:81:38:d4:4c:18:ca:f6: 2f:1f:87:fe:77:de:e9:7f:9b:34:fa:50:60:1e:9d:b6:47:e1: aa:28:05:7f:4c:b1:02:05:4d:1b:79:94:76:f9:9a:fc:3e:98: 6c:f3:f1:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBwAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY3NEIxMTAvBgNVBAUTKDA1OUU2RjAzQUU3Njc2QTlEMEYwOUQ1RjZDQkRCOTA4 NjE4NTVBNTcwHhcNMjUwOTA4MjE0MDE3WhcNMjUwOTE1MjE0MDE3WjAYMRYwFAYD VQQDEw02OGJmNGQ0Mi0wOGI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz4PLfJ7ywV18dSFIz6R1yEIU+Lmcl4VrwnfhSPmWtApeawucwbw83hiFb3oA s2mcvBKj//FPi6c1QTou7QoT7Tt1/YuUDEGC7AgtUQU3fm1DkkdIWN+dnG/4mktt de+AJCDQ6PCxgYPHl+YmqoR4svRjfzTzh6mQCEwSS18o4Y0FaKk7AnjDvjbYdwAR BBUo/0Ghfy2yKd7gilhqryrLX28n+13FARIq/3c7nzQ/pJoZxo0U0KaaGDYf76zX 1pYoP+WWGqkr9d6vCuL7OKEpQAVJCUouBE9vkq96OSZ9qzQ/UKCRAdSOCN0fUnX+ Ex+uauBo+N01kQwRAa3tF6LUiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIofDXtV 1lzE85o0RrQm8p4BERoxMB8GA1UdIwQYMBaAFAWebwOudnap0PCdX2y9uQhhhVpX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjc0Qi82MUEzMzg0QTc4 MkMxMUVCQUMwNEY2NzJDNEY5QUUwMi9CWjV2QTY1MmRxblE4SjFmYkwyNUNHR0ZX bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JaNXZBNjUyZHFuUThKMWZiTDI1Q0dHRldsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Rjc0Qi82MUEzMzg0QTc4MkMxMUVCQUMwNEY2NzJDNEY5QUUwMi9CWjV2QTY1MmRx blE4SjFmYkwyNUNHR0ZXbGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAR8HOxuuOavyV0O+HNwuFK3zKecMx4vP+ZcV2SlWDvoL0N/Drr7CJ6 CR7nzcxdQz7I6WjiXCQT5OGu71O/DzkPUIIbjkLt0yja9jvQFysWISfzxNN+D+MS lrLBkyE7Kjy5/fSvlsXIvmPq/rFPSPlBVM7BA+QpM+dINCVkiMigY985RD5ABcOp jjxn6kxQ3SzLamFUNmgslYWVvZwEXBTp2Z5t2XhWi1R8Ao8YHXdiNLOJVAU4bCSP Bsrusmj8ZSZy3P7zAhHqf5GAgvT1kBBRV4E41EwYyvYvH4f+d97pf5s0+lBgHp22 R+GqKAV/TLECBU0beZR2+Zr8Pphs8/G1 -----END CERTIFICATE-----Generated at Tue Sep 9 09:52:27 2025 by rpki-client