$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft File: BZ5vA652dqnQ8J1fbL25CGGFWlc.mft (raw, json) Hash identifier: xw3sDT8aJEaVnRrDUY6pb7uX+IXQMnsjQoG028MFaqM= Subject key identifier: 5C:E8:99:4D:FC:F1:EA:34:54:82:FF:B6:57:33:F3:18:CE:51:FD:25 Authority key identifier: 05:9E:6F:03:AE:76:76:A9:D0:F0:9D:5F:6C:BD:B9:08:61:85:5A:57 Certificate issuer: /CN=A91FF74B/serialNumber=059E6F03AE7676A9D0F09D5F6CBDB90861855A57 Certificate serial: 06E7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BZ5vA652dqnQ8J1fbL25CGGFWlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft Manifest number: 06CB Signing time: Tue 22 Jul 2025 22:00:52 +0000 Manifest this update: Tue 22 Jul 2025 22:00:51 +0000 Manifest next update: Tue 29 Jul 2025 22:00:51 +0000 Files and hashes: 1: BZ5vA652dqnQ8J1fbL25CGGFWlc.crl (hash: jWyCh+Z56DR1SO5Uwsu+WOd/Nh3yRIWLnQ6xyViHBbo=) 2: 7E0AB01C782C11EBB0B71971C4F9AE02.roa (hash: k3Hyvnta3NTSihzOI6GhNOzxp4Li4ZxAgK0C//8NE4o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.crl rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BZ5vA652dqnQ8J1fbL25CGGFWlc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 22:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1767 (0x6e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF74B, serialNumber=059E6F03AE7676A9D0F09D5F6CBDB90861855A57 Validity Not Before: Jul 22 22:00:51 2025 GMT Not After : Jul 29 22:00:51 2025 GMT Subject: CN=68800a14-f590 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:e8:ef:7e:60:0f:34:cf:fb:81:00:bb:0b:ad: d8:de:64:ef:3c:68:ea:1f:68:33:9b:65:91:05:c9: 62:e0:cb:76:c8:53:7b:43:54:bb:de:a2:c1:86:88: 4e:21:ef:06:56:5d:51:c4:34:03:d3:3a:a8:1e:bb: ca:98:bf:0e:53:4e:f0:ed:97:a1:3c:bd:62:b9:b0: 7a:2b:88:90:2c:d2:67:66:35:3b:0b:13:81:e4:61: c8:b7:74:2f:cd:54:0f:05:4d:53:15:4f:6d:2e:64: 7b:99:d2:8a:37:84:bd:15:1f:ee:2c:ef:75:5f:0b: 91:09:62:5e:04:3d:c9:f2:e2:b3:18:45:62:68:f7: b4:61:b0:a4:3f:f6:cc:56:a8:b8:79:d2:6f:23:b2: 5a:d6:1c:19:78:00:55:a2:d6:ea:82:d1:7b:e9:f4: 58:3e:36:ed:e9:1f:c7:cc:02:b8:d1:1d:df:e6:44: da:24:7d:d6:f8:35:2d:35:b2:cf:84:2d:52:16:33: ed:c7:41:ab:f0:aa:af:a3:46:f7:32:4c:10:a2:e6: f8:37:20:c5:6c:41:84:aa:da:bc:b8:fb:8a:d4:02: 37:a3:69:78:39:74:6c:74:f6:49:49:88:43:b4:6e: 29:e9:ab:7b:0d:b7:ed:bb:74:34:5e:01:db:1f:f9: 1e:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:E8:99:4D:FC:F1:EA:34:54:82:FF:B6:57:33:F3:18:CE:51:FD:25 X509v3 Authority Key Identifier: keyid:05:9E:6F:03:AE:76:76:A9:D0:F0:9D:5F:6C:BD:B9:08:61:85:5A:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BZ5vA652dqnQ8J1fbL25CGGFWlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:8e:22:0d:95:3c:b0:17:3d:94:60:c5:93:e8:47:26:c5:ee: 63:4a:12:f3:be:38:7c:d6:2b:07:2d:2f:be:8d:d0:8e:aa:ef: ef:f6:b2:9b:90:d4:45:84:39:15:2c:73:46:56:e5:ed:9b:ef: 73:fe:a9:df:7c:22:fb:29:c3:dc:d1:f8:bc:b9:e6:a7:b4:ba: 35:48:17:9e:4d:64:ed:f4:9a:cb:8e:24:4e:72:5a:79:58:2b: 5c:ba:94:c9:63:c7:72:b8:7c:e5:6b:e4:91:04:f2:d2:9f:be: b3:33:ee:7c:5d:32:f4:a2:20:79:cd:07:e7:57:f5:d9:65:f1: ee:09:25:b4:92:bb:b4:17:0b:bb:74:c0:a8:ad:3b:15:36:03: 61:6a:da:ee:ec:58:e4:de:2e:96:1f:a3:1b:f2:5b:66:51:69: 71:4e:3a:d5:83:ec:c0:7d:7f:8e:4d:a3:d3:25:97:0b:d0:e7: 01:df:46:b7:68:05:a1:ee:12:9f:26:b3:d8:ab:7e:40:0c:48: 87:cb:91:e1:a0:c8:3e:b3:1d:8c:48:b4:ae:e4:3a:bc:1e:16: a9:77:b8:8c:bd:4f:5a:04:1b:c8:fb:ad:a6:82:f0:1f:13:1c: 49:44:df:72:dd:f9:74:db:2d:f8:bf:a1:45:75:e0:9a:ae:12: ed:95:b6:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBucwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY3NEIxMTAvBgNVBAUTKDA1OUU2RjAzQUU3Njc2QTlEMEYwOUQ1RjZDQkRCOTA4 NjE4NTVBNTcwHhcNMjUwNzIyMjIwMDUxWhcNMjUwNzI5MjIwMDUxWjAYMRYwFAYD VQQDEw02ODgwMGExNC1mNTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx+jvfmAPNM/7gQC7C63Y3mTvPGjqH2gzm2WRBcli4Mt2yFN7Q1S73qLBhohO Ie8GVl1RxDQD0zqoHrvKmL8OU07w7ZehPL1iubB6K4iQLNJnZjU7CxOB5GHIt3Qv zVQPBU1TFU9tLmR7mdKKN4S9FR/uLO91XwuRCWJeBD3J8uKzGEViaPe0YbCkP/bM Vqi4edJvI7Ja1hwZeABVotbqgtF76fRYPjbt6R/HzAK40R3f5kTaJH3W+DUtNbLP hC1SFjPtx0Gr8Kqvo0b3MkwQoub4NyDFbEGEqtq8uPuK1AI3o2l4OXRsdPZJSYhD tG4p6at7Dbftu3Q0XgHbH/keIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFzomU38 8eo0VIL/tlcz8xjOUf0lMB8GA1UdIwQYMBaAFAWebwOudnap0PCdX2y9uQhhhVpX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjc0Qi82MUEzMzg0QTc4 MkMxMUVCQUMwNEY2NzJDNEY5QUUwMi9CWjV2QTY1MmRxblE4SjFmYkwyNUNHR0ZX bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JaNXZBNjUyZHFuUThKMWZiTDI1Q0dHRldsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Rjc0Qi82MUEzMzg0QTc4MkMxMUVCQUMwNEY2NzJDNEY5QUUwMi9CWjV2QTY1MmRx blE4SjFmYkwyNUNHR0ZXbGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcjiINlTywFz2UYMWT6Ecmxe5jShLzvjh81isHLS++jdCOqu/v9rKb kNRFhDkVLHNGVuXtm+9z/qnffCL7KcPc0fi8ueantLo1SBeeTWTt9JrLjiROclp5 WCtcupTJY8dyuHzla+SRBPLSn76zM+58XTL0oiB5zQfnV/XZZfHuCSW0kru0Fwu7 dMCorTsVNgNhatru7Fjk3i6WH6Mb8ltmUWlxTjrVg+zAfX+OTaPTJZcL0OcB30a3 aAWh7hKfJrPYq35ADEiHy5HhoMg+sx2MSLSu5Dq8Hhapd7iMvU9aBBvI+62mgvAf ExxJRN9y3fl02y34v6FFdeCarhLtlbao -----END CERTIFICATE-----Generated at Thu Jul 24 05:03:09 2025 by rpki-client