$ rpki-client -vvf rpki.apnic.net/member_repository/A91166D1/ABDA5142E71511ECB82CB06EC4F9AE02/bgopAGEwM5uDbSj3ABgC9xpaTkI.mft File: bgopAGEwM5uDbSj3ABgC9xpaTkI.mft (raw, json) Hash identifier: 3pUMaQ1jaD659D8t2AlqjYmvsVUAN3EwGSWy9DGDXeQ= Subject key identifier: 60:C9:97:7A:AB:FF:49:36:90:10:F0:4F:BE:C8:5F:6E:D5:84:1F:91 Authority key identifier: 6E:0A:29:00:61:30:33:9B:83:6D:28:F7:00:18:02:F7:1A:5A:4E:42 Certificate issuer: /CN=A91166D1/serialNumber=6E0A29006130339B836D28F7001802F71A5A4E42 Certificate serial: 02BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bgopAGEwM5uDbSj3ABgC9xpaTkI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91166D1/ABDA5142E71511ECB82CB06EC4F9AE02/bgopAGEwM5uDbSj3ABgC9xpaTkI.mft Manifest number: 02BA Signing time: Sat 29 Mar 2025 01:41:59 +0000 Manifest this update: Sat 29 Mar 2025 01:41:58 +0000 Manifest next update: Sat 05 Apr 2025 01:41:58 +0000 Files and hashes: 1: bgopAGEwM5uDbSj3ABgC9xpaTkI.crl (hash: UnSe8wmMBGo+1TRxBHcfBXurN4eiP8RL35LHKE4v91g=) 2: 3C3A98A4E71C11EC9128DF0BC4F9AE02.roa (hash: mDMM1HWL4v8E6URAbVQH/swVIK5fppcG8TmZuHg6PMs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91166D1/ABDA5142E71511ECB82CB06EC4F9AE02/bgopAGEwM5uDbSj3ABgC9xpaTkI.crl rsync://rpki.apnic.net/member_repository/A91166D1/ABDA5142E71511ECB82CB06EC4F9AE02/bgopAGEwM5uDbSj3ABgC9xpaTkI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bgopAGEwM5uDbSj3ABgC9xpaTkI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 01:41:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 701 (0x2bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91166D1 Validity Not Before: Mar 29 01:41:58 2025 GMT Not After : Apr 5 01:41:58 2025 GMT Subject: CN=67e74fe6-1a1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:a7:1a:91:5d:2d:0c:b9:33:fc:41:fe:35:c8: 3a:a8:4a:64:e3:c0:72:50:8a:a5:be:09:4b:95:06: ba:50:e1:94:93:50:ad:5b:c3:52:ea:68:af:25:ee: 16:ea:83:bb:30:c5:32:87:34:db:18:07:8d:64:d2: 1c:5e:bc:3c:87:ec:46:21:cc:07:22:cd:f7:03:51: 4e:26:13:b2:b6:a5:99:75:01:4e:f7:44:65:f4:04: 2d:b8:29:90:ca:69:eb:df:74:da:79:36:97:2f:64: 62:0d:48:a0:f4:ae:f2:20:5a:e7:c2:84:d8:88:56: fa:83:47:c7:58:74:e8:c5:44:ab:3d:dc:98:97:a9: 0d:35:eb:ef:53:fd:53:b7:6e:c3:9e:8c:ba:a6:44: b6:4a:e6:dd:d6:9b:5c:a3:a5:3b:cf:aa:45:7a:be: da:e4:3f:8a:95:7a:8e:f6:f6:8e:32:78:20:36:2b: ed:b0:59:3f:64:24:86:40:e9:ed:c8:85:02:4e:df: ef:bb:20:94:d2:f1:a5:11:58:9e:b3:78:9b:45:8a: 15:3a:cd:f5:73:ab:74:4d:4d:70:b3:97:b8:fc:9d: 8a:3f:88:e2:91:04:eb:df:a1:ac:75:64:88:61:af: 46:ef:ac:cd:07:cb:78:63:79:bb:a0:3c:ce:86:f5: 56:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:C9:97:7A:AB:FF:49:36:90:10:F0:4F:BE:C8:5F:6E:D5:84:1F:91 X509v3 Authority Key Identifier: keyid:6E:0A:29:00:61:30:33:9B:83:6D:28:F7:00:18:02:F7:1A:5A:4E:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91166D1/ABDA5142E71511ECB82CB06EC4F9AE02/bgopAGEwM5uDbSj3ABgC9xpaTkI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bgopAGEwM5uDbSj3ABgC9xpaTkI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91166D1/ABDA5142E71511ECB82CB06EC4F9AE02/bgopAGEwM5uDbSj3ABgC9xpaTkI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:de:74:2d:9b:c6:81:3e:4f:ab:c7:6a:2a:5f:74:98:16:79: 1e:f1:93:98:d8:74:86:a8:6a:dc:dc:a0:64:13:6a:54:d1:8e: 0a:97:6b:94:e6:21:5e:f0:c4:5c:b1:07:63:ea:ec:f7:4f:16: 59:24:07:db:e1:c2:7b:68:6a:d1:a9:bf:4d:36:cf:db:12:34: a1:8a:e5:ee:93:6d:d0:e1:42:5c:87:c3:c4:3f:4a:9d:45:7b: dd:3b:3a:2d:93:93:17:62:d5:b5:62:de:b9:66:63:d0:8a:0d: ef:7c:91:c5:b5:4c:16:bd:d9:70:10:d6:3d:34:5a:85:38:9f: 51:5c:66:8e:be:92:a7:63:f5:8f:3f:0a:30:f2:7e:34:84:0c: aa:91:8b:d2:bf:8e:a9:bf:70:c7:4e:fd:c9:13:3c:49:56:ea: 3d:93:3a:68:77:1c:63:04:f2:eb:2e:73:6c:b2:77:02:f7:f5: 78:9d:50:5e:3a:28:b7:ea:55:15:15:e0:55:62:0c:f6:97:c4: 2e:bc:ba:38:b2:64:78:bb:fb:b0:26:63:c2:37:c5:e1:03:4d: 24:a6:9e:be:8e:27:05:8a:b2:0e:74:8b:9a:b2:5c:18:7a:fd: 55:ec:46:05:b4:87:59:3d:2f:33:e5:c4:0c:47:64:ec:d1:76: e5:12:b6:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAr0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY2RDExMTAvBgNVBAUTKDZFMEEyOTAwNjEzMDMzOUI4MzZEMjhGNzAwMTgwMkY3 MUE1QTRFNDIwHhcNMjUwMzI5MDE0MTU4WhcNMjUwNDA1MDE0MTU4WjAYMRYwFAYD VQQDEw02N2U3NGZlNi0xYTFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1KcakV0tDLkz/EH+Ncg6qEpk48ByUIqlvglLlQa6UOGUk1CtW8NS6mivJe4W 6oO7MMUyhzTbGAeNZNIcXrw8h+xGIcwHIs33A1FOJhOytqWZdQFO90Rl9AQtuCmQ ymnr33TaeTaXL2RiDUig9K7yIFrnwoTYiFb6g0fHWHToxUSrPdyYl6kNNevvU/1T t27Dnoy6pkS2Subd1ptco6U7z6pFer7a5D+KlXqO9vaOMnggNivtsFk/ZCSGQOnt yIUCTt/vuyCU0vGlEVies3ibRYoVOs31c6t0TU1ws5e4/J2KP4jikQTr36GsdWSI Ya9G76zNB8t4Y3m7oDzOhvVWtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGDJl3qr /0k2kBDwT77IX27VhB+RMB8GA1UdIwQYMBaAFG4KKQBhMDObg20o9wAYAvcaWk5C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjZEMS9BQkRBNTE0MkU3 MTUxMUVDQjgyQ0IwNkVDNEY5QUUwMi9iZ29wQUdFd001dURiU2ozQUJnQzl4cGFU a0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Jnb3BBR0V3TTV1RGJTajNBQmdDOXhwYVRrSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjZEMS9BQkRBNTE0MkU3MTUxMUVDQjgyQ0IwNkVDNEY5QUUwMi9iZ29wQUdFd001 dURiU2ozQUJnQzl4cGFUa0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+3nQtm8aBPk+rx2oqX3SYFnke8ZOY2HSGqGrc3KBkE2pU0Y4Kl2uU 5iFe8MRcsQdj6uz3TxZZJAfb4cJ7aGrRqb9NNs/bEjShiuXuk23Q4UJch8PEP0qd RXvdOzotk5MXYtW1Yt65ZmPQig3vfJHFtUwWvdlwENY9NFqFOJ9RXGaOvpKnY/WP Pwow8n40hAyqkYvSv46pv3DHTv3JEzxJVuo9kzpodxxjBPLrLnNssncC9/V4nVBe Oii36lUVFeBVYgz2l8QuvLo4smR4u/uwJmPCN8XhA00kpp6+jicFirIOdIuaslwY ev1V7EYFtIdZPS8z5cQMR2Ts0XblErZ8 -----END CERTIFICATE-----Generated at Fri Apr 4 21:27:38 2025 by rpki-client