$ rpki-client -vvf rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.mft File: BkbFIpHVzU30oP94Z4T89Sg0YyQ.mft (raw, json) Hash identifier: 4nBlMIbnynxfAx0JwmKW9N35HZznZM26BhSZ5kDRX1s= Subject key identifier: 33:36:8F:24:7B:BF:A1:44:7D:AC:EC:93:06:9C:91:B7:B7:3C:1C:FC Authority key identifier: 06:46:C5:22:91:D5:CD:4D:F4:A0:FF:78:67:84:FC:F5:28:34:63:24 Certificate issuer: /CN=A9122905/serialNumber=0646C52291D5CD4DF4A0FF786784FCF528346324 Certificate serial: 0205 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BkbFIpHVzU30oP94Z4T89Sg0YyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.mft Manifest number: 0202 Signing time: Thu 17 Apr 2025 01:39:56 +0000 Manifest this update: Thu 17 Apr 2025 01:39:55 +0000 Manifest next update: Thu 24 Apr 2025 01:39:55 +0000 Files and hashes: 1: BkbFIpHVzU30oP94Z4T89Sg0YyQ.crl (hash: 8F263J7AZOvOouwGTLceyoU/5xYyl2Mt+qOZgYJE1oU=) 2: 8BFE9EA6335911EDBC60AC44C4F9AE02.roa (hash: PkaRAOyxeuH2U7UkwpCaJHtr/yLJ/iuQhH7B44HKa84=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.crl rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BkbFIpHVzU30oP94Z4T89Sg0YyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Apr 2025 01:39:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 517 (0x205) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122905, serialNumber=0646C52291D5CD4DF4A0FF786784FCF528346324 Validity Not Before: Apr 17 01:39:55 2025 GMT Not After : Apr 24 01:39:55 2025 GMT Subject: CN=68005beb-6683 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ca:27:19:91:34:d1:40:26:fb:46:ef:dc:03: 35:c8:d5:32:cb:cf:5d:c9:3d:cb:76:48:01:0c:3f: c4:e6:c1:1f:67:00:64:ca:7e:1d:f4:53:48:22:29: d1:cf:93:65:f5:01:c8:ee:60:e4:95:fa:af:8a:6b: 40:20:7b:86:47:22:fe:58:a5:9b:b1:a4:ef:01:89: 9f:79:d8:46:42:bc:e6:8b:d5:50:3b:5d:2b:1b:1e: 39:cd:a5:bd:5c:f0:f8:e2:cb:8f:03:53:26:bb:cb: ea:90:63:39:b0:ef:5f:87:08:d7:80:67:e7:a2:d8: 77:9c:94:31:70:06:f1:42:f5:dd:e1:56:44:8d:9e: a9:b6:53:ea:2d:fa:cf:6a:4e:8b:47:39:31:6c:c5: 32:3a:29:6c:cb:db:b0:c4:74:a7:8b:52:a9:38:37: f3:9f:8c:a4:fa:d1:c1:fb:74:b1:f5:31:da:c9:bb: 78:a7:ef:ec:cc:3d:10:82:1a:09:90:c9:3c:f0:c4: 36:a2:62:c7:70:ac:58:f2:99:91:34:26:77:a2:67: 34:b6:c8:a4:ea:7d:f1:4a:31:20:a2:22:4c:9b:1e: e0:80:b2:b0:97:e6:20:7d:8e:f5:0a:92:02:7b:75: cc:b6:36:ba:7c:79:75:83:2c:a9:00:f5:ba:a8:e9: aa:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:36:8F:24:7B:BF:A1:44:7D:AC:EC:93:06:9C:91:B7:B7:3C:1C:FC X509v3 Authority Key Identifier: keyid:06:46:C5:22:91:D5:CD:4D:F4:A0:FF:78:67:84:FC:F5:28:34:63:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BkbFIpHVzU30oP94Z4T89Sg0YyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:03:6a:33:e6:17:6d:d4:c6:11:17:e4:1d:a5:bb:69:52:69: 02:4b:a2:ac:10:8d:90:3b:3a:cd:df:32:66:23:2e:8a:e0:f3: a9:4f:94:f6:cd:de:c3:64:b2:6c:2a:ff:2f:7b:c6:23:33:56: 3f:b2:d3:14:63:de:6e:5a:29:75:29:a4:de:dc:c1:51:1b:8a: 14:8d:b9:d5:38:c2:4e:48:19:be:6f:2e:d4:b0:0b:68:bb:e9: 61:f4:dc:42:27:ac:43:ea:cf:b9:46:28:7e:65:25:d1:a5:86: 80:e6:cb:19:f1:a7:fb:ac:5f:5b:e0:6e:dd:dc:b3:7b:69:26: 92:7d:83:85:a4:47:08:41:0b:1f:d5:1f:7f:57:c3:a0:a2:25: c9:d1:37:03:9d:76:f5:4f:ec:be:4b:25:f4:1a:80:30:8c:38: 3c:7e:c3:a7:54:7c:be:b5:b7:a9:b0:c1:e1:71:f8:2f:3d:3e: f7:d5:4b:10:e3:11:b1:07:4c:02:0f:58:f5:03:7e:e4:0e:cd: 36:8d:e2:88:b8:c4:50:58:0d:bc:b8:c8:e1:11:a8:33:75:b1: 76:6a:0e:03:e0:d9:aa:8d:55:82:6b:45:da:77:a8:1d:d6:54: cb:e1:23:cc:12:5b:c4:78:2b:a0:a7:98:44:8e:de:9c:59:8c: ab:b6:2a:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjI5MDUxMTAvBgNVBAUTKDA2NDZDNTIyOTFENUNENERGNEEwRkY3ODY3ODRGQ0Y1 MjgzNDYzMjQwHhcNMjUwNDE3MDEzOTU1WhcNMjUwNDI0MDEzOTU1WjAYMRYwFAYD VQQDEw02ODAwNWJlYi02NjgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwMonGZE00UAm+0bv3AM1yNUyy89dyT3LdkgBDD/E5sEfZwBkyn4d9FNIIinR z5Nl9QHI7mDklfqvimtAIHuGRyL+WKWbsaTvAYmfedhGQrzmi9VQO10rGx45zaW9 XPD44suPA1Mmu8vqkGM5sO9fhwjXgGfnoth3nJQxcAbxQvXd4VZEjZ6ptlPqLfrP ak6LRzkxbMUyOilsy9uwxHSni1KpODfzn4yk+tHB+3Sx9THaybt4p+/szD0QghoJ kMk88MQ2omLHcKxY8pmRNCZ3omc0tsik6n3xSjEgoiJMmx7ggLKwl+YgfY71CpIC e3XMtja6fHl1gyypAPW6qOmqawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDM2jyR7 v6FEfazskwackbe3PBz8MB8GA1UdIwQYMBaAFAZGxSKR1c1N9KD/eGeE/PUoNGMk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjkwNS8xMUVCMDg2QTMz NTUxMUVEOTQzRkE1M0JDNEY5QUUwMi9Ca2JGSXBIVnpVMzBvUDk0WjRUODlTZzBZ eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JrYkZJcEhWelUzMG9QOTRaNFQ4OVNnMFl5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MjkwNS8xMUVCMDg2QTMzNTUxMUVEOTQzRkE1M0JDNEY5QUUwMi9Ca2JGSXBIVnpV MzBvUDk0WjRUODlTZzBZeVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3A2oz5hdt1MYRF+QdpbtpUmkCS6KsEI2QOzrN3zJmIy6K4POpT5T2 zd7DZLJsKv8ve8YjM1Y/stMUY95uWil1KaTe3MFRG4oUjbnVOMJOSBm+by7UsAto u+lh9NxCJ6xD6s+5Rih+ZSXRpYaA5ssZ8af7rF9b4G7d3LN7aSaSfYOFpEcIQQsf 1R9/V8OgoiXJ0TcDnXb1T+y+SyX0GoAwjDg8fsOnVHy+tbepsMHhcfgvPT731UsQ 4xGxB0wCD1j1A37kDs02jeKIuMRQWA28uMjhEagzdbF2ag4D4NmqjVWCa0Xad6gd 1lTL4SPMElvEeCugp5hEjt6cWYyrtipf -----END CERTIFICATE-----Generated at Fri Apr 18 20:34:37 2025 by rpki-client