$ rpki-client -vvf rpki.apnic.net/member_repository/A91232C2/1E7FFF9AF0CD11EE881D3C16C4F9AE02/b-jBYY_6_7LM_1aejqkV2vpNTjY.mft File: b-jBYY_6_7LM_1aejqkV2vpNTjY.mft (raw, json) Hash identifier: //dVXTVzIXqIK/Pfvhtp81g6A0xKDfA5dlQS+FBR6hs= Subject key identifier: 61:E6:25:F2:76:53:FE:82:A8:6A:24:F0:C5:83:2A:48:69:73:A4:C6 Authority key identifier: 6F:E8:C1:61:8F:FA:FF:B2:CC:FF:56:9E:8E:A9:15:DA:FA:4D:4E:36 Certificate issuer: /CN=A91232C2/serialNumber=6FE8C1618FFAFFB2CCFF569E8EA915DAFA4D4E36 Certificate serial: BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b-jBYY_6_7LM_1aejqkV2vpNTjY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91232C2/1E7FFF9AF0CD11EE881D3C16C4F9AE02/b-jBYY_6_7LM_1aejqkV2vpNTjY.mft Manifest number: BA Signing time: Thu 03 Apr 2025 05:10:01 +0000 Manifest this update: Thu 03 Apr 2025 05:10:01 +0000 Manifest next update: Thu 10 Apr 2025 05:10:01 +0000 Files and hashes: 1: b-jBYY_6_7LM_1aejqkV2vpNTjY.crl (hash: lAMlAWTBCM4FxDaQ+2Je9gg8UjHSsi2b8JCt88VrZkM=) 2: 85035A64F0CD11EE8CC1FC16C4F9AE02.roa (hash: hIArzUTqWHT4MqlhM8xybTzjqQskXt82VMmP1skP/zo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91232C2/1E7FFF9AF0CD11EE881D3C16C4F9AE02/b-jBYY_6_7LM_1aejqkV2vpNTjY.crl rsync://rpki.apnic.net/member_repository/A91232C2/1E7FFF9AF0CD11EE881D3C16C4F9AE02/b-jBYY_6_7LM_1aejqkV2vpNTjY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b-jBYY_6_7LM_1aejqkV2vpNTjY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 05:10:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 187 (0xbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91232C2 Validity Not Before: Apr 3 05:10:01 2025 GMT Not After : Apr 10 05:10:01 2025 GMT Subject: CN=67ee1829-242f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f9:e6:3e:bf:df:90:4d:58:c5:b4:78:a3:6d: 0f:a3:03:3d:28:3e:ae:fe:e2:07:21:03:4f:d5:7b: f0:11:af:7c:be:d8:96:e3:38:42:e5:6c:81:ff:9f: aa:1b:d5:be:2f:1a:44:15:e8:ab:8e:a5:25:d2:34: 77:7f:f6:05:bd:76:e3:79:34:10:07:4c:04:36:9b: 3e:a3:96:e1:2f:0d:c1:04:4c:e6:df:39:3c:1d:56: 66:f4:60:95:c6:1a:95:8e:f2:1c:37:bf:0f:66:7e: 34:6c:2a:9b:5e:57:96:8d:54:25:32:1f:f3:c6:82: 31:82:03:b7:27:9b:5d:41:22:68:8a:10:a3:01:ce: f8:32:1d:d0:36:fd:de:fd:72:70:11:7f:dd:f4:81: 2d:07:5a:c7:8e:c5:d5:12:19:fa:38:1d:ca:dc:8e: 5e:cd:e6:4a:bf:f9:63:ea:ad:e2:ff:f6:80:1b:92: f0:f7:6f:78:df:3f:bc:11:69:ab:ab:0f:9b:83:38: 72:9b:3f:2c:e1:fd:24:1a:2f:3a:ba:17:f0:1f:c7: 3a:2a:b5:ea:e7:a5:3c:a6:7e:76:3a:99:e9:8f:64: 48:bb:07:13:d1:63:58:14:2a:4d:89:fd:24:53:65: ad:d7:f0:49:e6:74:2d:68:d2:b4:37:9e:1a:7a:2b: 36:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:E6:25:F2:76:53:FE:82:A8:6A:24:F0:C5:83:2A:48:69:73:A4:C6 X509v3 Authority Key Identifier: keyid:6F:E8:C1:61:8F:FA:FF:B2:CC:FF:56:9E:8E:A9:15:DA:FA:4D:4E:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91232C2/1E7FFF9AF0CD11EE881D3C16C4F9AE02/b-jBYY_6_7LM_1aejqkV2vpNTjY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b-jBYY_6_7LM_1aejqkV2vpNTjY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91232C2/1E7FFF9AF0CD11EE881D3C16C4F9AE02/b-jBYY_6_7LM_1aejqkV2vpNTjY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:80:51:a1:51:40:c8:aa:ea:4e:b8:f9:2a:01:42:73:1f:b6: 0c:15:27:82:5c:d0:b5:35:99:bf:2f:58:f4:84:a7:08:f9:46: f3:f9:bc:f5:f7:75:40:70:83:0b:1d:3c:c3:8f:1b:6e:75:aa: 54:ef:dc:19:83:0f:45:d5:28:b9:72:89:28:79:31:1a:a1:a8: d1:c3:f4:5c:f5:3b:d6:bc:29:16:1b:98:5f:77:70:ce:cb:4e: 8a:61:92:02:e0:6c:96:14:d7:5a:27:ab:6e:4d:26:92:36:51: 7c:64:98:87:41:19:be:4b:10:06:d4:16:c4:19:4b:47:50:0c: 1f:40:3c:46:08:84:f3:f0:c4:cd:d7:f1:5d:69:09:48:94:29: 5d:91:cf:6d:14:c5:dc:e5:7e:1d:fb:4d:c3:2b:ca:3f:fa:5b: 4f:c8:22:18:38:0b:61:d9:a0:50:2f:1b:d0:d0:93:9c:85:a6: ab:27:90:30:96:4e:35:ee:0a:c0:db:ab:5c:a9:da:bc:0d:8f: 1d:e6:f8:5a:f5:b5:b0:f6:43:ac:74:5b:41:cc:bf:2d:86:d5: c6:31:83:42:8f:a4:59:50:27:64:47:46:d3:33:15:eb:9a:05: b5:d4:4c:94:a6:66:6a:09:b0:c5:3c:5c:46:91:e3:1b:28:4c: a8:da:09:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjMyQzIxMTAvBgNVBAUTKDZGRThDMTYxOEZGQUZGQjJDQ0ZGNTY5RThFQTkxNURB RkE0RDRFMzYwHhcNMjUwNDAzMDUxMDAxWhcNMjUwNDEwMDUxMDAxWjAYMRYwFAYD VQQDEw02N2VlMTgyOS0yNDJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvfnmPr/fkE1YxbR4o20PowM9KD6u/uIHIQNP1XvwEa98vtiW4zhC5WyB/5+q G9W+LxpEFeirjqUl0jR3f/YFvXbjeTQQB0wENps+o5bhLw3BBEzm3zk8HVZm9GCV xhqVjvIcN78PZn40bCqbXleWjVQlMh/zxoIxggO3J5tdQSJoihCjAc74Mh3QNv3e /XJwEX/d9IEtB1rHjsXVEhn6OB3K3I5ezeZKv/lj6q3i//aAG5Lw92943z+8EWmr qw+bgzhymz8s4f0kGi86uhfwH8c6KrXq56U8pn52Opnpj2RIuwcT0WNYFCpNif0k U2Wt1/BJ5nQtaNK0N54aeis2rQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGHmJfJ2 U/6CqGok8MWDKkhpc6TGMB8GA1UdIwQYMBaAFG/owWGP+v+yzP9Wno6pFdr6TU42 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzJDMi8xRTdGRkY5QUYw Q0QxMUVFODgxRDNDMTZDNEY5QUUwMi9iLWpCWVlfNl83TE1fMWFlanFrVjJ2cE5U alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ItakJZWV82XzdMTV8xYWVqcWtWMnZwTlRqWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzJDMi8xRTdGRkY5QUYwQ0QxMUVFODgxRDNDMTZDNEY5QUUwMi9iLWpCWVlfNl83 TE1fMWFlanFrVjJ2cE5UalkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFgFGhUUDIqupOuPkqAUJzH7YMFSeCXNC1NZm/L1j0hKcI+Ubz+bz1 93VAcIMLHTzDjxtudapU79wZgw9F1Si5cokoeTEaoajRw/Rc9TvWvCkWG5hfd3DO y06KYZIC4GyWFNdaJ6tuTSaSNlF8ZJiHQRm+SxAG1BbEGUtHUAwfQDxGCITz8MTN 1/FdaQlIlCldkc9tFMXc5X4d+03DK8o/+ltPyCIYOAth2aBQLxvQ0JOchaarJ5Aw lk417grA26tcqdq8DY8d5vha9bWw9kOsdFtBzL8thtXGMYNCj6RZUCdkR0bTMxXr mgW11EyUpmZqCbDFPFxGkeMbKEyo2gmj -----END CERTIFICATE-----Generated at Fri Apr 4 21:55:42 2025 by rpki-client