$ rpki-client -vvf rpki.apnic.net/member_repository/A912391D/B571CCBE0EE111ED84674C0EC4F9AE02/BWvvRscxWDfrrepBeAueQaP7fqA.mft File: BWvvRscxWDfrrepBeAueQaP7fqA.mft (raw, json) Hash identifier: MJtNatNK54iJw1V1j1PpZktnHb6BZ9HEGNjtKC3AiCw= Subject key identifier: BB:8A:E1:A3:71:E8:E5:36:93:49:2C:98:9A:12:EE:40:C6:53:62:9E Authority key identifier: 05:6B:EF:46:C7:31:58:37:EB:AD:EA:41:78:0B:9E:41:A3:FB:7E:A0 Certificate issuer: /CN=A912391D/serialNumber=056BEF46C7315837EBADEA41780B9E41A3FB7EA0 Certificate serial: 0256 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BWvvRscxWDfrrepBeAueQaP7fqA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912391D/B571CCBE0EE111ED84674C0EC4F9AE02/BWvvRscxWDfrrepBeAueQaP7fqA.mft Manifest number: 0253 Signing time: Sat 29 Mar 2025 02:03:25 +0000 Manifest this update: Sat 29 Mar 2025 02:03:25 +0000 Manifest next update: Sat 05 Apr 2025 02:03:25 +0000 Files and hashes: 1: BWvvRscxWDfrrepBeAueQaP7fqA.crl (hash: B+hpacVzNHbI1/CjVTED3IFTScEPSzatwiodQQlU5JE=) 2: 207B27560EE411EDA32ABE0FC4F9AE02.roa (hash: mcE/IJHhNlxSeNevkXhbHkK77FCAYAyssZWA6yEpRCo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912391D/B571CCBE0EE111ED84674C0EC4F9AE02/BWvvRscxWDfrrepBeAueQaP7fqA.crl rsync://rpki.apnic.net/member_repository/A912391D/B571CCBE0EE111ED84674C0EC4F9AE02/BWvvRscxWDfrrepBeAueQaP7fqA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BWvvRscxWDfrrepBeAueQaP7fqA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 02:03:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 598 (0x256) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912391D Validity Not Before: Mar 29 02:03:25 2025 GMT Not After : Apr 5 02:03:25 2025 GMT Subject: CN=67e754ed-eeb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:d9:11:ca:71:d2:ca:b0:fb:9f:d5:b5:3f:9f: 1f:e7:ec:e0:94:e4:b3:7b:3c:2b:59:5c:ff:3e:f1: ea:c0:74:ab:0b:16:37:a4:02:e2:b9:ec:77:ae:7a: 40:fa:0d:b3:c3:97:d8:f6:dd:86:59:ae:ab:a2:e8: 88:f5:d6:a8:06:f7:fd:6f:12:e6:ae:29:45:83:23: d8:e0:df:86:88:04:25:b3:61:55:76:d5:d0:15:0c: b5:28:c1:9b:4a:0b:99:d8:87:ae:41:e1:58:ee:6a: 54:75:a4:18:e7:7f:a9:79:81:bd:62:7e:4b:02:33: 5e:18:20:76:7d:dc:25:72:af:a7:39:d1:86:ca:ec: 34:0a:87:59:c5:48:42:fc:40:5c:42:9a:c5:4e:35: 3d:e7:92:45:e9:ae:10:5a:36:51:8e:e7:bb:0f:23: 1a:bb:65:14:c7:4e:0e:67:66:ae:33:40:7e:bd:7f: 4e:c3:63:00:b7:75:86:b9:0a:38:27:04:9e:d3:7a: aa:21:15:c3:ec:88:b3:aa:86:70:ce:24:2c:2b:0e: 1d:9e:47:78:b1:7c:c0:72:e8:ed:da:9c:b3:dc:fd: c0:b6:cc:0b:94:5b:86:34:93:c2:fc:2e:5f:c2:5c: 53:83:bd:e8:41:0c:d6:a3:75:a3:48:93:3d:46:99: 99:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:8A:E1:A3:71:E8:E5:36:93:49:2C:98:9A:12:EE:40:C6:53:62:9E X509v3 Authority Key Identifier: keyid:05:6B:EF:46:C7:31:58:37:EB:AD:EA:41:78:0B:9E:41:A3:FB:7E:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912391D/B571CCBE0EE111ED84674C0EC4F9AE02/BWvvRscxWDfrrepBeAueQaP7fqA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BWvvRscxWDfrrepBeAueQaP7fqA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912391D/B571CCBE0EE111ED84674C0EC4F9AE02/BWvvRscxWDfrrepBeAueQaP7fqA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:fd:82:58:04:e6:2d:58:54:32:2a:3f:70:c8:06:57:e5:6d: 9d:e7:5e:9d:01:11:c8:45:a8:80:83:70:6d:e7:4b:4a:12:bb: d2:69:eb:60:b8:a2:8f:4e:63:5e:d6:85:c0:4e:1a:27:d4:7d: 42:06:d4:13:fd:91:5d:f4:24:c5:1c:51:a8:5d:a0:c6:1d:fe: e8:f2:36:22:5e:e5:3b:2a:79:0e:3d:f4:1f:a5:c4:9f:1b:71: 7b:fa:c2:65:8a:05:c8:43:53:a1:a7:f7:9d:ad:cb:a1:64:52: 3c:b7:16:db:e2:60:d6:8f:a1:d7:29:92:16:ef:22:ce:47:44: 51:44:6c:96:a0:7e:a7:a8:6f:b3:0d:87:34:3c:ab:2a:a9:25: a1:c1:3d:02:70:88:5b:72:ec:f3:73:c9:e9:d6:da:26:ea:dd: 9a:d9:8c:e7:df:0a:b1:9a:63:77:01:cb:3d:72:cc:c2:04:c1: 72:77:57:99:15:af:be:65:18:79:36:87:dd:c7:7b:6e:14:1e: b2:c1:ed:e7:30:95:31:ed:e7:13:0c:0e:83:bf:64:f1:63:f9: be:24:62:a2:3d:0f:48:67:c3:51:b0:cf:d5:17:62:d7:b2:a1: f0:27:0b:05:f3:81:1e:1a:54:4c:a4:43:19:dc:29:50:db:20: 95:40:2c:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM5MUQxMTAvBgNVBAUTKDA1NkJFRjQ2QzczMTU4MzdFQkFERUE0MTc4MEI5RTQx QTNGQjdFQTAwHhcNMjUwMzI5MDIwMzI1WhcNMjUwNDA1MDIwMzI1WjAYMRYwFAYD VQQDEw02N2U3NTRlZC1lZWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxNkRynHSyrD7n9W1P58f5+zglOSzezwrWVz/PvHqwHSrCxY3pALiuex3rnpA +g2zw5fY9t2GWa6rouiI9daoBvf9bxLmrilFgyPY4N+GiAQls2FVdtXQFQy1KMGb SguZ2IeuQeFY7mpUdaQY53+peYG9Yn5LAjNeGCB2fdwlcq+nOdGGyuw0CodZxUhC /EBcQprFTjU955JF6a4QWjZRjue7DyMau2UUx04OZ2auM0B+vX9Ow2MAt3WGuQo4 JwSe03qqIRXD7IizqoZwziQsKw4dnkd4sXzAcujt2pyz3P3AtswLlFuGNJPC/C5f wlxTg73oQQzWo3WjSJM9RpmZzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLuK4aNx 6OU2k0ksmJoS7kDGU2KeMB8GA1UdIwQYMBaAFAVr70bHMVg3663qQXgLnkGj+36g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzkxRC9CNTcxQ0NCRTBF RTExMUVEODQ2NzRDMEVDNEY5QUUwMi9CV3Z2UnNjeFdEZnJyZXBCZUF1ZVFhUDdm cUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JXdnZSc2N4V0RmcnJlcEJlQXVlUWFQN2ZxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzkxRC9CNTcxQ0NCRTBFRTExMUVEODQ2NzRDMEVDNEY5QUUwMi9CV3Z2UnNjeFdE ZnJyZXBCZUF1ZVFhUDdmcUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBy/YJYBOYtWFQyKj9wyAZX5W2d516dARHIRaiAg3Bt50tKErvSaetg uKKPTmNe1oXAThon1H1CBtQT/ZFd9CTFHFGoXaDGHf7o8jYiXuU7KnkOPfQfpcSf G3F7+sJligXIQ1Ohp/edrcuhZFI8txbb4mDWj6HXKZIW7yLOR0RRRGyWoH6nqG+z DYc0PKsqqSWhwT0CcIhbcuzzc8np1tom6t2a2Yzn3wqxmmN3Acs9cszCBMFyd1eZ Fa++ZRh5Nofdx3tuFB6ywe3nMJUx7ecTDA6Dv2TxY/m+JGKiPQ9IZ8NRsM/VF2LX sqHwJwsF84EeGlRMpEMZ3ClQ2yCVQCwe -----END CERTIFICATE-----Generated at Fri Apr 4 22:10:46 2025 by rpki-client