$ rpki-client -vvf rpki.apnic.net/member_repository/A9127C93/4021A4E65F2411EDB80C1921C4F9AE02/Bst2YhlvZE7eydz72HmbjHPjlwk.mft File: Bst2YhlvZE7eydz72HmbjHPjlwk.mft (raw, json) Hash identifier: 3moszZFZ+1ETAkW+M4gvCgwixfrlVj08BDyXHIUnx6g= Subject key identifier: 5B:C6:01:9F:DD:19:85:14:5B:D0:6C:BB:9F:EC:59:6B:72:C6:B8:B3 Authority key identifier: 06:CB:76:62:19:6F:64:4E:DE:C9:DC:FB:D8:79:9B:8C:73:E3:97:09 Certificate issuer: /CN=A9127C93/serialNumber=06CB7662196F644EDEC9DCFBD8799B8C73E39709 Certificate serial: 01CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bst2YhlvZE7eydz72HmbjHPjlwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127C93/4021A4E65F2411EDB80C1921C4F9AE02/Bst2YhlvZE7eydz72HmbjHPjlwk.mft Manifest number: 01C8 Signing time: Thu 03 Apr 2025 02:18:17 +0000 Manifest this update: Thu 03 Apr 2025 02:18:16 +0000 Manifest next update: Thu 10 Apr 2025 02:18:16 +0000 Files and hashes: 1: Bst2YhlvZE7eydz72HmbjHPjlwk.crl (hash: P2IBThV9qWiW0BWw1WQruqD1mW5VbmbhTZE9lqs43xc=) 2: 2965791E5F4011ED9361C246C4F9AE02.roa (hash: giH1vIhIIPvv5hJDOK02Raj/lgCr3oz3hTTRlbexHIs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127C93/4021A4E65F2411EDB80C1921C4F9AE02/Bst2YhlvZE7eydz72HmbjHPjlwk.crl rsync://rpki.apnic.net/member_repository/A9127C93/4021A4E65F2411EDB80C1921C4F9AE02/Bst2YhlvZE7eydz72HmbjHPjlwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bst2YhlvZE7eydz72HmbjHPjlwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 02:18:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 462 (0x1ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127C93 Validity Not Before: Apr 3 02:18:16 2025 GMT Not After : Apr 10 02:18:16 2025 GMT Subject: CN=67edefe9-91d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:61:f4:52:3c:0c:d7:42:73:68:08:a6:69:dc: 96:7b:72:5d:7d:46:cc:d3:ff:90:bc:26:23:55:8a: d5:18:9f:72:57:11:3a:03:38:a5:a4:97:8a:38:60: 6c:7b:d7:e4:e9:9f:65:e6:e9:b8:30:17:56:1e:f9: 9c:d4:cf:e0:69:9a:d3:d8:d5:79:d0:7b:51:05:60: b3:63:2c:52:e9:2a:d9:2f:54:f3:e2:66:25:96:19: 77:c8:a3:f3:a6:62:78:20:74:1e:7b:ae:5b:ab:e6: 06:90:89:23:65:d1:8f:0b:ae:3d:d3:92:bf:20:3d: dd:54:fd:0c:55:5a:56:29:77:42:c2:75:c2:01:b8: 83:71:ec:62:2e:88:54:60:e5:77:1a:dd:20:da:5c: 39:67:9d:e5:6e:6f:2d:f4:c9:6b:79:55:df:88:19: a0:b9:8f:a8:b7:fa:12:fc:90:23:ac:90:36:41:81: bf:26:22:e8:5c:64:1e:2a:46:2c:d6:1c:67:f5:6b: b8:76:d3:76:e8:9e:89:f7:87:63:01:6d:06:45:2e: 44:da:04:93:c6:14:10:d5:b3:81:61:13:b8:33:13: 65:af:5d:59:4c:fe:c3:54:71:49:13:65:78:dd:d3: 4e:45:37:0d:a4:d3:bf:ee:c3:97:7a:ee:28:66:f2: 63:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:C6:01:9F:DD:19:85:14:5B:D0:6C:BB:9F:EC:59:6B:72:C6:B8:B3 X509v3 Authority Key Identifier: keyid:06:CB:76:62:19:6F:64:4E:DE:C9:DC:FB:D8:79:9B:8C:73:E3:97:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127C93/4021A4E65F2411EDB80C1921C4F9AE02/Bst2YhlvZE7eydz72HmbjHPjlwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bst2YhlvZE7eydz72HmbjHPjlwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127C93/4021A4E65F2411EDB80C1921C4F9AE02/Bst2YhlvZE7eydz72HmbjHPjlwk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:aa:9c:91:02:f8:30:02:a7:ff:eb:a7:f2:c9:da:91:16:b2: 59:ca:5d:6f:22:05:a4:c2:23:a8:c2:37:9a:9f:a0:88:89:8a: 76:81:14:44:58:a3:ae:56:16:7b:2b:c3:f9:26:64:03:9a:fb: 8a:7c:37:15:b6:14:f4:b5:a9:f3:4a:7b:6d:ac:f2:51:5e:82: 49:72:2e:2a:08:87:da:5f:2d:88:7d:ba:3f:55:97:6b:8f:c5: 27:a9:3c:88:7c:10:24:90:55:74:6d:dd:1b:8b:06:2c:40:cc: 29:91:11:43:b5:2a:3e:e4:f9:2e:48:75:31:32:2f:a1:13:ac: 91:61:c6:dd:8c:6c:e0:1d:06:c6:59:4a:ac:30:ea:37:21:2a: 93:d5:bd:72:4e:c0:0f:89:7f:95:e9:21:a9:e2:29:0a:e3:85: 06:6c:b3:38:69:97:fa:24:0e:78:0a:a1:8b:2b:76:dc:fe:9d: 3f:b3:ee:8c:7f:e2:3e:f1:5f:a0:ae:70:62:cd:92:3e:19:78: a7:ca:c3:c4:78:a3:8e:d0:52:04:e0:d6:b9:3b:d3:48:e3:3f: 0e:73:33:33:fc:31:4b:50:4b:ab:94:8f:c0:41:5d:b0:a0:8a: 22:50:9f:59:3f:81:a2:51:db:55:44:38:ae:f2:d6:1d:34:27: d8:b1:86:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAc4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjdDOTMxMTAvBgNVBAUTKDA2Q0I3NjYyMTk2RjY0NEVERUM5RENGQkQ4Nzk5QjhD NzNFMzk3MDkwHhcNMjUwNDAzMDIxODE2WhcNMjUwNDEwMDIxODE2WjAYMRYwFAYD VQQDEw02N2VkZWZlOS05MWQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAumH0UjwM10JzaAimadyWe3JdfUbM0/+QvCYjVYrVGJ9yVxE6AzilpJeKOGBs e9fk6Z9l5um4MBdWHvmc1M/gaZrT2NV50HtRBWCzYyxS6SrZL1Tz4mYllhl3yKPz pmJ4IHQee65bq+YGkIkjZdGPC64905K/ID3dVP0MVVpWKXdCwnXCAbiDcexiLohU YOV3Gt0g2lw5Z53lbm8t9MlreVXfiBmguY+ot/oS/JAjrJA2QYG/JiLoXGQeKkYs 1hxn9Wu4dtN26J6J94djAW0GRS5E2gSTxhQQ1bOBYRO4MxNlr11ZTP7DVHFJE2V4 3dNORTcNpNO/7sOXeu4oZvJj4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFvGAZ/d GYUUW9Bsu5/sWWtyxrizMB8GA1UdIwQYMBaAFAbLdmIZb2RO3snc+9h5m4xz45cJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyN0M5My80MDIxQTRFNjVG MjQxMUVEQjgwQzE5MjFDNEY5QUUwMi9Cc3QyWWhsdlpFN2V5ZHo3MkhtYmpIUGps d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JzdDJZaGx2WkU3ZXlkejcySG1iakhQamx3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy N0M5My80MDIxQTRFNjVGMjQxMUVEQjgwQzE5MjFDNEY5QUUwMi9Cc3QyWWhsdlpF N2V5ZHo3MkhtYmpIUGpsd2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjqpyRAvgwAqf/66fyydqRFrJZyl1vIgWkwiOowjean6CIiYp2gRRE WKOuVhZ7K8P5JmQDmvuKfDcVthT0tanzSnttrPJRXoJJci4qCIfaXy2Ifbo/VZdr j8UnqTyIfBAkkFV0bd0biwYsQMwpkRFDtSo+5PkuSHUxMi+hE6yRYcbdjGzgHQbG WUqsMOo3ISqT1b1yTsAPiX+V6SGp4ikK44UGbLM4aZf6JA54CqGLK3bc/p0/s+6M f+I+8V+grnBizZI+GXinysPEeKOO0FIE4Na5O9NI4z8OczMz/DFLUEurlI/AQV2w oIoiUJ9ZP4GiUdtVRDiu8tYdNCfYsYab -----END CERTIFICATE-----Generated at Fri Apr 4 18:35:58 2025 by rpki-client