$ rpki-client -vvf rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft File: bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft (raw, json) Hash identifier: MbDJxokHe7Afe2p4iU7R6YLeDQJaw2ZcNSpd80Rzj3g= Subject key identifier: 6B:84:B2:36:D4:C7:38:5A:C8:12:2D:45:A4:09:DC:1E:DE:E5:E3:A9 Authority key identifier: 6E:14:8A:0D:08:57:80:38:6A:81:7D:CD:8D:64:69:54:11:C7:68:38 Certificate issuer: /CN=A913EA16/serialNumber=6E148A0D085780386A817DCD8D64695411C76838 Certificate serial: 03E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhSKDQhXgDhqgX3NjWRpVBHHaDg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft Manifest number: 03E2 Signing time: Sat 05 Apr 2025 00:39:42 +0000 Manifest this update: Sat 05 Apr 2025 00:39:42 +0000 Manifest next update: Sat 12 Apr 2025 00:39:42 +0000 Files and hashes: 1: bhSKDQhXgDhqgX3NjWRpVBHHaDg.crl (hash: gN/phXsdYzePFkaviqizHt9aw+rqnjcw3KNaXvPo/ms=) 2: 8B729608B62F11EFB2DE315FC4F9AE02.roa (hash: ERP6Y5/dUFxszjFDuuFfjwGYbKhjm1R8qrQOrEiUTKw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.crl rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhSKDQhXgDhqgX3NjWRpVBHHaDg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 00:39:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1001 (0x3e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913EA16 Validity Not Before: Apr 5 00:39:42 2025 GMT Not After : Apr 12 00:39:42 2025 GMT Subject: CN=67f07bce-9b81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:d4:6a:73:3e:2f:83:a0:f1:b0:74:b9:ca:cb: f4:97:37:ca:79:33:7e:d5:4f:79:fa:95:61:8b:d6: 2b:a1:77:20:16:92:24:88:07:b8:0e:53:f8:3a:2a: 53:49:c8:c5:f7:76:33:70:33:8d:58:05:7c:ff:48: f8:9c:80:a7:43:93:93:b1:6d:c4:09:98:e8:4b:15: a0:48:e6:17:3e:c2:ea:80:4f:9d:e3:02:4d:71:91: 86:0f:cd:2a:28:85:83:a1:47:db:23:0d:08:f8:6a: 95:f1:04:0e:2b:9e:e8:6a:57:86:04:1e:ab:eb:f3: c6:20:04:bf:1f:62:01:e9:ca:79:fe:00:c7:0e:2e: 4d:97:94:0c:9f:92:28:a8:25:1f:5f:81:13:9a:62: 23:09:84:5a:37:71:cd:ea:f0:72:c5:85:8d:e7:a0: db:86:7d:36:27:b0:8a:30:0f:aa:75:b3:a4:e6:e4: 0d:4f:26:c7:30:29:e5:95:6f:e1:96:35:7c:e5:c2: 8f:75:e8:c8:5e:d9:2a:ca:02:1b:92:32:34:ca:e6: 3b:d8:5b:c7:d8:cf:9f:ed:a4:3d:f4:9e:72:2e:b8: 41:51:23:08:f0:b5:92:df:a7:c0:d1:f5:5a:fb:f7: 69:d5:97:32:a6:b6:4a:1a:22:3f:94:6e:82:5d:e1: 97:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:84:B2:36:D4:C7:38:5A:C8:12:2D:45:A4:09:DC:1E:DE:E5:E3:A9 X509v3 Authority Key Identifier: keyid:6E:14:8A:0D:08:57:80:38:6A:81:7D:CD:8D:64:69:54:11:C7:68:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhSKDQhXgDhqgX3NjWRpVBHHaDg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:7f:62:fd:31:63:bf:14:41:21:65:b6:b8:b0:7c:57:07:32: 5d:05:af:14:99:ad:09:a9:aa:bd:53:56:0e:e6:38:70:4a:16: dc:bf:8e:fe:e2:19:6b:e7:cf:8f:2c:c5:a1:0b:7e:72:5c:c5: 6c:12:7f:51:f8:92:e8:f3:56:54:2e:77:e2:b1:b5:38:90:6d: 66:cb:1b:48:6d:84:9b:46:8e:42:c3:22:4e:02:5d:d0:0a:56: 4c:0e:c3:d6:47:13:85:16:2f:9d:eb:31:d8:18:2b:be:c8:17: 1c:f7:c7:d3:f8:cc:7f:ed:02:67:0a:4e:93:83:6e:42:9b:a3: 9e:9e:f7:bf:cd:ec:89:c7:a4:96:b7:7b:19:67:e6:94:6c:b5: 9e:83:ef:03:02:40:7a:54:5f:80:5e:83:95:50:c8:5d:aa:d9: a0:73:45:72:92:3b:d9:d7:29:56:18:cc:cd:20:fb:c4:a2:f7: 42:c7:09:d9:dc:d6:11:4b:ee:35:8d:87:c7:cb:5f:04:08:99: 09:9d:29:4f:3f:49:73:44:72:75:7e:b9:35:c8:65:44:b0:c1: 26:2b:87:bf:cb:2f:04:03:90:e0:3b:1b:46:d5:2a:d7:4d:3a: 20:95:42:cf:07:27:98:25:cc:65:85:d6:b2:7d:36:bc:20:07: ff:bd:3b:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0VBMTYxMTAvBgNVBAUTKDZFMTQ4QTBEMDg1NzgwMzg2QTgxN0RDRDhENjQ2OTU0 MTFDNzY4MzgwHhcNMjUwNDA1MDAzOTQyWhcNMjUwNDEyMDAzOTQyWjAYMRYwFAYD VQQDEw02N2YwN2JjZS05YjgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArNRqcz4vg6DxsHS5ysv0lzfKeTN+1U95+pVhi9YroXcgFpIkiAe4DlP4OipT ScjF93YzcDONWAV8/0j4nICnQ5OTsW3ECZjoSxWgSOYXPsLqgE+d4wJNcZGGD80q KIWDoUfbIw0I+GqV8QQOK57oaleGBB6r6/PGIAS/H2IB6cp5/gDHDi5Nl5QMn5Io qCUfX4ETmmIjCYRaN3HN6vByxYWN56Dbhn02J7CKMA+qdbOk5uQNTybHMCnllW/h ljV85cKPdejIXtkqygIbkjI0yuY72FvH2M+f7aQ99J5yLrhBUSMI8LWS36fA0fVa +/dp1ZcyprZKGiI/lG6CXeGXeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGuEsjbU xzhayBItRaQJ3B7e5eOpMB8GA1UdIwQYMBaAFG4Uig0IV4A4aoF9zY1kaVQRx2g4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRUExNi80NTJGN0FFRTc3 N0IxMUVDODZGQzEwNURDNEY5QUUwMi9iaFNLRFFoWGdEaHFnWDNOaldScFZCSEhh RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JoU0tEUWhYZ0RocWdYM05qV1JwVkJISGFEZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RUExNi80NTJGN0FFRTc3N0IxMUVDODZGQzEwNURDNEY5QUUwMi9iaFNLRFFoWGdE aHFnWDNOaldScFZCSEhhRGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDDf2L9MWO/FEEhZba4sHxXBzJdBa8Uma0Jqaq9U1YO5jhwShbcv47+ 4hlr58+PLMWhC35yXMVsEn9R+JLo81ZULnfisbU4kG1myxtIbYSbRo5CwyJOAl3Q ClZMDsPWRxOFFi+d6zHYGCu+yBcc98fT+Mx/7QJnCk6Tg25Cm6Oenve/zeyJx6SW t3sZZ+aUbLWeg+8DAkB6VF+AXoOVUMhdqtmgc0VykjvZ1ylWGMzNIPvEovdCxwnZ 3NYRS+41jYfHy18ECJkJnSlPP0lzRHJ1frk1yGVEsMEmK4e/yy8EA5DgOxtG1SrX TToglULPByeYJcxlhdayfTa8IAf/vTtF -----END CERTIFICATE-----Generated at Sat Apr 5 13:25:10 2025 by rpki-client