$ rpki-client -vvf rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft File: bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft (raw, json) Hash identifier: nhp5mek2PsbFJzqOy0wNiEuuHPfOKaSffYFFqy5NweM= Subject key identifier: 69:64:19:B0:9F:16:37:21:16:29:0F:9C:14:F7:31:43:73:8E:4E:2D Authority key identifier: 6C:A2:CF:A6:88:BD:F9:E2:D6:56:16:08:67:7A:30:C9:15:24:3D:0C Certificate issuer: /CN=A9148F80/serialNumber=6CA2CFA688BDF9E2D6561608677A30C915243D0C Certificate serial: 066C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKLPpoi9-eLWVhYIZ3owyRUkPQw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft Manifest number: 0665 Signing time: Tue 08 Apr 2025 22:11:01 +0000 Manifest this update: Tue 08 Apr 2025 22:11:01 +0000 Manifest next update: Tue 15 Apr 2025 22:11:01 +0000 Files and hashes: 1: bKLPpoi9-eLWVhYIZ3owyRUkPQw.crl (hash: KXxz3RxHuyTZqSgmFzcfhao/UjgpAdNzg5dkdc7+Vi4=) 2: 1C93BF747CD011EB9F876E78C4F9AE02.roa (hash: vUduh0w3eSZesFepaO929FwqL1Ap+OkfqL7IQgJ/yu0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.crl rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKLPpoi9-eLWVhYIZ3owyRUkPQw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 22:11:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1644 (0x66c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148F80 Validity Not Before: Apr 8 22:11:01 2025 GMT Not After : Apr 15 22:11:01 2025 GMT Subject: CN=67f59ef5-dccf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:d5:9f:00:61:45:24:5c:f5:28:12:57:1b:b2: f6:45:17:73:36:49:55:86:75:23:c0:4b:b8:2f:19: da:24:96:5c:36:f6:79:9b:8b:e4:95:c9:4b:20:ee: c1:de:29:e3:d8:fe:3c:0f:11:25:11:61:47:c2:1c: 2c:da:e7:17:25:2b:58:10:cb:6f:67:c9:fb:0f:14: 31:4e:ae:cc:46:16:ee:76:2b:90:25:9e:f5:e1:fb: 02:76:00:0f:df:ab:1c:7c:19:7e:d1:25:b4:e0:79: 6b:87:0f:af:82:39:67:37:cc:a2:47:9a:00:a5:22: 06:ff:fe:8e:b4:92:90:4c:7e:b5:89:d1:a2:55:06: 38:c7:97:9f:55:cb:6d:47:46:92:8a:89:23:81:82: c1:97:8d:54:78:03:ba:0d:2e:6d:ec:c7:2f:b3:c5: 1b:0c:de:98:2c:e3:75:ff:a4:fb:6d:4c:91:df:25: df:1a:f1:2d:89:ee:5d:87:a2:c4:08:37:99:ae:c5: 10:66:5e:1a:20:3d:c6:5d:0e:8d:b5:d2:2a:7b:45: b1:f6:af:44:d1:28:40:42:79:f1:81:f8:41:9f:3d: 0a:47:0e:99:2c:0f:54:7e:d9:b0:0c:47:13:e4:8f: b0:d4:06:e9:62:1b:6f:91:69:18:c1:f1:34:d3:3a: 11:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:64:19:B0:9F:16:37:21:16:29:0F:9C:14:F7:31:43:73:8E:4E:2D X509v3 Authority Key Identifier: keyid:6C:A2:CF:A6:88:BD:F9:E2:D6:56:16:08:67:7A:30:C9:15:24:3D:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKLPpoi9-eLWVhYIZ3owyRUkPQw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:8c:f8:90:bb:91:58:6d:5b:c0:6e:ce:d0:31:aa:7e:2e:6e: aa:44:90:e0:50:80:af:7d:7f:6f:6a:9d:72:cf:79:c3:6c:83: ee:f9:26:85:ef:18:e7:c5:2b:b4:c9:a9:bd:98:05:cd:b9:e1: 98:e1:d9:92:a2:8a:0b:ec:c5:f4:ff:70:eb:e8:0f:47:8a:4a: f9:6d:ea:5c:2f:78:fc:d4:ef:8e:31:46:82:0c:2d:2c:e8:24: 81:54:9a:b4:09:25:ed:22:99:6e:f1:21:94:a3:39:e8:a7:71: ba:2a:e3:89:0a:8f:bf:aa:96:5d:c7:9e:df:6b:d1:4e:d2:99: 84:98:37:24:66:91:ea:bb:2a:59:8f:19:88:5b:95:88:9f:a0: 49:f6:76:e4:f7:12:2f:36:dd:b5:6e:3e:2e:ca:f6:7a:b5:6c: 4f:54:10:9c:d6:6f:dd:b7:1c:41:82:09:f6:79:2c:cd:59:51: 8d:a3:b3:c7:c3:af:a3:74:52:d3:50:e6:b3:f3:6b:97:36:b4: e4:22:b8:75:5d:87:cf:3b:2b:5a:ac:73:85:ce:1f:32:67:9e: 82:af:1b:5d:57:98:cb:cb:bb:bb:e8:6c:9b:b8:db:6a:8a:75: aa:86:71:be:04:f9:01:9d:4c:7a:f2:ef:9e:33:28:ef:1f:40: ed:6f:7c:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhGODAxMTAvBgNVBAUTKDZDQTJDRkE2ODhCREY5RTJENjU2MTYwODY3N0EzMEM5 MTUyNDNEMEMwHhcNMjUwNDA4MjIxMTAxWhcNMjUwNDE1MjIxMTAxWjAYMRYwFAYD VQQDEw02N2Y1OWVmNS1kY2NmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwdWfAGFFJFz1KBJXG7L2RRdzNklVhnUjwEu4LxnaJJZcNvZ5m4vklclLIO7B 3inj2P48DxElEWFHwhws2ucXJStYEMtvZ8n7DxQxTq7MRhbudiuQJZ714fsCdgAP 36scfBl+0SW04Hlrhw+vgjlnN8yiR5oApSIG//6OtJKQTH61idGiVQY4x5efVctt R0aSiokjgYLBl41UeAO6DS5t7Mcvs8UbDN6YLON1/6T7bUyR3yXfGvEtie5dh6LE CDeZrsUQZl4aID3GXQ6NtdIqe0Wx9q9E0ShAQnnxgfhBnz0KRw6ZLA9UftmwDEcT 5I+w1AbpYhtvkWkYwfE00zoRVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGlkGbCf FjchFikPnBT3MUNzjk4tMB8GA1UdIwQYMBaAFGyiz6aIvfni1lYWCGd6MMkVJD0M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEY4MC8wNzFERUE0MDdD Q0UxMUVCQkI4ODI5NzZDNEY5QUUwMi9iS0xQcG9pOS1lTFdWaFlJWjNvd3lSVWtQ UXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JLTFBwb2k5LWVMV1ZoWUlaM293eVJVa1BRdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEY4MC8wNzFERUE0MDdDQ0UxMUVCQkI4ODI5NzZDNEY5QUUwMi9iS0xQcG9pOS1l TFdWaFlJWjNvd3lSVWtQUXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBljPiQu5FYbVvAbs7QMap+Lm6qRJDgUICvfX9vap1yz3nDbIPu+SaF 7xjnxSu0yam9mAXNueGY4dmSoooL7MX0/3Dr6A9Hikr5bepcL3j81O+OMUaCDC0s 6CSBVJq0CSXtIplu8SGUoznop3G6KuOJCo+/qpZdx57fa9FO0pmEmDckZpHquypZ jxmIW5WIn6BJ9nbk9xIvNt21bj4uyvZ6tWxPVBCc1m/dtxxBggn2eSzNWVGNo7PH w6+jdFLTUOaz82uXNrTkIrh1XYfPOytarHOFzh8yZ56CrxtdV5jLy7u76GybuNtq inWqhnG+BPkBnUx68u+eMyjvH0Dtb3zT -----END CERTIFICATE-----Generated at Thu Apr 10 19:55:58 2025 by rpki-client