$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft File: bifP0YnuRkQx1LkBO8wHWKgCZOY.mft (raw, json) Hash identifier: 1FzdZdmFtHu7Rxf9/EjGOhXGuKJzZqoVV5KZSdPp05k= Subject key identifier: 2B:45:BE:F7:6C:89:B7:D6:9C:29:B6:33:CE:70:90:57:48:03:5E:13 Authority key identifier: 6E:27:CF:D1:89:EE:46:44:31:D4:B9:01:3B:CC:07:58:A8:02:64:E6 Certificate issuer: /CN=A9157D13/serialNumber=6E27CFD189EE464431D4B9013BCC0758A80264E6 Certificate serial: 189B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft Manifest number: 1885 Signing time: Fri 04 Apr 2025 16:33:59 +0000 Manifest this update: Fri 04 Apr 2025 16:33:58 +0000 Manifest next update: Fri 11 Apr 2025 16:33:58 +0000 Files and hashes: 1: bifP0YnuRkQx1LkBO8wHWKgCZOY.crl (hash: mZNgsllZXuefSoqNN/7F/aYIVm0FjL/o5dFf3PJdco8=) 2: 33E73FAAE50B11EF838B6642C4F9AE02.roa (hash: hGExMUb+w4JyWjME6Pb9a+xtMzWk7NBawSO3YXbXwM4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.crl rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:33:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6299 (0x189b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157D13 Validity Not Before: Apr 4 16:33:58 2025 GMT Not After : Apr 11 16:33:58 2025 GMT Subject: CN=67f009f6-b8ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:77:fc:75:3a:d0:73:90:cc:69:0d:29:6f:95: 3d:87:59:46:1a:53:8c:36:ad:bd:33:72:82:8b:96: af:58:7b:af:06:59:d9:dc:98:89:a3:c8:36:37:c2: cc:c6:a0:c5:63:36:71:84:97:3c:4a:0b:34:6a:96: c2:12:f0:ae:3e:61:d6:4f:b9:57:73:48:95:48:cf: a1:4a:61:30:0e:e9:d4:5b:1a:db:d4:65:ec:cb:26: f1:8a:0d:76:78:7a:de:04:6b:50:ee:37:14:51:24: 0a:af:53:59:4a:bc:0a:6e:ec:88:3f:74:9a:24:78: 6a:65:ae:5a:e1:a7:d6:d3:50:6c:23:9c:0c:6b:28: 3a:e7:13:49:5c:ca:c3:ad:a9:d5:ef:40:00:80:70: 9e:8e:86:ea:52:fb:9b:04:1c:49:10:70:41:77:79: 07:cb:b0:7e:33:9b:e5:8a:46:a8:c5:0e:a1:ad:e3: c4:20:bc:30:7b:d2:d7:7c:3b:a2:b4:47:9d:51:59: 62:b7:26:1a:82:5d:b4:d8:d8:32:15:bc:46:35:a3: 0d:b4:94:3a:a5:4a:0f:d5:41:f2:ec:60:4e:c3:16: 30:c6:a7:72:41:e6:1c:3b:dc:63:98:fc:d8:8d:9d: 5f:80:15:2c:c2:0f:af:6d:23:9e:13:60:b8:30:7a: 62:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:45:BE:F7:6C:89:B7:D6:9C:29:B6:33:CE:70:90:57:48:03:5E:13 X509v3 Authority Key Identifier: keyid:6E:27:CF:D1:89:EE:46:44:31:D4:B9:01:3B:CC:07:58:A8:02:64:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:51:d3:89:70:9a:4b:6b:67:dd:19:c9:3e:27:4e:1a:a5:5f: 1d:b6:08:a9:f7:3e:c9:c8:44:d0:ec:4d:1b:7d:2a:8d:d0:70: 71:ce:e9:b7:89:dc:98:2b:40:ea:f0:a5:a5:21:91:3a:cf:01: 0a:7f:2c:62:21:2a:70:3f:fb:a4:58:ac:bc:67:9c:eb:b8:98: ed:30:9f:6d:6c:ad:02:0d:14:4b:f0:9e:ca:2a:46:0f:79:67: 64:3c:79:e1:ca:19:23:b2:39:b5:43:5b:e6:30:25:2d:d4:fb: a2:c2:d3:cb:3e:a9:a8:a7:2a:7a:a6:1c:d9:9b:56:d1:ad:55: 96:53:40:9e:5a:24:6c:1d:2c:f9:dd:45:d0:36:fa:b9:c0:81: 2d:86:15:0e:8b:7b:93:4b:30:8f:6b:03:b9:ec:b2:24:35:77: 86:44:98:9e:8d:fc:e0:d1:d7:97:31:bc:20:fe:24:a5:4e:4e: ee:82:59:1d:cd:42:62:ae:fb:8a:02:5c:fe:3f:7e:e4:a9:d0: 3d:64:63:54:31:34:84:8f:2c:18:c8:e2:e4:8e:28:34:30:dc: 7e:dc:f0:89:8b:c8:e2:63:fd:e9:bf:b6:4a:af:1d:9c:5d:f5: c8:2d:77:ed:26:3d:be:8e:94:1a:3a:e5:41:dd:84:d8:b1:a4: 97:e9:1b:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEMTMxMTAvBgNVBAUTKDZFMjdDRkQxODlFRTQ2NDQzMUQ0QjkwMTNCQ0MwNzU4 QTgwMjY0RTYwHhcNMjUwNDA0MTYzMzU4WhcNMjUwNDExMTYzMzU4WjAYMRYwFAYD VQQDEw02N2YwMDlmNi1iOGFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzHf8dTrQc5DMaQ0pb5U9h1lGGlOMNq29M3KCi5avWHuvBlnZ3JiJo8g2N8LM xqDFYzZxhJc8Sgs0apbCEvCuPmHWT7lXc0iVSM+hSmEwDunUWxrb1GXsyybxig12 eHreBGtQ7jcUUSQKr1NZSrwKbuyIP3SaJHhqZa5a4afW01BsI5wMayg65xNJXMrD ranV70AAgHCejobqUvubBBxJEHBBd3kHy7B+M5vlikaoxQ6hrePEILwwe9LXfDui tEedUVlityYagl202NgyFbxGNaMNtJQ6pUoP1UHy7GBOwxYwxqdyQeYcO9xjmPzY jZ1fgBUswg+vbSOeE2C4MHpiwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCtFvvds ibfWnCm2M85wkFdIA14TMB8GA1UdIwQYMBaAFG4nz9GJ7kZEMdS5ATvMB1ioAmTm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0QxMy9BQTI1REYxQzk4 RkQxMUU3QTgxNDU1NjBDNEY5QUUwMi9iaWZQMFludVJrUXgxTGtCTzh3SFdLZ0Na T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JpZlAwWW51UmtReDFMa0JPOHdIV0tnQ1pPWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0QxMy9BQTI1REYxQzk4RkQxMUU3QTgxNDU1NjBDNEY5QUUwMi9iaWZQMFludVJr UXgxTGtCTzh3SFdLZ0NaT1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfUdOJcJpLa2fdGck+J04apV8dtgip9z7JyETQ7E0bfSqN0HBxzum3 idyYK0Dq8KWlIZE6zwEKfyxiISpwP/ukWKy8Z5zruJjtMJ9tbK0CDRRL8J7KKkYP eWdkPHnhyhkjsjm1Q1vmMCUt1PuiwtPLPqmopyp6phzZm1bRrVWWU0CeWiRsHSz5 3UXQNvq5wIEthhUOi3uTSzCPawO57LIkNXeGRJiejfzg0deXMbwg/iSlTk7uglkd zUJirvuKAlz+P37kqdA9ZGNUMTSEjywYyOLkjig0MNx+3PCJi8jiY/3pv7ZKrx2c XfXILXftJj2+jpQaOuVB3YTYsaSX6Rt6 -----END CERTIFICATE-----Generated at Sat Apr 5 05:17:24 2025 by rpki-client