$ rpki-client -vvf rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.mft File: BfhBmvmqMYTqsf-HQkpq4zz3MsQ.mft (raw, json) Hash identifier: eu3JTRB1RPXCmZgSWv/fjavzzuzXQkVhApZ0mCmmtF4= Subject key identifier: 28:0D:3D:19:9E:E9:F9:F0:AA:5C:66:C8:EF:33:BA:F7:E7:FA:D4:21 Authority key identifier: 05:F8:41:9A:F9:AA:31:84:EA:B1:FF:87:42:4A:6A:E3:3C:F7:32:C4 Certificate issuer: /CN=A915E575/serialNumber=05F8419AF9AA3184EAB1FF87424A6AE33CF732C4 Certificate serial: 039C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.mft Manifest number: 0398 Signing time: Sat 29 Mar 2025 01:01:36 +0000 Manifest this update: Sat 29 Mar 2025 01:01:36 +0000 Manifest next update: Sat 05 Apr 2025 01:01:36 +0000 Files and hashes: 1: BfhBmvmqMYTqsf-HQkpq4zz3MsQ.crl (hash: jQpulrpc96vNjDbRiax0Vg9QeRFh9tpFlQzdIvLVCu0=) 2: D86008008FAA11ECB0728B0FC4F9AE02.roa (hash: RsMIAFkbpydCDPohis69ldhzmBpnzB7IY6eRBCKfLas=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.crl rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 01:01:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 924 (0x39c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E575 Validity Not Before: Mar 29 01:01:36 2025 GMT Not After : Apr 5 01:01:36 2025 GMT Subject: CN=67e74670-9acb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:92:d4:dd:15:82:19:b4:f7:39:20:31:b6:bd: 94:5a:b8:62:47:cc:6c:f6:cb:76:f5:60:6e:55:0d: 05:b0:2d:44:9b:29:87:37:fd:01:49:60:09:60:83: 8b:5d:43:e4:5a:b3:46:1d:a2:a5:c0:76:1b:f6:ff: 74:22:8e:ba:37:67:db:e7:f3:34:43:5f:4f:49:95: 60:e5:7d:25:43:32:8e:27:ba:85:26:8c:44:17:d3: e6:8e:dd:46:7a:0d:48:ec:5c:f3:c9:8d:46:5f:92: 53:e5:b3:15:03:43:a5:6b:ad:ad:6f:4e:3d:12:92: 4a:7c:24:59:78:1b:c0:1a:6b:ba:d5:95:c3:62:c7: 94:06:f9:3c:29:80:63:65:c6:74:be:8a:20:39:67: 16:ca:dc:6f:2f:f0:7c:34:a0:e2:3d:e3:43:e3:c5: c4:36:1b:91:b3:d7:4d:30:b7:41:89:85:79:87:65: f0:cc:3c:30:14:1e:d4:b9:77:17:85:bf:df:34:19: 8a:d8:77:01:bd:61:e1:4d:92:f2:6f:97:80:2a:bf: 79:f9:11:f8:68:4b:96:8a:c0:b7:41:c2:e6:25:0d: 44:5b:25:8a:9e:fd:2c:35:a6:30:10:35:7f:d3:f0: e8:23:df:e9:82:00:fe:10:ef:5f:3e:c3:fa:04:fc: 69:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:0D:3D:19:9E:E9:F9:F0:AA:5C:66:C8:EF:33:BA:F7:E7:FA:D4:21 X509v3 Authority Key Identifier: keyid:05:F8:41:9A:F9:AA:31:84:EA:B1:FF:87:42:4A:6A:E3:3C:F7:32:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:81:86:b6:35:35:4e:36:7a:fd:c2:d9:37:34:0c:94:7f:40: 9b:a9:91:3a:d1:05:76:90:80:03:9d:89:bb:83:88:af:9a:01: a0:40:29:f6:9a:e4:55:33:bb:b9:35:32:af:89:dc:b3:8d:35: 8b:27:61:c1:33:ec:28:d7:74:f0:26:86:bb:af:a6:2d:7f:df: c2:a0:39:e1:ec:45:c1:39:68:ef:02:97:d8:a7:67:5b:8d:5e: f2:52:6f:0b:06:ae:5f:73:ad:31:58:bf:a8:66:d4:c3:51:b9: 53:2b:1a:da:c1:58:50:14:e1:61:df:59:1e:bf:22:11:54:cf: d3:06:c2:43:c0:46:8d:3f:c2:d1:5d:de:4e:32:44:d6:c9:40: c5:0e:ad:13:5a:54:f9:26:6c:cc:d5:ca:d8:dd:80:1e:cc:23: 91:7a:8a:e9:e8:8a:d2:b7:ab:3a:bb:fd:c9:4d:3f:89:57:0d: 48:ac:23:73:4b:b9:39:f6:2c:37:03:6a:b3:6a:49:4b:1f:81: e6:f8:4a:2e:0d:f3:09:5b:3b:ab:7e:c5:3f:1a:e4:72:26:1f: 9d:b5:9c:18:66:7c:9f:b2:8c:1a:38:d5:e5:63:8c:6e:56:c1: 13:d9:bb:25:6c:35:31:ed:1e:8b:60:4d:40:f1:93:6f:13:24: 9a:56:1b:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUU1NzUxMTAvBgNVBAUTKDA1Rjg0MTlBRjlBQTMxODRFQUIxRkY4NzQyNEE2QUUz M0NGNzMyQzQwHhcNMjUwMzI5MDEwMTM2WhcNMjUwNDA1MDEwMTM2WjAYMRYwFAYD VQQDEw02N2U3NDY3MC05YWNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtZLU3RWCGbT3OSAxtr2UWrhiR8xs9st29WBuVQ0FsC1EmymHN/0BSWAJYIOL XUPkWrNGHaKlwHYb9v90Io66N2fb5/M0Q19PSZVg5X0lQzKOJ7qFJoxEF9Pmjt1G eg1I7FzzyY1GX5JT5bMVA0Ola62tb049EpJKfCRZeBvAGmu61ZXDYseUBvk8KYBj ZcZ0voogOWcWytxvL/B8NKDiPeND48XENhuRs9dNMLdBiYV5h2XwzDwwFB7UuXcX hb/fNBmK2HcBvWHhTZLyb5eAKr95+RH4aEuWisC3QcLmJQ1EWyWKnv0sNaYwEDV/ 0/DoI9/pggD+EO9fPsP6BPxp3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCgNPRme 6fnwqlxmyO8zuvfn+tQhMB8GA1UdIwQYMBaAFAX4QZr5qjGE6rH/h0JKauM89zLE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTU3NS9GMEIyNDIxNDhG QTYxMUVDOUMzOTc3NjJDNEY5QUUwMi9CZmhCbXZtcU1ZVHFzZi1IUWtwcTR6ejNN c1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JmaEJtdm1xTVlUcXNmLUhRa3BxNHp6M01zUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RTU3NS9GMEIyNDIxNDhGQTYxMUVDOUMzOTc3NjJDNEY5QUUwMi9CZmhCbXZtcU1Z VHFzZi1IUWtwcTR6ejNNc1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpgYa2NTVONnr9wtk3NAyUf0CbqZE60QV2kIADnYm7g4ivmgGgQCn2 muRVM7u5NTKvidyzjTWLJ2HBM+wo13TwJoa7r6Ytf9/CoDnh7EXBOWjvApfYp2db jV7yUm8LBq5fc60xWL+oZtTDUblTKxrawVhQFOFh31kevyIRVM/TBsJDwEaNP8LR Xd5OMkTWyUDFDq0TWlT5JmzM1crY3YAezCOReorp6IrSt6s6u/3JTT+JVw1IrCNz S7k59iw3A2qzaklLH4Hm+EouDfMJWzurfsU/GuRyJh+dtZwYZnyfsowaONXlY4xu VsET2bslbDUx7R6LYE1A8ZNvEySaVhtj -----END CERTIFICATE-----Generated at Fri Apr 4 22:13:38 2025 by rpki-client