$ rpki-client -vvf rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/bDt_HBM9qcUdRE2oXmAqloRR_lQ.mft File: bDt_HBM9qcUdRE2oXmAqloRR_lQ.mft (raw, json) Hash identifier: vkIWER+09cdewthvz8ise2SjYwZ3E8GgH6gB27o6B4c= Subject key identifier: 6A:5A:46:43:A7:E9:9E:BB:8A:66:5F:99:18:50:36:9D:79:F9:88:0D Authority key identifier: 6C:3B:7F:1C:13:3D:A9:C5:1D:44:4D:A8:5E:60:2A:96:84:51:FE:54 Certificate issuer: /CN=A91626D2/serialNumber=6C3B7F1C133DA9C51D444DA85E602A968451FE54 Certificate serial: B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bDt_HBM9qcUdRE2oXmAqloRR_lQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/bDt_HBM9qcUdRE2oXmAqloRR_lQ.mft Manifest number: B0 Signing time: Mon 21 Apr 2025 04:53:39 +0000 Manifest this update: Mon 21 Apr 2025 04:53:39 +0000 Manifest next update: Mon 28 Apr 2025 04:53:39 +0000 Files and hashes: 1: bDt_HBM9qcUdRE2oXmAqloRR_lQ.crl (hash: ciJHMfZSXa7sMZTeYjPp4B7icr/lSboULEC1E4M0b9o=) 2: 8093CCBA13F611EF8ED7D71EC4F9AE02.roa (hash: J6cm0tDS7Sdy7/sJGsGgF8rSkOKz7v9OX913NFApE9A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/bDt_HBM9qcUdRE2oXmAqloRR_lQ.crl rsync://rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/bDt_HBM9qcUdRE2oXmAqloRR_lQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bDt_HBM9qcUdRE2oXmAqloRR_lQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 04:53:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 178 (0xb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91626D2, serialNumber=6C3B7F1C133DA9C51D444DA85E602A968451FE54 Validity Not Before: Apr 21 04:53:39 2025 GMT Not After : Apr 28 04:53:39 2025 GMT Subject: CN=6805cf53-0496 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:34:86:e7:dd:da:30:a6:50:2b:0f:a5:c6:de: fe:bf:4e:01:25:28:17:aa:50:1e:b3:c8:de:9d:81: 39:23:7d:6a:f0:93:09:c7:b5:a5:37:e0:90:0c:e2: 5a:91:57:71:ed:f2:4c:8f:c3:f9:96:1f:0b:b0:b1: f6:11:ee:82:7d:ea:a8:62:c8:88:cf:6f:f4:c5:8a: 7e:fc:d2:71:ca:2e:34:30:d6:3b:cf:07:b8:f6:77: d8:6d:ce:c4:56:c3:d0:9f:a2:d2:4e:95:cc:dc:6b: a0:cd:f5:31:49:15:17:ba:48:eb:a6:6a:de:c1:8e: 8e:86:d5:07:3b:48:85:e7:59:3b:e4:74:38:9f:de: 21:ae:58:ce:cb:26:83:f2:40:83:a7:99:cf:46:23: 12:23:11:f3:63:88:31:0b:3d:8d:e3:a2:75:02:13: 37:c0:2e:69:a3:3d:e0:ad:de:e3:00:2a:7f:c4:64: cc:81:35:9b:90:22:f7:79:a9:22:84:be:84:2a:37: 5d:d3:31:9a:ee:86:02:a8:0e:b4:0d:fe:92:87:1a: 8e:e3:62:2b:3e:2a:35:19:98:7c:cc:e8:d8:e7:7e: 9c:67:30:9f:1c:12:b1:1e:b2:2d:bf:92:70:5c:2b: f6:a8:76:39:d4:c9:7f:04:25:b5:06:2f:21:87:2c: 9d:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:5A:46:43:A7:E9:9E:BB:8A:66:5F:99:18:50:36:9D:79:F9:88:0D X509v3 Authority Key Identifier: keyid:6C:3B:7F:1C:13:3D:A9:C5:1D:44:4D:A8:5E:60:2A:96:84:51:FE:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/bDt_HBM9qcUdRE2oXmAqloRR_lQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bDt_HBM9qcUdRE2oXmAqloRR_lQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/bDt_HBM9qcUdRE2oXmAqloRR_lQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:1d:a9:e4:92:d3:8d:74:ea:75:cc:9e:03:ab:07:fa:e6:84: 57:1d:76:81:97:fc:0a:d9:ce:f2:c3:cb:d1:73:c6:fc:23:0e: ac:29:fa:6e:1f:8b:0a:30:f2:2b:02:6b:bd:3d:31:37:a4:0a: 6e:7d:75:57:cc:56:d9:7b:db:61:a4:0f:c1:0e:ba:1b:9a:bc: b2:e8:34:fb:fb:2f:1a:22:31:c7:d1:74:37:76:0e:97:55:bc: 43:0c:c9:ce:c7:0c:a3:71:de:64:14:17:9a:eb:20:4d:7d:12: 8d:c6:3a:ac:45:cc:69:01:aa:14:9c:9c:09:2a:8b:8e:39:a0: 33:b0:66:c2:5d:31:dd:f9:14:f8:3d:1b:5c:1f:7e:75:0c:81: 4c:00:20:b4:75:ba:7e:82:96:42:22:c7:6c:27:16:d2:79:41: 6d:13:71:70:46:49:c6:6e:1c:cd:7c:10:47:83:38:13:7c:56: 02:5e:57:02:ec:fe:14:bd:9d:08:82:cf:29:34:62:5b:42:7e: fb:d7:73:58:02:1e:0f:9b:78:da:a4:53:c2:5c:68:ed:25:2f: 97:38:17:0d:9a:92:c8:f7:f7:cb:39:d1:eb:d3:98:67:73:30: 4b:20:2b:4d:dd:b8:5d:5a:09:e0:3a:8a:1c:03:b8:ed:7a:66: ac:3f:08:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI2RDIxMTAvBgNVBAUTKDZDM0I3RjFDMTMzREE5QzUxRDQ0NERBODVFNjAyQTk2 ODQ1MUZFNTQwHhcNMjUwNDIxMDQ1MzM5WhcNMjUwNDI4MDQ1MzM5WjAYMRYwFAYD VQQDEw02ODA1Y2Y1My0wNDk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5DSG593aMKZQKw+lxt7+v04BJSgXqlAes8jenYE5I31q8JMJx7WlN+CQDOJa kVdx7fJMj8P5lh8LsLH2Ee6CfeqoYsiIz2/0xYp+/NJxyi40MNY7zwe49nfYbc7E VsPQn6LSTpXM3GugzfUxSRUXukjrpmrewY6OhtUHO0iF51k75HQ4n94hrljOyyaD 8kCDp5nPRiMSIxHzY4gxCz2N46J1AhM3wC5poz3grd7jACp/xGTMgTWbkCL3eaki hL6EKjdd0zGa7oYCqA60Df6ShxqO42IrPio1GZh8zOjY536cZzCfHBKxHrItv5Jw XCv2qHY51Ml/BCW1Bi8hhyyd2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGpaRkOn 6Z67imZfmRhQNp15+YgNMB8GA1UdIwQYMBaAFGw7fxwTPanFHURNqF5gKpaEUf5U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjZEMi9BRjIwODM0RTEz RjUxMUVGQTA5RDMyMUJDNEY5QUUwMi9iRHRfSEJNOXFjVWRSRTJvWG1BcWxvUlJf bFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JEdF9IQk05cWNVZFJFMm9YbUFxbG9SUl9sUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjZEMi9BRjIwODM0RTEzRjUxMUVGQTA5RDMyMUJDNEY5QUUwMi9iRHRfSEJNOXFj VWRSRTJvWG1BcWxvUlJfbFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5HankktONdOp1zJ4Dqwf65oRXHXaBl/wK2c7yw8vRc8b8Iw6sKfpu H4sKMPIrAmu9PTE3pApufXVXzFbZe9thpA/BDrobmryy6DT7+y8aIjHH0XQ3dg6X VbxDDMnOxwyjcd5kFBea6yBNfRKNxjqsRcxpAaoUnJwJKouOOaAzsGbCXTHd+RT4 PRtcH351DIFMACC0dbp+gpZCIsdsJxbSeUFtE3FwRknGbhzNfBBHgzgTfFYCXlcC 7P4UvZ0Igs8pNGJbQn7713NYAh4Pm3japFPCXGjtJS+XOBcNmpLI9/fLOdHr05hn czBLICtN3bhdWgngOoocA7jtemasPwj8 -----END CERTIFICATE-----Generated at Tue Apr 22 03:17:56 2025 by rpki-client