$ rpki-client -vvf rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft File: bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft (raw, json) Hash identifier: u74NFRC8bHyTdarE6l+6Rfeeg2v6FKuaYeuIFImOrnI= Subject key identifier: D7:90:62:78:EB:6C:74:8A:07:17:0C:43:B0:E3:3C:24:38:65:E2:3F Authority key identifier: 6D:DE:C6:A1:71:29:23:0E:EE:FE:50:8A:F1:19:62:FB:4C:0F:6F:C2 Certificate issuer: /CN=A9167C9C/serialNumber=6DDEC6A17129230EEEFE508AF11962FB4C0F6FC2 Certificate serial: 056C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bd7GoXEpIw7u_lCK8Rli-0wPb8I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft Manifest number: 0568 Signing time: Sun 20 Apr 2025 22:59:51 +0000 Manifest this update: Sun 20 Apr 2025 22:59:50 +0000 Manifest next update: Sun 27 Apr 2025 22:59:50 +0000 Files and hashes: 1: bd7GoXEpIw7u_lCK8Rli-0wPb8I.crl (hash: FpVNPYHu0w5ALZzsmxBKSTugcsP6yG9VAqLxztV0gKM=) 2: BF811486DC1E11EBB2C72F52C4F9AE02.roa (hash: iBf35JbhfXTByYtXYWLsbRPZqGHn3gi9s/hG2voZLCk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.crl rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bd7GoXEpIw7u_lCK8Rli-0wPb8I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 22:59:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1388 (0x56c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167C9C, serialNumber=6DDEC6A17129230EEEFE508AF11962FB4C0F6FC2 Validity Not Before: Apr 20 22:59:50 2025 GMT Not After : Apr 27 22:59:50 2025 GMT Subject: CN=68057c66-e55d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:05:64:24:2f:fd:2c:5c:4f:22:15:d0:c4:c5: 2a:dd:58:34:8f:fb:19:9b:d1:56:21:0e:2d:53:44: a8:99:63:38:af:be:d1:1e:a5:b9:f5:6e:34:b3:e8: 54:f6:aa:1b:7b:74:d3:be:6c:f3:d9:f9:48:1b:86: 57:e7:ec:77:3d:4b:f3:07:76:16:15:c3:6f:10:68: bd:b1:d4:19:e3:c0:01:05:97:14:71:d0:08:1f:f5: 34:87:d3:4c:10:39:79:a5:79:4c:00:d8:38:a5:dc: 9f:f3:ee:58:1d:16:b0:4a:09:3b:56:d8:86:ed:dc: 03:55:88:c2:54:0f:27:fe:ea:7b:e5:9b:50:ae:d5: e0:52:72:b0:ee:2b:96:60:06:4f:4f:d8:92:03:21: fd:88:a4:ad:c9:2a:d0:32:62:48:f4:2e:d9:11:a0: bd:9a:54:7f:a5:36:e5:b4:f0:d0:f8:b9:de:2a:c2: cb:0c:db:28:d9:a1:e5:73:3a:28:80:80:e3:94:d0: b6:6f:32:34:9e:90:6f:04:2e:a4:ed:44:51:fb:da: 61:c8:1c:5d:8a:80:75:dd:41:87:85:59:fc:1a:90: 2b:e3:84:12:95:99:7a:e5:26:1e:d5:64:43:26:00: f9:9e:5f:45:40:98:c9:cf:02:e6:75:10:06:48:04: 4d:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:90:62:78:EB:6C:74:8A:07:17:0C:43:B0:E3:3C:24:38:65:E2:3F X509v3 Authority Key Identifier: keyid:6D:DE:C6:A1:71:29:23:0E:EE:FE:50:8A:F1:19:62:FB:4C:0F:6F:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bd7GoXEpIw7u_lCK8Rli-0wPb8I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:d3:38:a1:46:5e:d1:b0:8f:37:cb:7d:16:fc:e9:fa:79:07: 15:c6:7e:72:37:58:18:a7:25:7b:86:50:fd:6a:62:78:33:8a: d7:17:d1:49:79:ba:c1:38:1f:ae:78:54:e3:e4:62:c4:73:08: 97:ab:a0:a2:a6:49:09:79:fc:97:bf:b7:58:a1:f9:4e:70:17: d0:0f:63:7d:61:60:f1:8c:c7:b9:66:6d:bf:1f:10:b9:fe:33: dd:0a:32:ba:a6:9b:a4:7c:f7:97:f5:9d:c6:e6:33:29:38:17: 37:0d:00:00:53:09:e1:db:cb:02:4d:b3:56:92:5c:17:59:c0: a3:a6:f7:21:af:c3:0e:af:87:bf:b3:8e:b0:26:6b:9f:85:6e: 00:7e:d5:72:88:50:60:a4:00:fb:93:d0:9b:fe:9d:a1:e2:63: 10:e3:1f:db:17:09:27:9c:88:27:e1:78:3e:46:62:60:df:e9: e4:a2:e5:bd:c5:e5:4f:d3:a6:11:9c:85:f1:e9:6b:c6:5c:a2: c3:2f:6c:a8:82:31:45:82:fc:32:3e:86:22:3f:e8:f2:69:3b: 2c:7b:3b:f5:46:5c:48:76:92:9f:3f:7d:4d:e7:b8:8d:a5:ed: 6d:56:ad:bd:10:f7:d0:b3:9a:04:82:65:f9:d3:4c:19:f2:cc: 37:f7:b6:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBWwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDOUMxMTAvBgNVBAUTKDZEREVDNkExNzEyOTIzMEVFRUZFNTA4QUYxMTk2MkZC NEMwRjZGQzIwHhcNMjUwNDIwMjI1OTUwWhcNMjUwNDI3MjI1OTUwWjAYMRYwFAYD VQQDEw02ODA1N2M2Ni1lNTVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmgVkJC/9LFxPIhXQxMUq3Vg0j/sZm9FWIQ4tU0SomWM4r77RHqW59W40s+hU 9qobe3TTvmzz2flIG4ZX5+x3PUvzB3YWFcNvEGi9sdQZ48ABBZcUcdAIH/U0h9NM EDl5pXlMANg4pdyf8+5YHRawSgk7VtiG7dwDVYjCVA8n/up75ZtQrtXgUnKw7iuW YAZPT9iSAyH9iKStySrQMmJI9C7ZEaC9mlR/pTbltPDQ+LneKsLLDNso2aHlczoo gIDjlNC2bzI0npBvBC6k7URR+9phyBxdioB13UGHhVn8GpAr44QSlZl65SYe1WRD JgD5nl9FQJjJzwLmdRAGSARN7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNeQYnjr bHSKBxcMQ7DjPCQ4ZeI/MB8GA1UdIwQYMBaAFG3exqFxKSMO7v5QivEZYvtMD2/C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0M5Qy85QjZDNDI4MERD MUIxMUVCQTYzNTUwNEVDNEY5QUUwMi9iZDdHb1hFcEl3N3VfbENLOFJsaS0wd1Bi OEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JkN0dvWEVwSXc3dV9sQ0s4UmxpLTB3UGI4SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0M5Qy85QjZDNDI4MERDMUIxMUVCQTYzNTUwNEVDNEY5QUUwMi9iZDdHb1hFcEl3 N3VfbENLOFJsaS0wd1BiOEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC50zihRl7RsI83y30W/On6eQcVxn5yN1gYpyV7hlD9amJ4M4rXF9FJ ebrBOB+ueFTj5GLEcwiXq6CipkkJefyXv7dYoflOcBfQD2N9YWDxjMe5Zm2/HxC5 /jPdCjK6ppukfPeX9Z3G5jMpOBc3DQAAUwnh28sCTbNWklwXWcCjpvchr8MOr4e/ s46wJmufhW4AftVyiFBgpAD7k9Cb/p2h4mMQ4x/bFwknnIgn4Xg+RmJg3+nkouW9 xeVP06YRnIXx6WvGXKLDL2yogjFFgvwyPoYiP+jyaTssezv1RlxIdpKfP31N57iN pe1tVq29EPfQs5oEgmX500wZ8sw397YU -----END CERTIFICATE-----Generated at Tue Apr 22 16:17:06 2025 by rpki-client