$ rpki-client -vvf rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.mft File: BPDYqTArIrYOMPRlG4KumZ_3TJs.mft (raw, json) Hash identifier: 0JfpCI4Bm1TMHJV38G1U5xFO6c5p3QPtPdtSS/ZHvW8= Subject key identifier: 87:50:62:03:AE:DA:65:42:8E:2E:81:CA:78:81:1E:6A:BD:A4:CA:A0 Authority key identifier: 04:F0:D8:A9:30:2B:22:B6:0E:30:F4:65:1B:82:AE:99:9F:F7:4C:9B Certificate issuer: /CN=A9171882/serialNumber=04F0D8A9302B22B60E30F4651B82AE999FF74C9B Certificate serial: C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BPDYqTArIrYOMPRlG4KumZ_3TJs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.mft Manifest number: C3 Signing time: Thu 17 Apr 2025 04:41:07 +0000 Manifest this update: Thu 17 Apr 2025 04:41:07 +0000 Manifest next update: Thu 24 Apr 2025 04:41:07 +0000 Files and hashes: 1: BPDYqTArIrYOMPRlG4KumZ_3TJs.crl (hash: V+ZElZpoVzZcl6pZFueLwzI5tIneW3NZ+kD+J6iBSJA=) 2: 08D1870EF0B411EE962EE784C4F9AE02.roa (hash: nrFzYe2K6I+fVS0WsJAv1h0mXVgQBFKENnTmsnUT3Jo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.crl rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BPDYqTArIrYOMPRlG4KumZ_3TJs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Apr 2025 04:41:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 197 (0xc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171882, serialNumber=04F0D8A9302B22B60E30F4651B82AE999FF74C9B Validity Not Before: Apr 17 04:41:07 2025 GMT Not After : Apr 24 04:41:07 2025 GMT Subject: CN=68008663-3a13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:69:97:9f:ed:8e:3c:d9:90:60:f8:3e:06:16: 39:2b:da:d5:50:ba:63:ff:d9:23:e9:e2:e6:35:13: c4:97:85:ed:93:63:fb:8c:ab:9b:6b:94:7f:6b:5c: 2b:ad:24:6d:06:e2:5e:5d:3a:1b:3a:4a:b6:10:d9: 18:b9:3e:88:a6:0c:21:37:19:80:2b:f9:93:58:c7: 05:8c:93:06:c9:4d:bb:2b:75:89:63:10:91:bf:06: 5f:98:d3:af:b0:c1:69:ee:88:09:72:68:1a:19:09: af:aa:e2:55:e8:a3:38:76:a2:5b:bc:b2:aa:8b:9a: 3b:f6:bf:5f:d3:d5:da:a6:b1:d9:df:a4:86:89:66: 70:24:f8:0f:8a:11:72:14:b9:5c:92:f5:da:4f:83: d1:ff:aa:9f:49:e4:5d:6d:9e:19:41:1b:cd:33:db: 77:77:7a:f3:26:70:ec:02:74:d7:ee:7d:3f:d4:bd: bd:f4:66:a0:e4:cf:25:fc:9b:42:61:19:64:e7:59: 91:18:53:35:29:50:36:90:79:0b:6f:23:f3:3f:36: 87:e6:ad:20:79:84:6d:77:51:d1:4b:a9:70:a1:73: b0:df:bf:25:2b:62:44:b9:a0:b2:58:52:f1:ac:da: d7:8b:6b:61:ad:c7:39:4f:fd:2d:7a:f4:69:42:b2: 2d:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:50:62:03:AE:DA:65:42:8E:2E:81:CA:78:81:1E:6A:BD:A4:CA:A0 X509v3 Authority Key Identifier: keyid:04:F0:D8:A9:30:2B:22:B6:0E:30:F4:65:1B:82:AE:99:9F:F7:4C:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BPDYqTArIrYOMPRlG4KumZ_3TJs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:40:30:53:cd:13:9d:be:da:87:b5:30:63:84:3a:c7:11:6a: f9:1b:e1:ff:33:0c:fa:ee:ef:99:9b:9a:1a:af:d8:40:8d:ab: e7:87:72:c1:b1:aa:be:f3:b8:a6:ba:da:4f:8d:f1:9e:07:bb: 1c:78:ea:3c:ae:f6:f2:dd:03:28:01:eb:9c:ef:8f:de:59:a6: a7:d3:99:6e:83:a3:72:f0:d8:6a:c5:80:1e:f6:ef:d5:bf:ed: b3:b3:91:f4:a5:04:d7:c9:6d:a8:d2:05:3d:38:02:7d:41:4c: 46:b7:46:a2:6c:a1:f6:a6:00:2c:2c:3d:f9:02:d9:4b:21:41: f2:c8:c0:52:af:c3:15:b5:77:1c:29:88:9a:fb:88:6e:41:8a: 13:2b:48:f6:2d:d9:cc:be:40:3a:f5:18:45:29:88:ae:02:47: f7:36:0a:73:ef:89:d2:ae:db:86:40:73:ce:7f:9b:6f:de:0d: 93:66:43:1c:fa:28:54:84:05:30:5c:61:97:58:72:cd:59:76: 82:7e:57:fd:78:2a:72:c3:28:b1:40:c2:af:ba:51:3a:30:ef: 5b:cf:76:6c:c8:7d:af:66:18:df:17:46:a6:35:22:40:0a:df: cb:9c:f0:38:7a:6b:b4:df:f6:a5:f4:f1:e5:40:c6:1b:0a:89: c3:df:02:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE4ODIxMTAvBgNVBAUTKDA0RjBEOEE5MzAyQjIyQjYwRTMwRjQ2NTFCODJBRTk5 OUZGNzRDOUIwHhcNMjUwNDE3MDQ0MTA3WhcNMjUwNDI0MDQ0MTA3WjAYMRYwFAYD VQQDEw02ODAwODY2My0zYTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn2mXn+2OPNmQYPg+BhY5K9rVULpj/9kj6eLmNRPEl4Xtk2P7jKuba5R/a1wr rSRtBuJeXTobOkq2ENkYuT6IpgwhNxmAK/mTWMcFjJMGyU27K3WJYxCRvwZfmNOv sMFp7ogJcmgaGQmvquJV6KM4dqJbvLKqi5o79r9f09XaprHZ36SGiWZwJPgPihFy FLlckvXaT4PR/6qfSeRdbZ4ZQRvNM9t3d3rzJnDsAnTX7n0/1L299Gag5M8l/JtC YRlk51mRGFM1KVA2kHkLbyPzPzaH5q0geYRtd1HRS6lwoXOw378lK2JEuaCyWFLx rNrXi2thrcc5T/0tevRpQrItIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIdQYgOu 2mVCji6ByniBHmq9pMqgMB8GA1UdIwQYMBaAFATw2KkwKyK2DjD0ZRuCrpmf90yb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTg4Mi9CMjM4QTE4NEYw QjMxMUVFQTRDNzJGODRDNEY5QUUwMi9CUERZcVRBcklyWU9NUFJsRzRLdW1aXzNU SnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JQRFlxVEFySXJZT01QUmxHNEt1bVpfM1RKcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTg4Mi9CMjM4QTE4NEYwQjMxMUVFQTRDNzJGODRDNEY5QUUwMi9CUERZcVRBckly WU9NUFJsRzRLdW1aXzNUSnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPQDBTzROdvtqHtTBjhDrHEWr5G+H/Mwz67u+Zm5oar9hAjavnh3LB saq+87imutpPjfGeB7sceOo8rvby3QMoAeuc74/eWaan05lug6Ny8NhqxYAe9u/V v+2zs5H0pQTXyW2o0gU9OAJ9QUxGt0aibKH2pgAsLD35AtlLIUHyyMBSr8MVtXcc KYia+4huQYoTK0j2LdnMvkA69RhFKYiuAkf3Ngpz74nSrtuGQHPOf5tv3g2TZkMc +ihUhAUwXGGXWHLNWXaCflf9eCpywyixQMKvulE6MO9bz3ZsyH2vZhjfF0amNSJA Ct/LnPA4emu03/al9PHlQMYbConD3wKS -----END CERTIFICATE-----Generated at Thu Apr 17 22:59:46 2025 by rpki-client