$ rpki-client -vvf rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft File: bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft (raw, json) Hash identifier: x6+KiKelQujCXoKveS5jJs3dmet2AGKKbisE0CqxpKc= Subject key identifier: 7F:A3:66:0F:DB:E1:12:80:66:52:95:CF:59:7C:21:48:5E:F5:12:A4 Authority key identifier: 6F:00:24:6A:85:88:84:8C:3A:17:27:52:F3:2A:E4:EA:30:C6:80:A4 Certificate issuer: /CN=A917983D/serialNumber=6F00246A8588848C3A172752F32AE4EA30C680A4 Certificate serial: 02A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwAkaoWIhIw6FydS8yrk6jDGgKQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft Manifest number: 029D Signing time: Mon 21 Apr 2025 01:07:36 +0000 Manifest this update: Mon 21 Apr 2025 01:07:35 +0000 Manifest next update: Mon 28 Apr 2025 01:07:35 +0000 Files and hashes: 1: bwAkaoWIhIw6FydS8yrk6jDGgKQ.crl (hash: r4DVe/YK+psY2gcdAt8pjZMrO/oEejvp2MaQWMJDxC4=) 2: 1F59A248F69E11EC947BBC5EC4F9AE02.roa (hash: IiOrImghzE2Vpf35rEo7vvLgM62zn5Ft6k44BhxCI6k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.crl rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwAkaoWIhIw6FydS8yrk6jDGgKQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 01:07:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 673 (0x2a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917983D, serialNumber=6F00246A8588848C3A172752F32AE4EA30C680A4 Validity Not Before: Apr 21 01:07:35 2025 GMT Not After : Apr 28 01:07:35 2025 GMT Subject: CN=68059a57-9469 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:8e:6a:b4:2c:ae:09:a8:63:ef:a7:8a:93:a0: 06:3c:75:e9:0b:81:bc:f8:8a:9a:6d:7c:e4:50:93: bf:d4:17:81:f4:53:36:59:23:8f:6d:40:36:99:fc: fb:a4:4a:06:a3:70:79:f0:16:fa:0f:6b:9f:b7:52: 05:e7:6b:26:49:69:ef:59:ed:57:55:4f:bc:42:cd: ef:e2:14:21:05:2d:7e:81:d4:fc:50:91:3c:8c:a7: f4:cb:2b:97:81:60:ce:2a:42:65:4b:67:78:1c:8c: 79:4a:2d:a2:3f:ee:ab:2e:7d:60:e6:9d:39:bb:8b: 06:03:37:50:5f:ce:55:0a:e8:f6:66:1c:2c:83:94: 32:63:bd:1a:50:cd:e0:f7:34:92:61:64:79:9f:d8: 78:f4:8e:6f:3b:18:45:97:a3:e8:35:e2:58:1d:f4: 3d:9f:fb:da:a6:38:03:08:0e:af:cd:94:f4:c1:ea: b2:45:7f:07:85:28:2b:44:df:18:1e:85:df:ce:33: 45:23:3f:e0:d3:76:41:73:a8:b6:62:8a:0b:08:7b: c0:7f:1f:64:21:da:00:98:d0:a2:e1:28:9b:22:1f: c2:e5:41:6c:ee:05:db:0d:e0:fb:5a:1d:6c:33:9b: 56:4d:e5:59:9a:2f:4e:9e:b6:39:e7:03:dc:7e:c7: 63:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:A3:66:0F:DB:E1:12:80:66:52:95:CF:59:7C:21:48:5E:F5:12:A4 X509v3 Authority Key Identifier: keyid:6F:00:24:6A:85:88:84:8C:3A:17:27:52:F3:2A:E4:EA:30:C6:80:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwAkaoWIhIw6FydS8yrk6jDGgKQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:04:41:f4:7d:10:eb:cf:31:f4:92:2a:5f:15:d3:ea:a2:ab: d4:c4:0c:9b:d1:fe:92:49:96:00:9e:13:4b:75:ab:3a:80:5a: 27:61:8a:3c:cf:0b:b5:30:0c:89:bf:31:c1:ff:62:ce:96:36: 03:86:6c:e9:da:c8:50:fc:18:74:e7:da:21:93:98:e3:c5:9e: f1:1e:6d:64:3e:ad:82:d4:61:9d:38:13:0f:4a:14:39:a2:0d: 19:de:ae:81:05:e2:a3:3a:5c:66:13:89:b6:be:b0:fe:c7:5d: 73:4d:e4:c3:9b:21:da:3d:6a:49:52:57:c0:37:62:b8:1f:ad: 6d:33:c5:70:ab:cf:e0:5d:17:42:3b:1e:78:82:bf:63:86:f6: f1:fa:77:e3:96:bf:43:82:76:9e:c0:a5:80:86:9e:63:62:2a: ad:a7:54:84:3c:e6:3b:0f:9e:21:fe:79:08:1c:28:5d:bd:40: 93:67:34:8b:69:bf:14:2c:8b:38:21:fd:0e:c1:65:2e:d8:ae: c3:25:5a:9a:77:b3:65:17:87:ce:af:5a:c3:19:02:1b:0c:d6: 6f:4d:55:78:a9:f0:ce:7c:48:75:b8:6e:ac:e9:a2:2f:91:fb: 41:84:ea:ff:da:08:30:30:77:12:33:b4:df:af:8e:63:79:44: 76:38:47:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk4M0QxMTAvBgNVBAUTKDZGMDAyNDZBODU4ODg0OEMzQTE3Mjc1MkYzMkFFNEVB MzBDNjgwQTQwHhcNMjUwNDIxMDEwNzM1WhcNMjUwNDI4MDEwNzM1WjAYMRYwFAYD VQQDEw02ODA1OWE1Ny05NDY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoo5qtCyuCahj76eKk6AGPHXpC4G8+IqabXzkUJO/1BeB9FM2WSOPbUA2mfz7 pEoGo3B58Bb6D2uft1IF52smSWnvWe1XVU+8Qs3v4hQhBS1+gdT8UJE8jKf0yyuX gWDOKkJlS2d4HIx5Si2iP+6rLn1g5p05u4sGAzdQX85VCuj2Zhwsg5QyY70aUM3g 9zSSYWR5n9h49I5vOxhFl6PoNeJYHfQ9n/vapjgDCA6vzZT0weqyRX8HhSgrRN8Y HoXfzjNFIz/g03ZBc6i2YooLCHvAfx9kIdoAmNCi4SibIh/C5UFs7gXbDeD7Wh1s M5tWTeVZmi9OnrY55wPcfsdjnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH+jZg/b 4RKAZlKVz1l8IUhe9RKkMB8GA1UdIwQYMBaAFG8AJGqFiISMOhcnUvMq5OowxoCk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTgzRC80MTYyRjQ0Q0Y2 OUExMUVDQTc4NTNCNTlDNEY5QUUwMi9id0FrYW9XSWhJdzZGeWRTOHlyazZqREdn S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J3QWthb1dJaEl3NkZ5ZFM4eXJrNmpER2dLUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTgzRC80MTYyRjQ0Q0Y2OUExMUVDQTc4NTNCNTlDNEY5QUUwMi9id0FrYW9XSWhJ dzZGeWRTOHlyazZqREdnS1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChBEH0fRDrzzH0kipfFdPqoqvUxAyb0f6SSZYAnhNLdas6gFonYYo8 zwu1MAyJvzHB/2LOljYDhmzp2shQ/Bh059ohk5jjxZ7xHm1kPq2C1GGdOBMPShQ5 og0Z3q6BBeKjOlxmE4m2vrD+x11zTeTDmyHaPWpJUlfAN2K4H61tM8Vwq8/gXRdC Ox54gr9jhvbx+nfjlr9DgnaewKWAhp5jYiqtp1SEPOY7D54h/nkIHChdvUCTZzSL ab8ULIs4If0OwWUu2K7DJVqad7NlF4fOr1rDGQIbDNZvTVV4qfDOfEh1uG6s6aIv kftBhOr/2ggwMHcSM7Tfr45jeUR2OEf3 -----END CERTIFICATE-----Generated at Tue Apr 22 03:14:58 2025 by rpki-client