$ rpki-client -vvf rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.mft File: BL27YPamYNHS0BJzSQ_PCcw1m3M.mft (raw, json) Hash identifier: AkkJm2FGL2zhNnVGvfkN6aMfRqRjfcD3IEyhW44RuXc= Subject key identifier: 48:AD:E1:62:7D:EB:C3:60:25:78:D3:E4:0D:79:31:9B:15:B7:98:4E Authority key identifier: 04:BD:BB:60:F6:A6:60:D1:D2:D0:12:73:49:0F:CF:09:CC:35:9B:73 Certificate issuer: /CN=A917C59F/serialNumber=04BDBB60F6A660D1D2D01273490FCF09CC359B73 Certificate serial: 086C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BL27YPamYNHS0BJzSQ_PCcw1m3M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.mft Manifest number: 0864 Signing time: Sun 06 Apr 2025 20:25:03 +0000 Manifest this update: Sun 06 Apr 2025 20:25:01 +0000 Manifest next update: Sun 13 Apr 2025 20:25:01 +0000 Files and hashes: 1: BL27YPamYNHS0BJzSQ_PCcw1m3M.crl (hash: V6HMjyytxjF/JmyX1blbcesfiRZrqI/ogA3tCfQ0i+4=) 2: 12482BA205A211ED81E44F6DC4F9AE02.roa (hash: fYbzp1Oz4KIx83cDiZ+b+olfYLWh9zVxHoKcBuS5W0E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.crl rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BL27YPamYNHS0BJzSQ_PCcw1m3M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 18:52:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2156 (0x86c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C59F Validity Not Before: Apr 6 20:25:01 2025 GMT Not After : Apr 13 20:25:01 2025 GMT Subject: CN=67f2e31f-f7ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:58:d9:06:8a:2c:ec:a1:d1:6d:eb:5b:c1:10: 99:d5:e1:b9:c3:26:9d:20:6b:96:32:dd:c1:31:33: 3e:27:66:8a:fe:11:7c:19:25:c4:cc:05:c7:59:2d: 5d:39:4d:46:bd:ef:d2:45:b9:8a:9f:0b:4f:84:23: 2e:6e:ee:58:5e:58:8f:0e:21:39:98:32:86:8f:32: af:63:eb:71:63:f3:ff:fc:9b:03:b0:4a:01:c5:96: aa:6d:2d:4f:87:4f:0c:7d:eb:78:1b:48:b1:16:72: 82:3f:21:8c:fa:ef:88:c7:f1:b7:d9:68:45:14:54: da:46:b6:4b:af:6e:73:f3:bd:90:7c:b4:9a:10:1d: e6:bb:ec:f3:9a:07:8b:44:5f:2a:17:c0:d3:b3:6d: b7:4e:1c:ce:aa:e3:95:41:06:2d:1b:8e:af:99:9d: 00:dc:66:ce:88:0b:5e:87:c1:8f:3b:80:63:22:1f: 87:fb:35:f5:0a:d4:82:88:b2:b8:61:fa:34:a4:ce: 54:7c:cb:23:ce:07:41:cc:d9:68:ea:6d:ee:4d:60: 7d:ba:ea:89:e4:5e:7a:23:a6:38:eb:0e:e4:bd:fd: e8:98:00:64:7f:aa:82:b6:df:4c:43:6a:3b:b5:37: 05:41:21:a3:ee:7d:0e:99:76:98:ea:1e:b3:9a:05: 47:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:AD:E1:62:7D:EB:C3:60:25:78:D3:E4:0D:79:31:9B:15:B7:98:4E X509v3 Authority Key Identifier: keyid:04:BD:BB:60:F6:A6:60:D1:D2:D0:12:73:49:0F:CF:09:CC:35:9B:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BL27YPamYNHS0BJzSQ_PCcw1m3M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cb:a1:9b:00:cc:54:9c:48:b3:81:34:fa:ff:1e:f8:2a:a4:57: a7:92:7e:dd:96:78:bb:f5:7e:57:55:2a:93:ba:89:c6:0f:1d: b5:ec:b4:d8:41:cf:ab:16:85:68:5f:c9:9f:6d:ea:5a:ce:5e: 7a:7e:68:49:60:77:64:23:2d:1b:a4:66:3c:89:80:3b:9c:08: 23:1a:45:6e:5b:62:77:3b:3b:82:8c:87:0c:ea:32:bd:f2:be: a8:e2:e8:0d:9e:e8:bc:a2:19:82:f9:34:50:a6:67:cd:57:38: 15:05:3c:c3:b5:4d:68:53:70:23:7f:83:2e:fd:c4:2a:b0:40: 74:8b:3f:cb:52:dc:c2:e7:4a:82:de:76:18:11:31:bc:bc:bf: 46:42:49:55:cd:55:dd:01:6d:6a:bd:78:0b:34:b9:73:b3:8c: df:a0:a9:29:2a:fc:9b:2c:36:a3:e8:fe:09:e5:47:d8:d1:9f: c5:bf:1e:32:42:c8:fe:77:58:f6:e0:be:59:80:de:09:a7:e0: ff:41:e8:f3:4a:0c:d4:f4:7e:6b:69:84:6e:e9:f3:ca:ec:b4: cf:2b:50:e0:d8:a2:3c:86:7d:89:ae:5e:3f:19:4c:bf:6b:a2: 6d:10:95:f4:db:e9:d0:05:82:4a:fd:6c:da:a6:33:25:4f:40: 4a:c1:31:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCGwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M1OUYxMTAvBgNVBAUTKDA0QkRCQjYwRjZBNjYwRDFEMkQwMTI3MzQ5MEZDRjA5 Q0MzNTlCNzMwHhcNMjUwNDA2MjAyNTAxWhcNMjUwNDEzMjAyNTAxWjAYMRYwFAYD VQQDEw02N2YyZTMxZi1mN2ZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3FjZBoos7KHRbetbwRCZ1eG5wyadIGuWMt3BMTM+J2aK/hF8GSXEzAXHWS1d OU1Gve/SRbmKnwtPhCMubu5YXliPDiE5mDKGjzKvY+txY/P//JsDsEoBxZaqbS1P h08Mfet4G0ixFnKCPyGM+u+Ix/G32WhFFFTaRrZLr25z872QfLSaEB3mu+zzmgeL RF8qF8DTs223ThzOquOVQQYtG46vmZ0A3GbOiAteh8GPO4BjIh+H+zX1CtSCiLK4 Yfo0pM5UfMsjzgdBzNlo6m3uTWB9uuqJ5F56I6Y46w7kvf3omABkf6qCtt9MQ2o7 tTcFQSGj7n0OmXaY6h6zmgVHFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEit4WJ9 68NgJXjT5A15MZsVt5hOMB8GA1UdIwQYMBaAFAS9u2D2pmDR0tASc0kPzwnMNZtz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzU5Ri80MjVFODkwMkMx NDQxMUVBOTFGMDNBNkZDNEY5QUUwMi9CTDI3WVBhbVlOSFMwQkp6U1FfUENjdzFt M00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JMMjdZUGFtWU5IUzBCSnpTUV9QQ2N3MW0zTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzU5Ri80MjVFODkwMkMxNDQxMUVBOTFGMDNBNkZDNEY5QUUwMi9CTDI3WVBhbVlO SFMwQkp6U1FfUENjdzFtM00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDLoZsAzFScSLOBNPr/HvgqpFenkn7dlni79X5XVSqTuonGDx217LTY Qc+rFoVoX8mfbepazl56fmhJYHdkIy0bpGY8iYA7nAgjGkVuW2J3OzuCjIcM6jK9 8r6o4ugNnui8ohmC+TRQpmfNVzgVBTzDtU1oU3Ajf4Mu/cQqsEB0iz/LUtzC50qC 3nYYETG8vL9GQklVzVXdAW1qvXgLNLlzs4zfoKkpKvybLDaj6P4J5UfY0Z/Fvx4y Qsj+d1j24L5ZgN4Jp+D/QejzSgzU9H5raYRu6fPK7LTPK1Dg2KI8hn2Jrl4/GUy/ a6JtEJX02+nQBYJK/WzapjMlT0BKwTE6 -----END CERTIFICATE-----Generated at Mon Apr 7 01:23:54 2025 by rpki-client