$ rpki-client -vvf rpki.apnic.net/member_repository/A91859C2/E7C0223E9F4211EB922D354FC4F9AE02/Bzzm268iYrP6YRXW_6ezNCFe-g0.mft File: Bzzm268iYrP6YRXW_6ezNCFe-g0.mft (raw, json) Hash identifier: 2jMpeODbFra5uoi7Yy5dTvexnTmYhs69HpYB65fcotQ= Subject key identifier: 8D:6F:47:04:3D:3E:10:9E:85:98:A2:C3:D2:80:24:3E:A2:D0:38:DE Authority key identifier: 07:3C:E6:DB:AF:22:62:B3:FA:61:15:D6:FF:A7:B3:34:21:5E:FA:0D Certificate issuer: /CN=A91859C2/serialNumber=073CE6DBAF2262B3FA6115D6FFA7B334215EFA0D Certificate serial: 05FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bzzm268iYrP6YRXW_6ezNCFe-g0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91859C2/E7C0223E9F4211EB922D354FC4F9AE02/Bzzm268iYrP6YRXW_6ezNCFe-g0.mft Manifest number: 05FA Signing time: Fri 28 Mar 2025 23:10:54 +0000 Manifest this update: Fri 28 Mar 2025 23:10:53 +0000 Manifest next update: Fri 04 Apr 2025 23:10:53 +0000 Files and hashes: 1: Bzzm268iYrP6YRXW_6ezNCFe-g0.crl (hash: LlXTgk5jRT7eC+msk5jytTG7UL5sT/dIv49440V7fqo=) 2: A80223709F4411EB92132051C4F9AE02.roa (hash: ZURzq5MNTYtgjtpZ673W988Pjm4b5QiAz5gyz+eygEs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91859C2/E7C0223E9F4211EB922D354FC4F9AE02/Bzzm268iYrP6YRXW_6ezNCFe-g0.crl rsync://rpki.apnic.net/member_repository/A91859C2/E7C0223E9F4211EB922D354FC4F9AE02/Bzzm268iYrP6YRXW_6ezNCFe-g0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bzzm268iYrP6YRXW_6ezNCFe-g0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 23:10:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1535 (0x5ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91859C2 Validity Not Before: Mar 28 23:10:53 2025 GMT Not After : Apr 4 23:10:53 2025 GMT Subject: CN=67e72c7d-8284 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:96:7a:0f:c2:02:78:dd:2f:2f:f7:ce:7f:83: 24:da:c6:f7:3d:9f:01:1e:dd:3d:0e:8b:4c:f3:bf: 35:df:c4:ef:99:30:24:bb:66:a9:92:00:ca:3e:e8: be:ba:a8:62:43:6a:19:3d:85:a4:83:a2:c1:43:25: e8:43:53:f9:4b:5b:ad:9c:fe:37:e5:f0:bd:43:86: bb:bc:ef:1b:19:29:89:2e:13:55:03:74:9d:bc:06: b1:44:9e:82:ed:06:27:e9:e4:10:ab:e9:3a:9e:c1: 34:7d:20:1f:8b:98:c7:7b:71:c2:3e:33:fd:d8:be: bd:24:f3:8d:5d:e4:f6:15:b2:34:ba:d4:ad:91:72: 7f:5f:a8:09:54:41:a5:5e:6f:b6:69:ad:ed:a0:06: 97:5b:e6:3e:64:d3:76:04:10:26:79:8c:bd:b2:8f: 9d:05:b8:54:ab:68:bd:b4:bb:f6:f5:17:d2:65:ae: e7:96:45:3d:51:64:30:46:60:85:ef:ed:43:20:74: ff:2e:59:ec:76:07:a7:af:03:76:1f:5b:63:73:51: 94:cc:ec:5d:55:12:7c:27:f1:88:de:34:ed:af:38: 82:4d:34:a7:35:92:15:5a:80:34:ca:4f:34:84:6d: d8:56:9a:07:97:97:a1:31:89:ec:eb:c8:28:47:7d: c1:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:6F:47:04:3D:3E:10:9E:85:98:A2:C3:D2:80:24:3E:A2:D0:38:DE X509v3 Authority Key Identifier: keyid:07:3C:E6:DB:AF:22:62:B3:FA:61:15:D6:FF:A7:B3:34:21:5E:FA:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91859C2/E7C0223E9F4211EB922D354FC4F9AE02/Bzzm268iYrP6YRXW_6ezNCFe-g0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bzzm268iYrP6YRXW_6ezNCFe-g0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91859C2/E7C0223E9F4211EB922D354FC4F9AE02/Bzzm268iYrP6YRXW_6ezNCFe-g0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:ce:35:a1:7e:9d:87:e7:5a:85:92:22:90:dc:15:bb:f2:9a: dc:8c:e7:40:4f:90:64:57:ad:b6:7b:f9:ff:04:22:61:1e:d5: 5e:21:b5:c3:41:64:1b:53:41:09:15:37:99:5a:b1:01:d3:33: 50:9f:71:58:89:64:81:e9:5e:6f:a0:de:11:83:56:bb:49:9f: 62:fe:6e:be:1a:01:f5:e5:f5:72:67:b1:bc:65:88:2b:60:c8: 14:5e:28:5b:9e:77:7d:77:81:d8:a0:56:be:b6:2c:38:d8:76: e7:12:0e:30:89:b2:77:e5:41:5d:43:3d:ab:87:b0:3e:b5:9a: e0:6c:fb:bc:88:54:07:a0:05:6d:0d:67:6d:2e:0b:b4:c9:f6: ec:65:a6:3a:b4:d2:59:e1:e0:38:68:61:fb:5b:e6:24:8d:17: 2a:5e:dd:bc:14:f3:d2:1d:f2:59:ce:8c:fc:67:79:31:b7:fa: 6b:4f:fe:7c:74:e2:4f:0a:aa:51:96:4c:6a:29:d1:f2:1d:2e: 31:d1:c2:8e:b5:30:3f:96:2c:16:70:26:a4:10:e1:1a:1e:b4: 7c:63:3d:71:72:09:a1:2e:a3:62:cd:16:99:b5:52:96:3d:80: 9c:e1:f1:b6:19:14:f0:a6:c6:8a:e6:2e:f9:4f:f3:65:a9:3a: 86:d6:43:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBf8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU5QzIxMTAvBgNVBAUTKDA3M0NFNkRCQUYyMjYyQjNGQTYxMTVENkZGQTdCMzM0 MjE1RUZBMEQwHhcNMjUwMzI4MjMxMDUzWhcNMjUwNDA0MjMxMDUzWjAYMRYwFAYD VQQDEw02N2U3MmM3ZC04Mjg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu5Z6D8ICeN0vL/fOf4Mk2sb3PZ8BHt09DotM878138TvmTAku2apkgDKPui+ uqhiQ2oZPYWkg6LBQyXoQ1P5S1utnP435fC9Q4a7vO8bGSmJLhNVA3SdvAaxRJ6C 7QYn6eQQq+k6nsE0fSAfi5jHe3HCPjP92L69JPONXeT2FbI0utStkXJ/X6gJVEGl Xm+2aa3toAaXW+Y+ZNN2BBAmeYy9so+dBbhUq2i9tLv29RfSZa7nlkU9UWQwRmCF 7+1DIHT/LlnsdgenrwN2H1tjc1GUzOxdVRJ8J/GI3jTtrziCTTSnNZIVWoA0yk80 hG3YVpoHl5ehMYns68goR33BywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI1vRwQ9 PhCehZiiw9KAJD6i0DjeMB8GA1UdIwQYMBaAFAc85tuvImKz+mEV1v+nszQhXvoN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTlDMi9FN0MwMjIzRTlG NDIxMUVCOTIyRDM1NEZDNEY5QUUwMi9CenptMjY4aVlyUDZZUlhXXzZlek5DRmUt ZzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0J6em0yNjhpWXJQNllSWFdfNmV6TkNGZS1nMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTlDMi9FN0MwMjIzRTlGNDIxMUVCOTIyRDM1NEZDNEY5QUUwMi9CenptMjY4aVly UDZZUlhXXzZlek5DRmUtZzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOzjWhfp2H51qFkiKQ3BW78prcjOdAT5BkV622e/n/BCJhHtVeIbXD QWQbU0EJFTeZWrEB0zNQn3FYiWSB6V5voN4Rg1a7SZ9i/m6+GgH15fVyZ7G8ZYgr YMgUXihbnnd9d4HYoFa+tiw42HbnEg4wibJ35UFdQz2rh7A+tZrgbPu8iFQHoAVt DWdtLgu0yfbsZaY6tNJZ4eA4aGH7W+YkjRcqXt28FPPSHfJZzoz8Z3kxt/prT/58 dOJPCqpRlkxqKdHyHS4x0cKOtTA/liwWcCakEOEaHrR8Yz1xcgmhLqNizRaZtVKW PYCc4fG2GRTwpsaK5i75T/NlqTqG1kP3 -----END CERTIFICATE-----Generated at Fri Apr 4 21:54:05 2025 by rpki-client