$ rpki-client -vvf rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.mft File: bZYGiLbecUGnIYmOngc-FneP7zU.mft (raw, json) Hash identifier: fF9vgoa32rqwC83SkXoL/pMPBMPJw+20rpZGSoWfOzU= Subject key identifier: CE:3D:ED:70:CA:D9:52:CE:10:9B:3E:52:A9:6D:12:07:EC:FB:3E:07 Authority key identifier: 6D:96:06:88:B6:DE:71:41:A7:21:89:8E:9E:07:3E:16:77:8F:EF:35 Certificate issuer: /CN=A9197A8F/serialNumber=6D960688B6DE7141A721898E9E073E16778FEF35 Certificate serial: 0128 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bZYGiLbecUGnIYmOngc-FneP7zU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.mft Manifest number: 0124 Signing time: Sat 05 Apr 2025 04:04:03 +0000 Manifest this update: Sat 05 Apr 2025 04:04:03 +0000 Manifest next update: Sat 12 Apr 2025 04:04:03 +0000 Files and hashes: 1: bZYGiLbecUGnIYmOngc-FneP7zU.crl (hash: kMlhIqQ9ePn3Cv3pXf3gt3KhXEoQ/cz8r1myir33Buc=) 2: A663285A59DE11EE85CFCB12C4F9AE02.roa (hash: X/pG7qc3+7qr+qWCl38L4oCPzOU3+0jR+niOHWQizTQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.crl rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bZYGiLbecUGnIYmOngc-FneP7zU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 04:04:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 296 (0x128) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197A8F Validity Not Before: Apr 5 04:04:03 2025 GMT Not After : Apr 12 04:04:03 2025 GMT Subject: CN=67f0abb3-81de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:d0:51:12:a0:74:99:52:ab:01:e6:91:4b:0f: b4:32:4e:5b:42:e6:46:98:31:ae:c8:9d:29:cf:d7: 27:80:39:1d:72:a6:ea:15:47:15:11:18:2b:37:e8: 62:3f:8c:f1:ee:e0:15:4c:ad:f9:7e:57:5d:00:29: 15:1b:f5:b0:92:aa:41:55:6b:fa:7e:09:73:27:1d: 4a:08:c7:aa:40:c4:35:50:cc:7b:d1:28:83:27:c6: 17:87:f0:ce:ac:b3:de:a1:2b:f6:37:3a:3f:00:05: aa:3e:29:35:c8:20:a1:64:94:e7:2a:7d:cd:5a:28: 9b:ca:12:fa:92:0a:01:a0:d3:ab:3b:5e:97:03:88: 9e:9a:d0:43:ea:94:96:fc:51:62:2e:f7:4a:98:d1: e2:6f:75:9e:0d:f5:ce:6a:95:8a:bf:71:97:32:54: b4:4f:cb:15:3a:61:fb:09:2c:8c:5f:b6:a8:e9:75: 8d:95:85:b1:fe:5e:8c:89:73:21:06:4f:f6:2d:16: 5d:1e:bb:2a:24:ee:e5:89:02:03:81:5d:c9:68:59: 0d:7e:1d:6a:a1:b2:22:72:d7:5e:a5:fa:ea:c4:6d: 50:dd:c3:55:d5:dc:4f:15:8a:ce:dc:e8:e6:54:d6: 87:fc:6c:e1:31:85:4e:c3:f6:47:d4:9d:9a:5b:98: d3:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:3D:ED:70:CA:D9:52:CE:10:9B:3E:52:A9:6D:12:07:EC:FB:3E:07 X509v3 Authority Key Identifier: keyid:6D:96:06:88:B6:DE:71:41:A7:21:89:8E:9E:07:3E:16:77:8F:EF:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bZYGiLbecUGnIYmOngc-FneP7zU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:05:76:35:2d:a7:cb:40:92:c3:93:7f:8d:b3:3a:9d:12:b8: 4c:39:39:a7:a7:65:7a:1e:e6:17:c8:ab:ad:32:e4:74:07:b9: f3:23:08:fa:99:2f:d7:5f:36:58:d2:55:89:7f:5b:75:4c:f2: 62:e5:5f:ac:07:34:65:d6:30:db:90:b1:be:04:f6:33:3f:4e: 89:b7:6b:06:b6:d2:bc:d1:8e:72:30:ea:75:34:af:4b:79:36: b8:c1:8c:fa:af:0f:fa:34:46:9c:ab:e3:b4:dc:fb:e6:27:3d: 30:d7:18:70:b6:bb:77:da:34:71:5d:35:f3:af:83:03:55:db: 85:24:de:a6:da:14:f2:ee:20:bb:52:f5:cf:a1:8b:64:66:4f: ce:af:cd:d1:66:e2:49:b1:f1:90:e8:13:bf:0f:f7:4c:6d:62: 95:84:c6:47:d4:f0:27:c9:e4:ad:8c:92:f8:1b:91:64:c0:50: 96:78:46:02:da:2a:8a:1c:c7:f4:b0:b9:ae:22:ea:ed:79:8c: ff:0c:5e:4c:1d:5c:49:c1:37:a5:16:fd:b3:bf:dd:cf:1b:0d: de:6f:28:39:d5:2a:e7:ca:df:00:1b:7f:59:94:43:96:1f:0a: 2f:47:ea:14:bb:27:06:0a:16:6d:da:21:38:6a:fb:8c:b3:51: 21:17:bc:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdBOEYxMTAvBgNVBAUTKDZEOTYwNjg4QjZERTcxNDFBNzIxODk4RTlFMDczRTE2 Nzc4RkVGMzUwHhcNMjUwNDA1MDQwNDAzWhcNMjUwNDEyMDQwNDAzWjAYMRYwFAYD VQQDEw02N2YwYWJiMy04MWRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwdBREqB0mVKrAeaRSw+0Mk5bQuZGmDGuyJ0pz9cngDkdcqbqFUcVERgrN+hi P4zx7uAVTK35flddACkVG/WwkqpBVWv6fglzJx1KCMeqQMQ1UMx70SiDJ8YXh/DO rLPeoSv2Nzo/AAWqPik1yCChZJTnKn3NWiibyhL6kgoBoNOrO16XA4iemtBD6pSW /FFiLvdKmNHib3WeDfXOapWKv3GXMlS0T8sVOmH7CSyMX7ao6XWNlYWx/l6MiXMh Bk/2LRZdHrsqJO7liQIDgV3JaFkNfh1qobIictdepfrqxG1Q3cNV1dxPFYrO3Ojm VNaH/GzhMYVOw/ZH1J2aW5jTXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM497XDK 2VLOEJs+UqltEgfs+z4HMB8GA1UdIwQYMBaAFG2WBoi23nFBpyGJjp4HPhZ3j+81 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0E4Ri82M0FDRDVGNDU5 REIxMUVFQTczN0ZFMEFDNEY5QUUwMi9iWllHaUxiZWNVR25JWW1PbmdjLUZuZVA3 elUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JaWUdpTGJlY1VHbklZbU9uZ2MtRm5lUDd6VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0E4Ri82M0FDRDVGNDU5REIxMUVFQTczN0ZFMEFDNEY5QUUwMi9iWllHaUxiZWNV R25JWW1PbmdjLUZuZVA3elUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVBXY1LafLQJLDk3+NszqdErhMOTmnp2V6HuYXyKutMuR0B7nzIwj6 mS/XXzZY0lWJf1t1TPJi5V+sBzRl1jDbkLG+BPYzP06Jt2sGttK80Y5yMOp1NK9L eTa4wYz6rw/6NEacq+O03PvmJz0w1xhwtrt32jRxXTXzr4MDVduFJN6m2hTy7iC7 UvXPoYtkZk/Or83RZuJJsfGQ6BO/D/dMbWKVhMZH1PAnyeStjJL4G5FkwFCWeEYC 2iqKHMf0sLmuIurteYz/DF5MHVxJwTelFv2zv93PGw3ebyg51Srnyt8AG39ZlEOW HwovR+oUuycGChZt2iE4avuMs1EhF7wG -----END CERTIFICATE-----Generated at Sat Apr 5 09:50:00 2025 by rpki-client