$ rpki-client -vvf rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/bkWq8A0m8fB31nRzkUTUuMOU87g.mft File: bkWq8A0m8fB31nRzkUTUuMOU87g.mft (raw, json) Hash identifier: LjXaJbwE7QShPKCcd+GiSPg9nbkbh0FmovPIVUyfUsQ= Subject key identifier: 03:7D:6D:53:4B:14:C6:0A:C8:33:D8:2A:8D:68:12:14:29:CA:6A:9F Authority key identifier: 6E:45:AA:F0:0D:26:F1:F0:77:D6:74:73:91:44:D4:B8:C3:94:F3:B8 Certificate issuer: /CN=A919F0DA/serialNumber=6E45AAF00D26F1F077D674739144D4B8C394F3B8 Certificate serial: 23C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bkWq8A0m8fB31nRzkUTUuMOU87g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/bkWq8A0m8fB31nRzkUTUuMOU87g.mft Manifest number: 5FDC Signing time: Fri 04 Apr 2025 14:15:27 +0000 Manifest this update: Fri 04 Apr 2025 14:15:27 +0000 Manifest next update: Fri 11 Apr 2025 14:15:27 +0000 Files and hashes: 1: bkWq8A0m8fB31nRzkUTUuMOU87g.crl (hash: ngIgHpO4h8mAB/IRgkjDgYYs0nTW2e/8USkHYcYiyEk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/bkWq8A0m8fB31nRzkUTUuMOU87g.crl rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/bkWq8A0m8fB31nRzkUTUuMOU87g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bkWq8A0m8fB31nRzkUTUuMOU87g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 14:15:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9154 (0x23c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F0DA Validity Not Before: Apr 4 14:15:27 2025 GMT Not After : Apr 11 14:15:27 2025 GMT Subject: CN=67efe97f-4df8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:71:09:17:06:12:18:b7:42:0a:4f:d9:f7:92: ca:05:ab:f0:65:cc:a5:6c:57:23:dc:4b:8a:11:9d: 1d:7f:06:d5:3f:59:cf:04:48:47:14:4d:d7:df:92: 23:f5:2e:c4:70:cf:bb:47:35:1c:e6:29:3c:36:8c: 7e:30:9d:c4:88:09:bb:7f:48:a4:17:ab:4b:95:83: 0a:f8:e9:28:97:6e:03:ce:9c:c9:b6:db:4c:19:5a: 71:de:6e:35:da:60:1e:11:6b:e0:e0:7c:ff:73:59: 2c:76:e2:6c:c6:ea:84:d7:b8:e5:0d:b7:6a:74:cf: b4:57:80:a7:73:45:99:05:0c:df:40:f9:f6:2b:b5: 05:db:a0:01:8b:a2:bf:2e:1a:90:ce:de:94:fb:3b: 09:61:41:6d:b2:5d:34:3b:0a:39:fb:87:a8:0d:12: 5e:ed:53:bb:af:be:1c:4f:6a:69:c1:fc:90:51:42: 0b:d1:1f:33:38:da:b1:04:4f:25:97:2d:1b:9e:de: 06:cc:0b:f5:e4:2d:1c:ca:63:66:a5:39:0b:80:0b: c3:47:7b:ea:ce:9b:09:ee:c2:a6:d2:1b:5e:66:11: ab:93:51:bd:63:eb:60:c4:9b:b8:1b:fa:fe:1a:f4: 81:92:ee:7e:21:05:1a:9d:18:e2:3c:d1:d4:9c:ca: e8:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:7D:6D:53:4B:14:C6:0A:C8:33:D8:2A:8D:68:12:14:29:CA:6A:9F X509v3 Authority Key Identifier: keyid:6E:45:AA:F0:0D:26:F1:F0:77:D6:74:73:91:44:D4:B8:C3:94:F3:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/bkWq8A0m8fB31nRzkUTUuMOU87g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bkWq8A0m8fB31nRzkUTUuMOU87g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/bkWq8A0m8fB31nRzkUTUuMOU87g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:b9:a5:ab:6f:ae:04:5c:2e:30:79:bc:8a:65:a4:19:6e:ca: 3a:22:64:10:0d:5f:4f:ae:88:f7:50:cf:c9:72:e7:11:23:ed: 4a:ea:a6:be:bd:aa:9b:fe:57:3b:09:eb:10:b5:73:41:50:dc: 29:4a:8b:f7:d7:6a:61:43:b3:17:49:c0:12:9b:3c:3c:2f:96: d0:df:ce:5b:09:58:f8:59:c0:a9:f0:0f:b7:ba:3e:3c:a1:4f: 7a:2e:34:9e:46:db:88:04:80:14:41:db:a4:50:7c:5e:8d:8d: 7f:81:09:76:5a:74:85:07:51:e4:d3:d7:8e:a0:97:89:dc:da: 46:8f:3b:da:c8:89:e8:64:c9:4e:42:4b:7c:01:8f:1a:1c:fe: 86:51:7f:f9:0a:e7:90:71:6c:08:89:bc:0b:87:56:32:58:43: 85:5a:26:ba:67:db:3f:da:44:fe:73:88:4b:b4:7b:67:55:f9: eb:51:66:b1:64:73:d1:29:21:df:60:5b:5c:82:18:fc:4a:8b: a9:d4:cf:01:de:9a:56:8d:a9:ee:b1:3e:04:d7:85:08:2a:d2: 62:95:ca:70:19:2f:6b:93:29:31:d9:cd:04:b0:a9:74:c7:53: ae:74:67:36:c1:ef:92:56:58:5e:a9:a1:48:e7:06:df:a7:a8: 97:96:82:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICI8IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUYwREExMTAvBgNVBAUTKDZFNDVBQUYwMEQyNkYxRjA3N0Q2NzQ3MzkxNDRENEI4 QzM5NEYzQjgwHhcNMjUwNDA0MTQxNTI3WhcNMjUwNDExMTQxNTI3WjAYMRYwFAYD VQQDEw02N2VmZTk3Zi00ZGY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0HEJFwYSGLdCCk/Z95LKBavwZcylbFcj3EuKEZ0dfwbVP1nPBEhHFE3X35Ij 9S7EcM+7RzUc5ik8Nox+MJ3EiAm7f0ikF6tLlYMK+Okol24DzpzJtttMGVpx3m41 2mAeEWvg4Hz/c1ksduJsxuqE17jlDbdqdM+0V4Cnc0WZBQzfQPn2K7UF26ABi6K/ LhqQzt6U+zsJYUFtsl00Owo5+4eoDRJe7VO7r74cT2ppwfyQUUIL0R8zONqxBE8l ly0bnt4GzAv15C0cymNmpTkLgAvDR3vqzpsJ7sKm0hteZhGrk1G9Y+tgxJu4G/r+ GvSBku5+IQUanRjiPNHUnMroWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAN9bVNL FMYKyDPYKo1oEhQpymqfMB8GA1UdIwQYMBaAFG5FqvANJvHwd9Z0c5FE1LjDlPO4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjBEQS8xNTBEM0VGNDFE NjgxMUUyOEMxODI4QTQwOEIwMkNEMi9ia1dxOEEwbThmQjMxblJ6a1VUVXVNT1U4 N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JrV3E4QTBtOGZCMzFuUnprVVRVdU1PVTg3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RjBEQS8xNTBEM0VGNDFENjgxMUUyOEMxODI4QTQwOEIwMkNEMi9ia1dxOEEwbThm QjMxblJ6a1VUVXVNT1U4N2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6uaWrb64EXC4webyKZaQZbso6ImQQDV9Proj3UM/JcucRI+1K6qa+ vaqb/lc7CesQtXNBUNwpSov312phQ7MXScASmzw8L5bQ385bCVj4WcCp8A+3uj48 oU96LjSeRtuIBIAUQdukUHxejY1/gQl2WnSFB1Hk09eOoJeJ3NpGjzvayInoZMlO Qkt8AY8aHP6GUX/5CueQcWwIibwLh1YyWEOFWia6Z9s/2kT+c4hLtHtnVfnrUWax ZHPRKSHfYFtcghj8Soup1M8B3ppWjanusT4E14UIKtJilcpwGS9rkykx2c0EsKl0 x1OudGc2we+SVlheqaFI5wbfp6iXloIK -----END CERTIFICATE-----Generated at Sat Apr 5 00:50:08 2025 by rpki-client