$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4AA0/1041E5EAE2C311EAB818D17FC4F9AE02/BM9X8qf_ynLAdGioxtXyRRf_Rrk.mft File: BM9X8qf_ynLAdGioxtXyRRf_Rrk.mft (raw, json) Hash identifier: 7DsIPAweY2e8gmkrAD0IMjqo+BhH/CdJTno9sjmHx5M= Subject key identifier: 0D:D6:E9:7B:90:A2:DB:0D:4D:E1:BC:CF:FA:56:89:2B:C7:AC:F9:64 Authority key identifier: 04:CF:57:F2:A7:FF:CA:72:C0:74:68:A8:C6:D5:F2:45:17:FF:46:B9 Certificate issuer: /CN=A91B4AA0/serialNumber=04CF57F2A7FFCA72C07468A8C6D5F24517FF46B9 Certificate serial: 07F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BM9X8qf_ynLAdGioxtXyRRf_Rrk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4AA0/1041E5EAE2C311EAB818D17FC4F9AE02/BM9X8qf_ynLAdGioxtXyRRf_Rrk.mft Manifest number: 07E9 Signing time: Tue 08 Apr 2025 20:48:38 +0000 Manifest this update: Tue 08 Apr 2025 20:48:38 +0000 Manifest next update: Tue 15 Apr 2025 20:48:38 +0000 Files and hashes: 1: BM9X8qf_ynLAdGioxtXyRRf_Rrk.crl (hash: LErGOmYTqthG99iShxSI4jFCnZM3yg6revF7NCANH/U=) 2: 02F863F6C09211EC8950E57AC4F9AE02.roa (hash: YNUo90dPfw7aNa6aT24Mb69b4ZpufKscErkIIX/bwoA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4AA0/1041E5EAE2C311EAB818D17FC4F9AE02/BM9X8qf_ynLAdGioxtXyRRf_Rrk.crl rsync://rpki.apnic.net/member_repository/A91B4AA0/1041E5EAE2C311EAB818D17FC4F9AE02/BM9X8qf_ynLAdGioxtXyRRf_Rrk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BM9X8qf_ynLAdGioxtXyRRf_Rrk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 20:48:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2036 (0x7f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4AA0 Validity Not Before: Apr 8 20:48:38 2025 GMT Not After : Apr 15 20:48:38 2025 GMT Subject: CN=67f58ba6-f0af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:76:a9:d9:11:8c:45:51:bb:83:65:f0:d4:ae: 5c:eb:6e:ba:2a:b2:eb:2c:6d:f6:70:8a:bd:b8:d6: 3a:af:fb:f8:7f:8b:c6:2c:ab:e3:72:af:58:57:88: cb:79:b9:4e:12:70:94:1f:2b:a5:2e:c9:11:f2:90: 8e:93:28:27:dd:d2:30:71:85:1d:ee:30:78:7c:c5: a7:0c:20:f9:7b:64:82:fb:9a:1e:38:65:58:d1:9f: 85:f4:1b:e1:ec:74:3c:68:92:32:fb:c9:5a:03:0e: e7:5e:00:d4:d3:4b:67:45:fe:b1:52:0f:0d:88:24: e0:f3:a5:58:8f:6b:94:23:36:05:b2:e6:89:c8:2a: 76:30:88:f5:4f:c1:26:04:a3:cb:3d:06:42:33:32: e3:5a:89:0a:86:7b:9b:fb:ff:1e:fd:e4:9e:6d:5a: 2c:b1:42:86:c4:67:c6:3e:27:78:c7:2b:dd:37:56: cb:ab:5f:51:07:ca:c0:c6:f5:03:fd:3c:6c:97:94: bb:5d:c1:cd:5e:ed:9d:7a:ef:51:98:37:81:5f:0d: f6:31:d8:50:e8:d1:b2:c5:a9:2a:9e:29:f5:ca:5b: 1e:f3:5b:47:f5:0a:1e:a8:49:8f:3f:14:6e:df:ec: ad:e6:8b:1b:9e:3c:63:dc:be:3a:41:04:51:16:76: 19:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:D6:E9:7B:90:A2:DB:0D:4D:E1:BC:CF:FA:56:89:2B:C7:AC:F9:64 X509v3 Authority Key Identifier: keyid:04:CF:57:F2:A7:FF:CA:72:C0:74:68:A8:C6:D5:F2:45:17:FF:46:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4AA0/1041E5EAE2C311EAB818D17FC4F9AE02/BM9X8qf_ynLAdGioxtXyRRf_Rrk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BM9X8qf_ynLAdGioxtXyRRf_Rrk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4AA0/1041E5EAE2C311EAB818D17FC4F9AE02/BM9X8qf_ynLAdGioxtXyRRf_Rrk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:77:29:50:32:48:5d:47:92:ed:4d:ba:bc:85:58:98:1f:23: b7:5c:e9:0d:0f:35:2f:1d:25:22:7e:6d:75:56:a4:b5:ef:66: a0:b6:cc:91:a1:0d:5d:f3:3c:dc:bf:0a:ef:86:e3:56:22:e2: fb:9e:dc:c0:37:3f:bc:c1:8c:5c:ff:48:0e:eb:d6:f4:b3:f7: e3:8f:7f:40:19:0f:30:b0:a4:20:82:20:34:ef:c4:2f:cf:53: cc:95:bc:70:18:91:16:b7:6b:10:8e:78:86:c7:20:b8:92:da: dc:7c:12:68:90:bf:84:c7:01:45:d3:fb:67:da:bc:bd:8f:01: 00:43:c2:99:e2:96:37:31:8c:97:9d:25:54:ed:86:49:fb:7a: 3d:d9:e4:5e:78:8f:b2:a9:8d:ea:96:b1:69:2b:91:b0:4f:d5: 73:e8:74:68:42:69:04:d2:b9:d6:7e:91:0b:c3:08:c9:db:1e: b9:f2:a6:d0:b6:46:2a:56:c0:3a:87:7a:e2:e9:15:a1:46:3b: 69:c0:e6:77:73:65:27:46:3a:e3:52:f0:e1:13:9d:00:9b:2b: b3:97:e2:da:fa:a5:5a:45:e8:67:87:c1:35:ae:b8:49:78:07: b5:47:d8:dc:a3:29:23:dd:08:dc:a2:59:c8:d7:0c:1a:57:ca: 97:07:19:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjRBQTAxMTAvBgNVBAUTKDA0Q0Y1N0YyQTdGRkNBNzJDMDc0NjhBOEM2RDVGMjQ1 MTdGRjQ2QjkwHhcNMjUwNDA4MjA0ODM4WhcNMjUwNDE1MjA0ODM4WjAYMRYwFAYD VQQDEw02N2Y1OGJhNi1mMGFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6nap2RGMRVG7g2Xw1K5c6266KrLrLG32cIq9uNY6r/v4f4vGLKvjcq9YV4jL eblOEnCUHyulLskR8pCOkygn3dIwcYUd7jB4fMWnDCD5e2SC+5oeOGVY0Z+F9Bvh 7HQ8aJIy+8laAw7nXgDU00tnRf6xUg8NiCTg86VYj2uUIzYFsuaJyCp2MIj1T8Em BKPLPQZCMzLjWokKhnub+/8e/eSebVossUKGxGfGPid4xyvdN1bLq19RB8rAxvUD /Txsl5S7XcHNXu2deu9RmDeBXw32MdhQ6NGyxakqnin1ylse81tH9QoeqEmPPxRu 3+yt5osbnjxj3L46QQRRFnYZ9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA3W6XuQ otsNTeG8z/pWiSvHrPlkMB8GA1UdIwQYMBaAFATPV/Kn/8pywHRoqMbV8kUX/0a5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNEFBMC8xMDQxRTVFQUUy QzMxMUVBQjgxOEQxN0ZDNEY5QUUwMi9CTTlYOHFmX3luTEFkR2lveHRYeVJSZl9S cmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JNOVg4cWZfeW5MQWRHaW94dFh5UlJmX1Jyay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NEFBMC8xMDQxRTVFQUUyQzMxMUVBQjgxOEQxN0ZDNEY5QUUwMi9CTTlYOHFmX3lu TEFkR2lveHRYeVJSZl9ScmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUdylQMkhdR5LtTbq8hViYHyO3XOkNDzUvHSUifm11VqS172agtsyR oQ1d8zzcvwrvhuNWIuL7ntzANz+8wYxc/0gO69b0s/fjj39AGQ8wsKQggiA078Qv z1PMlbxwGJEWt2sQjniGxyC4ktrcfBJokL+ExwFF0/tn2ry9jwEAQ8KZ4pY3MYyX nSVU7YZJ+3o92eReeI+yqY3qlrFpK5GwT9Vz6HRoQmkE0rnWfpELwwjJ2x658qbQ tkYqVsA6h3ri6RWhRjtpwOZ3c2UnRjrjUvDhE50Amyuzl+La+qVaRehnh8E1rrhJ eAe1R9jcoykj3QjcolnI1wwaV8qXBxn1 -----END CERTIFICATE-----Generated at Thu Apr 10 16:28:32 2025 by rpki-client