$ rpki-client -vvf rpki.apnic.net/member_repository/A9118827/3C7CB4501BE811ECBBA65B50C4F9AE02/bu53G7POfpjbOWDE2C90Kiz36Ek.mft File: bu53G7POfpjbOWDE2C90Kiz36Ek.mft (raw, json) Hash identifier: cCCcMxDABo7SR0ME/XNB1WPdax7m5NnCYtdtUD3eSfE= Subject key identifier: 9D:6A:E3:93:08:63:F4:D4:75:38:E7:73:26:51:D2:9C:67:E5:CE:63 Authority key identifier: 6E:EE:77:1B:B3:CE:7E:98:DB:39:60:C4:D8:2F:74:2A:2C:F7:E8:49 Certificate issuer: /CN=A9118827/serialNumber=6EEE771BB3CE7E98DB3960C4D82F742A2CF7E849 Certificate serial: 04E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bu53G7POfpjbOWDE2C90Kiz36Ek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118827/3C7CB4501BE811ECBBA65B50C4F9AE02/bu53G7POfpjbOWDE2C90Kiz36Ek.mft Manifest number: 04DC Signing time: Fri 30 May 2025 23:57:56 +0000 Manifest this update: Fri 30 May 2025 23:57:55 +0000 Manifest next update: Fri 06 Jun 2025 23:57:55 +0000 Files and hashes: 1: bu53G7POfpjbOWDE2C90Kiz36Ek.crl (hash: bsagqE8XtcTFPulaMpZfQEcS3v8cxzBhuCMTzzZkL9Y=) 2: 95D9A9461BEC11EC97B39812C4F9AE02.roa (hash: O7MsLUw+gaoXTG9KiMvLQn/bjyCnjO8H09gMJ3FbG7s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118827/3C7CB4501BE811ECBBA65B50C4F9AE02/bu53G7POfpjbOWDE2C90Kiz36Ek.crl rsync://rpki.apnic.net/member_repository/A9118827/3C7CB4501BE811ECBBA65B50C4F9AE02/bu53G7POfpjbOWDE2C90Kiz36Ek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bu53G7POfpjbOWDE2C90Kiz36Ek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 23:57:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1248 (0x4e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118827, serialNumber=6EEE771BB3CE7E98DB3960C4D82F742A2CF7E849 Validity Not Before: May 30 23:57:55 2025 GMT Not After : Jun 6 23:57:55 2025 GMT Subject: CN=683a4604-a5b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:3f:4c:39:c9:e6:42:cf:aa:00:89:49:74:0f: d9:48:80:b4:f5:ac:61:55:1c:9a:90:9a:55:de:58: 32:a6:ad:41:67:97:35:b2:9a:af:62:90:55:9f:17: a1:23:7f:c4:17:fb:5c:d5:2e:85:2b:52:c4:f3:4e: ed:32:8e:9e:9f:56:91:b6:09:4d:d6:3f:43:a2:90: b5:4c:0c:4d:a7:d3:08:a6:ee:9f:e2:94:08:38:09: e1:a8:1d:4f:89:1f:24:2e:49:63:12:2d:0a:58:92: 20:2d:4b:19:c1:e8:23:af:a1:a9:f5:21:8c:25:85: 00:29:c9:da:bb:55:67:91:eb:29:aa:65:a1:4b:af: d5:97:55:5d:bc:62:38:d6:1d:7e:67:67:ff:37:85: 8c:42:2b:ef:4d:ad:04:a7:b4:50:0c:8e:9b:88:ee: e0:50:b7:6f:df:ba:b4:04:e5:66:bb:bc:bc:7c:61: 05:76:db:48:0b:6a:6e:cf:60:bf:a1:9f:c1:37:f4: 9a:6a:96:59:3e:18:67:67:09:84:48:75:32:7d:c2: f5:10:25:2b:50:74:d9:3a:98:ec:ae:20:18:d7:da: 55:44:5a:b2:7e:26:83:b8:a9:4d:8c:9a:14:95:f3: 4f:a5:79:9a:97:6c:0a:0f:47:cc:be:6d:c0:73:07: 26:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:6A:E3:93:08:63:F4:D4:75:38:E7:73:26:51:D2:9C:67:E5:CE:63 X509v3 Authority Key Identifier: keyid:6E:EE:77:1B:B3:CE:7E:98:DB:39:60:C4:D8:2F:74:2A:2C:F7:E8:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118827/3C7CB4501BE811ECBBA65B50C4F9AE02/bu53G7POfpjbOWDE2C90Kiz36Ek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bu53G7POfpjbOWDE2C90Kiz36Ek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118827/3C7CB4501BE811ECBBA65B50C4F9AE02/bu53G7POfpjbOWDE2C90Kiz36Ek.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:46:52:15:d6:b7:81:13:9c:dd:c9:45:97:ff:03:24:ab:fc: 6e:35:0c:bd:47:80:c1:03:f6:5c:d0:ea:50:ec:87:02:09:38: ea:fd:9d:e9:c4:8b:c2:ac:b4:a2:5d:ef:f0:f2:44:05:a0:4a: da:a6:02:7e:ef:ef:c9:19:ab:81:b2:a8:7c:98:55:b1:25:73: 78:6d:4c:d4:06:ca:36:20:4e:0f:2e:f6:d3:a4:8c:f7:4e:d0: d1:cd:cd:8a:57:5a:75:a2:96:5f:86:48:95:a1:9c:e0:81:3e: 29:d6:da:9f:59:97:ca:a0:0c:fc:2a:45:66:85:10:5e:71:38: f2:9d:d8:7c:b2:c9:b0:e2:9b:eb:86:51:61:ef:7b:a1:c4:97: f7:8f:cc:b2:6f:3d:73:2c:60:b9:2d:7b:74:3e:39:e6:c5:e2: 49:64:ea:21:be:2f:29:d0:d2:ed:21:65:ea:57:04:31:5c:f3: 27:b2:af:a0:72:15:d5:e8:87:2b:9b:91:d5:b8:1c:70:72:fd: 61:68:b9:2e:8a:38:2c:22:8a:53:74:80:a6:38:de:70:08:d5: 62:2f:f2:ae:d5:1e:66:50:e6:ab:4c:71:29:50:0b:fc:81:41: 94:72:42:dd:1e:23:43:e1:ab:2a:ae:f8:4e:3a:8e:0c:94:53: 6f:68:86:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg4MjcxMTAvBgNVBAUTKDZFRUU3NzFCQjNDRTdFOThEQjM5NjBDNEQ4MkY3NDJB MkNGN0U4NDkwHhcNMjUwNTMwMjM1NzU1WhcNMjUwNjA2MjM1NzU1WjAYMRYwFAYD VQQDEw02ODNhNDYwNC1hNWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9j9MOcnmQs+qAIlJdA/ZSIC09axhVRyakJpV3lgypq1BZ5c1spqvYpBVnxeh I3/EF/tc1S6FK1LE807tMo6en1aRtglN1j9DopC1TAxNp9MIpu6f4pQIOAnhqB1P iR8kLkljEi0KWJIgLUsZwegjr6Gp9SGMJYUAKcnau1VnkespqmWhS6/Vl1VdvGI4 1h1+Z2f/N4WMQivvTa0Ep7RQDI6biO7gULdv37q0BOVmu7y8fGEFdttIC2puz2C/ oZ/BN/SaapZZPhhnZwmESHUyfcL1ECUrUHTZOpjsriAY19pVRFqyfiaDuKlNjJoU lfNPpXmal2wKD0fMvm3AcwcmZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ1q45MI Y/TUdTjncyZR0pxn5c5jMB8GA1UdIwQYMBaAFG7udxuzzn6Y2zlgxNgvdCos9+hJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODgyNy8zQzdDQjQ1MDFC RTgxMUVDQkJBNjVCNTBDNEY5QUUwMi9idTUzRzdQT2ZwamJPV0RFMkM5MEtpejM2 RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J1NTNHN1BPZnBqYk9XREUyQzkwS2l6MzZFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODgyNy8zQzdDQjQ1MDFCRTgxMUVDQkJBNjVCNTBDNEY5QUUwMi9idTUzRzdQT2Zw amJPV0RFMkM5MEtpejM2RWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuRlIV1reBE5zdyUWX/wMkq/xuNQy9R4DBA/Zc0OpQ7IcCCTjq/Z3p xIvCrLSiXe/w8kQFoErapgJ+7+/JGauBsqh8mFWxJXN4bUzUBso2IE4PLvbTpIz3 TtDRzc2KV1p1opZfhkiVoZzggT4p1tqfWZfKoAz8KkVmhRBecTjyndh8ssmw4pvr hlFh73uhxJf3j8yybz1zLGC5LXt0PjnmxeJJZOohvi8p0NLtIWXqVwQxXPMnsq+g chXV6Icrm5HVuBxwcv1haLkuijgsIopTdICmON5wCNViL/Ku1R5mUOarTHEpUAv8 gUGUckLdHiND4asqrvhOOo4MlFNvaIaw -----END CERTIFICATE-----Generated at Sat May 31 16:33:09 2025 by rpki-client