$ rpki-client -vvf rpki.apnic.net/member_repository/A911D415/64B7762E67BA11EEA912DE37C4F9AE02/baLnsgc31v3aKTEYAyM4Tcf4AXI.mft File: baLnsgc31v3aKTEYAyM4Tcf4AXI.mft (raw, json) Hash identifier: k8HGjRYPFI4/2BIlxSUt4LJlhaHnlLYycugPm8NczLM= Subject key identifier: 1F:C0:37:7A:91:3D:36:AE:7A:82:0F:AE:A3:21:84:39:A8:C8:BC:05 Authority key identifier: 6D:A2:E7:B2:07:37:D6:FD:DA:29:31:18:03:23:38:4D:C7:F8:01:72 Certificate issuer: /CN=A911D415/serialNumber=6DA2E7B20737D6FDDA2931180323384DC7F80172 Certificate serial: 0137 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baLnsgc31v3aKTEYAyM4Tcf4AXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D415/64B7762E67BA11EEA912DE37C4F9AE02/baLnsgc31v3aKTEYAyM4Tcf4AXI.mft Manifest number: 0134 Signing time: Sat 31 May 2025 04:09:22 +0000 Manifest this update: Sat 31 May 2025 04:09:22 +0000 Manifest next update: Sat 07 Jun 2025 04:09:22 +0000 Files and hashes: 1: baLnsgc31v3aKTEYAyM4Tcf4AXI.crl (hash: JKM6qfXRdoH/UEB5W0jG9Ovh99un91QJzPjawdWTsSk=) 2: B2B7B96067BA11EE99370352C4F9AE02.roa (hash: P/WWt5eI8v2C+zoec4Zd9OnVnDcSJ3bbXF6r7+A0KgE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D415/64B7762E67BA11EEA912DE37C4F9AE02/baLnsgc31v3aKTEYAyM4Tcf4AXI.crl rsync://rpki.apnic.net/member_repository/A911D415/64B7762E67BA11EEA912DE37C4F9AE02/baLnsgc31v3aKTEYAyM4Tcf4AXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baLnsgc31v3aKTEYAyM4Tcf4AXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:09:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 311 (0x137) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D415, serialNumber=6DA2E7B20737D6FDDA2931180323384DC7F80172 Validity Not Before: May 31 04:09:22 2025 GMT Not After : Jun 7 04:09:22 2025 GMT Subject: CN=683a80f2-be7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:27:d8:e8:c6:ff:99:63:fd:97:96:1a:d9:76: 4f:a0:f0:06:a5:82:2d:c4:ed:f7:bd:a8:2f:5d:81: 63:bb:bd:c8:f1:be:a8:ec:d9:cd:a3:dc:72:f4:36: 8a:fd:85:72:0d:b8:f2:9e:ff:aa:dd:2a:3e:9d:1f: 7c:e6:6b:48:61:76:5d:a6:a2:19:9d:99:dc:2e:2f: 6d:43:94:3d:a9:53:f8:44:da:88:75:4c:a1:0f:02: 61:d1:d5:09:9b:b4:54:ea:c3:1b:6f:1a:d2:3a:2e: 60:73:6d:98:81:72:9e:24:4c:1f:7b:37:33:1f:ab: 02:78:f1:8c:81:52:4e:f9:68:77:dc:c1:63:19:91: b3:f2:ac:e5:78:32:a6:51:2a:7c:e9:4d:d3:aa:48: 4c:fb:81:cb:25:b7:6f:4f:f2:c6:66:0a:1a:65:31: f4:ea:b1:9e:07:c0:c3:db:7f:00:9a:2f:a7:03:5d: 42:70:45:9f:26:1d:0d:8a:41:cd:48:79:de:ac:7a: 52:b9:f1:29:e4:b4:b4:c4:9b:be:05:6d:0e:0a:42: 43:d2:0a:f9:d3:42:0b:94:b1:f0:ab:c7:bd:7a:38: 32:38:c5:f3:a5:26:81:10:2d:81:30:3f:79:fe:76: 2c:4d:3a:f0:5f:9b:0a:9d:8e:4c:1d:a3:de:1f:44: 8e:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:C0:37:7A:91:3D:36:AE:7A:82:0F:AE:A3:21:84:39:A8:C8:BC:05 X509v3 Authority Key Identifier: keyid:6D:A2:E7:B2:07:37:D6:FD:DA:29:31:18:03:23:38:4D:C7:F8:01:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D415/64B7762E67BA11EEA912DE37C4F9AE02/baLnsgc31v3aKTEYAyM4Tcf4AXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baLnsgc31v3aKTEYAyM4Tcf4AXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D415/64B7762E67BA11EEA912DE37C4F9AE02/baLnsgc31v3aKTEYAyM4Tcf4AXI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:37:28:30:c0:20:ab:63:6d:65:5b:22:49:5a:21:9b:2b:71: cd:a9:01:88:9f:98:ba:f1:cf:3d:de:63:e6:c2:47:c7:95:ed: 00:f4:81:e1:05:ed:6d:fb:34:a8:ba:c0:2e:19:3b:4c:f6:66: b7:28:85:d6:56:e5:2f:6f:d7:d3:62:39:be:90:c4:24:e0:09: cb:46:ac:4a:c2:5b:8d:ea:74:8a:6f:ad:a1:34:3c:5e:a3:4e: 2c:c9:f2:1b:84:6a:c5:52:7b:79:4f:1f:0b:50:72:b0:27:7c: df:89:e9:8f:62:48:22:31:1c:90:8e:0c:db:e8:3a:c8:0f:4d: a4:c7:b6:5c:62:8c:01:83:1c:30:cc:12:6c:94:9e:1f:a6:b5: e5:6c:f8:f8:3a:0d:fd:97:43:ee:10:2c:0a:cd:5b:3a:05:ea: c7:5d:85:fb:d6:a7:ff:d6:97:3d:e6:55:d5:8d:2d:da:49:d3: 68:1f:30:8d:bd:5b:a9:e9:06:36:18:58:af:84:53:97:c3:c7: a0:16:60:1c:55:a0:7b:a8:ce:3c:a1:df:a1:68:07:77:4b:ae: 5e:58:b2:c5:32:aa:86:af:52:ba:be:72:90:7b:70:af:33:81: b5:da:b1:84:9a:22:61:e1:44:10:29:a8:e0:a3:2f:ec:cd:21: fc:e4:24:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQ0MTUxMTAvBgNVBAUTKDZEQTJFN0IyMDczN0Q2RkREQTI5MzExODAzMjMzODRE QzdGODAxNzIwHhcNMjUwNTMxMDQwOTIyWhcNMjUwNjA3MDQwOTIyWjAYMRYwFAYD VQQDEw02ODNhODBmMi1iZTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoyfY6Mb/mWP9l5Ya2XZPoPAGpYItxO33vagvXYFju73I8b6o7NnNo9xy9DaK /YVyDbjynv+q3So+nR985mtIYXZdpqIZnZncLi9tQ5Q9qVP4RNqIdUyhDwJh0dUJ m7RU6sMbbxrSOi5gc22YgXKeJEwfezczH6sCePGMgVJO+Wh33MFjGZGz8qzleDKm USp86U3TqkhM+4HLJbdvT/LGZgoaZTH06rGeB8DD238Ami+nA11CcEWfJh0NikHN SHnerHpSufEp5LS0xJu+BW0OCkJD0gr500ILlLHwq8e9ejgyOMXzpSaBEC2BMD95 /nYsTTrwX5sKnY5MHaPeH0SOWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB/AN3qR PTaueoIPrqMhhDmoyLwFMB8GA1UdIwQYMBaAFG2i57IHN9b92ikxGAMjOE3H+AFy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDQxNS82NEI3NzYyRTY3 QkExMUVFQTkxMkRFMzdDNEY5QUUwMi9iYUxuc2djMzF2M2FLVEVZQXlNNFRjZjRB WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JhTG5zZ2MzMXYzYUtURVlBeU00VGNmNEFYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDQxNS82NEI3NzYyRTY3QkExMUVFQTkxMkRFMzdDNEY5QUUwMi9iYUxuc2djMzF2 M2FLVEVZQXlNNFRjZjRBWEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNNygwwCCrY21lWyJJWiGbK3HNqQGIn5i68c893mPmwkfHle0A9IHh Be1t+zSousAuGTtM9ma3KIXWVuUvb9fTYjm+kMQk4AnLRqxKwluN6nSKb62hNDxe o04syfIbhGrFUnt5Tx8LUHKwJ3zfiemPYkgiMRyQjgzb6DrID02kx7ZcYowBgxww zBJslJ4fprXlbPj4Og39l0PuECwKzVs6BerHXYX71qf/1pc95lXVjS3aSdNoHzCN vVup6QY2GFivhFOXw8egFmAcVaB7qM48od+haAd3S65eWLLFMqqGr1K6vnKQe3Cv M4G12rGEmiJh4UQQKajgoy/szSH85CTu -----END CERTIFICATE-----Generated at Sat May 31 17:17:36 2025 by rpki-client