$ rpki-client -vvf rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft File: bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft (raw, json) Hash identifier: vXSWry8Pmbc6x4NQ5zC1jK82v9j35IqvhhUVSW1OUHc= Subject key identifier: 4D:51:2B:BE:56:49:A5:3C:77:90:20:EB:42:60:80:FF:91:9B:D8:23 Authority key identifier: 6D:CE:52:F9:A2:28:CB:F6:F3:0C:D5:5D:43:38:4D:12:68:48:7B:65 Certificate issuer: /CN=A91240E6/serialNumber=6DCE52F9A228CBF6F30CD55D43384D1268487B65 Certificate serial: 261F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bc5S-aIoy_bzDNVdQzhNEmhIe2U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft Manifest number: 2606 Signing time: Fri 06 Jun 2025 15:46:21 +0000 Manifest this update: Fri 06 Jun 2025 15:46:20 +0000 Manifest next update: Fri 13 Jun 2025 15:46:20 +0000 Files and hashes: 1: bc5S-aIoy_bzDNVdQzhNEmhIe2U.crl (hash: +J892ZUgqY83GuSkwhTbH+cIHOzi5edyU7rTaQPn0nQ=) 2: 8A721F4EB10C11E5BB6B2A16C4F9AE02.roa (hash: mvyjt+3dRIE1/Krz/XL4fNVu3c2fcm82NTuO/MfHBcQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.crl rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bc5S-aIoy_bzDNVdQzhNEmhIe2U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 15:46:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9759 (0x261f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91240E6, serialNumber=6DCE52F9A228CBF6F30CD55D43384D1268487B65 Validity Not Before: Jun 6 15:46:20 2025 GMT Not After : Jun 13 15:46:20 2025 GMT Subject: CN=68430d4c-5f6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:a6:d8:53:23:6e:ac:63:85:67:93:0e:f4:b4: 2e:4d:68:8b:75:a0:03:ef:75:f7:54:9b:50:6d:3e: af:8e:5a:a5:e0:90:e6:2d:de:fc:44:45:d6:45:74: b7:da:3c:22:89:52:40:58:e1:89:fa:e8:16:17:6c: 37:5b:96:2c:13:a2:b8:1c:4d:f7:1a:54:dc:20:ae: ef:0b:19:61:d8:49:ec:73:93:70:92:15:6b:47:5f: 48:1e:6b:c9:a8:1d:23:01:81:93:a9:1e:fe:ca:b8: 7b:f6:f5:20:76:e4:57:4a:b2:6e:f4:5a:04:7b:61: 03:9b:8e:75:dd:51:30:fb:26:4f:80:78:47:5e:a3: 2b:7f:07:09:c5:67:11:6e:09:48:32:b3:09:55:71: 0a:21:93:8d:a1:60:fe:01:43:60:78:cc:ff:9a:1d: fc:3e:7e:c9:b2:85:11:76:67:8c:c8:67:4d:ac:25: 51:02:3d:95:2b:c6:f4:c9:86:6a:d7:95:f5:d9:2d: 39:c9:63:19:fc:69:b6:dd:90:b4:be:c6:ba:2a:0c: 49:db:ba:eb:d1:bd:96:8c:3c:20:b3:6b:66:60:54: b4:50:cf:e5:7d:08:e3:48:26:6f:a7:08:75:1f:4d: be:21:b7:89:f8:b5:8a:a0:5e:84:41:e8:27:f2:e9: bd:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:51:2B:BE:56:49:A5:3C:77:90:20:EB:42:60:80:FF:91:9B:D8:23 X509v3 Authority Key Identifier: keyid:6D:CE:52:F9:A2:28:CB:F6:F3:0C:D5:5D:43:38:4D:12:68:48:7B:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bc5S-aIoy_bzDNVdQzhNEmhIe2U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:34:6b:da:a1:55:61:bb:7c:32:93:21:a1:2a:6b:5b:16:f7: 7c:96:c8:5a:84:3b:dd:62:c6:73:fb:2e:df:06:3b:7c:39:d6: cc:e7:5e:3e:f7:d1:93:37:c9:8c:a7:6c:be:4d:4d:6d:15:d5: 1f:a0:ed:73:91:9c:cc:aa:1f:6d:9c:1b:18:9d:3f:a2:eb:33: 5a:ff:d8:2a:69:ee:58:59:ad:15:69:22:da:e8:ad:a4:a0:d6: 4a:85:c0:13:96:71:94:5f:6e:a9:f8:33:d0:f5:f4:ce:79:90: b1:7e:34:a2:4b:81:ab:fe:c2:da:84:12:79:55:49:a7:aa:71: b5:12:04:bb:a3:8d:7f:1b:6e:0a:8c:c6:dc:57:84:53:a3:e5: 84:b8:36:0c:2c:cf:e0:97:a5:ea:a9:b4:3d:cb:ba:cf:97:25: d1:7c:99:6e:64:70:16:83:bc:c3:c1:28:61:6d:02:72:2b:60: f0:95:a8:81:d9:2b:2b:1d:9a:3f:fc:37:9d:c4:52:10:e6:99: 20:fd:bd:fa:ec:2c:4a:6c:bd:de:97:56:72:36:3a:35:30:42: ba:15:96:e0:e7:4e:32:00:85:91:a1:d1:e0:2f:07:10:6b:6a: 41:0c:da:fd:73:fd:dc:38:37:19:04:c1:21:fa:89:03:f3:5d: f4:8e:d3:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJh8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQwRTYxMTAvBgNVBAUTKDZEQ0U1MkY5QTIyOENCRjZGMzBDRDU1RDQzMzg0RDEy Njg0ODdCNjUwHhcNMjUwNjA2MTU0NjIwWhcNMjUwNjEzMTU0NjIwWjAYMRYwFAYD VQQDEw02ODQzMGQ0Yy01ZjZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxKbYUyNurGOFZ5MO9LQuTWiLdaAD73X3VJtQbT6vjlql4JDmLd78REXWRXS3 2jwiiVJAWOGJ+ugWF2w3W5YsE6K4HE33GlTcIK7vCxlh2Ensc5NwkhVrR19IHmvJ qB0jAYGTqR7+yrh79vUgduRXSrJu9FoEe2EDm4513VEw+yZPgHhHXqMrfwcJxWcR bglIMrMJVXEKIZONoWD+AUNgeMz/mh38Pn7JsoURdmeMyGdNrCVRAj2VK8b0yYZq 15X12S05yWMZ/Gm23ZC0vsa6KgxJ27rr0b2WjDwgs2tmYFS0UM/lfQjjSCZvpwh1 H02+IbeJ+LWKoF6EQegn8um9nwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE1RK75W SaU8d5Ag60JggP+Rm9gjMB8GA1UdIwQYMBaAFG3OUvmiKMv28wzVXUM4TRJoSHtl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDBFNi82NjA3NDJDOEZE MjExMUU0ODhBQjBDMzRDNEY5QUUwMi9iYzVTLWFJb3lfYnpETlZkUXpoTkVtaEll MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JjNVMtYUlveV9iekROVmRRemhORW1oSWUyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NDBFNi82NjA3NDJDOEZEMjExMUU0ODhBQjBDMzRDNEY5QUUwMi9iYzVTLWFJb3lf YnpETlZkUXpoTkVtaEllMlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdNGvaoVVhu3wykyGhKmtbFvd8lshahDvdYsZz+y7fBjt8OdbM514+ 99GTN8mMp2y+TU1tFdUfoO1zkZzMqh9tnBsYnT+i6zNa/9gqae5YWa0VaSLa6K2k oNZKhcATlnGUX26p+DPQ9fTOeZCxfjSiS4Gr/sLahBJ5VUmnqnG1EgS7o41/G24K jMbcV4RTo+WEuDYMLM/gl6XqqbQ9y7rPlyXRfJluZHAWg7zDwShhbQJyK2DwlaiB 2SsrHZo//DedxFIQ5pkg/b367CxKbL3el1ZyNjo1MEK6FZbg504yAIWRodHgLwcQ a2pBDNr9c/3cODcZBMEh+okD8130jtNK -----END CERTIFICATE-----Generated at Sat Jun 7 05:34:23 2025 by rpki-client