$ rpki-client -vvf rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft File: bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft (raw, json) Hash identifier: SYykmvCUOsymtv581xxiW8HIyCXm353PMdCBMhabzhw= Subject key identifier: 2D:08:01:36:12:1B:D4:85:E5:7E:D2:52:BE:D1:9A:B7:3E:D6:96:20 Authority key identifier: 6D:CE:52:F9:A2:28:CB:F6:F3:0C:D5:5D:43:38:4D:12:68:48:7B:65 Certificate issuer: /CN=A91240E6/serialNumber=6DCE52F9A228CBF6F30CD55D43384D1268487B65 Certificate serial: 2624 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bc5S-aIoy_bzDNVdQzhNEmhIe2U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft Manifest number: 260B Signing time: Mon 16 Jun 2025 15:47:14 +0000 Manifest this update: Mon 16 Jun 2025 15:47:14 +0000 Manifest next update: Mon 23 Jun 2025 15:47:14 +0000 Files and hashes: 1: bc5S-aIoy_bzDNVdQzhNEmhIe2U.crl (hash: GwCjexHJkYCa4uzg43zQgu/SUUbuUbNUvB0PBhioiGQ=) 2: 8A721F4EB10C11E5BB6B2A16C4F9AE02.roa (hash: mvyjt+3dRIE1/Krz/XL4fNVu3c2fcm82NTuO/MfHBcQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.crl rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bc5S-aIoy_bzDNVdQzhNEmhIe2U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 15:47:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9764 (0x2624) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91240E6, serialNumber=6DCE52F9A228CBF6F30CD55D43384D1268487B65 Validity Not Before: Jun 16 15:47:14 2025 GMT Not After : Jun 23 15:47:14 2025 GMT Subject: CN=68503c82-c68b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:9a:c2:a8:66:5e:39:3f:50:a7:ae:5c:4b:b7: de:4e:27:7f:02:9d:08:7f:06:e1:41:65:59:48:d3: 1c:fd:20:3f:39:10:f4:ee:6b:96:54:ce:46:e2:f2: ad:66:c5:fd:32:b2:2a:ed:29:d2:03:e4:f1:8c:f5: d7:d8:74:11:b6:c8:3f:6f:d3:6f:f2:ae:00:a0:32: 6e:13:af:6e:0f:fd:e6:79:7b:20:0b:38:42:c0:17: b9:5f:c0:ee:6e:1e:ea:c1:cc:ec:ba:aa:ff:6c:1e: 37:09:b4:ed:49:c7:94:79:13:ba:10:83:f1:12:c2: 67:6a:02:1f:c4:5a:08:3d:8a:2c:14:5c:b4:d0:64: d7:fb:10:2f:bd:e6:02:dc:b5:d5:4d:43:a0:2c:2a: e9:fa:a4:94:88:21:8c:4a:00:07:5c:f2:5f:36:1f: 2c:52:8f:70:1a:02:21:89:d4:60:8f:95:83:9e:10: cb:78:72:bf:88:2a:00:3a:78:f5:36:03:8d:fc:aa: 30:cf:fc:15:21:57:08:c4:9e:a9:01:aa:3b:54:77: 6e:53:8f:99:1a:f8:c1:2d:f0:04:8d:0f:d2:76:7c: 06:be:a4:54:d4:6d:0e:cb:e2:d0:6e:e7:b9:87:f3: ac:92:72:5d:47:62:c8:29:84:15:52:6c:62:b1:54: 47:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:08:01:36:12:1B:D4:85:E5:7E:D2:52:BE:D1:9A:B7:3E:D6:96:20 X509v3 Authority Key Identifier: keyid:6D:CE:52:F9:A2:28:CB:F6:F3:0C:D5:5D:43:38:4D:12:68:48:7B:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bc5S-aIoy_bzDNVdQzhNEmhIe2U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:61:b1:52:43:fa:5a:f6:f8:83:02:4b:94:53:e1:2f:83:f2: 61:92:e3:7d:28:4d:86:62:ee:db:6f:dc:68:c1:75:3c:e7:ed: a8:8b:c3:12:83:4d:93:5d:7e:ae:5f:fc:2e:0f:ed:4e:2c:5c: 8e:28:f5:2c:d4:3e:1a:e7:83:db:79:c0:1a:f7:93:e2:ee:5d: a5:95:a7:1f:34:cf:e7:4f:6c:33:b7:fd:30:4f:04:d4:ce:9d: 6e:e1:c8:0b:45:2b:cd:eb:b2:98:7e:87:34:68:b7:05:7d:e4: e2:31:fe:c9:cb:10:a7:69:ae:d0:49:67:a7:22:f4:65:0c:74: 96:af:09:7e:88:b7:50:8f:6c:40:af:81:59:39:c4:b6:ba:0e: 87:13:4c:fb:19:50:9b:c7:88:c8:1a:59:75:88:d9:49:de:66: 1c:76:46:cf:aa:3d:77:58:7d:4f:4d:55:a4:5b:34:f1:ea:82: a0:b1:81:d6:d4:0c:b2:ab:4f:6e:70:c9:9b:52:70:de:ed:89: 36:d6:16:14:3c:18:3c:96:eb:cf:5f:73:55:c7:01:b2:74:a0: 53:c8:53:9d:03:b6:61:f9:07:a7:b2:e5:f2:0d:4e:30:0b:83: bf:1c:01:5c:c9:16:52:62:5b:1a:9f:7b:35:55:52:78:ff:87: 8e:61:bb:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJiQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQwRTYxMTAvBgNVBAUTKDZEQ0U1MkY5QTIyOENCRjZGMzBDRDU1RDQzMzg0RDEy Njg0ODdCNjUwHhcNMjUwNjE2MTU0NzE0WhcNMjUwNjIzMTU0NzE0WjAYMRYwFAYD VQQDEw02ODUwM2M4Mi1jNjhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyprCqGZeOT9Qp65cS7feTid/Ap0IfwbhQWVZSNMc/SA/ORD07muWVM5G4vKt ZsX9MrIq7SnSA+TxjPXX2HQRtsg/b9Nv8q4AoDJuE69uD/3meXsgCzhCwBe5X8Du bh7qwczsuqr/bB43CbTtSceUeRO6EIPxEsJnagIfxFoIPYosFFy00GTX+xAvveYC 3LXVTUOgLCrp+qSUiCGMSgAHXPJfNh8sUo9wGgIhidRgj5WDnhDLeHK/iCoAOnj1 NgON/Kowz/wVIVcIxJ6pAao7VHduU4+ZGvjBLfAEjQ/SdnwGvqRU1G0Oy+LQbue5 h/OsknJdR2LIKYQVUmxisVRHTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC0IATYS G9SF5X7SUr7Rmrc+1pYgMB8GA1UdIwQYMBaAFG3OUvmiKMv28wzVXUM4TRJoSHtl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDBFNi82NjA3NDJDOEZE MjExMUU0ODhBQjBDMzRDNEY5QUUwMi9iYzVTLWFJb3lfYnpETlZkUXpoTkVtaEll MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JjNVMtYUlveV9iekROVmRRemhORW1oSWUyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NDBFNi82NjA3NDJDOEZEMjExMUU0ODhBQjBDMzRDNEY5QUUwMi9iYzVTLWFJb3lf YnpETlZkUXpoTkVtaEllMlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3YbFSQ/pa9viDAkuUU+Evg/JhkuN9KE2GYu7bb9xowXU85+2oi8MS g02TXX6uX/wuD+1OLFyOKPUs1D4a54PbecAa95Pi7l2llacfNM/nT2wzt/0wTwTU zp1u4cgLRSvN67KYfoc0aLcFfeTiMf7JyxCnaa7QSWenIvRlDHSWrwl+iLdQj2xA r4FZOcS2ug6HE0z7GVCbx4jIGll1iNlJ3mYcdkbPqj13WH1PTVWkWzTx6oKgsYHW 1Ayyq09ucMmbUnDe7Yk21hYUPBg8luvPX3NVxwGydKBTyFOdA7Zh+QensuXyDU4w C4O/HAFcyRZSYlsan3s1VVJ4/4eOYbtc -----END CERTIFICATE-----Generated at Tue Jun 17 11:12:27 2025 by rpki-client