$ rpki-client -vvf rpki.apnic.net/member_repository/A9127C93/4021A4E65F2411EDB80C1921C4F9AE02/Bst2YhlvZE7eydz72HmbjHPjlwk.mft File: Bst2YhlvZE7eydz72HmbjHPjlwk.mft (raw, json) Hash identifier: CkQKMkdLSxyHIWf5C/mNeMz9YWh1hMxVO3y4e8gDshU= Subject key identifier: 0A:28:AE:2D:93:5B:9A:4C:C8:42:FE:8A:47:23:71:09:0E:4F:92:04 Authority key identifier: 06:CB:76:62:19:6F:64:4E:DE:C9:DC:FB:D8:79:9B:8C:73:E3:97:09 Certificate issuer: /CN=A9127C93/serialNumber=06CB7662196F644EDEC9DCFBD8799B8C73E39709 Certificate serial: 01EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bst2YhlvZE7eydz72HmbjHPjlwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127C93/4021A4E65F2411EDB80C1921C4F9AE02/Bst2YhlvZE7eydz72HmbjHPjlwk.mft Manifest number: 01E4 Signing time: Sat 31 May 2025 02:24:09 +0000 Manifest this update: Sat 31 May 2025 02:24:08 +0000 Manifest next update: Sat 07 Jun 2025 02:24:08 +0000 Files and hashes: 1: Bst2YhlvZE7eydz72HmbjHPjlwk.crl (hash: avvGrmQpLOI6kmqjgyrf9VxnXieIVqeXbPty/TwwGew=) 2: 2965791E5F4011ED9361C246C4F9AE02.roa (hash: giH1vIhIIPvv5hJDOK02Raj/lgCr3oz3hTTRlbexHIs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127C93/4021A4E65F2411EDB80C1921C4F9AE02/Bst2YhlvZE7eydz72HmbjHPjlwk.crl rsync://rpki.apnic.net/member_repository/A9127C93/4021A4E65F2411EDB80C1921C4F9AE02/Bst2YhlvZE7eydz72HmbjHPjlwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bst2YhlvZE7eydz72HmbjHPjlwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:24:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 490 (0x1ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127C93, serialNumber=06CB7662196F644EDEC9DCFBD8799B8C73E39709 Validity Not Before: May 31 02:24:08 2025 GMT Not After : Jun 7 02:24:08 2025 GMT Subject: CN=683a6848-cf9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:41:f2:62:80:ff:b9:55:26:0a:62:6b:3f:df: 1c:b7:01:0a:0d:94:ca:e3:c8:44:9d:a0:05:e7:5b: a6:9a:eb:b8:63:ec:fc:57:4a:db:70:72:27:a0:79: 86:11:4b:d0:ee:0c:e4:85:07:bb:0b:3a:b5:33:3d: 48:54:39:35:fd:b0:49:e9:19:b2:2d:dc:76:9c:0b: 26:b5:b9:03:b0:a7:cf:77:b1:14:f2:e5:c3:38:25: 5b:8f:75:0d:5a:65:26:12:62:18:dc:00:28:a5:42: ff:0d:64:c1:6e:e7:b6:60:e6:99:9c:c8:db:7a:a2: 29:c6:2f:2f:00:6a:55:21:57:52:a0:0c:b9:c0:4c: 3f:a6:00:6f:e8:84:42:e0:20:a0:b9:ab:3f:f1:a2: 19:b4:ef:b2:01:d7:31:1e:56:d1:a2:ed:f2:23:74: 8d:4e:a7:6a:bb:e5:9b:58:0c:dc:35:3e:dd:81:e6: e2:9a:18:84:28:81:2f:fd:71:07:69:89:04:0f:5a: 15:0b:0d:07:96:c3:8d:11:86:50:a5:34:47:62:4f: dc:b6:ba:10:76:2f:7c:c7:29:7d:a0:c3:3c:06:47: 32:f6:09:f7:20:4d:63:89:0a:0a:93:65:fb:9e:36: f2:20:b4:9a:97:0e:02:ba:60:bf:c4:7c:d7:c8:c3: 5c:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:28:AE:2D:93:5B:9A:4C:C8:42:FE:8A:47:23:71:09:0E:4F:92:04 X509v3 Authority Key Identifier: keyid:06:CB:76:62:19:6F:64:4E:DE:C9:DC:FB:D8:79:9B:8C:73:E3:97:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127C93/4021A4E65F2411EDB80C1921C4F9AE02/Bst2YhlvZE7eydz72HmbjHPjlwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bst2YhlvZE7eydz72HmbjHPjlwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127C93/4021A4E65F2411EDB80C1921C4F9AE02/Bst2YhlvZE7eydz72HmbjHPjlwk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:cc:1d:0b:2a:a1:97:bf:68:4f:b2:84:0b:da:f1:33:08:d4: 62:ed:4d:a3:1b:97:2f:01:bb:5c:27:56:a5:ec:77:08:82:98: 53:65:82:ee:53:50:bc:3e:26:f4:10:2c:e3:c2:69:79:72:ac: f2:6a:50:92:e8:ff:f8:2b:26:dc:03:62:08:77:52:68:64:8d: 27:50:70:78:ec:64:c9:93:4c:f2:cf:ab:a4:ba:6a:37:f2:35: 0b:1b:18:50:ce:a1:3f:99:cf:10:6d:e6:ba:3a:60:49:9f:69: 58:0a:0a:94:60:4f:53:4c:4f:e5:04:ea:a7:70:1f:4d:be:0f: 96:1f:e0:84:c2:a3:bf:23:77:f3:08:0a:7e:fa:4e:7e:75:09: 82:3f:9a:3c:ea:fa:23:70:91:66:ae:53:c0:56:93:88:08:1d: 72:f7:0c:75:0c:43:1e:ce:f6:32:f7:a0:86:1e:e6:a1:7e:92: 6b:c9:5d:cb:6a:1b:c4:8f:31:76:e4:4a:43:a9:d6:b6:1b:a4: 82:43:07:06:7e:f7:f3:f5:90:97:67:89:96:38:49:ad:5e:b1: 1e:85:3b:fd:c2:1f:66:9a:9a:61:c3:51:df:be:06:dc:16:9d: a4:34:22:82:3d:b6:e3:f2:22:e4:7f:21:42:16:88:b1:e5:e5: 29:3b:49:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjdDOTMxMTAvBgNVBAUTKDA2Q0I3NjYyMTk2RjY0NEVERUM5RENGQkQ4Nzk5QjhD NzNFMzk3MDkwHhcNMjUwNTMxMDIyNDA4WhcNMjUwNjA3MDIyNDA4WjAYMRYwFAYD VQQDEw02ODNhNjg0OC1jZjlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxUHyYoD/uVUmCmJrP98ctwEKDZTK48hEnaAF51ummuu4Y+z8V0rbcHInoHmG EUvQ7gzkhQe7Czq1Mz1IVDk1/bBJ6RmyLdx2nAsmtbkDsKfPd7EU8uXDOCVbj3UN WmUmEmIY3AAopUL/DWTBbue2YOaZnMjbeqIpxi8vAGpVIVdSoAy5wEw/pgBv6IRC 4CCguas/8aIZtO+yAdcxHlbRou3yI3SNTqdqu+WbWAzcNT7dgebimhiEKIEv/XEH aYkED1oVCw0HlsONEYZQpTRHYk/ctroQdi98xyl9oMM8Bkcy9gn3IE1jiQoKk2X7 njbyILSalw4CumC/xHzXyMNciQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAoori2T W5pMyEL+ikcjcQkOT5IEMB8GA1UdIwQYMBaAFAbLdmIZb2RO3snc+9h5m4xz45cJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyN0M5My80MDIxQTRFNjVG MjQxMUVEQjgwQzE5MjFDNEY5QUUwMi9Cc3QyWWhsdlpFN2V5ZHo3MkhtYmpIUGps d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JzdDJZaGx2WkU3ZXlkejcySG1iakhQamx3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy N0M5My80MDIxQTRFNjVGMjQxMUVEQjgwQzE5MjFDNEY5QUUwMi9Cc3QyWWhsdlpF N2V5ZHo3MkhtYmpIUGpsd2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPzB0LKqGXv2hPsoQL2vEzCNRi7U2jG5cvAbtcJ1al7HcIgphTZYLu U1C8Pib0ECzjwml5cqzyalCS6P/4KybcA2IId1JoZI0nUHB47GTJk0zyz6ukumo3 8jULGxhQzqE/mc8Qbea6OmBJn2lYCgqUYE9TTE/lBOqncB9Nvg+WH+CEwqO/I3fz CAp++k5+dQmCP5o86vojcJFmrlPAVpOICB1y9wx1DEMezvYy96CGHuahfpJryV3L ahvEjzF25EpDqda2G6SCQwcGfvfz9ZCXZ4mWOEmtXrEehTv9wh9mmpphw1Hfvgbc Fp2kNCKCPbbj8iLkfyFCFoix5eUpO0nI -----END CERTIFICATE-----Generated at Sat May 31 17:51:34 2025 by rpki-client