$ rpki-client -vvf rpki.apnic.net/member_repository/A912B751/72D7D8B4FDD711EC90CAEF4CC4F9AE02/6BH2N9bdhj5cdPMuKbziePqyWPc.mft File: 6BH2N9bdhj5cdPMuKbziePqyWPc.mft (raw, json) Hash identifier: UXwpKfNsvuEBJZGWVHGo+BBhJ221IfjJwWlT5AwtO2c= Subject key identifier: D7:CB:FD:52:9C:A7:5E:85:C3:0A:27:0D:EA:FE:A8:A2:41:DD:14:AC Authority key identifier: E8:11:F6:37:D6:DD:86:3E:5C:74:F3:2E:29:BC:E2:78:FA:B2:58:F7 Certificate issuer: /CN=A912B751/serialNumber=E811F637D6DD863E5C74F32E29BCE278FAB258F7 Certificate serial: 02AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6BH2N9bdhj5cdPMuKbziePqyWPc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B751/72D7D8B4FDD711EC90CAEF4CC4F9AE02/6BH2N9bdhj5cdPMuKbziePqyWPc.mft Manifest number: 02A4 Signing time: Sat 31 May 2025 01:42:24 +0000 Manifest this update: Sat 31 May 2025 01:42:24 +0000 Manifest next update: Sat 07 Jun 2025 01:42:24 +0000 Files and hashes: 1: 6BH2N9bdhj5cdPMuKbziePqyWPc.crl (hash: wdYTkUXIsm16EtpwZSNAQBQQAHZzLLpizrDq5aZvqMQ=) 2: 96BC85E8145711EF8ED9C174C4F9AE02.roa (hash: r9L4CmzavsqqBK92JPFfdFnoYkrBESFuwdtJEjg40XU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B751/72D7D8B4FDD711EC90CAEF4CC4F9AE02/6BH2N9bdhj5cdPMuKbziePqyWPc.crl rsync://rpki.apnic.net/member_repository/A912B751/72D7D8B4FDD711EC90CAEF4CC4F9AE02/6BH2N9bdhj5cdPMuKbziePqyWPc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6BH2N9bdhj5cdPMuKbziePqyWPc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:42:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 682 (0x2aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B751, serialNumber=E811F637D6DD863E5C74F32E29BCE278FAB258F7 Validity Not Before: May 31 01:42:24 2025 GMT Not After : Jun 7 01:42:24 2025 GMT Subject: CN=683a5e80-2c39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:fd:de:f0:25:4c:1c:9a:dc:ec:f3:a5:35:11: 0c:25:5c:73:29:94:7d:6f:f9:c0:5d:b8:a3:b4:24: 69:fb:a3:c6:e4:21:76:d9:fa:c1:7a:26:70:ca:74: 07:e2:10:08:ce:25:78:4d:b5:d0:30:5c:d8:79:ab: 76:ca:16:22:da:23:2b:d8:4b:53:ab:7e:38:42:89: 23:0b:86:71:2e:cd:4d:8c:a4:1f:02:44:86:37:e3: 24:5e:51:da:91:01:1d:13:c1:0c:f2:a7:15:4d:d3: 61:cf:9f:ea:34:02:16:f8:2e:87:dc:4a:ba:b5:c0: 24:1e:73:f0:b1:73:37:f6:57:48:43:0c:03:15:a1: 20:04:da:c5:c9:8e:fe:e7:c8:19:b7:1d:4f:0c:4c: 74:66:db:39:23:7b:d9:8c:f6:52:83:1f:82:31:92: 9a:2e:87:c9:9a:c6:26:67:3a:46:b0:fc:9b:a5:a7: 61:56:18:dd:ef:84:36:22:88:ce:aa:9f:06:55:e5: f0:3e:c5:4d:b8:3b:64:37:30:1a:1c:c4:c0:68:2b: 50:be:2e:80:4d:4d:b9:74:55:d4:51:54:3b:84:22: 28:4c:98:2d:b2:52:3a:96:f6:1a:94:91:ec:72:30: ef:b0:d3:28:e2:4c:cf:0c:f4:28:7e:1b:83:0c:27: 60:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:CB:FD:52:9C:A7:5E:85:C3:0A:27:0D:EA:FE:A8:A2:41:DD:14:AC X509v3 Authority Key Identifier: keyid:E8:11:F6:37:D6:DD:86:3E:5C:74:F3:2E:29:BC:E2:78:FA:B2:58:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B751/72D7D8B4FDD711EC90CAEF4CC4F9AE02/6BH2N9bdhj5cdPMuKbziePqyWPc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6BH2N9bdhj5cdPMuKbziePqyWPc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B751/72D7D8B4FDD711EC90CAEF4CC4F9AE02/6BH2N9bdhj5cdPMuKbziePqyWPc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:fd:d8:9e:3c:d3:2e:2b:42:fd:2b:bf:4d:53:12:f1:b8:65: f7:86:da:41:16:d9:71:fd:6b:6f:1f:9d:ca:58:23:62:e4:1e: 06:ed:60:29:32:8e:8b:c3:b4:63:01:d5:5e:50:db:b7:33:06: 34:68:22:b2:4c:fd:8e:dc:32:15:29:18:10:f6:13:92:dd:4c: 1f:39:33:03:72:9e:84:02:44:63:72:43:b4:e1:fa:0a:ca:fa: 98:4d:e6:95:b2:20:16:53:39:b4:26:2d:6e:e2:ef:df:e1:fe: b4:72:8b:45:e1:6b:af:35:5a:13:ad:55:32:9c:41:9f:3b:90: 0a:1b:44:29:11:79:7b:56:32:b6:e2:f1:c8:1d:a2:8e:8c:c3: 10:23:b2:a0:fe:3b:9e:1b:2e:47:41:57:c2:58:44:d7:66:46: 2f:e3:65:2c:fa:4f:ed:32:3f:82:3b:60:62:03:38:2a:9a:c2: 19:03:95:fa:3f:f6:3c:0c:2f:fd:80:7c:48:81:c4:8b:c4:43: 48:a3:44:df:e1:c9:a5:bb:25:4c:4c:15:47:80:5b:0b:bd:48: 37:34:3c:9c:0e:39:76:23:eb:e0:4c:fc:14:50:e2:e4:51:87: ef:d5:00:c5:5d:2c:76:db:64:d8:d5:18:47:86:c0:53:91:7d: 55:35:f8:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkI3NTExMTAvBgNVBAUTKEU4MTFGNjM3RDZERDg2M0U1Qzc0RjMyRTI5QkNFMjc4 RkFCMjU4RjcwHhcNMjUwNTMxMDE0MjI0WhcNMjUwNjA3MDE0MjI0WjAYMRYwFAYD VQQDEw02ODNhNWU4MC0yYzM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx/3e8CVMHJrc7POlNREMJVxzKZR9b/nAXbijtCRp+6PG5CF22frBeiZwynQH 4hAIziV4TbXQMFzYeat2yhYi2iMr2EtTq344QokjC4ZxLs1NjKQfAkSGN+MkXlHa kQEdE8EM8qcVTdNhz5/qNAIW+C6H3Eq6tcAkHnPwsXM39ldIQwwDFaEgBNrFyY7+ 58gZtx1PDEx0Zts5I3vZjPZSgx+CMZKaLofJmsYmZzpGsPybpadhVhjd74Q2IojO qp8GVeXwPsVNuDtkNzAaHMTAaCtQvi6ATU25dFXUUVQ7hCIoTJgtslI6lvYalJHs cjDvsNMo4kzPDPQofhuDDCdgaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNfL/VKc p16FwwonDer+qKJB3RSsMB8GA1UdIwQYMBaAFOgR9jfW3YY+XHTzLim84nj6slj3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjc1MS83MkQ3RDhCNEZE RDcxMUVDOTBDQUVGNENDNEY5QUUwMi82QkgyTjliZGhqNWNkUE11S2J6aWVQcXlX UGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZCSDJOOWJkaGo1Y2RQTXVLYnppZVBxeVdQYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy Qjc1MS83MkQ3RDhCNEZERDcxMUVDOTBDQUVGNENDNEY5QUUwMi82QkgyTjliZGhq NWNkUE11S2J6aWVQcXlXUGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAz/diePNMuK0L9K79NUxLxuGX3htpBFtlx/WtvH53KWCNi5B4G7WAp Mo6Lw7RjAdVeUNu3MwY0aCKyTP2O3DIVKRgQ9hOS3UwfOTMDcp6EAkRjckO04foK yvqYTeaVsiAWUzm0Ji1u4u/f4f60cotF4WuvNVoTrVUynEGfO5AKG0QpEXl7VjK2 4vHIHaKOjMMQI7Kg/jueGy5HQVfCWETXZkYv42Us+k/tMj+CO2BiAzgqmsIZA5X6 P/Y8DC/9gHxIgcSLxENIo0Tf4cmluyVMTBVHgFsLvUg3NDycDjl2I+vgTPwUUOLk UYfv1QDFXSx222TY1RhHhsBTkX1VNfi8 -----END CERTIFICATE-----Generated at Sat May 31 17:12:54 2025 by rpki-client