$ rpki-client -vvf rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft File: BN7ay9uvpcHBT5KBe5b39QMQCig.mft (raw, json) Hash identifier: oHkXLkSCdjSy2/2Go8WVU/vSQavbO4cAHSrVgLmNpC0= Subject key identifier: 50:E2:D3:28:5C:7F:96:F5:CB:3A:F5:30:A5:1A:2A:23:6F:74:19:05 Authority key identifier: 04:DE:DA:CB:DB:AF:A5:C1:C1:4F:92:81:7B:96:F7:F5:03:10:0A:28 Certificate issuer: /CN=A912DD36/serialNumber=04DEDACBDBAFA5C1C14F92817B96F7F503100A28 Certificate serial: C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft Manifest number: C0 Signing time: Fri 13 Jun 2025 04:48:21 +0000 Manifest this update: Fri 13 Jun 2025 04:48:21 +0000 Manifest next update: Fri 20 Jun 2025 04:48:21 +0000 Files and hashes: 1: BN7ay9uvpcHBT5KBe5b39QMQCig.crl (hash: HmEI9t2LJzqkbBFgHOhKzOr5PY3as1AtKYSWLodNl7E=) 2: 09EC8E16662211EFB6FA446CC4F9AE02.roa (hash: urnxskxc6j+If6xUlVvxOJwYlSVOMo9w2F7g3T2GGgM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.crl rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 04:48:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 195 (0xc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DD36, serialNumber=04DEDACBDBAFA5C1C14F92817B96F7F503100A28 Validity Not Before: Jun 13 04:48:21 2025 GMT Not After : Jun 20 04:48:21 2025 GMT Subject: CN=684bad95-fd8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:43:1b:66:0d:25:2f:a4:29:09:c4:5c:d8:17: 33:6b:f5:bd:99:fc:e2:33:91:90:c8:57:e5:d7:18: 27:61:67:3b:31:a7:16:a7:73:0d:4d:8b:bd:1a:35: 3c:a6:56:b7:70:17:bf:a0:7d:91:62:c2:f4:c4:46: ea:5d:71:a5:7c:04:58:7c:ba:45:33:d1:43:56:fe: f5:5f:52:be:ba:40:bb:6b:50:fa:c5:26:a1:4f:ce: aa:95:0d:65:fe:61:8e:ad:92:64:02:2e:ff:44:c0: 26:c8:d2:7c:f2:18:f1:cc:a0:a8:e7:6a:c4:06:8d: d0:6d:95:bd:d9:7b:e7:c2:e5:9e:7d:2d:49:4e:31: 93:98:c0:a0:6f:7d:01:92:5b:83:05:40:e4:cf:ac: 26:0c:32:be:ef:5b:8a:3a:50:b7:c0:7f:8b:50:bc: bc:f7:1b:4b:89:ac:38:a0:54:14:cc:2c:bb:9a:b5: 83:41:e5:81:bd:24:c7:9c:ba:75:7e:53:c3:5c:d1: 86:9b:eb:1b:4b:98:07:0d:c2:e5:ce:95:48:fe:6d: 68:57:57:76:8c:2d:ea:d0:c1:5e:6a:c1:3d:f4:0f: 5f:1f:5f:19:de:b0:d8:05:ff:6c:32:0c:b9:2d:ae: 8b:e4:d7:b2:cf:6d:2d:7e:03:39:ed:56:31:a4:2f: e5:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:E2:D3:28:5C:7F:96:F5:CB:3A:F5:30:A5:1A:2A:23:6F:74:19:05 X509v3 Authority Key Identifier: keyid:04:DE:DA:CB:DB:AF:A5:C1:C1:4F:92:81:7B:96:F7:F5:03:10:0A:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:08:c4:bc:6b:07:d7:d7:b4:4e:a0:03:2a:f1:78:28:77:ff: 61:10:30:c0:5f:f9:fb:6b:68:31:0f:b1:c7:64:bf:35:b7:1c: cd:f3:d7:f1:73:29:f6:30:e6:81:9e:85:28:ca:9b:00:01:a7: df:72:8a:25:e1:d9:10:7c:be:53:41:88:0f:09:7f:6c:a8:0b: f8:a6:0a:78:e7:9b:2a:f4:22:41:82:0d:72:fe:b0:91:46:dd: a1:fd:6a:82:dc:d6:66:34:52:d4:aa:af:46:f7:8f:fa:bb:31: 2e:e4:93:9f:00:3c:e0:9f:26:bf:d3:c6:9c:a8:a3:6d:9f:13: f9:f3:38:d9:c6:b0:be:b2:cf:95:25:bf:df:6b:1f:4e:45:70: 87:71:9e:a6:5d:21:87:cd:93:22:61:65:ea:82:9a:ab:f9:46: 9c:cb:7b:e3:2d:21:55:52:8e:26:9d:0b:5e:1b:b9:e4:68:f3: 22:99:85:90:4a:38:ca:27:17:a1:27:43:ef:fd:b2:db:ae:07: 31:64:32:7c:57:8f:81:3b:61:0e:01:09:ab:80:d6:91:99:15: 91:d2:be:ab:5c:ab:a4:88:50:60:a2:74:27:84:55:e8:c6:10: ea:f3:eb:f7:1a:5e:f9:35:e0:41:3b:4d:2f:fc:9d:9a:30:70: fa:3b:92:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkREMzYxMTAvBgNVBAUTKDA0REVEQUNCREJBRkE1QzFDMTRGOTI4MTdCOTZGN0Y1 MDMxMDBBMjgwHhcNMjUwNjEzMDQ0ODIxWhcNMjUwNjIwMDQ0ODIxWjAYMRYwFAYD VQQDEw02ODRiYWQ5NS1mZDhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvkMbZg0lL6QpCcRc2Bcza/W9mfziM5GQyFfl1xgnYWc7MacWp3MNTYu9GjU8 pla3cBe/oH2RYsL0xEbqXXGlfARYfLpFM9FDVv71X1K+ukC7a1D6xSahT86qlQ1l /mGOrZJkAi7/RMAmyNJ88hjxzKCo52rEBo3QbZW92XvnwuWefS1JTjGTmMCgb30B kluDBUDkz6wmDDK+71uKOlC3wH+LULy89xtLiaw4oFQUzCy7mrWDQeWBvSTHnLp1 flPDXNGGm+sbS5gHDcLlzpVI/m1oV1d2jC3q0MFeasE99A9fH18Z3rDYBf9sMgy5 La6L5Neyz20tfgM57VYxpC/lQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFDi0yhc f5b1yzr1MKUaKiNvdBkFMB8GA1UdIwQYMBaAFATe2svbr6XBwU+SgXuW9/UDEAoo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREQzNi83RjQwMjNGMjI1 MzIxMUVGQkM5MzIxMUFDNEY5QUUwMi9CTjdheTl1dnBjSEJUNUtCZTViMzlRTVFD aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JON2F5OXV2cGNIQlQ1S0JlNWIzOVFNUUNpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REQzNi83RjQwMjNGMjI1MzIxMUVGQkM5MzIxMUFDNEY5QUUwMi9CTjdheTl1dnBj SEJUNUtCZTViMzlRTVFDaWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6CMS8awfX17ROoAMq8Xgod/9hEDDAX/n7a2gxD7HHZL81txzN89fx cyn2MOaBnoUoypsAAaffcool4dkQfL5TQYgPCX9sqAv4pgp455sq9CJBgg1y/rCR Rt2h/WqC3NZmNFLUqq9G94/6uzEu5JOfADzgnya/08acqKNtnxP58zjZxrC+ss+V Jb/fax9ORXCHcZ6mXSGHzZMiYWXqgpqr+Uacy3vjLSFVUo4mnQteG7nkaPMimYWQ SjjKJxehJ0Pv/bLbrgcxZDJ8V4+BO2EOAQmrgNaRmRWR0r6rXKukiFBgonQnhFXo xhDq8+v3Gl75NeBBO00v/J2aMHD6O5Jc -----END CERTIFICATE-----Generated at Fri Jun 13 09:24:37 2025 by rpki-client