$ rpki-client -vvf rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/bk5pvhPWE6cCdMDOdzg5I_FWJy0.mft File: bk5pvhPWE6cCdMDOdzg5I_FWJy0.mft (raw, json) Hash identifier: XY2WItlSwUxAW35oCRTzkjxa1RA7Z6DV3BX/60lehLU= Subject key identifier: 88:3D:BF:D9:B7:AA:2F:C1:B7:AD:9A:BA:78:A2:49:34:06:E4:B1:6D Authority key identifier: 6E:4E:69:BE:13:D6:13:A7:02:74:C0:CE:77:38:39:23:F1:56:27:2D Certificate issuer: /CN=A9130A53/serialNumber=6E4E69BE13D613A70274C0CE77383923F156272D Certificate serial: 08FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bk5pvhPWE6cCdMDOdzg5I_FWJy0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/bk5pvhPWE6cCdMDOdzg5I_FWJy0.mft Manifest number: 08EE Signing time: Fri 30 May 2025 20:36:51 +0000 Manifest this update: Fri 30 May 2025 20:36:51 +0000 Manifest next update: Fri 06 Jun 2025 20:36:51 +0000 Files and hashes: 1: bk5pvhPWE6cCdMDOdzg5I_FWJy0.crl (hash: vTZiVEiPiYk8kadGF6nIvGYiGHLTdF4q6zJSY6AhL9Y=) 2: F36A0E2EAB4B11EAA2CA585BC4F9AE02.roa (hash: BidxYSVmBabzb42KTEQRZnYy7Sbks/SN1w8y9yUGtJQ=) 3: F2CD89AAAB4B11EAA2CA585BC4F9AE02.roa (hash: OlzMxXAfrSP6Nj86W0pq9Qh2aWjxJmFySgPE4i+83ow=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/bk5pvhPWE6cCdMDOdzg5I_FWJy0.crl rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/bk5pvhPWE6cCdMDOdzg5I_FWJy0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bk5pvhPWE6cCdMDOdzg5I_FWJy0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:36:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2298 (0x8fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130A53, serialNumber=6E4E69BE13D613A70274C0CE77383923F156272D Validity Not Before: May 30 20:36:51 2025 GMT Not After : Jun 6 20:36:51 2025 GMT Subject: CN=683a16e3-b035 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:7a:9e:f0:c8:c6:b7:0c:8a:d1:e6:76:13:b5: 49:43:50:6a:fe:b6:2c:8c:cc:18:b2:8b:ea:82:70: bd:f5:c9:dc:cd:90:e4:52:8c:9c:dd:bf:7e:7d:81: 4c:6f:1c:8c:3b:cc:12:f5:be:fe:b1:5d:ff:e8:5e: 8e:ee:a7:d6:e9:80:17:be:cf:25:20:67:c5:99:5f: 62:3b:68:dd:ff:80:4e:87:9b:0d:83:49:23:0a:ed: 6d:0c:81:6e:7f:03:c2:c9:4d:a1:b7:75:23:a5:5d: 23:80:d1:42:8a:b0:c7:cf:32:5a:6c:57:a3:76:9c: a2:b4:95:13:c9:b4:07:1b:cf:66:87:c8:9b:ea:77: f4:81:0d:40:e0:92:7f:e4:76:c6:dd:29:89:94:6b: 17:07:03:e0:ea:46:91:4d:14:97:ea:98:1b:4a:75: eb:97:47:e7:ba:4e:29:23:34:85:ec:46:50:5a:fb: 4d:49:f3:db:2a:9b:80:39:ec:e7:25:9d:56:d5:39: 0f:cc:9c:ba:63:0a:61:76:07:0c:a2:35:9c:84:a7: 7d:6f:d5:5d:37:96:ab:02:01:fe:07:26:e2:11:09: 2e:e2:fa:f7:d3:ed:f2:ec:d1:d2:f2:52:e0:7d:95: dc:b2:cd:d1:9f:00:20:29:5a:19:3f:1b:06:90:79: 1b:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:3D:BF:D9:B7:AA:2F:C1:B7:AD:9A:BA:78:A2:49:34:06:E4:B1:6D X509v3 Authority Key Identifier: keyid:6E:4E:69:BE:13:D6:13:A7:02:74:C0:CE:77:38:39:23:F1:56:27:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/bk5pvhPWE6cCdMDOdzg5I_FWJy0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bk5pvhPWE6cCdMDOdzg5I_FWJy0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/bk5pvhPWE6cCdMDOdzg5I_FWJy0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:7d:98:5f:16:01:48:bf:2f:5f:b1:04:7a:1f:d0:72:86:b0: 3f:1b:61:95:51:48:5c:3c:31:45:77:c8:af:be:5f:41:53:9a: 8e:79:71:f0:d1:35:97:23:70:1a:fc:59:91:55:a4:da:cc:ef: 95:76:7b:83:ef:e7:60:14:f7:57:6f:63:eb:87:4f:93:2e:a1: a8:4c:76:0f:fc:a0:e7:68:7a:25:64:36:bc:34:cb:2c:d1:62: 31:d5:f7:a0:87:c5:68:ce:4c:8f:dc:f3:f3:a2:20:04:3b:4e: 83:b2:1e:d7:70:74:fa:33:0d:27:87:8d:a8:12:dd:41:6e:db: 98:6e:02:c0:7c:23:81:c2:ac:e8:ce:b2:50:fc:16:d9:87:e1: ea:86:66:b5:1f:2c:87:f9:c1:82:0a:e6:e7:5b:68:c6:99:d6: 5f:fa:df:06:a4:af:5f:26:30:26:1d:1e:ff:3d:e3:e7:df:6a: 73:66:9f:02:7a:95:15:17:1a:6d:47:0c:7f:2c:c9:4d:db:c5: 7a:05:eb:14:ff:57:4c:a2:0a:df:c9:aa:80:87:da:25:5d:f0: e8:33:b2:26:34:53:c6:39:00:7b:f3:28:8d:44:cd:8e:2f:cb: 49:9e:8e:21:dc:74:e3:32:2d:e4:84:b2:90:cd:f8:8b:0f:40: 33:71:23:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCPowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzBBNTMxMTAvBgNVBAUTKDZFNEU2OUJFMTNENjEzQTcwMjc0QzBDRTc3MzgzOTIz RjE1NjI3MkQwHhcNMjUwNTMwMjAzNjUxWhcNMjUwNjA2MjAzNjUxWjAYMRYwFAYD VQQDEw02ODNhMTZlMy1iMDM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA13qe8MjGtwyK0eZ2E7VJQ1Bq/rYsjMwYsovqgnC99cnczZDkUoyc3b9+fYFM bxyMO8wS9b7+sV3/6F6O7qfW6YAXvs8lIGfFmV9iO2jd/4BOh5sNg0kjCu1tDIFu fwPCyU2ht3UjpV0jgNFCirDHzzJabFejdpyitJUTybQHG89mh8ib6nf0gQ1A4JJ/ 5HbG3SmJlGsXBwPg6kaRTRSX6pgbSnXrl0fnuk4pIzSF7EZQWvtNSfPbKpuAOezn JZ1W1TkPzJy6YwphdgcMojWchKd9b9VdN5arAgH+BybiEQku4vr30+3y7NHS8lLg fZXcss3RnwAgKVoZPxsGkHkblwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIg9v9m3 qi/Bt62auniiSTQG5LFtMB8GA1UdIwQYMBaAFG5Oab4T1hOnAnTAznc4OSPxVict MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMEE1My83MUI3RDQ3MEFC NEExMUVBODlEMTYzNTlDNEY5QUUwMi9iazVwdmhQV0U2Y0NkTURPZHpnNUlfRldK eTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JrNXB2aFBXRTZjQ2RNRE9kemc1SV9GV0p5MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MEE1My83MUI3RDQ3MEFCNEExMUVBODlEMTYzNTlDNEY5QUUwMi9iazVwdmhQV0U2 Y0NkTURPZHpnNUlfRldKeTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqfZhfFgFIvy9fsQR6H9ByhrA/G2GVUUhcPDFFd8ivvl9BU5qOeXHw 0TWXI3Aa/FmRVaTazO+VdnuD7+dgFPdXb2Prh0+TLqGoTHYP/KDnaHolZDa8NMss 0WIx1fegh8VozkyP3PPzoiAEO06Dsh7XcHT6Mw0nh42oEt1BbtuYbgLAfCOBwqzo zrJQ/BbZh+Hqhma1HyyH+cGCCubnW2jGmdZf+t8GpK9fJjAmHR7/PePn32pzZp8C epUVFxptRwx/LMlN28V6BesU/1dMogrfyaqAh9olXfDoM7ImNFPGOQB78yiNRM2O L8tJno4h3HTjMi3khLKQzfiLD0AzcSP4 -----END CERTIFICATE-----Generated at Sat May 31 17:34:18 2025 by rpki-client