$ rpki-client -vvf rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft File: BKm4kZsiD18-q9D03YXi9b28VQA.mft (raw, json) Hash identifier: xA8ketcreQ0fB3doBlJ9Td7geAvur1tiDwPxf+/PB9M= Subject key identifier: 26:04:7B:B7:31:23:32:20:CD:93:8F:AD:32:85:C2:B2:B3:DD:B0:C7 Authority key identifier: 04:A9:B8:91:9B:22:0F:5F:3E:AB:D0:F4:DD:85:E2:F5:BD:BC:55:00 Certificate issuer: /CN=A913837F/serialNumber=04A9B8919B220F5F3EABD0F4DD85E2F5BDBC5500 Certificate serial: 0150 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft Manifest number: 014C Signing time: Sun 01 Jun 2025 03:56:13 +0000 Manifest this update: Sun 01 Jun 2025 03:56:13 +0000 Manifest next update: Sun 08 Jun 2025 03:56:13 +0000 Files and hashes: 1: BKm4kZsiD18-q9D03YXi9b28VQA.crl (hash: 5x5VhNazXvoU0JRTu5vwu2ve5t5NDp/+iJIVwOTehbk=) 2: 3D83357646E411EE82ED8843C4F9AE02.roa (hash: 34LR4muDkvBv1o97MuicPyBMy45vufYYnTs0rk2DkdE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.crl rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 03:56:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 336 (0x150) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913837F, serialNumber=04A9B8919B220F5F3EABD0F4DD85E2F5BDBC5500 Validity Not Before: Jun 1 03:56:13 2025 GMT Not After : Jun 8 03:56:13 2025 GMT Subject: CN=683bcf5d-9752 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:0a:b3:c9:5f:6b:05:65:d2:4f:8e:46:c9:51: a2:d1:83:a8:6d:eb:d3:75:51:91:d9:1c:7a:5f:1d: 0d:ae:a8:36:2b:0a:ed:62:8c:35:e4:89:cb:64:d3: b4:6a:a5:1e:4c:53:ca:28:d6:2d:b0:35:2f:eb:6a: b9:d0:f2:9f:eb:64:2c:7d:0f:2c:b4:96:20:3d:60: bf:d3:c3:a1:e7:0b:fe:87:7b:06:14:90:b9:df:1a: 02:e7:a3:3f:6f:c2:47:4f:02:35:e8:36:72:f2:da: 8d:52:ba:9d:de:c9:1e:ff:33:42:bc:88:f2:a8:e2: b0:85:0d:d0:3d:c5:af:5c:06:7e:38:91:5f:1a:2b: ea:48:ba:9e:45:e9:97:a1:02:61:5d:91:a6:bd:70: da:59:02:a1:1f:90:26:22:77:e6:fd:70:b8:58:27: 7e:dc:df:c3:f7:ac:91:a0:45:59:e4:b8:bf:9b:d0: 00:dd:10:ca:de:cb:3b:3a:83:4d:76:c7:da:77:9a: 52:c9:84:ad:4c:37:ed:e7:1c:76:6f:8e:92:d6:c0: 5b:b0:b6:17:ba:61:61:90:ec:a5:94:dc:c1:fb:04: cd:e8:a9:f6:3f:a6:52:20:4d:af:63:3d:8c:2a:7b: c0:85:4c:51:67:21:75:e8:95:ef:a1:77:c8:3d:dc: 05:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:04:7B:B7:31:23:32:20:CD:93:8F:AD:32:85:C2:B2:B3:DD:B0:C7 X509v3 Authority Key Identifier: keyid:04:A9:B8:91:9B:22:0F:5F:3E:AB:D0:F4:DD:85:E2:F5:BD:BC:55:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BKm4kZsiD18-q9D03YXi9b28VQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913837F/64590C1246E311EEB5E41642C4F9AE02/BKm4kZsiD18-q9D03YXi9b28VQA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:62:7c:65:f5:c4:6b:d7:2d:cf:6f:01:b6:9c:63:d4:87:ee: 84:69:10:3f:75:76:d9:ab:7e:e5:9d:56:9c:50:5a:a8:24:e2: 72:32:c1:44:a6:a7:5c:36:6e:a3:74:24:19:55:20:30:6e:6c: b2:a5:f6:96:a3:14:fe:0a:81:15:8d:2e:65:de:b4:02:50:f6: 8e:68:7c:5d:0c:d6:c8:0a:0a:d7:69:8b:2c:da:b6:ce:b0:bd: ab:0b:8a:87:8c:37:6d:d6:4e:b5:63:e7:ce:3b:39:33:f0:c5: 7e:15:d3:ba:a7:a4:12:0b:58:b1:38:59:d8:78:70:9d:20:9f: 1b:d1:61:be:83:87:d3:5d:11:93:41:3f:0a:4b:8d:17:71:11: 7a:be:b3:d7:e6:91:cb:87:1b:81:4e:73:11:61:e5:0c:db:42: bf:e6:b5:c6:8e:75:ef:cf:5b:cf:38:75:8a:2b:37:f5:7f:1f: 46:56:cf:2f:15:e9:51:f0:a6:9b:53:c9:3c:3a:d9:5d:83:cf: fc:2e:8a:af:ed:66:cc:54:1d:0f:f2:43:83:0e:ef:e3:03:38: 68:fa:1e:b5:2a:89:aa:f1:90:34:09:ce:98:76:a4:16:93:82: bd:15:7e:81:6e:de:e7:ee:b7:7d:6a:f0:cb:82:8a:25:19:73: 88:52:db:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzgzN0YxMTAvBgNVBAUTKDA0QTlCODkxOUIyMjBGNUYzRUFCRDBGNEREODVFMkY1 QkRCQzU1MDAwHhcNMjUwNjAxMDM1NjEzWhcNMjUwNjA4MDM1NjEzWjAYMRYwFAYD VQQDEw02ODNiY2Y1ZC05NzUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuAqzyV9rBWXST45GyVGi0YOobevTdVGR2Rx6Xx0Nrqg2KwrtYow15InLZNO0 aqUeTFPKKNYtsDUv62q50PKf62QsfQ8stJYgPWC/08Oh5wv+h3sGFJC53xoC56M/ b8JHTwI16DZy8tqNUrqd3ske/zNCvIjyqOKwhQ3QPcWvXAZ+OJFfGivqSLqeRemX oQJhXZGmvXDaWQKhH5AmInfm/XC4WCd+3N/D96yRoEVZ5Li/m9AA3RDK3ss7OoNN dsfad5pSyYStTDft5xx2b46S1sBbsLYXumFhkOyllNzB+wTN6Kn2P6ZSIE2vYz2M KnvAhUxRZyF16JXvoXfIPdwF9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCYEe7cx IzIgzZOPrTKFwrKz3bDHMB8GA1UdIwQYMBaAFASpuJGbIg9fPqvQ9N2F4vW9vFUA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODM3Ri82NDU5MEMxMjQ2 RTMxMUVFQjVFNDE2NDJDNEY5QUUwMi9CS200a1pzaUQxOC1xOUQwM1lYaTliMjhW UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JLbTRrWnNpRDE4LXE5RDAzWVhpOWIyOFZRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODM3Ri82NDU5MEMxMjQ2RTMxMUVFQjVFNDE2NDJDNEY5QUUwMi9CS200a1pzaUQx OC1xOUQwM1lYaTliMjhWUUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrYnxl9cRr1y3PbwG2nGPUh+6EaRA/dXbZq37lnVacUFqoJOJyMsFE pqdcNm6jdCQZVSAwbmyypfaWoxT+CoEVjS5l3rQCUPaOaHxdDNbICgrXaYss2rbO sL2rC4qHjDdt1k61Y+fOOzkz8MV+FdO6p6QSC1ixOFnYeHCdIJ8b0WG+g4fTXRGT QT8KS40XcRF6vrPX5pHLhxuBTnMRYeUM20K/5rXGjnXvz1vPOHWKKzf1fx9GVs8v FelR8KabU8k8Otldg8/8Loqv7WbMVB0P8kODDu/jAzho+h61Komq8ZA0Cc6YdqQW k4K9FX6Bbt7n7rd9avDLgoolGXOIUtv4 -----END CERTIFICATE-----Generated at Mon Jun 2 19:58:16 2025 by rpki-client