$ rpki-client -vvf rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft File: bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft (raw, json) Hash identifier: 7pwvUDNckl+gWxq2p/5IMMOo4KYsTVEpxN0RwJHp7BM= Subject key identifier: 95:97:64:72:C9:C1:3F:95:CC:90:0C:49:0F:F8:32:F4:78:2F:6E:4C Authority key identifier: 6C:A2:CF:A6:88:BD:F9:E2:D6:56:16:08:67:7A:30:C9:15:24:3D:0C Certificate issuer: /CN=A9148F80/serialNumber=6CA2CFA688BDF9E2D6561608677A30C915243D0C Certificate serial: 0685 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKLPpoi9-eLWVhYIZ3owyRUkPQw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft Manifest number: 067E Signing time: Fri 30 May 2025 22:34:08 +0000 Manifest this update: Fri 30 May 2025 22:34:07 +0000 Manifest next update: Fri 06 Jun 2025 22:34:07 +0000 Files and hashes: 1: bKLPpoi9-eLWVhYIZ3owyRUkPQw.crl (hash: 1gw3qwKMz4nngQ7k+asH6NJq+9FqF+QPfaLA6FI4x5w=) 2: 1C93BF747CD011EB9F876E78C4F9AE02.roa (hash: vUduh0w3eSZesFepaO929FwqL1Ap+OkfqL7IQgJ/yu0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.crl rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKLPpoi9-eLWVhYIZ3owyRUkPQw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:34:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1669 (0x685) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148F80, serialNumber=6CA2CFA688BDF9E2D6561608677A30C915243D0C Validity Not Before: May 30 22:34:07 2025 GMT Not After : Jun 6 22:34:07 2025 GMT Subject: CN=683a3260-0548 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:b4:f7:19:43:b3:8d:d1:c7:d2:b3:b2:bb:d3: 3c:57:4e:e0:7f:1d:12:cf:e6:86:c6:27:cd:df:ea: 36:f7:6e:7b:bf:d1:28:54:1d:e4:4e:e6:dd:1d:a8: 27:2c:b4:1b:53:24:dd:0c:9a:72:2a:15:25:17:10: 25:8f:28:97:1d:bf:fa:a4:2f:33:eb:05:44:e1:46: 36:7d:e5:38:1f:92:22:d3:71:cd:8d:f9:f8:3a:e3: 61:0d:01:f3:b9:4e:cc:09:3f:ea:c6:fd:1f:06:19: 16:d6:6c:21:94:89:f2:b1:65:84:b4:a7:c1:d8:94: d1:f2:a5:d6:f2:4e:19:0d:81:43:01:8f:36:ca:97: 01:e3:ed:08:23:9f:d6:86:4a:29:fb:2c:c9:89:7b: f1:e0:73:38:11:99:95:4c:4a:b1:6a:a2:c2:61:0e: 1d:59:91:25:0d:20:2a:a6:cf:5d:97:40:e4:08:7a: f0:d2:6d:cc:ce:f5:1e:33:30:7f:42:30:14:3a:4a: 70:a9:28:ed:5c:8a:f6:94:32:e9:d3:ab:3c:7c:e1: bf:c5:9f:8d:d6:2b:7b:f7:4d:c5:09:f3:e8:30:9e: f1:dc:3a:b5:0b:b3:39:88:6f:e3:23:f6:5a:d9:62: 60:a7:d1:9d:c2:b5:49:cb:6b:95:78:56:c6:70:b8: 6f:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:97:64:72:C9:C1:3F:95:CC:90:0C:49:0F:F8:32:F4:78:2F:6E:4C X509v3 Authority Key Identifier: keyid:6C:A2:CF:A6:88:BD:F9:E2:D6:56:16:08:67:7A:30:C9:15:24:3D:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKLPpoi9-eLWVhYIZ3owyRUkPQw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:cc:91:4d:0b:33:6e:18:2b:f0:5c:f4:63:ec:24:3e:27:5f: 36:14:2c:e1:92:51:95:66:d6:c7:ad:94:88:28:91:dc:bf:50: 75:11:dc:c5:e8:4e:74:1f:5d:14:ed:dc:75:13:c6:e1:1a:c8: c7:13:7d:d6:dd:49:df:4c:bc:f0:8d:ed:4f:e3:ef:fe:73:d8: db:f8:c3:46:2e:c7:ca:23:1d:a9:dd:84:17:44:3d:96:d6:57: 46:24:02:d4:d7:74:8b:0c:18:69:49:a5:6c:d0:46:48:59:81: 16:b2:87:0d:52:35:d7:e5:19:a0:36:e2:09:93:7c:ef:f0:f8: 3e:bf:1d:3e:b5:32:78:9c:c5:dc:7c:81:4a:fb:de:a4:35:7b: 3b:ca:b0:11:79:8d:30:ac:f2:3d:ea:b9:6b:be:14:3f:fb:6e: 46:ca:75:20:60:24:f9:d4:0f:76:24:3f:46:31:db:4f:7f:e1: 2e:2b:9d:6d:7f:c0:be:1d:48:0e:40:16:8c:9d:d5:9b:a2:c4: 08:8f:03:19:fd:3b:7a:1e:72:27:c5:65:78:34:96:66:a4:dc: 44:0a:fe:31:3b:89:0f:16:f9:34:32:ba:23:e5:f1:02:d7:03: df:42:f9:9a:26:90:bb:35:22:ea:42:b8:af:98:27:e9:a2:95: 3b:ac:76:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhGODAxMTAvBgNVBAUTKDZDQTJDRkE2ODhCREY5RTJENjU2MTYwODY3N0EzMEM5 MTUyNDNEMEMwHhcNMjUwNTMwMjIzNDA3WhcNMjUwNjA2MjIzNDA3WjAYMRYwFAYD VQQDEw02ODNhMzI2MC0wNTQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxLT3GUOzjdHH0rOyu9M8V07gfx0Sz+aGxifN3+o29257v9EoVB3kTubdHagn LLQbUyTdDJpyKhUlFxAljyiXHb/6pC8z6wVE4UY2feU4H5Ii03HNjfn4OuNhDQHz uU7MCT/qxv0fBhkW1mwhlInysWWEtKfB2JTR8qXW8k4ZDYFDAY82ypcB4+0II5/W hkop+yzJiXvx4HM4EZmVTEqxaqLCYQ4dWZElDSAqps9dl0DkCHrw0m3MzvUeMzB/ QjAUOkpwqSjtXIr2lDLp06s8fOG/xZ+N1it7903FCfPoMJ7x3Dq1C7M5iG/jI/Za 2WJgp9GdwrVJy2uVeFbGcLhvmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJWXZHLJ wT+VzJAMSQ/4MvR4L25MMB8GA1UdIwQYMBaAFGyiz6aIvfni1lYWCGd6MMkVJD0M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEY4MC8wNzFERUE0MDdD Q0UxMUVCQkI4ODI5NzZDNEY5QUUwMi9iS0xQcG9pOS1lTFdWaFlJWjNvd3lSVWtQ UXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JLTFBwb2k5LWVMV1ZoWUlaM293eVJVa1BRdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEY4MC8wNzFERUE0MDdDQ0UxMUVCQkI4ODI5NzZDNEY5QUUwMi9iS0xQcG9pOS1l TFdWaFlJWjNvd3lSVWtQUXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1zJFNCzNuGCvwXPRj7CQ+J182FCzhklGVZtbHrZSIKJHcv1B1EdzF 6E50H10U7dx1E8bhGsjHE33W3UnfTLzwje1P4+/+c9jb+MNGLsfKIx2p3YQXRD2W 1ldGJALU13SLDBhpSaVs0EZIWYEWsocNUjXX5RmgNuIJk3zv8Pg+vx0+tTJ4nMXc fIFK+96kNXs7yrAReY0wrPI96rlrvhQ/+25GynUgYCT51A92JD9GMdtPf+EuK51t f8C+HUgOQBaMndWbosQIjwMZ/Tt6HnInxWV4NJZmpNxECv4xO4kPFvk0Mroj5fEC 1wPfQvmaJpC7NSLqQrivmCfpopU7rHb4 -----END CERTIFICATE-----Generated at Sat May 31 17:37:46 2025 by rpki-client