$ rpki-client -vvf rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft File: baFr8M0J73aPkCE7ZtjLw86TQgY.mft (raw, json) Hash identifier: mfi4ZsTKrYYknFzadBZEHjaCfOMjvG4hXviE29Tdjlk= Subject key identifier: 7D:EA:1D:99:27:CD:4A:EA:42:FB:CA:B7:F5:A9:89:4F:06:C9:51:5B Authority key identifier: 6D:A1:6B:F0:CD:09:EF:76:8F:90:21:3B:66:D8:CB:C3:CE:93:42:06 Certificate issuer: /CN=A9151B71/serialNumber=6DA16BF0CD09EF768F90213B66D8CBC3CE934206 Certificate serial: 0748 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baFr8M0J73aPkCE7ZtjLw86TQgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft Manifest number: 073F Signing time: Fri 30 May 2025 21:58:14 +0000 Manifest this update: Fri 30 May 2025 21:58:13 +0000 Manifest next update: Fri 06 Jun 2025 21:58:13 +0000 Files and hashes: 1: baFr8M0J73aPkCE7ZtjLw86TQgY.crl (hash: 3G3vmq1EZ11QB1vnK0df4Yf1Krz1I+dzMJqXQSVS9Mk=) 2: 0A866A522EAB11EBAB198239C4F9AE02.roa (hash: y8a8NpATY6YYaN1sCCi6QGlP5oTWUdFfM/H2gKyeO+A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.crl rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baFr8M0J73aPkCE7ZtjLw86TQgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:58:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1864 (0x748) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151B71, serialNumber=6DA16BF0CD09EF768F90213B66D8CBC3CE934206 Validity Not Before: May 30 21:58:13 2025 GMT Not After : Jun 6 21:58:13 2025 GMT Subject: CN=683a29f6-fe00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:3a:ff:95:40:a1:1a:b0:55:9b:22:30:6a:31: bb:8b:27:c5:35:91:e5:4b:67:ce:46:8d:3b:ad:96: d4:86:07:6e:4d:69:fe:aa:a6:a3:8a:47:a6:a2:10: 69:fc:94:49:b0:d7:3e:a9:80:71:3a:e8:93:0a:5d: 46:04:38:ce:2b:d8:f8:68:56:3e:89:8c:01:01:03: 2d:ea:13:47:ce:9c:36:6c:1a:14:45:87:af:6d:95: ff:59:72:a6:a4:32:f4:e8:27:cc:40:11:24:fb:76: 9c:ad:c8:0a:3a:d0:b6:cf:07:51:ed:37:36:a1:7c: ad:27:31:be:81:f2:1d:ba:96:62:3a:10:c8:73:fa: b5:62:20:0f:96:be:cc:de:e9:05:26:b5:7d:fe:91: 37:c0:a6:23:b1:32:4f:df:3e:36:bc:1a:85:d3:f4: e9:b8:0e:62:53:69:af:ef:49:4a:13:35:49:3e:c0: b0:a5:d3:aa:45:4a:d9:b4:57:15:91:bc:fe:6c:62: e7:c8:d4:3e:df:3a:7a:a8:2e:0f:94:0c:78:88:2d: c5:6c:b3:ef:dc:86:fa:20:7f:19:c3:d0:4f:b6:64: 15:e8:b6:7f:2b:cd:3c:61:7c:8e:c6:cf:e5:ca:a6: d3:42:52:d7:95:36:af:2f:2e:9a:0c:ff:a8:f2:b5: 44:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:EA:1D:99:27:CD:4A:EA:42:FB:CA:B7:F5:A9:89:4F:06:C9:51:5B X509v3 Authority Key Identifier: keyid:6D:A1:6B:F0:CD:09:EF:76:8F:90:21:3B:66:D8:CB:C3:CE:93:42:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baFr8M0J73aPkCE7ZtjLw86TQgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151B71/9FD5F80E2EA911EB9168FB37C4F9AE02/baFr8M0J73aPkCE7ZtjLw86TQgY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:e4:5d:34:74:82:65:a1:96:6a:24:df:cb:0a:41:cf:02:84: 7e:a9:42:d5:48:55:44:82:3a:3b:70:96:00:33:b2:28:fe:8d: 39:6c:27:59:3a:fb:67:56:c3:f3:49:0e:e1:11:b8:a6:77:e6: 33:b5:89:8d:92:08:02:1e:e0:0c:b8:eb:2b:7e:8a:b2:5a:d1: 11:19:8e:be:c0:59:74:aa:c6:71:24:23:40:40:07:90:a0:9e: 30:78:e4:73:cd:46:69:51:d4:c4:32:95:bf:8a:d0:ab:c4:bc: ef:21:ab:04:db:c0:0c:04:1b:01:69:7c:7c:4a:e1:af:5a:93: 99:9e:43:e1:77:23:36:48:f0:08:d0:be:11:ea:dd:7a:81:ba: 1e:db:0a:6d:e8:cc:d3:23:40:8d:90:9b:6b:7a:39:b2:f4:6d: ed:f7:36:a3:fa:ca:df:01:29:9e:79:0d:4b:2b:e3:6e:45:a1: c6:13:ec:aa:3e:be:13:f1:50:66:86:68:26:2c:3d:7d:39:01: 2b:bd:c2:9f:9d:88:31:98:06:de:b6:db:e0:42:43:41:b5:87: ff:aa:23:ba:b6:00:ed:bb:64:93:57:9b:9f:d2:a3:f6:b6:12: 5d:7d:f0:c4:30:c9:bf:fc:a8:11:aa:ef:33:75:c0:ba:f1:7d: 9d:27:44:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB0gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTFCNzExMTAvBgNVBAUTKDZEQTE2QkYwQ0QwOUVGNzY4RjkwMjEzQjY2RDhDQkMz Q0U5MzQyMDYwHhcNMjUwNTMwMjE1ODEzWhcNMjUwNjA2MjE1ODEzWjAYMRYwFAYD VQQDEw02ODNhMjlmNi1mZTAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsjr/lUChGrBVmyIwajG7iyfFNZHlS2fORo07rZbUhgduTWn+qqajikemohBp /JRJsNc+qYBxOuiTCl1GBDjOK9j4aFY+iYwBAQMt6hNHzpw2bBoURYevbZX/WXKm pDL06CfMQBEk+3acrcgKOtC2zwdR7Tc2oXytJzG+gfIdupZiOhDIc/q1YiAPlr7M 3ukFJrV9/pE3wKYjsTJP3z42vBqF0/TpuA5iU2mv70lKEzVJPsCwpdOqRUrZtFcV kbz+bGLnyNQ+3zp6qC4PlAx4iC3FbLPv3Ib6IH8Zw9BPtmQV6LZ/K808YXyOxs/l yqbTQlLXlTavLy6aDP+o8rVEfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH3qHZkn zUrqQvvKt/WpiU8GyVFbMB8GA1UdIwQYMBaAFG2ha/DNCe92j5AhO2bYy8POk0IG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MUI3MS85RkQ1RjgwRTJF QTkxMUVCOTE2OEZCMzdDNEY5QUUwMi9iYUZyOE0wSjczYVBrQ0U3WnRqTHc4NlRR Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JhRnI4TTBKNzNhUGtDRTdadGpMdzg2VFFnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MUI3MS85RkQ1RjgwRTJFQTkxMUVCOTE2OEZCMzdDNEY5QUUwMi9iYUZyOE0wSjcz YVBrQ0U3WnRqTHc4NlRRZ1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCd5F00dIJloZZqJN/LCkHPAoR+qULVSFVEgjo7cJYAM7Io/o05bCdZ OvtnVsPzSQ7hEbimd+YztYmNkggCHuAMuOsrfoqyWtERGY6+wFl0qsZxJCNAQAeQ oJ4weORzzUZpUdTEMpW/itCrxLzvIasE28AMBBsBaXx8SuGvWpOZnkPhdyM2SPAI 0L4R6t16gboe2wpt6MzTI0CNkJtrejmy9G3t9zaj+srfASmeeQ1LK+NuRaHGE+yq Pr4T8VBmhmgmLD19OQErvcKfnYgxmAbettvgQkNBtYf/qiO6tgDtu2STV5uf0qP2 thJdffDEMMm//KgRqu8zdcC68X2dJ0Tv -----END CERTIFICATE-----Generated at Sat May 31 17:18:48 2025 by rpki-client