$ rpki-client -vvf rpki.apnic.net/member_repository/A915B0C9/0C778CB47D1A11ED8E8BEB82C4F9AE02/BzgX21Kc2-s_-TiuXuCEiOF-TpA.mft File: BzgX21Kc2-s_-TiuXuCEiOF-TpA.mft (raw, json) Hash identifier: WMeCbHzF8BGpv5gG1RnYTyFY3+pY8dTliDppm8QF+b4= Subject key identifier: CD:1D:0B:22:33:3C:77:64:2C:54:BA:E7:0A:A0:F5:17:E3:23:0F:17 Authority key identifier: 07:38:17:DB:52:9C:DB:EB:3F:F9:38:AE:5E:E0:84:88:E1:7E:4E:90 Certificate issuer: /CN=A915B0C9/serialNumber=073817DB529CDBEB3FF938AE5EE08488E17E4E90 Certificate serial: 01D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BzgX21Kc2-s_-TiuXuCEiOF-TpA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B0C9/0C778CB47D1A11ED8E8BEB82C4F9AE02/BzgX21Kc2-s_-TiuXuCEiOF-TpA.mft Manifest number: 01D3 Signing time: Sat 07 Jun 2025 02:29:37 +0000 Manifest this update: Sat 07 Jun 2025 02:29:36 +0000 Manifest next update: Sat 14 Jun 2025 02:29:36 +0000 Files and hashes: 1: BzgX21Kc2-s_-TiuXuCEiOF-TpA.crl (hash: Ufvei4LlkGBjsCQQtnpVvO4XNE02BESG58tBOP355Fk=) 2: F0F09EAA7D1D11EDAE0CF917C4F9AE02.roa (hash: /AIOMPF379cdDnZ0oCHY5QGxjdpZh2kab3GCf0LfQ6w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B0C9/0C778CB47D1A11ED8E8BEB82C4F9AE02/BzgX21Kc2-s_-TiuXuCEiOF-TpA.crl rsync://rpki.apnic.net/member_repository/A915B0C9/0C778CB47D1A11ED8E8BEB82C4F9AE02/BzgX21Kc2-s_-TiuXuCEiOF-TpA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BzgX21Kc2-s_-TiuXuCEiOF-TpA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Jun 2025 02:29:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 470 (0x1d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B0C9, serialNumber=073817DB529CDBEB3FF938AE5EE08488E17E4E90 Validity Not Before: Jun 7 02:29:36 2025 GMT Not After : Jun 14 02:29:36 2025 GMT Subject: CN=6843a410-d276 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:d9:3b:31:46:3c:6f:50:d7:41:c8:59:e4:4b: f5:9b:dd:f9:28:38:53:6e:e1:f8:f8:df:27:97:ff: aa:7d:b7:5f:d8:e3:a5:a9:36:18:03:e9:0f:b7:9c: 80:87:de:b6:67:47:da:3f:88:ea:05:05:c7:0b:79: 66:06:71:7e:83:13:78:8b:c5:9d:cc:24:61:9b:6d: b1:be:f3:43:df:58:fc:1b:dd:76:fc:b8:e9:86:3e: f9:1a:91:24:fb:6b:18:81:37:34:f7:25:bd:20:bb: 8d:ff:79:de:e7:41:57:e0:be:05:6e:b4:1e:fc:ab: be:bd:9d:e1:d0:e6:67:e6:be:11:71:08:1b:03:f8: bf:50:74:27:fd:70:44:8d:1d:21:b8:3e:ec:b8:e4: 5c:6e:1a:d6:3f:78:91:49:6f:bd:4c:5b:a8:7f:ea: 3b:a4:5d:28:d5:df:be:51:37:e6:3f:f4:8c:e5:b6: 7c:5a:28:be:42:04:7a:a4:23:68:dc:f5:47:71:d7: 9f:87:86:09:89:34:5b:0c:89:93:3f:19:6d:ea:0d: f6:d6:2a:26:81:c0:d0:44:39:c7:5e:3c:4c:69:7d: cd:f7:db:d9:c0:22:5c:66:2a:81:96:3d:76:c9:be: 62:05:ed:12:03:2f:ec:77:ed:31:bd:a0:aa:49:93: d6:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:1D:0B:22:33:3C:77:64:2C:54:BA:E7:0A:A0:F5:17:E3:23:0F:17 X509v3 Authority Key Identifier: keyid:07:38:17:DB:52:9C:DB:EB:3F:F9:38:AE:5E:E0:84:88:E1:7E:4E:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B0C9/0C778CB47D1A11ED8E8BEB82C4F9AE02/BzgX21Kc2-s_-TiuXuCEiOF-TpA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BzgX21Kc2-s_-TiuXuCEiOF-TpA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B0C9/0C778CB47D1A11ED8E8BEB82C4F9AE02/BzgX21Kc2-s_-TiuXuCEiOF-TpA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:c3:da:f2:6b:c0:ec:0f:41:fa:39:77:cf:82:b4:5c:f6:3f: 5a:44:9d:3c:03:fb:dd:7a:04:b6:84:06:23:ca:c5:4e:2d:51: 4f:88:93:24:85:67:33:86:7f:c6:35:ad:04:36:20:19:54:35: d4:58:12:3d:97:f5:ef:be:76:be:39:28:46:ed:d2:03:cb:38: c8:4b:ba:cf:ad:52:1f:a5:c9:0a:eb:82:c7:ea:b6:cb:ff:dd: b3:19:2d:de:ef:20:af:74:79:0d:d1:e9:9b:21:9f:23:09:0e: ce:63:f9:d1:0a:66:dd:4d:48:f4:30:07:e9:a7:ef:d8:80:c6: ad:97:95:d6:a7:2a:98:be:3f:6c:6c:ff:ce:65:b8:4a:02:3e: 6e:18:31:cf:02:45:5f:e9:5c:2b:c6:95:1e:01:cc:de:21:48: 5d:1b:f7:c0:24:27:f4:81:26:b3:d3:ab:f6:4f:2b:90:98:f4: 90:f5:c7:fa:7e:e3:d5:28:02:c2:ae:48:23:48:51:7c:d2:43: eb:44:f9:31:2b:3c:c9:32:f7:9b:99:71:39:60:c9:a9:0b:a9: 8e:02:01:0c:98:7f:23:56:34:eb:d2:d2:c0:ba:90:01:8a:4a: a6:55:8f:fa:07:9b:46:45:e1:c7:44:07:5c:79:47:d3:90:b4: 32:91:41:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUIwQzkxMTAvBgNVBAUTKDA3MzgxN0RCNTI5Q0RCRUIzRkY5MzhBRTVFRTA4NDg4 RTE3RTRFOTAwHhcNMjUwNjA3MDIyOTM2WhcNMjUwNjE0MDIyOTM2WjAYMRYwFAYD VQQDEw02ODQzYTQxMC1kMjc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA69k7MUY8b1DXQchZ5Ev1m935KDhTbuH4+N8nl/+qfbdf2OOlqTYYA+kPt5yA h962Z0faP4jqBQXHC3lmBnF+gxN4i8WdzCRhm22xvvND31j8G912/Ljphj75GpEk +2sYgTc09yW9ILuN/3ne50FX4L4FbrQe/Ku+vZ3h0OZn5r4RcQgbA/i/UHQn/XBE jR0huD7suORcbhrWP3iRSW+9TFuof+o7pF0o1d++UTfmP/SM5bZ8Wii+QgR6pCNo 3PVHcdefh4YJiTRbDImTPxlt6g321iomgcDQRDnHXjxMaX3N99vZwCJcZiqBlj12 yb5iBe0SAy/sd+0xvaCqSZPWqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM0dCyIz PHdkLFS65wqg9RfjIw8XMB8GA1UdIwQYMBaAFAc4F9tSnNvrP/k4rl7ghIjhfk6Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjBDOS8wQzc3OENCNDdE MUExMUVEOEU4QkVCODJDNEY5QUUwMi9CemdYMjFLYzItc18tVGl1WHVDRWlPRi1U cEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0J6Z1gyMUtjMi1zXy1UaXVYdUNFaU9GLVRwQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QjBDOS8wQzc3OENCNDdEMUExMUVEOEU4QkVCODJDNEY5QUUwMi9CemdYMjFLYzIt c18tVGl1WHVDRWlPRi1UcEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0w9rya8DsD0H6OXfPgrRc9j9aRJ08A/vdegS2hAYjysVOLVFPiJMk hWczhn/GNa0ENiAZVDXUWBI9l/Xvvna+OShG7dIDyzjIS7rPrVIfpckK64LH6rbL /92zGS3e7yCvdHkN0embIZ8jCQ7OY/nRCmbdTUj0MAfpp+/YgMatl5XWpyqYvj9s bP/OZbhKAj5uGDHPAkVf6VwrxpUeAczeIUhdG/fAJCf0gSaz06v2TyuQmPSQ9cf6 fuPVKALCrkgjSFF80kPrRPkxKzzJMvebmXE5YMmpC6mOAgEMmH8jVjTr0tLAupAB ikqmVY/6B5tGReHHRAdceUfTkLQykUFX -----END CERTIFICATE-----Generated at Sat Jun 7 06:54:32 2025 by rpki-client