$ rpki-client -vvf rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.mft File: BfhBmvmqMYTqsf-HQkpq4zz3MsQ.mft (raw, json) Hash identifier: ckUBofTDOgrm+0qDhci5xj4Ri088ZxZyzMsNmuxJTvw= Subject key identifier: 70:EB:DA:98:FC:6D:61:2D:B1:99:34:1B:54:0F:C2:32:1C:65:2E:1F Authority key identifier: 05:F8:41:9A:F9:AA:31:84:EA:B1:FF:87:42:4A:6A:E3:3C:F7:32:C4 Certificate issuer: /CN=A915E575/serialNumber=05F8419AF9AA3184EAB1FF87424A6AE33CF732C4 Certificate serial: 03BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.mft Manifest number: 03B7 Signing time: Sat 31 May 2025 00:52:32 +0000 Manifest this update: Sat 31 May 2025 00:52:32 +0000 Manifest next update: Sat 07 Jun 2025 00:52:32 +0000 Files and hashes: 1: BfhBmvmqMYTqsf-HQkpq4zz3MsQ.crl (hash: mEsDp0WHDDSg7O6fHsRaBNgUTT6Y7Ap0PfRXewzk6Hk=) 2: D86008008FAA11ECB0728B0FC4F9AE02.roa (hash: RsMIAFkbpydCDPohis69ldhzmBpnzB7IY6eRBCKfLas=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.crl rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:52:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 955 (0x3bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E575, serialNumber=05F8419AF9AA3184EAB1FF87424A6AE33CF732C4 Validity Not Before: May 31 00:52:32 2025 GMT Not After : Jun 7 00:52:32 2025 GMT Subject: CN=683a52d0-5aae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:30:ce:56:19:d3:a0:11:a3:fa:89:c0:0b:a8: 97:04:b0:50:83:6b:6f:15:d7:a9:d7:06:2b:b9:71: e5:9e:79:52:14:9d:c9:63:1c:66:bd:81:8d:b1:dd: 60:88:ef:ff:79:4c:94:e1:eb:26:da:56:f4:00:93: 00:07:31:c0:93:ff:93:87:82:31:89:a1:5b:c5:04: c5:db:34:71:32:91:69:c7:a5:00:0e:fb:9a:03:ad: 2a:46:af:d3:c6:1b:12:d2:16:d5:b3:2f:71:a1:9b: 8a:7f:8e:6a:51:fb:45:bf:1a:02:6e:6e:bc:7f:4e: 9d:f2:90:b9:9a:f1:bf:63:1b:fb:f2:ab:48:7f:49: 69:6b:3d:9d:e1:73:8d:a5:cf:c3:7c:ec:59:5e:f5: 8d:f0:7f:71:e4:11:52:05:33:02:6b:25:93:08:72: ca:69:c7:f7:57:5e:20:0c:61:ec:54:6f:f7:c2:da: f1:6a:f4:b8:e1:75:cc:9c:5e:b9:79:67:e0:45:a0: 4b:ab:33:d4:b7:6b:6c:19:a4:3d:16:66:28:d3:64: 45:4f:08:75:f2:d8:8f:1b:57:ed:7d:c0:71:04:30: 6f:7f:c4:0b:1c:73:f8:a1:c8:1f:bd:8e:da:ca:4e: 13:c6:60:b3:6b:2e:00:19:9b:0b:d2:25:fb:21:8d: 7f:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:EB:DA:98:FC:6D:61:2D:B1:99:34:1B:54:0F:C2:32:1C:65:2E:1F X509v3 Authority Key Identifier: keyid:05:F8:41:9A:F9:AA:31:84:EA:B1:FF:87:42:4A:6A:E3:3C:F7:32:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:41:56:7e:5d:44:ed:e8:75:c9:46:0a:74:d4:e1:d6:38:a4: be:cb:66:79:8a:67:85:47:23:ae:c1:32:98:2b:4f:91:33:7f: ce:09:1a:62:00:0d:70:57:d3:6e:45:6e:68:72:22:a7:7c:4d: bf:90:50:a2:08:5b:83:d8:6b:86:5d:2f:f2:a5:66:75:09:3e: ce:b8:4a:a6:40:bf:8a:68:05:ec:4e:9a:40:6d:a6:1a:50:62: 3c:a6:3f:56:96:1e:5f:ca:fc:95:4b:80:5b:10:36:53:67:00: 71:fb:76:d9:3c:70:c4:65:57:b2:8f:a2:02:13:0f:86:ab:c3: 5b:cd:61:76:db:02:ba:42:7c:48:89:2f:e1:9b:2a:1f:02:ad: 25:7e:86:29:5c:23:ec:42:94:8a:29:80:cc:20:20:00:52:70: de:60:57:88:a2:2f:30:1e:eb:8a:45:0b:ec:d9:5d:93:a8:88: bf:71:fd:d2:fd:56:21:5f:57:ed:2d:7b:79:cc:95:e6:2e:9c: 4b:c4:41:87:96:b2:22:ff:93:7c:14:c0:c6:86:23:9e:eb:be: e5:ff:b2:b2:ba:b0:b8:8b:b6:bd:e7:ef:f8:77:8a:8d:6b:e7: 6b:24:06:a3:33:c4:f1:53:a7:2b:9a:15:f7:d6:79:34:6f:03: d5:dd:cd:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA7swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUU1NzUxMTAvBgNVBAUTKDA1Rjg0MTlBRjlBQTMxODRFQUIxRkY4NzQyNEE2QUUz M0NGNzMyQzQwHhcNMjUwNTMxMDA1MjMyWhcNMjUwNjA3MDA1MjMyWjAYMRYwFAYD VQQDEw02ODNhNTJkMC01YWFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5zDOVhnToBGj+onAC6iXBLBQg2tvFdep1wYruXHlnnlSFJ3JYxxmvYGNsd1g iO//eUyU4esm2lb0AJMABzHAk/+Th4IxiaFbxQTF2zRxMpFpx6UADvuaA60qRq/T xhsS0hbVsy9xoZuKf45qUftFvxoCbm68f06d8pC5mvG/Yxv78qtIf0lpaz2d4XON pc/DfOxZXvWN8H9x5BFSBTMCayWTCHLKacf3V14gDGHsVG/3wtrxavS44XXMnF65 eWfgRaBLqzPUt2tsGaQ9FmYo02RFTwh18tiPG1ftfcBxBDBvf8QLHHP4ocgfvY7a yk4TxmCzay4AGZsL0iX7IY1/QQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHDr2pj8 bWEtsZk0G1QPwjIcZS4fMB8GA1UdIwQYMBaAFAX4QZr5qjGE6rH/h0JKauM89zLE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTU3NS9GMEIyNDIxNDhG QTYxMUVDOUMzOTc3NjJDNEY5QUUwMi9CZmhCbXZtcU1ZVHFzZi1IUWtwcTR6ejNN c1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JmaEJtdm1xTVlUcXNmLUhRa3BxNHp6M01zUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RTU3NS9GMEIyNDIxNDhGQTYxMUVDOUMzOTc3NjJDNEY5QUUwMi9CZmhCbXZtcU1Z VHFzZi1IUWtwcTR6ejNNc1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeQVZ+XUTt6HXJRgp01OHWOKS+y2Z5imeFRyOuwTKYK0+RM3/OCRpi AA1wV9NuRW5ociKnfE2/kFCiCFuD2GuGXS/ypWZ1CT7OuEqmQL+KaAXsTppAbaYa UGI8pj9Wlh5fyvyVS4BbEDZTZwBx+3bZPHDEZVeyj6ICEw+Gq8NbzWF22wK6QnxI iS/hmyofAq0lfoYpXCPsQpSKKYDMICAAUnDeYFeIoi8wHuuKRQvs2V2TqIi/cf3S /VYhX1ftLXt5zJXmLpxLxEGHlrIi/5N8FMDGhiOe677l/7KyurC4i7a95+/4d4qN a+drJAajM8TxU6crmhX31nk0bwPV3c0K -----END CERTIFICATE-----Generated at Sat May 31 17:20:40 2025 by rpki-client