$ rpki-client -vvf rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/bDt_HBM9qcUdRE2oXmAqloRR_lQ.mft File: bDt_HBM9qcUdRE2oXmAqloRR_lQ.mft (raw, json) Hash identifier: QiWY/gCKeDsmVKROOhrPXdHAajtsP0a2XNsZRfUGT3U= Subject key identifier: 70:5A:3E:35:00:49:3C:34:DF:35:B7:97:38:F7:68:2A:19:FC:CA:5B Authority key identifier: 6C:3B:7F:1C:13:3D:A9:C5:1D:44:4D:A8:5E:60:2A:96:84:51:FE:54 Certificate issuer: /CN=A91626D2/serialNumber=6C3B7F1C133DA9C51D444DA85E602A968451FE54 Certificate serial: CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bDt_HBM9qcUdRE2oXmAqloRR_lQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/bDt_HBM9qcUdRE2oXmAqloRR_lQ.mft Manifest number: C9 Signing time: Wed 11 Jun 2025 05:05:45 +0000 Manifest this update: Wed 11 Jun 2025 05:05:45 +0000 Manifest next update: Wed 18 Jun 2025 05:05:45 +0000 Files and hashes: 1: bDt_HBM9qcUdRE2oXmAqloRR_lQ.crl (hash: 92/Xrff/EW67cdG60/xxNdLQCCzf/eVYbcCN7eILN9U=) 2: 8093CCBA13F611EF8ED7D71EC4F9AE02.roa (hash: J6cm0tDS7Sdy7/sJGsGgF8rSkOKz7v9OX913NFApE9A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/bDt_HBM9qcUdRE2oXmAqloRR_lQ.crl rsync://rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/bDt_HBM9qcUdRE2oXmAqloRR_lQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bDt_HBM9qcUdRE2oXmAqloRR_lQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 05:05:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 203 (0xcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91626D2, serialNumber=6C3B7F1C133DA9C51D444DA85E602A968451FE54 Validity Not Before: Jun 11 05:05:45 2025 GMT Not After : Jun 18 05:05:45 2025 GMT Subject: CN=68490ea9-afb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:43:fc:08:65:6b:77:d7:aa:95:bc:a1:c5:80: 5b:18:4d:14:6d:7a:a7:c7:56:f1:4b:c9:8e:c7:1d: b8:44:ba:5c:4f:51:73:f5:db:db:8c:65:1a:2a:77: 43:9a:8b:d7:35:e7:f0:8e:bb:5a:5c:a4:15:10:6e: de:63:b6:b7:43:8d:cd:3a:5e:c2:0d:b8:c2:fc:93: f4:7e:0d:e5:a1:57:eb:76:57:09:d1:3f:f7:86:dc: 4b:e9:7c:21:fb:26:c0:7c:9f:2d:46:68:13:71:0d: b9:eb:68:16:fb:82:fe:de:47:e1:cf:e7:18:2f:05: 46:5c:e5:eb:56:a9:73:47:24:f2:56:b9:e2:7d:06: 38:09:dd:ef:1b:53:2f:59:35:5e:d4:cb:bc:06:ba: 3a:93:4f:02:0d:d4:4c:99:c9:cb:19:49:24:e1:aa: f2:37:f4:99:47:ce:95:da:16:9c:f0:ef:9e:ae:06: 95:fb:75:17:b0:cd:b9:d5:b0:4e:21:d2:8a:79:3b: b5:34:8c:8a:62:1b:8e:2a:5f:41:91:d0:a3:3b:8a: 50:64:7b:b1:5f:38:71:52:9f:4d:ca:92:67:8f:b1: bc:51:27:d5:f4:ea:9a:a8:81:4f:a2:a2:fd:bd:03: 59:27:53:5b:52:59:c2:3e:89:c9:8f:92:97:a9:75: fa:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:5A:3E:35:00:49:3C:34:DF:35:B7:97:38:F7:68:2A:19:FC:CA:5B X509v3 Authority Key Identifier: keyid:6C:3B:7F:1C:13:3D:A9:C5:1D:44:4D:A8:5E:60:2A:96:84:51:FE:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/bDt_HBM9qcUdRE2oXmAqloRR_lQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bDt_HBM9qcUdRE2oXmAqloRR_lQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/bDt_HBM9qcUdRE2oXmAqloRR_lQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:91:bc:3c:f7:a2:a7:94:e5:23:a4:b5:30:26:45:41:23:50: 7b:57:1a:ee:ad:81:e1:04:1b:30:cf:be:50:b4:6d:02:d5:35: 40:75:fe:6a:11:15:86:8c:07:a6:b8:9e:4a:28:e8:fa:3e:ac: f6:cd:53:11:eb:a0:82:a4:da:53:b1:78:ee:68:0e:20:e7:db: bc:25:8e:ec:7f:a9:ef:f5:b9:10:7a:e3:fe:13:95:ae:34:7f: 1a:e4:b3:1f:a1:ef:7a:ee:99:ad:29:06:48:83:65:ca:35:15: c8:26:43:db:7b:c7:1d:34:a2:81:8e:55:bb:b6:06:5f:38:5a: 33:2c:ff:eb:bf:9e:31:f8:eb:7c:79:de:0a:eb:b3:55:b1:4f: bc:70:4d:01:d9:b0:0c:c8:7d:f7:1c:3f:ed:68:97:13:40:9b: 2f:80:bb:33:3f:02:48:0a:6d:70:67:14:fa:3f:91:9f:70:a7: 04:0d:a3:c5:a1:9a:4d:fd:bc:f8:31:18:a5:d5:de:8d:f8:c9: 4a:d9:3c:e9:f4:68:a3:0c:fa:4b:7e:0f:10:85:4f:0e:15:c4: 8e:55:80:35:be:09:93:50:e2:da:4d:d5:0b:e7:09:c5:cb:d3: 23:ce:2b:ff:40:1c:91:49:36:0b:89:88:9b:4f:ef:c0:2c:e9: 40:c0:17:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI2RDIxMTAvBgNVBAUTKDZDM0I3RjFDMTMzREE5QzUxRDQ0NERBODVFNjAyQTk2 ODQ1MUZFNTQwHhcNMjUwNjExMDUwNTQ1WhcNMjUwNjE4MDUwNTQ1WjAYMRYwFAYD VQQDEw02ODQ5MGVhOS1hZmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0UP8CGVrd9eqlbyhxYBbGE0UbXqnx1bxS8mOxx24RLpcT1Fz9dvbjGUaKndD movXNefwjrtaXKQVEG7eY7a3Q43NOl7CDbjC/JP0fg3loVfrdlcJ0T/3htxL6Xwh +ybAfJ8tRmgTcQ2562gW+4L+3kfhz+cYLwVGXOXrVqlzRyTyVrnifQY4Cd3vG1Mv WTVe1Mu8Bro6k08CDdRMmcnLGUkk4aryN/SZR86V2hac8O+ergaV+3UXsM251bBO IdKKeTu1NIyKYhuOKl9BkdCjO4pQZHuxXzhxUp9NypJnj7G8USfV9OqaqIFPoqL9 vQNZJ1NbUlnCPonJj5KXqXX6HwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHBaPjUA STw03zW3lzj3aCoZ/MpbMB8GA1UdIwQYMBaAFGw7fxwTPanFHURNqF5gKpaEUf5U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjZEMi9BRjIwODM0RTEz RjUxMUVGQTA5RDMyMUJDNEY5QUUwMi9iRHRfSEJNOXFjVWRSRTJvWG1BcWxvUlJf bFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JEdF9IQk05cWNVZFJFMm9YbUFxbG9SUl9sUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjZEMi9BRjIwODM0RTEzRjUxMUVGQTA5RDMyMUJDNEY5QUUwMi9iRHRfSEJNOXFj VWRSRTJvWG1BcWxvUlJfbFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSkbw896KnlOUjpLUwJkVBI1B7VxrurYHhBBswz75QtG0C1TVAdf5q ERWGjAemuJ5KKOj6Pqz2zVMR66CCpNpTsXjuaA4g59u8JY7sf6nv9bkQeuP+E5Wu NH8a5LMfoe967pmtKQZIg2XKNRXIJkPbe8cdNKKBjlW7tgZfOFozLP/rv54x+Ot8 ed4K67NVsU+8cE0B2bAMyH33HD/taJcTQJsvgLszPwJICm1wZxT6P5GfcKcEDaPF oZpN/bz4MRil1d6N+MlK2Tzp9GijDPpLfg8QhU8OFcSOVYA1vgmTUOLaTdUL5wnF y9Mjziv/QByRSTYLiYibT+/ALOlAwBe7 -----END CERTIFICATE-----Generated at Wed Jun 11 07:36:41 2025 by rpki-client