$ rpki-client -vvf rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft File: bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft (raw, json) Hash identifier: HydDcDyxYjuRej+yMsRtZDbbLOlerWVB+cOG85uJ5/8= Subject key identifier: B8:6F:0A:9C:FD:25:7A:5B:65:A8:F5:FA:9E:E8:B3:55:CE:50:6A:AB Authority key identifier: 6D:DE:C6:A1:71:29:23:0E:EE:FE:50:8A:F1:19:62:FB:4C:0F:6F:C2 Certificate issuer: /CN=A9167C9C/serialNumber=6DDEC6A17129230EEEFE508AF11962FB4C0F6FC2 Certificate serial: 0587 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bd7GoXEpIw7u_lCK8Rli-0wPb8I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft Manifest number: 0583 Signing time: Sat 14 Jun 2025 23:00:57 +0000 Manifest this update: Sat 14 Jun 2025 23:00:56 +0000 Manifest next update: Sat 21 Jun 2025 23:00:56 +0000 Files and hashes: 1: bd7GoXEpIw7u_lCK8Rli-0wPb8I.crl (hash: eFxEWqlxwOrXdEByZMkpigwGyoBIzoo48Nn7A2IqdS8=) 2: BF811486DC1E11EBB2C72F52C4F9AE02.roa (hash: iBf35JbhfXTByYtXYWLsbRPZqGHn3gi9s/hG2voZLCk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.crl rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bd7GoXEpIw7u_lCK8Rli-0wPb8I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 23:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1415 (0x587) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167C9C, serialNumber=6DDEC6A17129230EEEFE508AF11962FB4C0F6FC2 Validity Not Before: Jun 14 23:00:56 2025 GMT Not After : Jun 21 23:00:56 2025 GMT Subject: CN=684dff29-6a96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:64:73:cb:2b:ee:44:0e:0e:37:e2:f4:3c:8d: c4:de:f8:5a:1d:92:93:98:72:00:11:ef:88:34:2a: f3:ba:3a:1a:d1:01:6d:ef:d3:a2:d8:d9:7a:89:b1: f1:dd:82:f2:54:9d:ff:34:f7:ba:e4:b0:54:f8:99: 58:d0:f5:08:2a:9d:d1:77:aa:9a:f7:b8:40:51:c2: 29:87:b7:ed:ba:4d:0c:ac:a7:eb:d9:de:df:5a:29: 14:48:a9:75:be:68:3b:4f:6d:f0:5f:90:45:65:cb: d7:07:d2:62:1c:58:e1:70:4d:f8:72:07:53:ad:dd: 0b:67:0c:01:d1:e4:5c:3e:34:9e:d0:52:aa:14:8b: 73:31:83:6e:aa:d5:57:da:b2:95:f9:2f:62:77:07: bd:70:42:3d:5c:33:b4:a6:7c:e5:a8:81:95:96:74: 72:d0:76:3d:ba:9b:2d:67:48:ce:72:65:90:1a:ff: a4:03:d3:f5:df:17:a5:ca:8a:f3:0c:d0:9a:15:81: 6e:6b:6c:48:fb:73:69:fd:a4:d1:1a:b3:fc:9e:7a: 4c:a5:8f:1b:06:c4:d0:eb:bd:cf:ad:80:98:a5:0b: c1:0f:6b:bf:61:30:cc:0b:79:80:c9:08:7e:94:9e: c4:6c:e6:a5:bd:2c:5e:ed:c8:91:31:79:db:a4:fd: 9f:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:6F:0A:9C:FD:25:7A:5B:65:A8:F5:FA:9E:E8:B3:55:CE:50:6A:AB X509v3 Authority Key Identifier: keyid:6D:DE:C6:A1:71:29:23:0E:EE:FE:50:8A:F1:19:62:FB:4C:0F:6F:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bd7GoXEpIw7u_lCK8Rli-0wPb8I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:0d:13:41:5a:94:c2:d3:27:40:47:15:8d:5e:13:ed:40:19: e0:3e:b9:14:b0:e6:ec:19:a2:80:4c:52:6b:f9:c3:81:51:51: d8:b4:30:7c:0a:9a:ed:2f:16:b5:be:48:65:16:fb:01:78:9c: 0a:ab:32:6f:d1:0d:ff:88:7c:6a:57:fc:88:35:41:3f:0f:fd: 91:ac:a8:e1:e1:dd:35:de:4d:87:f1:b3:e0:05:bd:28:3e:94: 80:81:29:94:67:35:28:34:dd:ef:f5:8c:67:8e:6c:26:da:5a: 4d:3e:90:eb:41:69:45:42:f3:ae:ee:16:ff:91:60:0c:fe:23: d6:4f:07:5d:bd:34:bb:18:cb:e3:25:3d:b9:09:ed:26:69:76: c1:39:ba:b6:fc:b2:05:60:b0:13:e6:a2:31:ef:e6:42:ed:6b: ba:98:ab:f8:11:09:65:0e:52:22:61:17:bf:5d:3d:c7:f5:87: d1:27:b0:9c:a9:8a:08:3b:db:5f:f8:1a:76:38:08:e0:d1:4f: e8:8b:55:12:03:b4:b9:ad:f3:8b:3e:c5:4e:75:e2:d7:5a:6b: 8e:a5:58:d4:80:b0:90:2e:52:02:1a:66:e6:f0:a9:2c:0a:d5: dd:1d:7a:0e:ce:3d:5b:fb:66:d5:f2:d8:63:63:ac:d6:91:50: d1:57:80:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDOUMxMTAvBgNVBAUTKDZEREVDNkExNzEyOTIzMEVFRUZFNTA4QUYxMTk2MkZC NEMwRjZGQzIwHhcNMjUwNjE0MjMwMDU2WhcNMjUwNjIxMjMwMDU2WjAYMRYwFAYD VQQDEw02ODRkZmYyOS02YTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnGRzyyvuRA4ON+L0PI3E3vhaHZKTmHIAEe+INCrzujoa0QFt79Oi2Nl6ibHx 3YLyVJ3/NPe65LBU+JlY0PUIKp3Rd6qa97hAUcIph7ftuk0MrKfr2d7fWikUSKl1 vmg7T23wX5BFZcvXB9JiHFjhcE34cgdTrd0LZwwB0eRcPjSe0FKqFItzMYNuqtVX 2rKV+S9idwe9cEI9XDO0pnzlqIGVlnRy0HY9upstZ0jOcmWQGv+kA9P13xelyorz DNCaFYFua2xI+3Np/aTRGrP8nnpMpY8bBsTQ673PrYCYpQvBD2u/YTDMC3mAyQh+ lJ7EbOalvSxe7ciRMXnbpP2f+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLhvCpz9 JXpbZaj1+p7os1XOUGqrMB8GA1UdIwQYMBaAFG3exqFxKSMO7v5QivEZYvtMD2/C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0M5Qy85QjZDNDI4MERD MUIxMUVCQTYzNTUwNEVDNEY5QUUwMi9iZDdHb1hFcEl3N3VfbENLOFJsaS0wd1Bi OEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JkN0dvWEVwSXc3dV9sQ0s4UmxpLTB3UGI4SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0M5Qy85QjZDNDI4MERDMUIxMUVCQTYzNTUwNEVDNEY5QUUwMi9iZDdHb1hFcEl3 N3VfbENLOFJsaS0wd1BiOEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuDRNBWpTC0ydARxWNXhPtQBngPrkUsObsGaKATFJr+cOBUVHYtDB8 CprtLxa1vkhlFvsBeJwKqzJv0Q3/iHxqV/yINUE/D/2RrKjh4d013k2H8bPgBb0o PpSAgSmUZzUoNN3v9Yxnjmwm2lpNPpDrQWlFQvOu7hb/kWAM/iPWTwddvTS7GMvj JT25Ce0maXbBObq2/LIFYLAT5qIx7+ZC7Wu6mKv4EQllDlIiYRe/XT3H9YfRJ7Cc qYoIO9tf+Bp2OAjg0U/oi1USA7S5rfOLPsVOdeLXWmuOpVjUgLCQLlICGmbm8Kks CtXdHXoOzj1b+2bV8thjY6zWkVDRV4B8 -----END CERTIFICATE-----Generated at Sun Jun 15 11:29:39 2025 by rpki-client