$ rpki-client -vvf rpki.apnic.net/member_repository/A916B232/94D4C7403F0D11EBAF1FCE22C4F9AE02/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.mft File: bhhL4UYS1aK1PEmHaERQhQ2wLHQ.mft (raw, json) Hash identifier: XxgEQSZM2F3M6a7dTaGCSEjBBGO+EZgn3gAFDebGFSw= Subject key identifier: EE:F8:1C:30:70:B8:39:34:BE:52:30:D5:14:B9:09:64:8E:68:F2:C9 Authority key identifier: 6E:18:4B:E1:46:12:D5:A2:B5:3C:49:87:68:44:50:85:0D:B0:2C:74 Certificate issuer: /CN=A916B232/serialNumber=6E184BE14612D5A2B53C4987684450850DB02C74 Certificate serial: 0717 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B232/94D4C7403F0D11EBAF1FCE22C4F9AE02/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.mft Manifest number: 070F Signing time: Fri 30 May 2025 22:06:39 +0000 Manifest this update: Fri 30 May 2025 22:06:38 +0000 Manifest next update: Fri 06 Jun 2025 22:06:38 +0000 Files and hashes: 1: bhhL4UYS1aK1PEmHaERQhQ2wLHQ.crl (hash: 9ikzEeQZ43ZbFv77FzKOdXg29lNfldKm5XaNWngw74c=) 2: A2C94D9C3F0F11EB80256B25C4F9AE02.roa (hash: VsARmmeViDsi1FVlV4Qtd1FMCrKISqOnhPnZTXsK7F8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B232/94D4C7403F0D11EBAF1FCE22C4F9AE02/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.crl rsync://rpki.apnic.net/member_repository/A916B232/94D4C7403F0D11EBAF1FCE22C4F9AE02/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:06:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1815 (0x717) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B232, serialNumber=6E184BE14612D5A2B53C4987684450850DB02C74 Validity Not Before: May 30 22:06:38 2025 GMT Not After : Jun 6 22:06:38 2025 GMT Subject: CN=683a2bee-b087 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:66:f6:7b:ff:28:7c:b6:1c:50:18:61:32:b6: ad:23:02:87:16:3c:e1:57:df:52:99:f3:4e:c9:d2: bf:e4:b1:ad:fd:ce:ad:2a:d0:d2:25:43:01:f5:9d: 49:48:ca:8a:9c:3f:72:c4:a5:0d:14:66:8d:94:de: 36:7f:52:4e:09:68:07:f2:72:6e:65:4a:2a:5e:f2: 69:09:9f:33:bf:7b:d1:96:2f:62:a4:e6:67:80:29: c0:c3:59:32:c4:f0:9c:e3:54:7b:6f:2b:53:a0:40: ad:b5:ad:21:bd:64:24:7b:c5:69:13:8a:3a:37:66: ec:a2:d8:e4:4e:13:a8:72:f3:1d:9b:88:94:24:2a: 3c:f9:f5:48:e9:c0:cb:f9:f1:97:16:7d:0e:e1:2a: 24:49:60:c6:8f:05:98:e7:5e:15:f6:b6:96:8f:b2: 17:c3:eb:f4:f0:7b:7f:e3:b1:b8:53:ad:4e:8a:48: 6a:c7:f9:96:01:c9:8c:34:8b:b4:5d:35:cf:75:1e: 78:f8:5a:0a:b0:df:e5:d7:9d:c7:75:2f:35:81:54: 9f:3d:13:63:2e:cc:69:8a:b0:c8:50:03:e6:f8:b5: 88:f2:91:10:c4:1e:d9:21:af:d6:f0:81:17:a0:37: 54:ea:fa:2e:71:e6:5e:68:fc:54:50:b2:6d:51:ba: e1:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:F8:1C:30:70:B8:39:34:BE:52:30:D5:14:B9:09:64:8E:68:F2:C9 X509v3 Authority Key Identifier: keyid:6E:18:4B:E1:46:12:D5:A2:B5:3C:49:87:68:44:50:85:0D:B0:2C:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B232/94D4C7403F0D11EBAF1FCE22C4F9AE02/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B232/94D4C7403F0D11EBAF1FCE22C4F9AE02/bhhL4UYS1aK1PEmHaERQhQ2wLHQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:64:2e:58:83:ef:ab:18:bf:99:85:70:45:13:42:5b:38:90: b2:88:cd:0f:d3:87:c1:66:38:b7:a0:bf:cf:07:62:e6:db:eb: a7:52:e9:6e:11:ff:6c:15:ee:8a:60:a5:cf:af:33:04:41:3f: c6:c7:b5:5c:ba:81:d6:81:4d:44:22:96:92:7c:f6:cd:cd:f8: bf:6f:a3:46:49:82:7f:86:3e:d1:c8:6e:85:9a:b9:5d:70:41: 93:6e:3e:bc:19:50:d8:07:b8:8c:ce:8e:19:6f:b2:fd:0c:b7: e0:5f:e3:68:82:86:9a:6f:04:7a:48:5b:4c:9f:d1:c6:51:d0: 3a:f5:f8:84:66:1d:5e:19:77:8e:7c:eb:2f:3b:e6:4f:2c:71: 0c:de:63:87:71:a9:c0:30:e8:1c:9d:6c:a3:3c:b0:92:35:aa: cf:2b:9d:a9:1c:c9:aa:c6:fe:b0:aa:1d:04:eb:55:fa:5a:0d: 12:3d:d0:fc:56:04:e2:74:30:90:28:00:da:32:c1:1a:7b:83: e3:65:24:49:c0:5f:ab:1d:1a:27:2a:bc:c7:bd:cc:4b:a3:d4: b8:71:1a:d0:0c:f9:be:ba:dd:78:b7:1a:f3:33:c7:01:2b:c0: 74:cb:d2:f5:6a:f5:be:c4:6f:de:e6:7f:9a:58:7a:aa:d6:3a: 63:aa:78:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBxcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIyMzIxMTAvBgNVBAUTKDZFMTg0QkUxNDYxMkQ1QTJCNTNDNDk4NzY4NDQ1MDg1 MERCMDJDNzQwHhcNMjUwNTMwMjIwNjM4WhcNMjUwNjA2MjIwNjM4WjAYMRYwFAYD VQQDEw02ODNhMmJlZS1iMDg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxGb2e/8ofLYcUBhhMratIwKHFjzhV99SmfNOydK/5LGt/c6tKtDSJUMB9Z1J SMqKnD9yxKUNFGaNlN42f1JOCWgH8nJuZUoqXvJpCZ8zv3vRli9ipOZngCnAw1ky xPCc41R7bytToECtta0hvWQke8VpE4o6N2bsotjkThOocvMdm4iUJCo8+fVI6cDL +fGXFn0O4SokSWDGjwWY514V9raWj7IXw+v08Ht/47G4U61Oikhqx/mWAcmMNIu0 XTXPdR54+FoKsN/l153HdS81gVSfPRNjLsxpirDIUAPm+LWI8pEQxB7ZIa/W8IEX oDdU6vouceZeaPxUULJtUbrhIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO74HDBw uDk0vlIw1RS5CWSOaPLJMB8GA1UdIwQYMBaAFG4YS+FGEtWitTxJh2hEUIUNsCx0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjIzMi85NEQ0Qzc0MDNG MEQxMUVCQUYxRkNFMjJDNEY5QUUwMi9iaGhMNFVZUzFhSzFQRW1IYUVSUWhRMndM SFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JoaEw0VVlTMWFLMVBFbUhhRVJRaFEyd0xIUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjIzMi85NEQ0Qzc0MDNGMEQxMUVCQUYxRkNFMjJDNEY5QUUwMi9iaGhMNFVZUzFh SzFQRW1IYUVSUWhRMndMSFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqZC5Yg++rGL+ZhXBFE0JbOJCyiM0P04fBZji3oL/PB2Lm2+unUulu Ef9sFe6KYKXPrzMEQT/Gx7VcuoHWgU1EIpaSfPbNzfi/b6NGSYJ/hj7RyG6Fmrld cEGTbj68GVDYB7iMzo4Zb7L9DLfgX+NogoaabwR6SFtMn9HGUdA69fiEZh1eGXeO fOsvO+ZPLHEM3mOHcanAMOgcnWyjPLCSNarPK52pHMmqxv6wqh0E61X6Wg0SPdD8 VgTidDCQKADaMsEae4PjZSRJwF+rHRonKrzHvcxLo9S4cRrQDPm+ut14txrzM8cB K8B0y9L1avW+xG/e5n+aWHqq1jpjqng7 -----END CERTIFICATE-----Generated at Sat May 31 17:08:57 2025 by rpki-client