$ rpki-client -vvf rpki.apnic.net/member_repository/A916B6AA/A2988F3840AE11EE9850A263C4F9AE02/9bzqkIXorbqorCGgTlPb_sMgvOI.mft File: 9bzqkIXorbqorCGgTlPb_sMgvOI.mft (raw, json) Hash identifier: vccxaMMoCLxpS7apIyOs0AAFxhqvAHGXyEqKVLPQ3MA= Subject key identifier: 06:EE:06:06:F6:A4:6D:F3:CC:FF:67:6E:07:B2:44:A1:E8:76:7C:81 Authority key identifier: F5:BC:EA:90:85:E8:AD:BA:A8:AC:21:A0:4E:53:DB:FE:C3:20:BC:E2 Certificate issuer: /CN=A916B6AA/serialNumber=F5BCEA9085E8ADBAA8AC21A04E53DBFEC320BCE2 Certificate serial: 0154 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9bzqkIXorbqorCGgTlPb_sMgvOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B6AA/A2988F3840AE11EE9850A263C4F9AE02/9bzqkIXorbqorCGgTlPb_sMgvOI.mft Manifest number: 0154 Signing time: Mon 02 Jun 2025 15:57:42 +0000 Manifest this update: Mon 02 Jun 2025 15:57:42 +0000 Manifest next update: Mon 09 Jun 2025 15:57:42 +0000 Files and hashes: 1: 9bzqkIXorbqorCGgTlPb_sMgvOI.crl (hash: jDNt/A2feY31P73WWzbyWf78ifKvBiTQWVF+y8Udi8Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B6AA/A2988F3840AE11EE9850A263C4F9AE02/9bzqkIXorbqorCGgTlPb_sMgvOI.crl rsync://rpki.apnic.net/member_repository/A916B6AA/A2988F3840AE11EE9850A263C4F9AE02/9bzqkIXorbqorCGgTlPb_sMgvOI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9bzqkIXorbqorCGgTlPb_sMgvOI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 05:53:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 340 (0x154) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B6AA, serialNumber=F5BCEA9085E8ADBAA8AC21A04E53DBFEC320BCE2 Validity Not Before: Jun 2 15:57:42 2025 GMT Not After : Jun 9 15:57:42 2025 GMT Subject: CN=683dc9f6-ddef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:cc:ed:78:22:d9:dc:a2:7d:f2:b1:54:bb:fa: 35:a9:c0:be:7a:1f:6a:48:7e:7d:8f:a7:4d:b2:46: 0a:7c:60:ae:98:44:f8:8c:a3:db:de:45:2d:77:02: 59:03:94:86:33:69:07:c5:89:fb:01:b7:e8:14:36: b5:3e:0e:07:4d:a5:f9:b3:17:6e:b0:c3:ef:d9:ec: 57:41:05:78:c1:3c:d5:40:b4:a7:75:88:a6:62:d8: 15:68:f3:6c:3c:67:fe:bb:b6:dc:ec:bd:b5:88:8a: c0:e7:b7:48:4d:6a:2e:e2:bf:ef:ec:b0:c5:93:50: e7:95:18:d6:19:9a:90:af:4b:69:59:6d:de:b9:9d: 21:af:ac:1a:5e:f0:48:3b:58:97:0e:24:e2:1d:ca: 1e:00:cc:c2:97:b6:69:80:b9:46:e8:5b:41:14:03: de:9a:58:3c:de:ca:41:9d:89:9e:db:4d:64:60:b8: 2c:8f:d8:f5:79:43:c7:8d:c7:66:1a:9a:86:81:8b: 67:88:3f:b5:1d:54:33:b4:40:e0:6c:91:25:90:e3: 0b:93:77:c9:8e:ff:fa:2b:51:d4:5d:42:f3:51:3c: b2:98:00:d0:31:a0:53:25:8f:90:fb:58:1b:15:c5: b6:4f:fe:07:df:2f:0b:09:de:4e:75:7c:f0:ea:2e: 29:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:EE:06:06:F6:A4:6D:F3:CC:FF:67:6E:07:B2:44:A1:E8:76:7C:81 X509v3 Authority Key Identifier: keyid:F5:BC:EA:90:85:E8:AD:BA:A8:AC:21:A0:4E:53:DB:FE:C3:20:BC:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B6AA/A2988F3840AE11EE9850A263C4F9AE02/9bzqkIXorbqorCGgTlPb_sMgvOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9bzqkIXorbqorCGgTlPb_sMgvOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B6AA/A2988F3840AE11EE9850A263C4F9AE02/9bzqkIXorbqorCGgTlPb_sMgvOI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:30:1a:3a:2e:46:88:84:fa:3f:ef:7a:c4:aa:0c:20:76:dd: 75:89:42:9f:b2:7d:ee:74:f4:78:d8:06:cf:4b:32:0a:cd:cf: 7f:9b:9f:04:65:a8:17:06:5a:9b:30:39:c3:18:e0:04:6a:d6: c5:f3:71:f6:4b:3b:0f:3b:59:a0:b4:e5:71:eb:2d:cc:f0:ab: 4b:ae:3f:e9:56:0c:f1:fe:03:c2:83:2d:c8:cd:06:01:e2:7d: 80:b6:f1:5b:6c:04:39:fc:3e:ab:80:7b:8c:92:a4:50:26:ea: 89:df:09:48:d1:df:c7:8a:d4:e2:64:d6:eb:d8:81:cc:dc:f3: 2f:79:49:4c:dc:a3:88:9d:7d:be:8f:0a:f8:65:c0:a2:3c:82: e5:8b:c7:a1:33:3a:07:4f:50:25:0b:64:25:f1:4b:c5:b6:5e: c3:04:bb:9b:9c:a6:73:99:ba:ea:e5:1e:1d:9c:d5:e7:09:14: fb:c4:a6:e5:fb:e8:d5:a1:bf:a4:fc:ec:f0:cb:e0:f7:2d:4f: 19:67:8f:bb:2a:af:15:18:1a:53:56:94:a5:9c:c0:90:02:73: 52:e5:90:f1:ac:5e:84:02:83:cd:a1:1e:b0:2b:40:0b:06:ae: b7:52:4a:52:b1:16:81:92:44:9b:cd:f3:08:a1:a8:d2:9d:eb: 56:57:96:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI2QUExMTAvBgNVBAUTKEY1QkNFQTkwODVFOEFEQkFBOEFDMjFBMDRFNTNEQkZF QzMyMEJDRTIwHhcNMjUwNjAyMTU1NzQyWhcNMjUwNjA5MTU1NzQyWjAYMRYwFAYD VQQDEw02ODNkYzlmNi1kZGVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvszteCLZ3KJ98rFUu/o1qcC+eh9qSH59j6dNskYKfGCumET4jKPb3kUtdwJZ A5SGM2kHxYn7AbfoFDa1Pg4HTaX5sxdusMPv2exXQQV4wTzVQLSndYimYtgVaPNs PGf+u7bc7L21iIrA57dITWou4r/v7LDFk1DnlRjWGZqQr0tpWW3euZ0hr6waXvBI O1iXDiTiHcoeAMzCl7ZpgLlG6FtBFAPemlg83spBnYme201kYLgsj9j1eUPHjcdm GpqGgYtniD+1HVQztEDgbJElkOMLk3fJjv/6K1HUXULzUTyymADQMaBTJY+Q+1gb FcW2T/4H3y8LCd5OdXzw6i4pYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAbuBgb2 pG3zzP9nbgeyRKHodnyBMB8GA1UdIwQYMBaAFPW86pCF6K26qKwhoE5T2/7DILzi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjZBQS9BMjk4OEYzODQw QUUxMUVFOTg1MEEyNjNDNEY5QUUwMi85Ynpxa0lYb3JicW9yQ0dnVGxQYl9zTWd2 T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzlienFrSVhvcmJxb3JDR2dUbFBiX3NNZ3ZPSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjZBQS9BMjk4OEYzODQwQUUxMUVFOTg1MEEyNjNDNEY5QUUwMi85Ynpxa0lYb3Ji cW9yQ0dnVGxQYl9zTWd2T0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmMBo6LkaIhPo/73rEqgwgdt11iUKfsn3udPR42AbPSzIKzc9/m58E ZagXBlqbMDnDGOAEatbF83H2SzsPO1mgtOVx6y3M8KtLrj/pVgzx/gPCgy3IzQYB 4n2AtvFbbAQ5/D6rgHuMkqRQJuqJ3wlI0d/HitTiZNbr2IHM3PMveUlM3KOInX2+ jwr4ZcCiPILli8ehMzoHT1AlC2Ql8UvFtl7DBLubnKZzmbrq5R4dnNXnCRT7xKbl ++jVob+k/Ozwy+D3LU8ZZ4+7Kq8VGBpTVpSlnMCQAnNS5ZDxrF6EAoPNoR6wK0AL Bq63UkpSsRaBkkSbzfMIoajSnetWV5b3 -----END CERTIFICATE-----Generated at Mon Jun 2 22:05:58 2025 by rpki-client