$ rpki-client -vvf rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.mft File: BPDYqTArIrYOMPRlG4KumZ_3TJs.mft (raw, json) Hash identifier: H+txYr2+FIkd1ZH5OX0XleW7FJZtdbUyzf6oMauH4VY= Subject key identifier: 71:FD:93:3B:C4:B6:EB:7F:70:E5:36:58:47:2D:CA:DD:E4:EA:9B:BA Authority key identifier: 04:F0:D8:A9:30:2B:22:B6:0E:30:F4:65:1B:82:AE:99:9F:F7:4C:9B Certificate issuer: /CN=A9171882/serialNumber=04F0D8A9302B22B60E30F4651B82AE999FF74C9B Certificate serial: E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BPDYqTArIrYOMPRlG4KumZ_3TJs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.mft Manifest number: DE Signing time: Wed 11 Jun 2025 04:52:13 +0000 Manifest this update: Wed 11 Jun 2025 04:52:13 +0000 Manifest next update: Wed 18 Jun 2025 04:52:13 +0000 Files and hashes: 1: BPDYqTArIrYOMPRlG4KumZ_3TJs.crl (hash: xx40ANwD2PSTll1n4UEbS95E9yoBNvsHwinaUKVKCrY=) 2: 08D1870EF0B411EE962EE784C4F9AE02.roa (hash: nrFzYe2K6I+fVS0WsJAv1h0mXVgQBFKENnTmsnUT3Jo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.crl rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BPDYqTArIrYOMPRlG4KumZ_3TJs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 04:52:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 224 (0xe0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171882, serialNumber=04F0D8A9302B22B60E30F4651B82AE999FF74C9B Validity Not Before: Jun 11 04:52:13 2025 GMT Not After : Jun 18 04:52:13 2025 GMT Subject: CN=68490b7d-ef70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:28:a7:69:07:be:d6:12:2e:33:a0:19:a5:53: 4d:b0:b3:72:7d:38:15:7e:44:ad:1c:7d:6b:e7:09: 97:d3:8d:75:f9:fa:0d:9c:48:ef:16:51:17:f3:9f: 71:c7:76:35:49:60:06:dc:6f:b8:b5:62:2f:09:59: 78:1e:a9:47:18:be:00:c3:42:db:5f:b1:ad:3f:66: c0:93:61:3c:9f:92:00:71:75:05:1b:0e:c9:65:80: 63:30:8e:44:b4:f5:9a:99:5d:f0:9b:ba:b6:f9:98: 5a:1c:44:81:7d:26:f7:37:14:52:a5:79:81:b2:8b: f8:ee:55:1f:8e:31:eb:fc:e5:77:47:71:27:79:9a: c2:32:b8:b6:fc:43:0c:9f:2a:42:88:fc:12:ff:27: f8:49:9d:41:a5:2e:a0:1c:2a:11:e6:e1:14:a6:3d: a5:3a:bd:d2:6d:cc:04:e1:00:29:52:ad:4c:ad:58: a8:13:a1:15:b0:04:04:f1:ff:88:46:ea:d9:31:12: 49:2c:34:53:36:f3:ef:c8:d9:d1:bb:ec:e6:35:2d: 85:49:9b:3c:e3:9b:3f:1f:b9:09:03:44:b4:78:85: 9c:8e:1e:79:fd:53:82:2d:05:48:2d:54:13:d7:62: 45:cb:40:ec:c9:49:3b:29:fa:7a:ce:e5:4d:4e:77: 87:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:FD:93:3B:C4:B6:EB:7F:70:E5:36:58:47:2D:CA:DD:E4:EA:9B:BA X509v3 Authority Key Identifier: keyid:04:F0:D8:A9:30:2B:22:B6:0E:30:F4:65:1B:82:AE:99:9F:F7:4C:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BPDYqTArIrYOMPRlG4KumZ_3TJs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:97:04:ba:b6:43:7d:61:2e:b9:c3:f1:f7:28:32:fe:ba:99: 79:28:47:31:0b:b4:1f:14:40:37:ce:77:8b:14:03:10:03:dd: 0d:14:bb:35:ab:b2:7b:38:62:1e:f3:09:22:56:f0:57:3e:c3: 3a:a4:07:ce:16:58:5d:ff:9f:2e:3b:c2:a8:9c:5c:6f:90:fa: 13:fb:0d:dd:a6:ca:44:df:c3:01:35:fa:59:9e:9e:67:dc:09: 3a:c7:c0:20:1f:29:bd:0a:72:d3:0a:bd:3d:5b:50:6c:4f:fd: 52:66:0a:70:88:e8:ea:a5:7c:65:3d:ff:fc:39:db:0a:71:dd: 5d:60:95:de:ff:a9:7b:ae:e3:aa:dc:34:19:ea:2c:d1:5a:e4: cb:93:9e:d5:77:72:60:09:47:5f:95:2e:25:60:fc:8a:4d:95: 3d:bd:e8:13:61:98:f2:69:80:00:22:d9:68:20:54:18:3f:60: 3f:3b:33:b7:4a:c8:86:df:1b:55:9e:8d:e5:fd:3b:2d:b1:fd: fd:d9:b9:75:e7:a0:2f:dc:63:2c:7c:83:a4:22:4e:b1:bd:40: 39:95:be:5a:3d:08:1f:97:b7:d6:d2:21:69:8d:4e:30:f2:fd: 5e:6b:06:f2:61:4e:10:79:d4:c5:6b:b8:6f:fe:e9:93:51:15: 86:76:5b:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE4ODIxMTAvBgNVBAUTKDA0RjBEOEE5MzAyQjIyQjYwRTMwRjQ2NTFCODJBRTk5 OUZGNzRDOUIwHhcNMjUwNjExMDQ1MjEzWhcNMjUwNjE4MDQ1MjEzWjAYMRYwFAYD VQQDEw02ODQ5MGI3ZC1lZjcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuiinaQe+1hIuM6AZpVNNsLNyfTgVfkStHH1r5wmX0411+foNnEjvFlEX859x x3Y1SWAG3G+4tWIvCVl4HqlHGL4Aw0LbX7GtP2bAk2E8n5IAcXUFGw7JZYBjMI5E tPWamV3wm7q2+ZhaHESBfSb3NxRSpXmBsov47lUfjjHr/OV3R3EneZrCMri2/EMM nypCiPwS/yf4SZ1BpS6gHCoR5uEUpj2lOr3SbcwE4QApUq1MrVioE6EVsAQE8f+I RurZMRJJLDRTNvPvyNnRu+zmNS2FSZs845s/H7kJA0S0eIWcjh55/VOCLQVILVQT 12JFy0DsyUk7Kfp6zuVNTneHNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHH9kzvE tut/cOU2WEctyt3k6pu6MB8GA1UdIwQYMBaAFATw2KkwKyK2DjD0ZRuCrpmf90yb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTg4Mi9CMjM4QTE4NEYw QjMxMUVFQTRDNzJGODRDNEY5QUUwMi9CUERZcVRBcklyWU9NUFJsRzRLdW1aXzNU SnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JQRFlxVEFySXJZT01QUmxHNEt1bVpfM1RKcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTg4Mi9CMjM4QTE4NEYwQjMxMUVFQTRDNzJGODRDNEY5QUUwMi9CUERZcVRBckly WU9NUFJsRzRLdW1aXzNUSnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFlwS6tkN9YS65w/H3KDL+upl5KEcxC7QfFEA3zneLFAMQA90NFLs1 q7J7OGIe8wkiVvBXPsM6pAfOFlhd/58uO8KonFxvkPoT+w3dpspE38MBNfpZnp5n 3Ak6x8AgHym9CnLTCr09W1BsT/1SZgpwiOjqpXxlPf/8OdsKcd1dYJXe/6l7ruOq 3DQZ6izRWuTLk57Vd3JgCUdflS4lYPyKTZU9vegTYZjyaYAAItloIFQYP2A/OzO3 SsiG3xtVno3l/Tstsf392bl156Av3GMsfIOkIk6xvUA5lb5aPQgfl7fW0iFpjU4w 8v1eawbyYU4QedTFa7hv/umTURWGdluA -----END CERTIFICATE-----Generated at Thu Jun 12 13:41:17 2025 by rpki-client