$ rpki-client -vvf rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft File: bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft (raw, json) Hash identifier: 5oLFIIBbv1RJN4zYWeTOE6dv+CyjXp8h0N7+N9hqovo= Subject key identifier: 51:6B:15:F2:A2:50:7A:AC:56:8D:B8:2D:7F:A5:1E:24:2B:B2:2F:E7 Authority key identifier: 6F:00:24:6A:85:88:84:8C:3A:17:27:52:F3:2A:E4:EA:30:C6:80:A4 Certificate issuer: /CN=A917983D/serialNumber=6F00246A8588848C3A172752F32AE4EA30C680A4 Certificate serial: 02BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwAkaoWIhIw6FydS8yrk6jDGgKQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft Manifest number: 02B6 Signing time: Wed 11 Jun 2025 01:20:17 +0000 Manifest this update: Wed 11 Jun 2025 01:20:17 +0000 Manifest next update: Wed 18 Jun 2025 01:20:17 +0000 Files and hashes: 1: bwAkaoWIhIw6FydS8yrk6jDGgKQ.crl (hash: Ur7Ag3S9nYW8gk9I+2mbTuVKVRLJixC650y1QUAwxRQ=) 2: 1F59A248F69E11EC947BBC5EC4F9AE02.roa (hash: IiOrImghzE2Vpf35rEo7vvLgM62zn5Ft6k44BhxCI6k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.crl rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwAkaoWIhIw6FydS8yrk6jDGgKQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 01:20:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 698 (0x2ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917983D, serialNumber=6F00246A8588848C3A172752F32AE4EA30C680A4 Validity Not Before: Jun 11 01:20:17 2025 GMT Not After : Jun 18 01:20:17 2025 GMT Subject: CN=6848d9d1-24f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:cc:f7:f3:6c:5e:5d:71:bb:72:3c:b4:a6:84: d6:5d:ae:e8:3d:f5:5e:a7:b1:a4:8f:3b:7a:ca:5f: fd:f5:73:5f:e2:9c:fd:de:c5:44:5b:61:b9:a6:59: 1a:78:cc:1b:82:c1:e9:91:f2:dc:4a:c6:48:8c:48: 24:7f:0d:31:24:41:77:28:46:72:f9:0e:97:36:c6: bd:18:6a:d1:9e:85:49:c3:f3:6b:10:83:9b:31:09: 09:ea:8b:88:2c:ca:26:e9:9d:b6:e9:a5:92:cb:e6: 19:40:26:b9:56:bb:03:fa:0f:37:96:86:f3:2d:12: 01:d5:91:38:55:c1:3f:f8:89:cd:62:87:e6:d3:b6: 24:76:b7:34:f7:7c:cb:49:c4:40:85:65:9a:d7:44: fa:40:99:78:2e:bf:67:c3:b0:9d:41:5d:69:fd:3d: 97:74:fd:01:38:5f:f0:4b:33:a4:f4:06:41:c3:48: 88:c1:94:d0:86:6e:dc:f0:c9:6c:0c:f0:93:4c:5d: 40:c6:4e:69:4e:47:a9:2d:37:e9:f8:f3:fe:d0:18: e6:45:0d:d2:11:4b:ff:83:39:a8:5c:e9:b4:85:81: 03:55:66:aa:e0:01:9f:af:12:d0:b0:af:80:e0:85: e6:bc:5c:9f:c9:fe:75:4e:81:d0:eb:1d:5f:7b:ea: 6a:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:6B:15:F2:A2:50:7A:AC:56:8D:B8:2D:7F:A5:1E:24:2B:B2:2F:E7 X509v3 Authority Key Identifier: keyid:6F:00:24:6A:85:88:84:8C:3A:17:27:52:F3:2A:E4:EA:30:C6:80:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwAkaoWIhIw6FydS8yrk6jDGgKQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:4f:6e:f7:1d:1b:3c:c8:a1:5e:f7:a7:8f:0a:c1:59:62:7e: b3:28:82:7a:c1:b1:8e:b1:40:49:be:23:2c:77:2b:99:4b:99: 60:55:92:83:8c:d9:e5:28:7f:21:84:b5:bc:64:a7:d3:a0:47: af:2b:1f:77:7a:f2:7c:e7:7d:a0:1f:b4:ce:76:26:74:e8:18: fe:2b:d5:d2:bd:b1:c5:db:a0:c1:00:6b:54:66:58:32:20:5e: 5d:e5:e6:60:b7:14:71:cb:7b:aa:e6:f7:0a:3b:41:ba:cc:e7: 50:22:cd:0e:a1:f1:6b:f9:53:7b:cf:84:b0:57:1f:0f:78:06: 7e:8f:48:e7:61:c9:f7:f6:f8:96:99:5f:51:c8:68:99:9d:b0: 09:0d:31:0c:38:31:a8:9a:b2:17:be:88:18:62:a4:ac:93:e2: eb:06:0f:be:f8:42:5f:0d:1f:db:9f:42:40:e7:25:03:c2:50: 25:11:89:3f:80:9d:09:9d:54:68:23:d6:a1:8d:06:a1:34:d5: 8b:95:d6:dc:1a:02:81:54:77:4e:2e:cd:87:47:17:30:99:99: 37:00:8c:15:55:9a:6d:69:e7:f0:18:5f:b6:60:11:d3:34:a2: ea:5d:7c:85:c8:72:11:7d:c4:5a:8f:90:f9:92:7f:46:19:cb: 04:6f:85:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk4M0QxMTAvBgNVBAUTKDZGMDAyNDZBODU4ODg0OEMzQTE3Mjc1MkYzMkFFNEVB MzBDNjgwQTQwHhcNMjUwNjExMDEyMDE3WhcNMjUwNjE4MDEyMDE3WjAYMRYwFAYD VQQDEw02ODQ4ZDlkMS0yNGY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvMz382xeXXG7cjy0poTWXa7oPfVep7Gkjzt6yl/99XNf4pz93sVEW2G5plka eMwbgsHpkfLcSsZIjEgkfw0xJEF3KEZy+Q6XNsa9GGrRnoVJw/NrEIObMQkJ6ouI LMom6Z226aWSy+YZQCa5VrsD+g83lobzLRIB1ZE4VcE/+InNYofm07Ykdrc093zL ScRAhWWa10T6QJl4Lr9nw7CdQV1p/T2XdP0BOF/wSzOk9AZBw0iIwZTQhm7c8Mls DPCTTF1Axk5pTkepLTfp+PP+0BjmRQ3SEUv/gzmoXOm0hYEDVWaq4AGfrxLQsK+A 4IXmvFyfyf51ToHQ6x1fe+pqGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFFrFfKi UHqsVo24LX+lHiQrsi/nMB8GA1UdIwQYMBaAFG8AJGqFiISMOhcnUvMq5OowxoCk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTgzRC80MTYyRjQ0Q0Y2 OUExMUVDQTc4NTNCNTlDNEY5QUUwMi9id0FrYW9XSWhJdzZGeWRTOHlyazZqREdn S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J3QWthb1dJaEl3NkZ5ZFM4eXJrNmpER2dLUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTgzRC80MTYyRjQ0Q0Y2OUExMUVDQTc4NTNCNTlDNEY5QUUwMi9id0FrYW9XSWhJ dzZGeWRTOHlyazZqREdnS1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGT273HRs8yKFe96ePCsFZYn6zKIJ6wbGOsUBJviMsdyuZS5lgVZKD jNnlKH8hhLW8ZKfToEevKx93evJ8532gH7TOdiZ06Bj+K9XSvbHF26DBAGtUZlgy IF5d5eZgtxRxy3uq5vcKO0G6zOdQIs0OofFr+VN7z4SwVx8PeAZ+j0jnYcn39viW mV9RyGiZnbAJDTEMODGomrIXvogYYqSsk+LrBg+++EJfDR/bn0JA5yUDwlAlEYk/ gJ0JnVRoI9ahjQahNNWLldbcGgKBVHdOLs2HRxcwmZk3AIwVVZptaefwGF+2YBHT NKLqXXyFyHIRfcRaj5D5kn9GGcsEb4U1 -----END CERTIFICATE-----Generated at Thu Jun 12 10:45:04 2025 by rpki-client