$ rpki-client -vvf rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.mft File: BL27YPamYNHS0BJzSQ_PCcw1m3M.mft (raw, json) Hash identifier: Fh/z+qPFAz0gDqiUbyX0RRTPNCyAABeNiuJu5fXplHQ= Subject key identifier: 2B:89:4D:7D:3C:26:39:77:46:2E:AD:29:2E:E2:05:D2:B6:F9:16:5B Authority key identifier: 04:BD:BB:60:F6:A6:60:D1:D2:D0:12:73:49:0F:CF:09:CC:35:9B:73 Certificate issuer: /CN=A917C59F/serialNumber=04BDBB60F6A660D1D2D01273490FCF09CC359B73 Certificate serial: 0886 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BL27YPamYNHS0BJzSQ_PCcw1m3M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.mft Manifest number: 087E Signing time: Fri 30 May 2025 20:50:43 +0000 Manifest this update: Fri 30 May 2025 20:50:42 +0000 Manifest next update: Fri 06 Jun 2025 20:50:42 +0000 Files and hashes: 1: BL27YPamYNHS0BJzSQ_PCcw1m3M.crl (hash: 4W9PImClSE5SjxE7f0euPZn+gRHO5Sj15DXb4zeA7i0=) 2: 12482BA205A211ED81E44F6DC4F9AE02.roa (hash: fYbzp1Oz4KIx83cDiZ+b+olfYLWh9zVxHoKcBuS5W0E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.crl rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BL27YPamYNHS0BJzSQ_PCcw1m3M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:50:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2182 (0x886) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C59F, serialNumber=04BDBB60F6A660D1D2D01273490FCF09CC359B73 Validity Not Before: May 30 20:50:42 2025 GMT Not After : Jun 6 20:50:42 2025 GMT Subject: CN=683a1a23-3770 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:8c:66:8c:71:14:d7:3f:24:8a:3f:c3:d4:f3: 4f:68:f6:13:dd:db:19:1d:7f:73:9f:ba:cd:d3:bd: 11:15:f2:23:3d:82:f9:1a:52:db:01:8b:6f:6d:f5: 76:dd:9a:ad:b1:de:3d:a6:56:d4:0c:77:18:60:68: 0e:43:c4:40:dd:03:23:fc:47:5e:db:78:bb:3d:69: 39:20:69:9c:64:34:ad:e9:70:d1:5b:79:a2:05:dd: 78:6e:de:c6:05:12:ba:fb:62:47:cd:62:7f:35:2d: b0:69:51:bb:c8:e0:16:64:66:5b:11:56:fa:cb:8f: fc:2d:71:41:a2:6b:d0:2a:7c:20:05:4a:f2:e2:48: bd:a4:d7:7a:5a:14:48:be:f1:8c:d5:2b:f0:37:6d: 70:0b:cd:11:2c:f5:ab:96:36:1d:77:45:ab:c6:79: d8:4d:6f:b9:72:09:37:b5:16:a8:5a:92:df:6c:46: f9:89:ae:de:6d:eb:80:fe:ff:5b:27:91:6c:a5:9a: 81:f5:b4:e5:d2:0b:8f:4f:5d:4c:a6:62:15:ef:8e: 4d:f6:9a:71:74:73:a3:6f:04:91:b5:df:af:4c:d3: ce:0f:e8:b8:43:8f:9a:49:0a:c5:e5:f1:2b:da:28: b5:75:e8:66:91:60:da:bd:da:7e:7d:98:22:6f:8a: 3a:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:89:4D:7D:3C:26:39:77:46:2E:AD:29:2E:E2:05:D2:B6:F9:16:5B X509v3 Authority Key Identifier: keyid:04:BD:BB:60:F6:A6:60:D1:D2:D0:12:73:49:0F:CF:09:CC:35:9B:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BL27YPamYNHS0BJzSQ_PCcw1m3M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d5:4a:5d:ce:e5:95:6b:05:71:f1:db:a7:ff:16:5c:9c:8d:33: ef:2d:65:e5:28:b8:73:18:ad:f9:9e:54:ba:e9:40:b3:bd:e4: 66:cd:51:60:b7:a9:17:dd:b8:eb:97:59:c3:d7:9c:a8:3e:5e: 31:0d:63:10:53:60:07:c8:02:3b:52:81:34:4c:f5:0e:b9:c3: b3:47:a4:82:2d:92:29:38:2b:4f:07:d7:86:d4:4f:76:4f:21: 30:9c:cc:38:ce:49:f5:84:28:f5:ac:8e:d8:8c:c6:53:d7:fa: b3:d3:ac:34:f6:6f:89:f6:a8:d6:20:35:b1:d0:b2:12:9e:cb: a7:a5:37:f7:d6:48:6a:5e:96:3a:a4:26:ee:23:61:14:da:a0: 6c:85:52:fc:ef:f6:88:68:eb:fd:28:b1:3b:9d:4c:b5:ae:ae: e4:cb:1f:5c:81:bc:78:e0:d7:28:a1:7b:7a:90:6f:d7:85:5c: c1:57:3f:ac:cc:4f:2d:72:8c:79:62:32:e4:fc:e5:74:d1:c7: 82:3e:f3:08:1f:60:45:c6:0e:c0:b2:05:d7:d8:c9:99:c5:f5: 7c:65:e1:d8:ce:69:3b:30:3b:cd:e9:79:76:63:46:67:bf:6b: be:e8:f2:1e:a2:e4:f6:e9:08:c9:91:3e:b9:9f:9f:5f:16:d2: 81:98:c0:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M1OUYxMTAvBgNVBAUTKDA0QkRCQjYwRjZBNjYwRDFEMkQwMTI3MzQ5MEZDRjA5 Q0MzNTlCNzMwHhcNMjUwNTMwMjA1MDQyWhcNMjUwNjA2MjA1MDQyWjAYMRYwFAYD VQQDEw02ODNhMWEyMy0zNzcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA34xmjHEU1z8kij/D1PNPaPYT3dsZHX9zn7rN070RFfIjPYL5GlLbAYtvbfV2 3Zqtsd49plbUDHcYYGgOQ8RA3QMj/Ede23i7PWk5IGmcZDSt6XDRW3miBd14bt7G BRK6+2JHzWJ/NS2waVG7yOAWZGZbEVb6y4/8LXFBomvQKnwgBUry4ki9pNd6WhRI vvGM1SvwN21wC80RLPWrljYdd0WrxnnYTW+5cgk3tRaoWpLfbEb5ia7ebeuA/v9b J5FspZqB9bTl0guPT11MpmIV745N9ppxdHOjbwSRtd+vTNPOD+i4Q4+aSQrF5fEr 2ii1dehmkWDavdp+fZgib4o62QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCuJTX08 Jjl3Ri6tKS7iBdK2+RZbMB8GA1UdIwQYMBaAFAS9u2D2pmDR0tASc0kPzwnMNZtz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzU5Ri80MjVFODkwMkMx NDQxMUVBOTFGMDNBNkZDNEY5QUUwMi9CTDI3WVBhbVlOSFMwQkp6U1FfUENjdzFt M00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JMMjdZUGFtWU5IUzBCSnpTUV9QQ2N3MW0zTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzU5Ri80MjVFODkwMkMxNDQxMUVBOTFGMDNBNkZDNEY5QUUwMi9CTDI3WVBhbVlO SFMwQkp6U1FfUENjdzFtM00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDVSl3O5ZVrBXHx26f/FlycjTPvLWXlKLhzGK35nlS66UCzveRmzVFg t6kX3bjrl1nD15yoPl4xDWMQU2AHyAI7UoE0TPUOucOzR6SCLZIpOCtPB9eG1E92 TyEwnMw4zkn1hCj1rI7YjMZT1/qz06w09m+J9qjWIDWx0LISnsunpTf31khqXpY6 pCbuI2EU2qBshVL87/aIaOv9KLE7nUy1rq7kyx9cgbx44NcooXt6kG/XhVzBVz+s zE8tcox5YjLk/OV00ceCPvMIH2BFxg7AsgXX2MmZxfV8ZeHYzmk7MDvN6Xl2Y0Zn v2u+6PIeouT26QjJkT65n59fFtKBmMCl -----END CERTIFICATE-----Generated at Sat May 31 15:45:19 2025 by rpki-client