$ rpki-client -vvf rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.mft File: bBH4O5qMvdIVMt3w6mHek4jRPGs.mft (raw, json) Hash identifier: obnLrbi4Ia3iDZer9DbfkQSsrqUYdhUy7C0jUJbK3ck= Subject key identifier: 9B:82:9C:FF:B4:32:61:8A:E8:36:09:41:CF:56:27:CB:72:E7:47:97 Authority key identifier: 6C:11:F8:3B:9A:8C:BD:D2:15:32:DD:F0:EA:61:DE:93:88:D1:3C:6B Certificate issuer: /CN=A917D958/serialNumber=6C11F83B9A8CBDD21532DDF0EA61DE9388D13C6B Certificate serial: 5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBH4O5qMvdIVMt3w6mHek4jRPGs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.mft Manifest number: 5B Signing time: Sat 31 May 2025 06:43:47 +0000 Manifest this update: Sat 31 May 2025 06:43:46 +0000 Manifest next update: Sat 07 Jun 2025 06:43:46 +0000 Files and hashes: 1: bBH4O5qMvdIVMt3w6mHek4jRPGs.crl (hash: KB1/otzAAuegkV+7i43VsYt7cQhFZtGTdfnO2mGfOWQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.crl rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBH4O5qMvdIVMt3w6mHek4jRPGs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:43:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 91 (0x5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D958, serialNumber=6C11F83B9A8CBDD21532DDF0EA61DE9388D13C6B Validity Not Before: May 31 06:43:46 2025 GMT Not After : Jun 7 06:43:46 2025 GMT Subject: CN=683aa523-fafe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:3a:05:25:26:4e:e7:21:6b:60:af:c5:f3:cd: d1:0a:9d:46:af:62:c8:78:5c:3a:7f:3f:08:ce:dd: 5b:ea:3a:3a:62:4e:1d:31:65:73:54:10:21:2a:ac: ea:1a:c4:53:db:5f:c0:07:d5:ce:bc:28:69:0d:29: d8:90:60:51:53:0b:46:51:5f:c4:95:bd:6d:80:2c: 82:56:10:a4:58:6c:88:be:e9:e6:01:d2:48:6e:d6: c7:e5:bb:97:6f:3b:67:4d:e8:c2:b9:c1:4b:75:6a: 20:57:6c:9f:80:c9:d7:2b:a0:01:23:dd:9a:96:ce: 35:89:79:29:0b:40:c9:2b:20:07:e4:44:73:40:27: 62:69:c6:89:5d:3c:c7:d4:91:56:72:bb:ef:08:a9: f4:f8:dc:47:0f:0f:38:0d:09:38:97:32:00:ef:e4: d1:5a:e6:c2:1d:87:74:f1:37:0b:98:07:b3:91:2c: f1:6f:4d:eb:4c:74:1e:15:b1:cd:00:5d:f3:94:dd: a4:3b:7e:48:8c:c1:c8:37:39:ba:7b:38:97:20:3f: 5b:42:8c:4e:92:a0:04:d2:10:a4:82:7c:00:29:f2: f7:01:3f:30:4a:43:43:29:6a:07:83:83:92:4a:c7: 4b:0a:56:ba:fb:9c:be:7c:8b:0a:d6:b7:26:8d:1c: e5:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:82:9C:FF:B4:32:61:8A:E8:36:09:41:CF:56:27:CB:72:E7:47:97 X509v3 Authority Key Identifier: keyid:6C:11:F8:3B:9A:8C:BD:D2:15:32:DD:F0:EA:61:DE:93:88:D1:3C:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBH4O5qMvdIVMt3w6mHek4jRPGs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:7d:2d:bc:7e:3d:01:08:b5:a3:c4:2a:9c:c4:87:5a:63:fe: 99:d2:25:cb:79:30:f1:21:01:24:fe:25:ca:72:56:3c:a6:ca: dc:5f:0b:30:c8:cd:a8:43:e9:c0:51:a5:6f:cb:21:9c:3a:a5: 45:05:93:01:01:8f:a9:56:73:b1:7b:4a:26:ba:4f:a6:3a:dc: bf:15:e6:d0:ed:22:0e:a0:ca:10:29:55:11:e3:39:c8:ca:83: 6d:86:4f:ac:95:f6:85:94:df:49:f9:d3:c3:09:97:cc:42:f4: 6a:51:f0:d3:6c:a3:7a:e4:b7:90:6a:5a:5e:9f:5d:8f:06:3d: 17:a0:95:25:f7:45:e7:89:78:77:12:e0:1c:32:ee:53:cc:d4: 80:de:f2:c3:76:56:69:04:22:06:c5:11:32:67:06:eb:74:3d: 79:fe:d5:de:88:a8:c5:3a:43:7c:74:d0:74:84:6b:b6:75:aa: 3b:60:a9:9b:dd:e0:17:c7:46:d1:69:68:30:b2:dc:27:e8:65: a4:c1:e5:0e:bd:06:8a:13:96:68:9f:64:04:23:a5:e5:72:28: 5d:63:77:de:df:1a:a8:a2:35:52:fc:ec:c3:f5:23:8e:a7:0c: ae:13:23:8e:e6:03:02:29:b8:5a:ab:84:92:26:a9:14:6d:19: 8c:b5:0f:a6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RDk1ODExMC8GA1UEBRMoNkMxMUY4M0I5QThDQkREMjE1MzJEREYwRUE2MURFOTM4 OEQxM0M2QjAeFw0yNTA1MzEwNjQzNDZaFw0yNTA2MDcwNjQzNDZaMBgxFjAUBgNV BAMTDTY4M2FhNTIzLWZhZmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDtOgUlJk7nIWtgr8XzzdEKnUavYsh4XDp/PwjO3VvqOjpiTh0xZXNUECEqrOoa xFPbX8AH1c68KGkNKdiQYFFTC0ZRX8SVvW2ALIJWEKRYbIi+6eYB0khu1sflu5dv O2dN6MK5wUt1aiBXbJ+AydcroAEj3ZqWzjWJeSkLQMkrIAfkRHNAJ2JpxoldPMfU kVZyu+8IqfT43EcPDzgNCTiXMgDv5NFa5sIdh3TxNwuYB7ORLPFvTetMdB4Vsc0A XfOU3aQ7fkiMwcg3Obp7OJcgP1tCjE6SoATSEKSCfAAp8vcBPzBKQ0MpageDg5JK x0sKVrr7nL58iwrWtyaNHOWnAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUm4Kc/7Qy YYroNglBz1Yny3LnR5cwHwYDVR0jBBgwFoAUbBH4O5qMvdIVMt3w6mHek4jRPGsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdEOTU4LzZGNjI4Mzg4QjM5 QjExRUY4MEY2NDM1RUM0RjlBRTAyL2JCSDRPNXFNdmRJVk10M3c2bUhlazRqUlBH cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYkJINE81cU12ZElWTXQzdzZtSGVrNGpSUEdzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdE OTU4LzZGNjI4Mzg4QjM5QjExRUY4MEY2NDM1RUM0RjlBRTAyL2JCSDRPNXFNdmRJ Vk10M3c2bUhlazRqUlBHcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGx9Lbx+PQEItaPEKpzEh1pj/pnSJct5MPEhAST+JcpyVjymytxfCzDI zahD6cBRpW/LIZw6pUUFkwEBj6lWc7F7Sia6T6Y63L8V5tDtIg6gyhApVRHjOcjK g22GT6yV9oWU30n508MJl8xC9GpR8NNso3rkt5BqWl6fXY8GPReglSX3ReeJeHcS 4Bwy7lPM1IDe8sN2VmkEIgbFETJnBut0PXn+1d6IqMU6Q3x00HSEa7Z1qjtgqZvd 4BfHRtFpaDCy3CfoZaTB5Q69BooTlmifZAQjpeVyKF1jd97fGqiiNVL87MP1I46n DK4TI47mAwIpuFqrhJImqRRtGYy1D6Y= -----END CERTIFICATE-----Generated at Sat May 31 17:11:25 2025 by rpki-client