$ rpki-client -vvf rpki.apnic.net/member_repository/A918E319/868DD6568C2611E7BC06C44EC4F9AE02/bP1Wp36tnhWbyxjrbehic1CRtUo.mft File: bP1Wp36tnhWbyxjrbehic1CRtUo.mft (raw, json) Hash identifier: GvXGBujS5wrRO6FplLpUHrreUNblggIFlBAqpEM8NYg= Subject key identifier: 2B:86:1D:61:21:E1:4B:12:C1:1A:33:9F:59:FB:89:5C:BC:0B:49:8B Authority key identifier: 6C:FD:56:A7:7E:AD:9E:15:9B:CB:18:EB:6D:E8:62:73:50:91:B5:4A Certificate issuer: /CN=A918E319/serialNumber=6CFD56A77EAD9E159BCB18EB6DE862735091B54A Certificate serial: 1961 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bP1Wp36tnhWbyxjrbehic1CRtUo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E319/868DD6568C2611E7BC06C44EC4F9AE02/bP1Wp36tnhWbyxjrbehic1CRtUo.mft Manifest number: 1915 Signing time: Fri 30 May 2025 16:39:08 +0000 Manifest this update: Fri 30 May 2025 16:39:08 +0000 Manifest next update: Fri 06 Jun 2025 16:39:08 +0000 Files and hashes: 1: bP1Wp36tnhWbyxjrbehic1CRtUo.crl (hash: 5feLPN+1fod8XrMwgYZuLsShadfZLd5rOjTWCYiLAUo=) 2: 4DFB5FE4B79211EFA70E7C4CC4F9AE02.roa (hash: znEQ3H8kz5gMTgiuQBm1Os8IAbZ7HFh10xdYO2lt09c=) 3: E611E95E6B9E11EB87785D16C4F9AE02.roa (hash: q+n3uUsh0zWmSlc9Z98QF2Ehkjys56muP3bbcifarR4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E319/868DD6568C2611E7BC06C44EC4F9AE02/bP1Wp36tnhWbyxjrbehic1CRtUo.crl rsync://rpki.apnic.net/member_repository/A918E319/868DD6568C2611E7BC06C44EC4F9AE02/bP1Wp36tnhWbyxjrbehic1CRtUo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bP1Wp36tnhWbyxjrbehic1CRtUo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 16:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6497 (0x1961) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E319, serialNumber=6CFD56A77EAD9E159BCB18EB6DE862735091B54A Validity Not Before: May 30 16:39:08 2025 GMT Not After : Jun 6 16:39:08 2025 GMT Subject: CN=6839df2c-e855 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:44:3e:d3:82:e3:b4:df:12:4f:4f:74:7d:b2: dc:c3:78:23:97:b7:c5:a4:46:b2:14:13:f9:36:01: d7:34:97:79:fd:f5:83:98:17:74:7e:22:67:2d:c9: 13:08:92:80:a8:c1:69:f4:bc:69:16:62:2d:95:48: 31:8a:66:47:d0:42:b9:97:fb:0b:b3:35:64:0e:42: b7:ef:ec:f1:2d:12:0e:be:9c:91:03:73:45:95:93: 13:06:28:d2:b3:1b:19:38:b7:8b:f2:e4:e0:13:ac: 91:51:2b:66:68:b0:d8:d9:0b:6e:1c:e7:69:9b:05: ec:72:88:96:8d:f2:f7:99:1d:f5:d3:27:a9:06:dd: 50:df:41:85:01:3b:0f:5c:d4:a8:c2:f1:41:e4:15: 65:8b:65:cd:a6:ec:16:08:0b:75:16:83:b6:cb:b5: ba:1b:35:a4:9b:4b:12:8f:5f:5b:0a:53:9c:de:89: 73:c4:0c:3b:a5:c4:65:8c:76:d7:b1:65:95:e5:ce: 5f:1e:9b:0d:dc:31:0b:21:cc:e3:6c:83:3e:9c:c5: 6c:ad:a0:70:5f:de:5d:f6:19:16:25:a9:9a:d2:b4: 8e:d6:2d:be:fa:a9:d3:28:ea:a5:ba:b0:fa:72:1d: f0:bf:04:80:18:da:50:1e:cc:d8:e3:82:d7:d2:1e: 3d:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:86:1D:61:21:E1:4B:12:C1:1A:33:9F:59:FB:89:5C:BC:0B:49:8B X509v3 Authority Key Identifier: keyid:6C:FD:56:A7:7E:AD:9E:15:9B:CB:18:EB:6D:E8:62:73:50:91:B5:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E319/868DD6568C2611E7BC06C44EC4F9AE02/bP1Wp36tnhWbyxjrbehic1CRtUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bP1Wp36tnhWbyxjrbehic1CRtUo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E319/868DD6568C2611E7BC06C44EC4F9AE02/bP1Wp36tnhWbyxjrbehic1CRtUo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:91:f2:d4:25:5e:da:94:8d:9b:12:10:30:c2:f3:28:19:cb: 9d:9d:b3:1e:19:fe:aa:63:76:6a:b4:e1:dc:3f:bf:ae:13:4f: a4:b2:43:c6:d4:1b:07:45:1d:5d:98:3f:52:41:cf:73:0d:77: 80:b0:40:4c:7f:41:ef:e1:18:91:d2:bc:34:04:f0:1a:d6:09: 27:ea:25:79:de:2c:d6:06:15:13:1e:2a:11:94:7e:5c:54:6b: c2:76:b2:51:4c:3d:bf:26:87:07:2a:95:4f:2d:b9:4f:18:76: a0:d1:d2:86:18:dc:7b:11:dd:75:d7:27:9b:0f:6b:18:63:15: a2:e7:ef:2f:16:3f:8c:c7:07:9c:a5:76:e2:90:ca:89:f4:11: d8:76:71:32:8d:db:37:a2:51:84:4f:14:3d:5a:0c:10:15:88: 7b:3f:03:db:0d:ae:94:58:f8:a0:d1:b6:2b:45:ba:eb:88:1f: ea:b4:70:8f:21:e7:d1:8a:0c:bc:05:ec:8e:28:c0:57:1f:63: 75:e8:ef:03:50:4b:e3:2a:67:42:9e:c9:64:15:90:45:40:85: 0b:77:bd:bd:00:68:44:34:92:a9:70:83:d2:f2:22:27:1e:9b: 6a:32:32:21:37:45:35:94:e3:99:8f:fc:f6:64:17:3a:ce:b1: 44:46:1e:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEUzMTkxMTAvBgNVBAUTKDZDRkQ1NkE3N0VBRDlFMTU5QkNCMThFQjZERTg2Mjcz NTA5MUI1NEEwHhcNMjUwNTMwMTYzOTA4WhcNMjUwNjA2MTYzOTA4WjAYMRYwFAYD VQQDEw02ODM5ZGYyYy1lODU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs0Q+04LjtN8ST090fbLcw3gjl7fFpEayFBP5NgHXNJd5/fWDmBd0fiJnLckT CJKAqMFp9LxpFmItlUgximZH0EK5l/sLszVkDkK37+zxLRIOvpyRA3NFlZMTBijS sxsZOLeL8uTgE6yRUStmaLDY2QtuHOdpmwXscoiWjfL3mR310yepBt1Q30GFATsP XNSowvFB5BVli2XNpuwWCAt1FoO2y7W6GzWkm0sSj19bClOc3olzxAw7pcRljHbX sWWV5c5fHpsN3DELIczjbIM+nMVsraBwX95d9hkWJama0rSO1i2++qnTKOqlurD6 ch3wvwSAGNpQHszY44LX0h49NwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCuGHWEh 4UsSwRozn1n7iVy8C0mLMB8GA1UdIwQYMBaAFGz9Vqd+rZ4Vm8sY623oYnNQkbVK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTMxOS84NjhERDY1NjhD MjYxMUU3QkMwNkM0NEVDNEY5QUUwMi9iUDFXcDM2dG5oV2J5eGpyYmVoaWMxQ1J0 VW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JQMVdwMzZ0bmhXYnl4anJiZWhpYzFDUnRVby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTMxOS84NjhERDY1NjhDMjYxMUU3QkMwNkM0NEVDNEY5QUUwMi9iUDFXcDM2dG5o V2J5eGpyYmVoaWMxQ1J0VW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCzkfLUJV7alI2bEhAwwvMoGcudnbMeGf6qY3ZqtOHcP7+uE0+kskPG 1BsHRR1dmD9SQc9zDXeAsEBMf0Hv4RiR0rw0BPAa1gkn6iV53izWBhUTHioRlH5c VGvCdrJRTD2/JocHKpVPLblPGHag0dKGGNx7Ed111yebD2sYYxWi5+8vFj+Mxwec pXbikMqJ9BHYdnEyjds3olGETxQ9WgwQFYh7PwPbDa6UWPig0bYrRbrriB/qtHCP IefRigy8BeyOKMBXH2N16O8DUEvjKmdCnslkFZBFQIULd729AGhENJKpcIPS8iIn HptqMjIhN0U1lOOZj/z2ZBc6zrFERh6u -----END CERTIFICATE-----Generated at Sat May 31 17:24:46 2025 by rpki-client