$ rpki-client -vvf rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.mft File: bZYGiLbecUGnIYmOngc-FneP7zU.mft (raw, json) Hash identifier: 2SNHvEPJ3khKsNO5E8ckjxtupKNU0zUTi02djl4ugs4= Subject key identifier: 26:BC:61:98:C5:8C:B5:8E:12:15:9D:61:27:64:42:6E:AE:9D:3F:12 Authority key identifier: 6D:96:06:88:B6:DE:71:41:A7:21:89:8E:9E:07:3E:16:77:8F:EF:35 Certificate issuer: /CN=A9197A8F/serialNumber=6D960688B6DE7141A721898E9E073E16778FEF35 Certificate serial: 0143 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bZYGiLbecUGnIYmOngc-FneP7zU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.mft Manifest number: 013F Signing time: Sat 31 May 2025 04:02:47 +0000 Manifest this update: Sat 31 May 2025 04:02:46 +0000 Manifest next update: Sat 07 Jun 2025 04:02:46 +0000 Files and hashes: 1: bZYGiLbecUGnIYmOngc-FneP7zU.crl (hash: 6gQzgZGRZfghWz6qBW1RyJDgDiH3jpkoGpW6ZI2ZUOM=) 2: A663285A59DE11EE85CFCB12C4F9AE02.roa (hash: X/pG7qc3+7qr+qWCl38L4oCPzOU3+0jR+niOHWQizTQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.crl rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bZYGiLbecUGnIYmOngc-FneP7zU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:02:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 323 (0x143) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197A8F, serialNumber=6D960688B6DE7141A721898E9E073E16778FEF35 Validity Not Before: May 31 04:02:46 2025 GMT Not After : Jun 7 04:02:46 2025 GMT Subject: CN=683a7f67-9ccf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:0d:cc:0f:9d:53:6e:bd:bc:28:d7:7a:46:87: 87:e2:60:2d:af:4a:82:82:1a:3c:6c:d6:ea:9d:d0: 99:eb:93:84:15:25:c8:9f:a3:83:b8:64:b5:48:05: 5d:e1:9c:06:60:1c:9f:70:f4:41:10:de:b6:b7:92: fd:7f:27:22:15:35:e7:08:86:20:1f:58:53:62:ec: d0:6d:3d:3b:d0:3c:c2:34:a8:bc:a1:46:0d:5f:c3: 68:6c:d4:d1:3f:05:4d:cb:ea:e1:ea:aa:96:74:0b: 64:fd:5d:85:ce:01:8e:59:56:3f:9e:c2:98:bf:5d: 16:f8:3f:00:4e:5c:e1:ce:07:5c:17:b8:c0:5e:3e: eb:09:22:d7:fb:47:f1:d3:d0:3e:3d:26:24:d7:9c: b5:50:86:93:f4:93:d2:37:4c:cd:cf:9e:19:1f:cf: 1d:e5:47:5e:b0:de:36:66:db:5c:9d:1f:62:1c:21: 1e:af:2e:42:0c:f7:8e:a7:21:40:c2:b6:ca:5f:f6: 36:9f:47:19:18:e6:e9:fb:bc:04:04:99:85:bd:8b: 0c:55:e1:05:7f:84:e4:0b:a4:84:bb:61:d2:cd:34: 62:0a:6a:35:ec:5e:9f:07:46:6a:a9:79:f0:ee:45: e7:d1:45:d3:40:be:a2:cd:b0:83:98:8d:1b:f6:2f: 62:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:BC:61:98:C5:8C:B5:8E:12:15:9D:61:27:64:42:6E:AE:9D:3F:12 X509v3 Authority Key Identifier: keyid:6D:96:06:88:B6:DE:71:41:A7:21:89:8E:9E:07:3E:16:77:8F:EF:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bZYGiLbecUGnIYmOngc-FneP7zU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:4c:d2:33:69:28:9c:61:2b:89:e3:77:95:4f:99:8b:6c:be: 9c:16:a9:8a:79:69:0f:ae:1d:a3:06:e9:fc:a2:45:fa:eb:0e: 09:e3:b8:2f:78:1f:50:b5:c5:0e:e8:21:25:8c:2c:f2:a1:6f: 6a:04:e1:64:c4:80:ca:7c:e2:06:7e:ee:79:58:c9:63:51:93: 06:fb:9c:71:6e:a5:a7:01:96:49:46:06:91:b0:d7:9e:ad:86: 40:3a:94:f8:d6:a2:7d:97:08:3a:49:6d:1a:8e:e5:dd:d9:4b: ac:f1:da:17:54:4d:94:bf:ac:21:4c:ca:ad:18:55:ca:a0:0f: 1a:07:0f:7e:4c:5b:a0:89:88:ce:af:a7:23:6b:76:00:ce:3a: 16:00:d5:bb:bb:24:53:df:a1:8f:86:53:c2:44:f7:b5:71:94: 60:84:f2:0b:e0:52:65:f7:17:4b:13:82:43:19:1c:68:3b:da: ee:8a:22:9b:49:b1:10:3d:fb:05:4c:2c:89:b8:53:2c:12:04: 27:fd:d5:be:2f:59:f9:2e:dc:d5:25:74:61:4e:5e:7b:f7:ed: 27:a2:05:c3:28:8e:c4:76:5b:bc:f7:3d:d4:ed:ad:a6:1e:ee: 9e:aa:d1:b2:76:b3:d3:8f:22:2d:88:1f:6f:e6:70:4c:cc:d3: 6a:2e:2b:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdBOEYxMTAvBgNVBAUTKDZEOTYwNjg4QjZERTcxNDFBNzIxODk4RTlFMDczRTE2 Nzc4RkVGMzUwHhcNMjUwNTMxMDQwMjQ2WhcNMjUwNjA3MDQwMjQ2WjAYMRYwFAYD VQQDEw02ODNhN2Y2Ny05Y2NmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxA3MD51Tbr28KNd6RoeH4mAtr0qCgho8bNbqndCZ65OEFSXIn6ODuGS1SAVd 4ZwGYByfcPRBEN62t5L9fyciFTXnCIYgH1hTYuzQbT070DzCNKi8oUYNX8NobNTR PwVNy+rh6qqWdAtk/V2FzgGOWVY/nsKYv10W+D8ATlzhzgdcF7jAXj7rCSLX+0fx 09A+PSYk15y1UIaT9JPSN0zNz54ZH88d5UdesN42ZttcnR9iHCEery5CDPeOpyFA wrbKX/Y2n0cZGObp+7wEBJmFvYsMVeEFf4TkC6SEu2HSzTRiCmo17F6fB0ZqqXnw 7kXn0UXTQL6izbCDmI0b9i9iPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCa8YZjF jLWOEhWdYSdkQm6unT8SMB8GA1UdIwQYMBaAFG2WBoi23nFBpyGJjp4HPhZ3j+81 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0E4Ri82M0FDRDVGNDU5 REIxMUVFQTczN0ZFMEFDNEY5QUUwMi9iWllHaUxiZWNVR25JWW1PbmdjLUZuZVA3 elUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JaWUdpTGJlY1VHbklZbU9uZ2MtRm5lUDd6VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0E4Ri82M0FDRDVGNDU5REIxMUVFQTczN0ZFMEFDNEY5QUUwMi9iWllHaUxiZWNV R25JWW1PbmdjLUZuZVA3elUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBITNIzaSicYSuJ43eVT5mLbL6cFqmKeWkPrh2jBun8okX66w4J47gv eB9QtcUO6CEljCzyoW9qBOFkxIDKfOIGfu55WMljUZMG+5xxbqWnAZZJRgaRsNee rYZAOpT41qJ9lwg6SW0ajuXd2Uus8doXVE2Uv6whTMqtGFXKoA8aBw9+TFugiYjO r6cja3YAzjoWANW7uyRT36GPhlPCRPe1cZRghPIL4FJl9xdLE4JDGRxoO9ruiiKb SbEQPfsFTCyJuFMsEgQn/dW+L1n5LtzVJXRhTl579+0nogXDKI7Edlu89z3U7a2m Hu6eqtGydrPTjyItiB9v5nBMzNNqLitW -----END CERTIFICATE-----Generated at Sat May 31 16:28:43 2025 by rpki-client