$ rpki-client -vvf rpki.apnic.net/member_repository/A9199B85/7D86A238C61511EEA718E338C4F9AE02/BaM29kbGgzeJtq58kgcrf5TZ3Ck.mft File: BaM29kbGgzeJtq58kgcrf5TZ3Ck.mft (raw, json) Hash identifier: 4k84HjVjqxMOCWFNojNcCvXD3ygcXFNgeZfkl/n+uA4= Subject key identifier: A4:95:CC:EC:A5:E5:39:B8:86:C5:3C:7D:78:4B:45:62:9D:55:EF:5B Authority key identifier: 05:A3:36:F6:46:C6:83:37:89:B6:AE:7C:92:07:2B:7F:94:D9:DC:29 Certificate issuer: /CN=A9199B85/serialNumber=05A336F646C6833789B6AE7C92072B7F94D9DC29 Certificate serial: F6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BaM29kbGgzeJtq58kgcrf5TZ3Ck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199B85/7D86A238C61511EEA718E338C4F9AE02/BaM29kbGgzeJtq58kgcrf5TZ3Ck.mft Manifest number: F6 Signing time: Sun 01 Jun 2025 01:42:36 +0000 Manifest this update: Sun 01 Jun 2025 01:42:35 +0000 Manifest next update: Sun 08 Jun 2025 01:42:35 +0000 Files and hashes: 1: BaM29kbGgzeJtq58kgcrf5TZ3Ck.crl (hash: gzjKILlndiPs/EJec5Gg4D72zTef8tERo79O4ld9F+w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199B85/7D86A238C61511EEA718E338C4F9AE02/BaM29kbGgzeJtq58kgcrf5TZ3Ck.crl rsync://rpki.apnic.net/member_repository/A9199B85/7D86A238C61511EEA718E338C4F9AE02/BaM29kbGgzeJtq58kgcrf5TZ3Ck.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BaM29kbGgzeJtq58kgcrf5TZ3Ck.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 01:42:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 246 (0xf6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199B85, serialNumber=05A336F646C6833789B6AE7C92072B7F94D9DC29 Validity Not Before: Jun 1 01:42:35 2025 GMT Not After : Jun 8 01:42:35 2025 GMT Subject: CN=683bb00c-2fe9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:1d:64:98:4b:61:75:06:7e:5c:63:60:43:ba: 36:ba:93:3a:e1:5f:90:87:72:0d:81:b6:a8:a1:06: 6f:a0:06:0e:f2:f6:9e:2e:d0:ea:5d:fe:17:2a:fa: 32:b3:cb:11:4b:cf:12:df:7b:f1:ab:e9:28:9a:f8: 2e:43:43:df:7f:a2:48:81:e3:ba:61:30:7b:36:3f: 42:2f:c5:2c:a0:a0:bc:7a:df:72:77:1d:51:48:05: b5:54:50:af:07:8f:1b:e0:7d:bd:e8:b0:c2:ce:21: 6c:a4:5f:01:99:1c:22:c8:9e:3f:b5:6c:4a:a7:64: c5:3a:f2:8c:04:a9:34:01:11:64:c3:87:2f:30:07: 71:30:60:3a:69:e5:f9:b8:89:5d:cb:89:ef:b3:bc: 39:43:b5:d3:be:90:27:9e:9e:80:38:7d:1c:4f:97: 7d:30:9f:7c:20:52:f0:74:68:c5:74:d8:b6:bd:3a: 7c:d6:36:6f:3a:93:00:6c:5a:5b:0f:52:2d:2e:43: bc:7d:79:c5:4f:6e:3f:37:63:af:1a:ea:0a:37:6d: c5:4c:a2:67:bc:b5:8a:5e:90:1a:bf:be:81:25:79: a8:e1:98:74:c2:fc:cb:06:21:89:fd:da:28:50:95: 04:9e:1d:7c:85:b8:ce:b9:0e:ce:88:43:d2:0a:4e: d4:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:95:CC:EC:A5:E5:39:B8:86:C5:3C:7D:78:4B:45:62:9D:55:EF:5B X509v3 Authority Key Identifier: keyid:05:A3:36:F6:46:C6:83:37:89:B6:AE:7C:92:07:2B:7F:94:D9:DC:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199B85/7D86A238C61511EEA718E338C4F9AE02/BaM29kbGgzeJtq58kgcrf5TZ3Ck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BaM29kbGgzeJtq58kgcrf5TZ3Ck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199B85/7D86A238C61511EEA718E338C4F9AE02/BaM29kbGgzeJtq58kgcrf5TZ3Ck.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:0b:28:9f:c3:5f:66:bc:24:cb:5c:17:10:28:df:b7:f6:84: 5b:a8:1e:ab:af:3b:d9:58:06:8a:a7:88:ec:2d:8c:ba:6f:88: e2:27:0b:27:92:7b:85:72:41:dd:8c:ad:5b:2e:dc:27:d8:29: fe:8e:44:02:4d:56:1f:43:81:bb:7d:d3:03:d7:68:ab:c7:a9: dc:71:3f:ff:db:9c:e5:4f:a0:08:cd:43:ee:20:d3:19:84:64: f9:a5:f6:29:10:ca:a0:6d:e9:93:20:2c:6f:ee:89:6d:7a:79: 9f:d2:5b:af:d7:de:92:83:45:14:82:e6:b8:ac:76:e0:88:85: 96:0d:70:a2:43:c1:e3:35:ad:92:21:9b:74:f0:5e:7b:a6:64: 09:4b:23:d3:e7:61:a0:20:74:7e:34:11:ad:c2:30:be:c6:90: b2:c7:5a:a5:4b:46:fe:d6:56:5b:b5:ea:63:95:b3:d1:80:44: cd:23:8e:cd:45:6e:50:9f:66:15:27:9a:da:47:cf:80:07:68: f9:cb:2c:a8:65:ab:77:42:9a:9b:fe:8e:49:7d:7c:cf:02:c9: 0e:0f:b8:34:2b:69:13:fd:ca:5e:a5:dc:a5:ef:8e:24:ea:76: 30:20:e9:bf:11:fc:da:84:e5:41:bd:28:14:f8:94:ca:8b:ab: 88:3b:19:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTlCODUxMTAvBgNVBAUTKDA1QTMzNkY2NDZDNjgzMzc4OUI2QUU3QzkyMDcyQjdG OTREOURDMjkwHhcNMjUwNjAxMDE0MjM1WhcNMjUwNjA4MDE0MjM1WjAYMRYwFAYD VQQDEw02ODNiYjAwYy0yZmU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4B1kmEthdQZ+XGNgQ7o2upM64V+Qh3INgbaooQZvoAYO8vaeLtDqXf4XKvoy s8sRS88S33vxq+komvguQ0Pff6JIgeO6YTB7Nj9CL8UsoKC8et9ydx1RSAW1VFCv B48b4H296LDCziFspF8BmRwiyJ4/tWxKp2TFOvKMBKk0ARFkw4cvMAdxMGA6aeX5 uIldy4nvs7w5Q7XTvpAnnp6AOH0cT5d9MJ98IFLwdGjFdNi2vTp81jZvOpMAbFpb D1ItLkO8fXnFT24/N2OvGuoKN23FTKJnvLWKXpAav76BJXmo4Zh0wvzLBiGJ/doo UJUEnh18hbjOuQ7OiEPSCk7U9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKSVzOyl 5Tm4hsU8fXhLRWKdVe9bMB8GA1UdIwQYMBaAFAWjNvZGxoM3ibaufJIHK3+U2dwp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OUI4NS83RDg2QTIzOEM2 MTUxMUVFQTcxOEUzMzhDNEY5QUUwMi9CYU0yOWtiR2d6ZUp0cTU4a2djcmY1VFoz Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JhTTI5a2JHZ3plSnRxNThrZ2NyZjVUWjNDay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OUI4NS83RDg2QTIzOEM2MTUxMUVFQTcxOEUzMzhDNEY5QUUwMi9CYU0yOWtiR2d6 ZUp0cTU4a2djcmY1VFozQ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmCyifw19mvCTLXBcQKN+39oRbqB6rrzvZWAaKp4jsLYy6b4jiJwsn knuFckHdjK1bLtwn2Cn+jkQCTVYfQ4G7fdMD12irx6nccT//25zlT6AIzUPuINMZ hGT5pfYpEMqgbemTICxv7oltenmf0luv196Sg0UUgua4rHbgiIWWDXCiQ8HjNa2S IZt08F57pmQJSyPT52GgIHR+NBGtwjC+xpCyx1qlS0b+1lZbtepjlbPRgETNI47N RW5Qn2YVJ5raR8+AB2j5yyyoZat3Qpqb/o5JfXzPAskOD7g0K2kT/cpepdyl744k 6nYwIOm/EfzahOVBvSgU+JTKi6uIOxl4 -----END CERTIFICATE-----Generated at Mon Jun 2 20:53:37 2025 by rpki-client