$ rpki-client -vvf rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/bkWq8A0m8fB31nRzkUTUuMOU87g.mft File: bkWq8A0m8fB31nRzkUTUuMOU87g.mft (raw, json) Hash identifier: 3m+fA3cn8JlCh8tU7aXdXOlndAJihJnxJi5ggAX+1Hg= Subject key identifier: 4A:19:2A:F2:9F:B6:32:89:DA:21:C6:B0:E9:8C:9C:10:9A:B0:5A:D1 Authority key identifier: 6E:45:AA:F0:0D:26:F1:F0:77:D6:74:73:91:44:D4:B8:C3:94:F3:B8 Certificate issuer: /CN=A919F0DA/serialNumber=6E45AAF00D26F1F077D674739144D4B8C394F3B8 Certificate serial: 23DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bkWq8A0m8fB31nRzkUTUuMOU87g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/bkWq8A0m8fB31nRzkUTUuMOU87g.mft Manifest number: 6033 Signing time: Sat 31 May 2025 14:15:25 +0000 Manifest this update: Sat 31 May 2025 14:15:25 +0000 Manifest next update: Sat 07 Jun 2025 14:15:25 +0000 Files and hashes: 1: bkWq8A0m8fB31nRzkUTUuMOU87g.crl (hash: 17SDhFh2IMa1yMGoedPX/dm1FA4EmMgLE/DFBU0h198=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/bkWq8A0m8fB31nRzkUTUuMOU87g.crl rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/bkWq8A0m8fB31nRzkUTUuMOU87g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bkWq8A0m8fB31nRzkUTUuMOU87g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 14:15:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9183 (0x23df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F0DA, serialNumber=6E45AAF00D26F1F077D674739144D4B8C394F3B8 Validity Not Before: May 31 14:15:25 2025 GMT Not After : Jun 7 14:15:25 2025 GMT Subject: CN=683b0efd-4c17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:32:77:b1:9c:3e:77:a8:47:16:dc:24:6d:72: a8:ac:88:f3:64:8d:ae:d3:ff:4c:ab:78:bf:e9:9b: d1:ad:a7:67:e5:30:7c:9f:22:4c:6f:31:dc:80:23: be:47:f1:f7:ca:62:e8:ca:db:92:04:00:5a:c0:35: c0:b9:e0:86:95:0c:e5:30:63:2b:b7:7f:2e:39:e2: 78:27:54:80:2d:fc:b2:32:2e:15:1a:6e:8f:79:7d: b1:0e:26:59:41:b3:2e:33:d3:f7:c1:b0:24:db:8a: c8:2e:d2:25:07:d0:db:2f:01:37:2f:3e:64:91:4e: ad:f6:6e:bb:f3:f3:ac:0c:fe:dd:42:a4:ab:69:b8: d4:91:43:18:cf:56:ea:57:fe:83:98:17:2d:73:22: 24:ba:ff:c0:13:fb:ad:eb:c2:b0:4a:74:80:dc:df: 86:da:1d:63:79:db:51:05:0c:c8:f0:ad:95:7f:d4: 6d:97:9e:a9:d0:d3:87:1d:a3:eb:72:56:36:e7:43: 00:02:b8:fb:ca:63:3d:e2:8d:a5:e5:73:8f:bc:fe: 92:22:05:52:17:a7:cb:a2:75:9b:47:93:fa:7b:5a: ca:ae:b2:5d:97:e6:09:ae:22:d9:00:7e:b8:bb:67: f7:f8:4e:e8:af:9d:14:36:ea:c3:82:0e:e3:d4:37: a2:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:19:2A:F2:9F:B6:32:89:DA:21:C6:B0:E9:8C:9C:10:9A:B0:5A:D1 X509v3 Authority Key Identifier: keyid:6E:45:AA:F0:0D:26:F1:F0:77:D6:74:73:91:44:D4:B8:C3:94:F3:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/bkWq8A0m8fB31nRzkUTUuMOU87g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bkWq8A0m8fB31nRzkUTUuMOU87g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/bkWq8A0m8fB31nRzkUTUuMOU87g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:dc:8e:8e:b9:56:d0:4b:fd:e6:e6:8b:f7:39:b9:dc:3c:58: 32:4d:eb:4e:3f:ec:da:0e:e3:04:e1:88:0b:c0:d2:e6:9b:4c: 6a:07:f8:04:cb:54:62:5e:20:72:8e:f9:2f:38:df:b3:6e:20: 54:16:63:1d:55:97:ab:30:d9:c2:f5:3d:43:36:2f:08:91:a5: bb:e9:8c:31:36:79:51:96:4a:84:5d:2d:63:93:7a:09:7a:07: 6d:3c:72:15:e8:39:1b:04:d1:69:c1:04:4a:08:f2:d5:64:de: d3:3c:a1:29:24:48:f6:79:11:fb:c5:95:b3:dc:a3:7d:c0:a0: 29:80:23:f7:1f:71:32:51:e4:68:7b:1b:3e:a4:42:2e:d5:9d: 6b:25:26:fd:fa:a9:9c:d5:83:3a:74:12:85:80:1e:09:91:41: e0:0f:45:a1:11:dd:87:73:cb:c8:0d:84:28:9f:bd:27:60:ba: 8a:de:dc:e6:80:ae:fb:09:b7:04:f8:87:7a:64:4b:72:6a:83: 2d:04:d4:32:aa:2d:78:35:5c:bf:f7:a8:d4:6a:08:13:af:a7: bf:80:ce:18:07:c5:7c:30:b6:35:c5:c8:e6:e7:e0:f4:b8:38: 15:09:18:1e:ed:aa:1a:58:14:9f:ea:2f:8f:b2:a8:71:7b:b3: ab:be:ec:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICI98wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUYwREExMTAvBgNVBAUTKDZFNDVBQUYwMEQyNkYxRjA3N0Q2NzQ3MzkxNDRENEI4 QzM5NEYzQjgwHhcNMjUwNTMxMTQxNTI1WhcNMjUwNjA3MTQxNTI1WjAYMRYwFAYD VQQDEw02ODNiMGVmZC00YzE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApzJ3sZw+d6hHFtwkbXKorIjzZI2u0/9Mq3i/6ZvRradn5TB8nyJMbzHcgCO+ R/H3ymLoytuSBABawDXAueCGlQzlMGMrt38uOeJ4J1SALfyyMi4VGm6PeX2xDiZZ QbMuM9P3wbAk24rILtIlB9DbLwE3Lz5kkU6t9m678/OsDP7dQqSrabjUkUMYz1bq V/6DmBctcyIkuv/AE/ut68KwSnSA3N+G2h1jedtRBQzI8K2Vf9Rtl56p0NOHHaPr clY250MAArj7ymM94o2l5XOPvP6SIgVSF6fLonWbR5P6e1rKrrJdl+YJriLZAH64 u2f3+E7or50UNurDgg7j1DeikwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEoZKvKf tjKJ2iHGsOmMnBCasFrRMB8GA1UdIwQYMBaAFG5FqvANJvHwd9Z0c5FE1LjDlPO4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjBEQS8xNTBEM0VGNDFE NjgxMUUyOEMxODI4QTQwOEIwMkNEMi9ia1dxOEEwbThmQjMxblJ6a1VUVXVNT1U4 N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JrV3E4QTBtOGZCMzFuUnprVVRVdU1PVTg3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RjBEQS8xNTBEM0VGNDFENjgxMUUyOEMxODI4QTQwOEIwMkNEMi9ia1dxOEEwbThm QjMxblJ6a1VUVXVNT1U4N2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB83I6OuVbQS/3m5ov3ObncPFgyTetOP+zaDuME4YgLwNLmm0xqB/gE y1RiXiByjvkvON+zbiBUFmMdVZerMNnC9T1DNi8IkaW76YwxNnlRlkqEXS1jk3oJ egdtPHIV6DkbBNFpwQRKCPLVZN7TPKEpJEj2eRH7xZWz3KN9wKApgCP3H3EyUeRo exs+pEIu1Z1rJSb9+qmc1YM6dBKFgB4JkUHgD0WhEd2Hc8vIDYQon70nYLqK3tzm gK77CbcE+Id6ZEtyaoMtBNQyqi14NVy/96jUaggTr6e/gM4YB8V8MLY1xcjm5+D0 uDgVCRge7aoaWBSf6i+Psqhxe7Orvuz+ -----END CERTIFICATE-----Generated at Mon Jun 2 06:40:23 2025 by rpki-client