$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft File: bzPCWtM2F4RBLEKweYYz0Dslvso.mft (raw, json) Hash identifier: KNt6cba7w+DqoQTto4PggqKpOPnYCLzxArFobbOps04= Subject key identifier: B7:F2:8F:E1:2C:23:A9:69:42:32:54:36:A9:55:92:94:18:5C:64:67 Authority key identifier: 6F:33:C2:5A:D3:36:17:84:41:2C:42:B0:79:86:33:D0:3B:25:BE:CA Certificate issuer: /CN=A91AB027/serialNumber=6F33C25AD3361784412C42B0798633D03B25BECA Certificate serial: 0F34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bzPCWtM2F4RBLEKweYYz0Dslvso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft Manifest number: 0F2B Signing time: Fri 30 May 2025 17:48:27 +0000 Manifest this update: Fri 30 May 2025 17:48:26 +0000 Manifest next update: Fri 06 Jun 2025 17:48:26 +0000 Files and hashes: 1: bzPCWtM2F4RBLEKweYYz0Dslvso.crl (hash: yqJ06ZJR3PsNkUvFV0owc+kJyBbRbiIid+UhCk1NRdU=) 2: 62C1F5587ACD11E9AC0A867BC4F9AE02.roa (hash: zJtFuv9ERKF2VcP0kXnp4PcKZFEJbjxQnX3bWZEEZas=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.crl rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bzPCWtM2F4RBLEKweYYz0Dslvso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:48:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3892 (0xf34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB027, serialNumber=6F33C25AD3361784412C42B0798633D03B25BECA Validity Not Before: May 30 17:48:26 2025 GMT Not After : Jun 6 17:48:26 2025 GMT Subject: CN=6839ef6b-00ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d5:86:3a:62:7e:17:f9:c0:f9:46:47:da:31: ea:6e:49:5a:5c:8a:26:2e:34:40:2b:b0:c8:04:08: e6:79:92:46:15:43:53:e5:7a:b3:60:77:3c:4c:b1: 70:49:83:bc:da:da:db:31:47:eb:50:4e:36:ad:a8: 4f:2a:89:84:ab:07:ed:a2:ab:34:03:ca:9b:ec:cc: 1a:bd:fc:05:de:bd:b5:de:4b:2f:e5:aa:f9:ff:27: a8:a6:46:dd:e2:e1:fc:f1:eb:82:43:f0:ee:bf:15: c4:ef:43:b8:de:c1:84:a9:36:03:ec:8f:09:44:bc: ad:00:b3:4b:83:42:a4:01:ce:d7:2b:d4:d2:7e:aa: ba:33:ab:de:78:e1:eb:df:12:99:ef:4e:41:cf:ed: 4b:42:5e:23:fd:77:ed:1c:1b:05:1c:f8:6a:a7:86: cd:ae:89:0b:12:ff:23:d7:b2:9d:61:d2:be:43:cd: 5a:49:cc:a9:15:0b:ec:11:35:47:8e:44:ef:fd:29: 30:86:2b:dc:4d:0e:c9:cb:6b:f5:28:39:cc:ff:40: 68:1f:78:8c:a8:43:d2:18:a9:2d:85:37:11:33:28: fd:55:91:75:c6:a8:56:97:90:04:a5:9a:91:80:1a: 07:e3:31:1e:f6:34:2f:3c:2b:9c:03:bd:36:ad:99: b8:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:F2:8F:E1:2C:23:A9:69:42:32:54:36:A9:55:92:94:18:5C:64:67 X509v3 Authority Key Identifier: keyid:6F:33:C2:5A:D3:36:17:84:41:2C:42:B0:79:86:33:D0:3B:25:BE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bzPCWtM2F4RBLEKweYYz0Dslvso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:77:0d:9a:d8:7d:fb:ff:73:4f:a4:69:06:af:6e:e0:a4:23: 4a:ca:ad:bd:cf:53:3e:dd:a8:13:6e:c2:f9:73:aa:b2:34:a0: 58:1f:d6:04:2d:ac:20:0f:b7:c8:06:d2:88:26:bd:be:4f:fc: e6:88:90:37:db:86:e2:51:e5:5f:68:4e:4c:22:da:aa:3c:3e: c0:50:f3:02:36:f1:a8:6a:b8:50:c2:37:e9:f5:d2:41:fe:a9: 1d:c7:81:b1:d8:a2:a0:9f:a9:d1:eb:a7:7a:75:33:b5:60:3a: a1:fb:4f:a9:06:b4:00:fd:6b:23:1a:1f:79:64:8e:55:5e:7e: a2:af:7e:ea:c1:e8:d9:f4:c6:30:1a:4b:f5:b3:e5:05:4e:16: 36:a3:9b:ed:34:bd:d1:26:b5:fd:f8:ea:95:e4:cf:a3:dc:1f: 48:c5:5e:18:96:98:11:3c:46:ec:5b:5e:87:9e:90:96:c5:15: ee:3a:0f:2b:8f:56:30:61:6a:8c:89:d2:13:ef:8c:00:ca:86: 37:3c:9a:63:b3:e1:bb:e1:e7:9c:4b:a4:50:b3:fa:13:c8:ae: 78:ab:12:3c:19:9e:5b:68:85:30:94:9f:85:2d:6a:90:e9:33: 4f:99:e4:fa:09:5e:23:39:a3:d0:18:dc:7c:b2:42:d2:cf:53: 17:59:76:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDzQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIwMjcxMTAvBgNVBAUTKDZGMzNDMjVBRDMzNjE3ODQ0MTJDNDJCMDc5ODYzM0Qw M0IyNUJFQ0EwHhcNMjUwNTMwMTc0ODI2WhcNMjUwNjA2MTc0ODI2WjAYMRYwFAYD VQQDEw02ODM5ZWY2Yi0wMGNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqdWGOmJ+F/nA+UZH2jHqbklaXIomLjRAK7DIBAjmeZJGFUNT5XqzYHc8TLFw SYO82trbMUfrUE42rahPKomEqwftoqs0A8qb7MwavfwF3r213ksv5ar5/yeopkbd 4uH88euCQ/DuvxXE70O43sGEqTYD7I8JRLytALNLg0KkAc7XK9TSfqq6M6veeOHr 3xKZ705Bz+1LQl4j/XftHBsFHPhqp4bNrokLEv8j17KdYdK+Q81aScypFQvsETVH jkTv/SkwhivcTQ7Jy2v1KDnM/0BoH3iMqEPSGKkthTcRMyj9VZF1xqhWl5AEpZqR gBoH4zEe9jQvPCucA702rZm4RwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLfyj+Es I6lpQjJUNqlVkpQYXGRnMB8GA1UdIwQYMBaAFG8zwlrTNheEQSxCsHmGM9A7Jb7K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjAyNy82OEY3NTkxMDcz NDYxMUU5QUQ1NjFCNDdDNEY5QUUwMi9ielBDV3RNMkY0UkJMRUt3ZVlZejBEc2x2 c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J6UENXdE0yRjRSQkxFS3dlWVl6MERzbHZzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjAyNy82OEY3NTkxMDczNDYxMUU5QUQ1NjFCNDdDNEY5QUUwMi9ielBDV3RNMkY0 UkJMRUt3ZVlZejBEc2x2c28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBedw2a2H37/3NPpGkGr27gpCNKyq29z1M+3agTbsL5c6qyNKBYH9YE LawgD7fIBtKIJr2+T/zmiJA324biUeVfaE5MItqqPD7AUPMCNvGoarhQwjfp9dJB /qkdx4Gx2KKgn6nR66d6dTO1YDqh+0+pBrQA/WsjGh95ZI5VXn6ir37qwejZ9MYw Gkv1s+UFThY2o5vtNL3RJrX9+OqV5M+j3B9IxV4YlpgRPEbsW16HnpCWxRXuOg8r j1YwYWqMidIT74wAyoY3PJpjs+G74eecS6RQs/oTyK54qxI8GZ5baIUwlJ+FLWqQ 6TNPmeT6CV4jOaPQGNx8skLSz1MXWXYL -----END CERTIFICATE-----Generated at Sat May 31 16:27:49 2025 by rpki-client