$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft File: BQ5HmwmNZLazhlsr5GiFdeotTVE.mft (raw, json) Hash identifier: B/6wy+n+W8cmSzt2ftmjxL2JyjYcEAxOrtT4qIwAeVw= Subject key identifier: 8F:3C:4E:C3:F0:B0:7F:96:60:60:71:81:46:24:46:C3:09:18:C2:11 Authority key identifier: 05:0E:47:9B:09:8D:64:B6:B3:86:5B:2B:E4:68:85:75:EA:2D:4D:51 Certificate issuer: /CN=A91AB457/serialNumber=050E479B098D64B6B3865B2BE4688575EA2D4D51 Certificate serial: 0BC2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ5HmwmNZLazhlsr5GiFdeotTVE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft Manifest number: 0BC2 Signing time: Fri 30 May 2025 19:04:35 +0000 Manifest this update: Fri 30 May 2025 19:04:35 +0000 Manifest next update: Fri 06 Jun 2025 19:04:35 +0000 Files and hashes: 1: BQ5HmwmNZLazhlsr5GiFdeotTVE.crl (hash: qtfuJ09/cp/ayHdMmtVYBaTHkYn6A/1+A7/YflNLI94=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.crl rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ5HmwmNZLazhlsr5GiFdeotTVE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 19:04:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3010 (0xbc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB457, serialNumber=050E479B098D64B6B3865B2BE4688575EA2D4D51 Validity Not Before: May 30 19:04:35 2025 GMT Not After : Jun 6 19:04:35 2025 GMT Subject: CN=683a0143-ff82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:d3:7c:1c:a8:c2:75:a4:e3:8b:5e:57:97:3a: c4:e9:5c:a8:de:4c:c0:a9:0d:a1:9f:0b:97:8a:6a: 90:61:e6:f4:35:ac:4c:e0:a4:d2:76:34:67:a1:9b: 56:72:bf:18:cd:29:45:02:85:5e:d4:67:d8:e3:3d: 81:93:d8:db:c9:66:5f:d2:0f:92:d7:00:f3:cb:21: b7:88:11:25:47:61:69:77:43:a6:ce:be:51:14:88: 1a:e0:e2:82:cb:ff:31:18:7b:b5:ec:34:5e:a8:84: e9:98:af:58:38:9e:74:80:f4:60:67:11:11:ae:7f: a8:03:9d:e9:3e:72:d0:47:9c:7c:ca:68:19:6f:d6: 32:e7:8b:10:c9:5a:bf:7b:6f:2b:cc:b2:c9:66:d4: 72:7c:e7:8d:00:19:4a:cb:e9:a1:15:97:6a:83:ff: b3:2b:9b:8e:f9:ae:46:c4:42:e3:5a:89:19:4c:6d: 70:1d:3f:c4:98:11:47:73:ca:10:1e:be:a5:56:21: 7a:a4:25:05:99:e7:cb:19:4b:d1:6c:a7:f6:02:0f: 37:c6:04:6c:f9:13:f4:fb:dd:ea:b8:45:2f:49:e0: 41:13:5c:73:3d:21:a4:0e:e3:13:eb:b3:12:42:59: b8:dc:bf:3d:44:7d:ef:50:d3:b1:90:c7:6c:0b:76: 18:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:3C:4E:C3:F0:B0:7F:96:60:60:71:81:46:24:46:C3:09:18:C2:11 X509v3 Authority Key Identifier: keyid:05:0E:47:9B:09:8D:64:B6:B3:86:5B:2B:E4:68:85:75:EA:2D:4D:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ5HmwmNZLazhlsr5GiFdeotTVE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB457/5AF661021C9811EAB4743F0FC4F9AE02/BQ5HmwmNZLazhlsr5GiFdeotTVE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:8a:19:5a:14:b8:3a:c8:f6:5b:e8:84:6e:f6:c4:12:6d:46: 39:11:e9:2e:7d:f0:81:fa:b0:fd:42:08:fe:de:18:3d:ab:67: c2:c2:04:c8:87:14:ff:1f:27:6d:6b:85:f2:86:75:5a:b6:99: f2:2b:42:7a:ca:e6:61:2f:ed:9b:55:72:97:9e:2f:80:d2:d0: 42:4d:0f:96:ca:f9:a5:79:2e:8b:a8:e2:cb:f3:98:c3:14:f9: 60:67:db:09:4b:e3:d3:5e:5e:f8:f7:4d:d3:25:e1:67:ff:9e: 18:c9:ff:92:39:97:02:f9:7a:91:b2:de:e2:cb:ba:ae:8c:44: a3:27:84:e1:69:22:89:27:49:57:b6:66:a5:eb:9e:02:4a:63: cd:7e:43:15:ec:77:7c:fe:c6:95:ea:37:92:41:4c:da:28:95: cd:8b:a1:a9:d1:9c:3c:4f:57:64:8e:3c:50:8a:2e:16:22:b5: ab:f8:18:20:54:fb:bf:4b:26:a3:74:72:84:5b:16:8a:90:19: 09:e0:35:41:e3:06:d6:e2:d6:79:f7:32:8a:1d:7f:c9:28:50: 6e:e2:07:a5:9d:3f:38:e1:67:3e:02:35:7f:a1:74:25:66:ec: e0:c9:5b:e6:27:d3:a3:cc:ee:fe:b3:ca:4e:a8:a8:a6:82:10: 18:c2:dc:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC8IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI0NTcxMTAvBgNVBAUTKDA1MEU0NzlCMDk4RDY0QjZCMzg2NUIyQkU0Njg4NTc1 RUEyRDRENTEwHhcNMjUwNTMwMTkwNDM1WhcNMjUwNjA2MTkwNDM1WjAYMRYwFAYD VQQDEw02ODNhMDE0My1mZjgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6dN8HKjCdaTji15XlzrE6Vyo3kzAqQ2hnwuXimqQYeb0NaxM4KTSdjRnoZtW cr8YzSlFAoVe1GfY4z2Bk9jbyWZf0g+S1wDzyyG3iBElR2Fpd0Omzr5RFIga4OKC y/8xGHu17DReqITpmK9YOJ50gPRgZxERrn+oA53pPnLQR5x8ymgZb9Yy54sQyVq/ e28rzLLJZtRyfOeNABlKy+mhFZdqg/+zK5uO+a5GxELjWokZTG1wHT/EmBFHc8oQ Hr6lViF6pCUFmefLGUvRbKf2Ag83xgRs+RP0+93quEUvSeBBE1xzPSGkDuMT67MS Qlm43L89RH3vUNOxkMdsC3YY6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI88TsPw sH+WYGBxgUYkRsMJGMIRMB8GA1UdIwQYMBaAFAUOR5sJjWS2s4ZbK+RohXXqLU1R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjQ1Ny81QUY2NjEwMjFD OTgxMUVBQjQ3NDNGMEZDNEY5QUUwMi9CUTVIbXdtTlpMYXpobHNyNUdpRmRlb3RU VkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRNUhtd21OWkxhemhsc3I1R2lGZGVvdFRWRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjQ1Ny81QUY2NjEwMjFDOTgxMUVBQjQ3NDNGMEZDNEY5QUUwMi9CUTVIbXdtTlpM YXpobHNyNUdpRmRlb3RUVkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkihlaFLg6yPZb6IRu9sQSbUY5EekuffCB+rD9Qgj+3hg9q2fCwgTI hxT/Hydta4XyhnVatpnyK0J6yuZhL+2bVXKXni+A0tBCTQ+WyvmleS6LqOLL85jD FPlgZ9sJS+PTXl74903TJeFn/54Yyf+SOZcC+XqRst7iy7qujESjJ4ThaSKJJ0lX tmal654CSmPNfkMV7Hd8/saV6jeSQUzaKJXNi6Gp0Zw8T1dkjjxQii4WIrWr+Bgg VPu/SyajdHKEWxaKkBkJ4DVB4wbW4tZ59zKKHX/JKFBu4gelnT844Wc+AjV/oXQl ZuzgyVvmJ9OjzO7+s8pOqKimghAYwtyi -----END CERTIFICATE-----Generated at Sat May 31 16:38:49 2025 by rpki-client