$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4873/56A5B2AE38E711EF844B4F65C4F9AE02/bdB1wHDNGUBcCU1NPUvaFjQM7vw.mft File: bdB1wHDNGUBcCU1NPUvaFjQM7vw.mft (raw, json) Hash identifier: cZFIbHeo2155jtcXBR1b4DQbaEyOHdOeXIz9f/3BitI= Subject key identifier: 08:68:86:A9:25:BC:EF:57:17:72:80:A3:C3:CF:1A:D8:6B:A8:13:72 Authority key identifier: 6D:D0:75:C0:70:CD:19:40:5C:09:4D:4D:3D:4B:DA:16:34:0C:EE:FC Certificate issuer: /CN=A91B4873/serialNumber=6DD075C070CD19405C094D4D3D4BDA16340CEEFC Certificate serial: A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bdB1wHDNGUBcCU1NPUvaFjQM7vw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4873/56A5B2AE38E711EF844B4F65C4F9AE02/bdB1wHDNGUBcCU1NPUvaFjQM7vw.mft Manifest number: A9 Signing time: Sat 31 May 2025 05:40:27 +0000 Manifest this update: Sat 31 May 2025 05:40:26 +0000 Manifest next update: Sat 07 Jun 2025 05:40:26 +0000 Files and hashes: 1: bdB1wHDNGUBcCU1NPUvaFjQM7vw.crl (hash: d1SvziAKl/ptBWiODRGRt635+jGQaXBoxajLeyh9h68=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4873/56A5B2AE38E711EF844B4F65C4F9AE02/bdB1wHDNGUBcCU1NPUvaFjQM7vw.crl rsync://rpki.apnic.net/member_repository/A91B4873/56A5B2AE38E711EF844B4F65C4F9AE02/bdB1wHDNGUBcCU1NPUvaFjQM7vw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bdB1wHDNGUBcCU1NPUvaFjQM7vw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:40:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 169 (0xa9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4873, serialNumber=6DD075C070CD19405C094D4D3D4BDA16340CEEFC Validity Not Before: May 31 05:40:26 2025 GMT Not After : Jun 7 05:40:26 2025 GMT Subject: CN=683a964a-2974 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:43:a8:36:de:e1:08:6b:3f:04:0f:1c:d1:ce: f1:fd:79:71:ec:18:bd:93:a1:8a:53:b6:5f:0f:e6: b6:8c:d5:73:63:0f:0a:08:4f:26:5b:11:d3:cf:4b: d2:e3:6f:7c:aa:07:0f:d5:b1:8d:0a:17:3d:db:6d: ca:d2:73:a1:dc:1a:d7:54:9d:12:fa:ff:09:f4:1d: 17:8d:19:7d:a2:d0:cc:29:38:0d:f2:bc:c2:24:b6: 2a:63:23:c7:53:ee:33:be:ce:47:2d:9d:71:74:33: 4e:eb:96:94:2c:c5:39:5f:4f:31:bb:75:73:14:db: 14:5a:ed:15:fa:ff:b2:96:ae:c5:8c:b6:49:35:96: 09:a9:55:0d:46:a2:1e:10:d7:f0:5d:f2:36:10:6d: 25:ff:9d:af:73:4f:b2:58:4a:69:0d:49:4a:86:7e: bf:61:84:0d:ea:6b:b0:d7:1e:ad:bb:ed:14:e9:61: 5d:4e:06:10:8a:a3:56:0a:36:79:34:10:6d:a6:b2: 5a:44:c5:42:c1:5c:a7:1f:37:67:ae:8f:b4:73:0e: 31:e1:fc:e2:50:8a:e6:b7:67:d1:9a:0c:d6:8e:10: 92:94:ab:d9:4c:f5:54:14:0e:7b:fb:ed:37:de:21: 34:6a:ea:01:24:77:b5:62:92:d9:7b:3e:5b:dc:87: 1c:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:68:86:A9:25:BC:EF:57:17:72:80:A3:C3:CF:1A:D8:6B:A8:13:72 X509v3 Authority Key Identifier: keyid:6D:D0:75:C0:70:CD:19:40:5C:09:4D:4D:3D:4B:DA:16:34:0C:EE:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4873/56A5B2AE38E711EF844B4F65C4F9AE02/bdB1wHDNGUBcCU1NPUvaFjQM7vw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bdB1wHDNGUBcCU1NPUvaFjQM7vw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4873/56A5B2AE38E711EF844B4F65C4F9AE02/bdB1wHDNGUBcCU1NPUvaFjQM7vw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:90:f5:29:5e:e5:9e:84:26:7a:7c:c2:8e:2c:56:fa:d5:b1: ed:57:06:06:dd:b7:91:9d:0b:b0:29:b7:c4:32:b7:9f:6f:91: 58:f2:d2:e3:1e:4e:00:c5:b7:49:a1:e7:fc:a3:b3:5a:9d:f6: 73:56:2c:e8:89:fb:ca:37:69:af:57:ca:fd:9d:5d:1b:28:c8: 43:81:b1:a3:b2:bc:3a:0b:31:bc:bf:79:5a:7d:0a:21:3c:a6: c5:b0:81:06:6d:12:71:15:bc:0a:f8:f9:40:fe:68:a5:75:0f: 47:18:48:44:ea:45:86:fc:3c:4b:66:b3:56:85:1e:ac:c3:07: 17:58:50:b0:fe:61:d5:31:af:a5:ab:14:b1:67:dc:52:82:81: 94:7b:96:94:bb:f2:23:da:3f:97:ec:bb:ac:a9:bc:39:91:a7: 66:70:6d:b6:aa:73:08:b3:be:2d:83:de:c5:99:a6:f0:8e:b1: 10:6f:2d:5e:a6:fb:d3:b4:c8:ef:12:32:9f:0c:03:dc:09:1a: 6e:c3:53:72:5c:1b:15:62:26:a6:a4:f5:07:9e:ca:b8:a1:fd: 97:ec:bb:11:7d:a7:cd:98:4f:57:75:9d:ad:98:6c:64:6d:d2: 49:6c:27:0a:76:8c:e3:00:f1:6f:01:a6:73:1f:d0:5c:9f:2c: 26:39:5d:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ4NzMxMTAvBgNVBAUTKDZERDA3NUMwNzBDRDE5NDA1QzA5NEQ0RDNENEJEQTE2 MzQwQ0VFRkMwHhcNMjUwNTMxMDU0MDI2WhcNMjUwNjA3MDU0MDI2WjAYMRYwFAYD VQQDEw02ODNhOTY0YS0yOTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA40OoNt7hCGs/BA8c0c7x/Xlx7Bi9k6GKU7ZfD+a2jNVzYw8KCE8mWxHTz0vS 4298qgcP1bGNChc9223K0nOh3BrXVJ0S+v8J9B0XjRl9otDMKTgN8rzCJLYqYyPH U+4zvs5HLZ1xdDNO65aULMU5X08xu3VzFNsUWu0V+v+ylq7FjLZJNZYJqVUNRqIe ENfwXfI2EG0l/52vc0+yWEppDUlKhn6/YYQN6muw1x6tu+0U6WFdTgYQiqNWCjZ5 NBBtprJaRMVCwVynHzdnro+0cw4x4fziUIrmt2fRmgzWjhCSlKvZTPVUFA57++03 3iE0auoBJHe1YpLZez5b3IccvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAhohqkl vO9XF3KAo8PPGthrqBNyMB8GA1UdIwQYMBaAFG3QdcBwzRlAXAlNTT1L2hY0DO78 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDg3My81NkE1QjJBRTM4 RTcxMUVGODQ0QjRGNjVDNEY5QUUwMi9iZEIxd0hETkdVQmNDVTFOUFV2YUZqUU03 dncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JkQjF3SEROR1VCY0NVMU5QVXZhRmpRTTd2dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDg3My81NkE1QjJBRTM4RTcxMUVGODQ0QjRGNjVDNEY5QUUwMi9iZEIxd0hETkdV QmNDVTFOUFV2YUZqUU03dncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjkPUpXuWehCZ6fMKOLFb61bHtVwYG3beRnQuwKbfEMrefb5FY8tLj Hk4AxbdJoef8o7NanfZzVizoifvKN2mvV8r9nV0bKMhDgbGjsrw6CzG8v3lafQoh PKbFsIEGbRJxFbwK+PlA/mildQ9HGEhE6kWG/DxLZrNWhR6swwcXWFCw/mHVMa+l qxSxZ9xSgoGUe5aUu/Ij2j+X7Lusqbw5kadmcG22qnMIs74tg97FmabwjrEQby1e pvvTtMjvEjKfDAPcCRpuw1NyXBsVYiampPUHnsq4of2X7LsRfafNmE9XdZ2tmGxk bdJJbCcKdozjAPFvAaZzH9BcnywmOV1/ -----END CERTIFICATE-----Generated at Sat May 31 17:49:43 2025 by rpki-client