$ rpki-client -vvf rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft File: bxP1UQCfJIptmHQ2AE6FeVFWkns.mft (raw, json) Hash identifier: MS2sQGiQTAsmUrM3cvmZ9t8B6Kwaexvl1mzX6ftsM8E= Subject key identifier: B1:7D:19:BC:B0:38:84:C0:CB:C3:91:10:83:53:B3:73:26:CD:AD:75 Authority key identifier: 6F:13:F5:51:00:9F:24:8A:6D:98:74:36:00:4E:85:79:51:56:92:7B Certificate issuer: /CN=A91CAFC4/serialNumber=6F13F551009F248A6D987436004E85795156927B Certificate serial: 0904 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bxP1UQCfJIptmHQ2AE6FeVFWkns.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft Manifest number: 08F1 Signing time: Fri 06 Jun 2025 20:29:16 +0000 Manifest this update: Fri 06 Jun 2025 20:29:15 +0000 Manifest next update: Fri 13 Jun 2025 20:29:15 +0000 Files and hashes: 1: bxP1UQCfJIptmHQ2AE6FeVFWkns.crl (hash: Yf05I+DbwAB7ilUA4qUdwNF2xJZiPDtH4vo6yx/7CY8=) 2: D2039A56AABC11EEA0370F2CC4F9AE02.roa (hash: V5P8MqryTvl9uPbcl4kRoIx/Fd4WpfSFp93LMG/SR30=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.crl rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bxP1UQCfJIptmHQ2AE6FeVFWkns.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 20:29:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2308 (0x904) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CAFC4, serialNumber=6F13F551009F248A6D987436004E85795156927B Validity Not Before: Jun 6 20:29:15 2025 GMT Not After : Jun 13 20:29:15 2025 GMT Subject: CN=68434f9b-35fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:cd:a9:b4:5c:4c:f5:0e:72:5f:43:c8:10:27: 6b:20:7a:30:5e:5e:6d:a3:af:89:3d:fd:83:53:ab: 5c:4a:d5:08:49:09:f8:d4:d0:22:9a:a4:ab:15:2a: ea:cb:f0:7b:90:96:ff:4e:8a:68:c9:3f:e5:a9:e7: 4a:61:e3:f2:27:f5:15:7f:0d:05:c5:4b:99:fe:67: 88:48:df:6a:87:a4:3a:2e:61:56:92:58:a6:4f:ba: d4:cc:ac:cd:55:c6:7a:f1:32:ea:25:1c:bc:38:d2: 28:d5:f0:16:f0:f2:26:5e:42:f0:09:a5:45:91:49: 13:72:44:a9:6d:ff:72:af:1e:f4:84:0e:88:76:b8: a6:aa:d3:d3:62:67:77:b2:10:75:c9:13:57:7a:e4: 19:98:04:4b:e7:d5:dd:fc:33:be:f6:86:7a:87:9c: 6d:19:e7:c5:d5:5c:b1:50:b9:7f:d7:20:9b:21:80: 30:56:9f:51:21:d5:73:7c:66:cf:89:88:06:28:d3: 31:d8:05:a4:1c:20:4f:e4:92:f1:3d:d1:9a:88:c4: 23:37:25:ae:1c:71:50:ca:5f:48:50:f1:ef:59:53: 8b:29:f3:d1:19:d1:17:3d:9d:fd:22:56:f6:11:ae: a4:e5:f9:cd:0e:e7:31:7d:67:24:59:ca:40:ad:b9: 41:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:7D:19:BC:B0:38:84:C0:CB:C3:91:10:83:53:B3:73:26:CD:AD:75 X509v3 Authority Key Identifier: keyid:6F:13:F5:51:00:9F:24:8A:6D:98:74:36:00:4E:85:79:51:56:92:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bxP1UQCfJIptmHQ2AE6FeVFWkns.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:b9:40:ce:06:96:29:36:ff:21:23:19:f8:ea:11:b6:45:47: 0c:b1:94:ce:5a:5f:f4:02:6a:1f:ac:aa:a4:71:61:97:99:a1: 7f:a7:9e:ba:5a:09:85:22:d5:c7:93:ca:48:a8:57:80:72:38: c1:46:46:1d:c4:a3:48:cf:a2:d1:c1:dc:b8:1e:bd:1e:5e:d2: b8:fa:84:da:c6:71:e9:40:45:f9:a5:d1:c4:d7:f9:b7:cb:c9: 31:c1:6a:85:c8:03:f8:a7:89:a0:f7:30:5c:03:6b:48:ff:5a: 32:41:a6:33:6e:f9:53:5b:3c:2c:54:00:7b:27:95:b3:72:1d: 08:69:82:e2:cf:5d:12:fa:b6:ac:43:7d:24:06:03:f4:bf:d4: 52:f3:8d:f5:8d:f7:15:3a:5e:07:e5:fb:9d:fa:22:77:57:9c: 19:9b:a8:6b:b9:08:9a:b9:6e:0a:ef:21:4d:0d:50:65:4e:a5: 77:a6:3e:33:c5:d3:44:c9:f8:f9:8e:ff:9a:bb:79:0b:f1:e3: d5:d9:d1:53:d9:eb:55:e3:bc:25:65:19:2f:f9:55:f4:b3:6e: 01:af:31:f0:7e:e9:0a:6a:ff:f9:1a:28:3f:c1:19:9f:81:12: 61:70:05:6b:38:2d:10:14:49:a3:ff:56:18:25:d2:86:ff:e8: 85:e2:a8:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCQQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FGQzQxMTAvBgNVBAUTKDZGMTNGNTUxMDA5RjI0OEE2RDk4NzQzNjAwNEU4NTc5 NTE1NjkyN0IwHhcNMjUwNjA2MjAyOTE1WhcNMjUwNjEzMjAyOTE1WjAYMRYwFAYD VQQDEw02ODQzNGY5Yi0zNWZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx82ptFxM9Q5yX0PIECdrIHowXl5to6+JPf2DU6tcStUISQn41NAimqSrFSrq y/B7kJb/TopoyT/lqedKYePyJ/UVfw0FxUuZ/meISN9qh6Q6LmFWklimT7rUzKzN VcZ68TLqJRy8ONIo1fAW8PImXkLwCaVFkUkTckSpbf9yrx70hA6IdrimqtPTYmd3 shB1yRNXeuQZmARL59Xd/DO+9oZ6h5xtGefF1VyxULl/1yCbIYAwVp9RIdVzfGbP iYgGKNMx2AWkHCBP5JLxPdGaiMQjNyWuHHFQyl9IUPHvWVOLKfPRGdEXPZ39Ilb2 Ea6k5fnNDucxfWckWcpArblB6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLF9Gbyw OITAy8OREINTs3Mmza11MB8GA1UdIwQYMBaAFG8T9VEAnySKbZh0NgBOhXlRVpJ7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUZDNC9CQzYwNjJEQ0FG OEExMUVBODU0MkQ4NUZDNEY5QUUwMi9ieFAxVVFDZkpJcHRtSFEyQUU2RmVWRldr bnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J4UDFVUUNmSklwdG1IUTJBRTZGZVZGV2tucy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QUZDNC9CQzYwNjJEQ0FGOEExMUVBODU0MkQ4NUZDNEY5QUUwMi9ieFAxVVFDZkpJ cHRtSFEyQUU2RmVWRldrbnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPuUDOBpYpNv8hIxn46hG2RUcMsZTOWl/0AmofrKqkcWGXmaF/p566 WgmFItXHk8pIqFeAcjjBRkYdxKNIz6LRwdy4Hr0eXtK4+oTaxnHpQEX5pdHE1/m3 y8kxwWqFyAP4p4mg9zBcA2tI/1oyQaYzbvlTWzwsVAB7J5Wzch0IaYLiz10S+ras Q30kBgP0v9RS8431jfcVOl4H5fud+iJ3V5wZm6hruQiauW4K7yFNDVBlTqV3pj4z xdNEyfj5jv+au3kL8ePV2dFT2etV47wlZRkv+VX0s24BrzHwfukKav/5Gig/wRmf gRJhcAVrOC0QFEmj/1YYJdKG/+iF4qjE -----END CERTIFICATE-----Generated at Sat Jun 7 20:15:08 2025 by rpki-client