$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft File: bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft (raw, json) Hash identifier: E+g3y7XeqtvjqRvBsm3tgDYJqu8lsa8HAxwOyErfslg= Subject key identifier: FD:6E:7A:6C:FC:C6:C7:F9:DE:16:37:65:48:B5:43:BA:07:04:CB:F8 Authority key identifier: 6C:19:46:97:81:6F:9B:13:0B:A5:3C:F4:BE:E6:76:01:59:4E:8C:B1 Certificate issuer: /CN=A91CCAF1/serialNumber=6C194697816F9B130BA53CF4BEE67601594E8CB1 Certificate serial: 77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft Manifest number: 76 Signing time: Sat 31 May 2025 06:20:50 +0000 Manifest this update: Sat 31 May 2025 06:20:50 +0000 Manifest next update: Sat 07 Jun 2025 06:20:50 +0000 Files and hashes: 1: bBlGl4FvmxMLpTz0vuZ2AVlOjLE.crl (hash: WIhO34TYrqTQ5T/hYW4PUrZAm4ehZlG8RBMjPYcXXfU=) 2: BF71D9D0F26811EFBC446868C4F9AE02.roa (hash: 7+qKEqRnu4TPJKKakjwpNT1iFIHMXPBmy/g9UJm3iJo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.crl rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:20:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 119 (0x77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CCAF1, serialNumber=6C194697816F9B130BA53CF4BEE67601594E8CB1 Validity Not Before: May 31 06:20:50 2025 GMT Not After : Jun 7 06:20:50 2025 GMT Subject: CN=683a9fc2-5217 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:39:b9:18:78:ee:d4:41:ff:1e:9f:cd:6f:b4: 2b:e4:fb:0e:2e:38:d8:1e:97:de:bd:12:e7:1e:3c: 4d:65:a2:2c:14:7f:9b:6c:6c:1e:f3:58:f5:13:66: 68:d3:4f:ed:b2:d6:4d:c5:ae:d6:04:da:ed:d7:4e: 00:59:05:e9:83:14:53:a2:c4:bb:fe:25:9f:71:b0: 1b:ac:ad:ce:00:b0:45:b6:a0:61:ed:de:9d:e8:da: 49:c8:d1:af:5a:9a:3b:a7:05:fd:40:40:24:a7:fc: 46:90:ef:f8:76:95:d4:84:04:54:56:88:49:ac:50: d3:85:a6:62:75:b6:58:b5:10:0c:f9:04:f9:79:81: a2:67:41:a6:02:1e:b4:89:d4:c4:62:44:5e:64:59: 10:58:b0:f8:e0:ed:aa:47:61:96:9c:fa:12:60:03: 27:c9:a5:62:75:bd:a1:67:81:29:3f:4c:d4:83:bb: aa:c0:cc:12:20:3f:3c:02:32:4f:3b:69:c5:a4:ba: 83:9d:3b:57:e0:37:ea:4b:14:64:59:ae:f6:4a:3f: 7c:d1:a2:41:8b:73:5a:73:ce:22:60:0a:02:ca:54: c3:f7:04:7a:d6:96:0e:5c:24:43:d3:6c:7e:3f:6e: f5:16:80:5d:b4:bd:74:3f:9c:f7:b2:46:26:b0:d5: c3:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:6E:7A:6C:FC:C6:C7:F9:DE:16:37:65:48:B5:43:BA:07:04:CB:F8 X509v3 Authority Key Identifier: keyid:6C:19:46:97:81:6F:9B:13:0B:A5:3C:F4:BE:E6:76:01:59:4E:8C:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:07:9f:c0:e6:d6:eb:fc:d7:6e:c0:ca:94:84:e0:a2:1e:ff: 03:a4:c9:f2:55:07:d6:1f:ec:0c:77:77:32:05:66:d5:b7:8b: 91:89:ad:eb:2d:1e:ac:0a:c9:43:6f:56:92:49:76:93:2c:5a: a7:d7:f6:4d:58:54:d0:a1:7b:00:49:b4:8e:c2:e3:3b:d4:ed: eb:65:e5:14:5d:aa:6a:1c:7e:f0:80:46:59:0f:a0:b7:79:9b: 4e:af:77:b8:8c:71:22:01:42:5d:82:58:ed:8c:17:c0:85:ab: 4d:18:ed:3b:18:2a:a1:e4:ac:28:86:74:12:ed:dc:d2:3a:4f: b1:75:04:aa:57:0e:b3:73:68:23:ff:a3:2d:7d:6b:b2:91:24: ce:be:bb:56:8a:74:73:d9:b6:11:54:f5:61:9b:8b:45:78:1c: 5c:e0:92:69:cb:22:8c:d9:59:5b:4d:6a:f0:80:95:4b:06:b9: 65:de:4f:96:ea:38:cc:5a:de:0f:2b:4b:31:65:4b:2a:56:36: 48:2e:d5:81:88:d8:8b:6c:7e:c3:a0:0d:d3:3f:3f:dd:7a:31: c1:89:f6:4f:7b:56:16:e1:e9:82:e2:58:01:52:50:66:d0:77: 36:a1:e9:04:0b:91:51:3d:84:81:f2:5b:1f:42:24:35:67:a6: 25:bb:be:e6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD Q0FGMTExMC8GA1UEBRMoNkMxOTQ2OTc4MTZGOUIxMzBCQTUzQ0Y0QkVFNjc2MDE1 OTRFOENCMTAeFw0yNTA1MzEwNjIwNTBaFw0yNTA2MDcwNjIwNTBaMBgxFjAUBgNV BAMTDTY4M2E5ZmMyLTUyMTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCObkYeO7UQf8en81vtCvk+w4uONgel969EucePE1loiwUf5tsbB7zWPUTZmjT T+2y1k3FrtYE2u3XTgBZBemDFFOixLv+JZ9xsBusrc4AsEW2oGHt3p3o2knI0a9a mjunBf1AQCSn/EaQ7/h2ldSEBFRWiEmsUNOFpmJ1tli1EAz5BPl5gaJnQaYCHrSJ 1MRiRF5kWRBYsPjg7apHYZac+hJgAyfJpWJ1vaFngSk/TNSDu6rAzBIgPzwCMk87 acWkuoOdO1fgN+pLFGRZrvZKP3zRokGLc1pzziJgCgLKVMP3BHrWlg5cJEPTbH4/ bvUWgF20vXQ/nPeyRiaw1cNVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU/W56bPzG x/neFjdlSLVDugcEy/gwHwYDVR0jBBgwFoAUbBlGl4FvmxMLpTz0vuZ2AVlOjLEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNDQUYxLzA5QzBEMzY2OEFB RDExRUZCRUY5MTY2QUM0RjlBRTAyL2JCbEdsNEZ2bXhNTHBUejB2dVoyQVZsT2pM RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYkJsR2w0RnZteE1McFR6MHZ1WjJBVmxPakxFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUND QUYxLzA5QzBEMzY2OEFBRDExRUZCRUY5MTY2QUM0RjlBRTAyL2JCbEdsNEZ2bXhN THBUejB2dVoyQVZsT2pMRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABoHn8Dm1uv8127AypSE4KIe/wOkyfJVB9Yf7Ax3dzIFZtW3i5GJrest HqwKyUNvVpJJdpMsWqfX9k1YVNChewBJtI7C4zvU7etl5RRdqmocfvCARlkPoLd5 m06vd7iMcSIBQl2CWO2MF8CFq00Y7TsYKqHkrCiGdBLt3NI6T7F1BKpXDrNzaCP/ oy19a7KRJM6+u1aKdHPZthFU9WGbi0V4HFzgkmnLIozZWVtNavCAlUsGuWXeT5bq OMxa3g8rSzFlSypWNkgu1YGI2ItsfsOgDdM/P916McGJ9k97Vhbh6YLiWAFSUGbQ dzah6QQLkVE9hIHyWx9CJDVnpiW7vuY= -----END CERTIFICATE-----Generated at Sat May 31 16:26:58 2025 by rpki-client