$ rpki-client -vvf rpki.apnic.net/member_repository/A91D60CF/E53608F02AFC11EFA0243C4AC4F9AE02/BHT0BqF40ixU1e9yTGssLJo7a5g.mft File: BHT0BqF40ixU1e9yTGssLJo7a5g.mft (raw, json) Hash identifier: kr9W1f7GxdxxIidBfmEfKRYdQj2YTLIw6nbJCWzuHWc= Subject key identifier: 16:7D:86:39:3D:0C:68:AC:E0:C3:D6:8C:5C:70:25:EB:97:E3:2E:50 Authority key identifier: 04:74:F4:06:A1:78:D2:2C:54:D5:EF:72:4C:6B:2C:2C:9A:3B:6B:98 Certificate issuer: /CN=A91D60CF/serialNumber=0474F406A178D22C54D5EF724C6B2C2C9A3B6B98 Certificate serial: BC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BHT0BqF40ixU1e9yTGssLJo7a5g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D60CF/E53608F02AFC11EFA0243C4AC4F9AE02/BHT0BqF40ixU1e9yTGssLJo7a5g.mft Manifest number: B9 Signing time: Tue 03 Jun 2025 05:44:22 +0000 Manifest this update: Tue 03 Jun 2025 05:44:21 +0000 Manifest next update: Tue 10 Jun 2025 05:44:21 +0000 Files and hashes: 1: BHT0BqF40ixU1e9yTGssLJo7a5g.crl (hash: 2XnG2JvEZySO9QpY/gWL05dksIOhUF1VyuXjjiPqofI=) 2: B56F40DEE9DB11EFBDD8BD26C4F9AE02.roa (hash: dk/mJ6WLbx1un0lM/kEaDG7s+C714fNxg9o9daVbyM4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D60CF/E53608F02AFC11EFA0243C4AC4F9AE02/BHT0BqF40ixU1e9yTGssLJo7a5g.crl rsync://rpki.apnic.net/member_repository/A91D60CF/E53608F02AFC11EFA0243C4AC4F9AE02/BHT0BqF40ixU1e9yTGssLJo7a5g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BHT0BqF40ixU1e9yTGssLJo7a5g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 05:44:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 188 (0xbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D60CF, serialNumber=0474F406A178D22C54D5EF724C6B2C2C9A3B6B98 Validity Not Before: Jun 3 05:44:21 2025 GMT Not After : Jun 10 05:44:21 2025 GMT Subject: CN=683e8bb5-1f7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:46:48:ce:b0:4b:dd:1c:3f:b7:33:e7:f3:22: d0:83:e4:25:a2:8d:7e:7c:e1:d8:78:ba:53:ce:c4: 37:99:66:e3:a1:f2:e1:fd:73:77:1f:37:a8:d8:c7: 9a:72:9f:8f:3c:b9:e3:ef:2e:97:b3:39:a2:42:e1: 5e:81:2a:85:d7:64:37:fc:59:f9:b6:4e:61:1b:71: 06:93:42:cf:e2:bc:d9:56:84:f2:ca:bf:32:d9:9e: 10:1e:05:13:35:ce:f7:79:4f:db:77:9d:91:0b:16: a3:ec:46:a5:99:14:24:a7:22:8b:b6:bc:0a:1e:82: f3:94:0b:e9:85:01:1f:b2:7f:04:d1:20:7f:8f:d7: 85:d1:49:e4:36:f7:2a:7c:08:f5:dd:f0:6d:07:69: 18:c1:07:ae:14:c9:68:2e:a8:9f:49:7a:d9:34:35: 46:57:0d:eb:d9:f5:ff:d1:f7:9f:fd:00:c6:4c:d6: ab:aa:9e:43:c8:86:e9:3b:ff:82:5d:87:75:1e:ef: 55:4e:13:06:e4:f3:1f:43:d5:b8:52:91:2b:8c:84: b4:f3:de:f6:b1:b2:c8:6a:a1:26:54:ff:07:67:e4: 69:cd:da:bf:a4:87:7b:10:95:d0:ec:0d:9a:9d:24: 4b:8c:65:6b:43:0e:fc:ed:9c:a4:d1:76:90:81:78: 58:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:7D:86:39:3D:0C:68:AC:E0:C3:D6:8C:5C:70:25:EB:97:E3:2E:50 X509v3 Authority Key Identifier: keyid:04:74:F4:06:A1:78:D2:2C:54:D5:EF:72:4C:6B:2C:2C:9A:3B:6B:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D60CF/E53608F02AFC11EFA0243C4AC4F9AE02/BHT0BqF40ixU1e9yTGssLJo7a5g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BHT0BqF40ixU1e9yTGssLJo7a5g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D60CF/E53608F02AFC11EFA0243C4AC4F9AE02/BHT0BqF40ixU1e9yTGssLJo7a5g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:d8:fd:ab:c7:ca:42:65:46:33:e0:48:c9:ee:d8:45:ae:f9: 43:8a:10:fb:c5:35:2e:de:b2:78:68:0b:a3:51:f6:44:ef:81: 53:a2:99:eb:a7:85:0f:9e:68:0e:96:d0:6f:99:2e:11:a8:13: 0c:7d:57:8a:15:7c:b3:7a:65:54:ff:4d:1d:62:a8:26:ea:1c: 8d:02:73:e1:e0:b7:30:8f:cb:f5:d8:b6:9e:39:dc:5d:35:1e: a5:8f:a7:cc:c8:56:cc:4b:0e:c4:90:e6:b8:ef:8a:cf:39:43: 39:99:bf:d3:cd:b6:77:b7:64:e4:5e:7c:b3:22:88:69:9b:82: 76:51:20:b0:25:1e:fa:23:9f:93:e2:e8:ec:25:89:0b:c9:97: 66:bd:87:cb:08:18:a1:d4:02:8f:3a:36:a3:c9:a0:04:77:53: 24:b3:ff:46:58:1d:b5:fc:78:d7:bc:f2:9c:74:47:52:9d:0d: 44:df:68:e6:fa:6f:e4:e4:81:0e:c4:34:1e:8d:a1:b9:ed:dd: 4f:3f:94:24:68:55:7f:95:70:06:6f:1c:d7:a7:33:9b:49:7e: 94:0c:04:2e:a4:45:1d:3a:09:01:fb:d6:c4:37:bc:8e:62:5c: d0:1e:fe:28:bd:05:be:c8:c2:c5:47:d6:e6:0a:34:55:3e:81: 03:53:01:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDYwQ0YxMTAvBgNVBAUTKDA0NzRGNDA2QTE3OEQyMkM1NEQ1RUY3MjRDNkIyQzJD OUEzQjZCOTgwHhcNMjUwNjAzMDU0NDIxWhcNMjUwNjEwMDU0NDIxWjAYMRYwFAYD VQQDEw02ODNlOGJiNS0xZjdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzkZIzrBL3Rw/tzPn8yLQg+Qloo1+fOHYeLpTzsQ3mWbjofLh/XN3Hzeo2Mea cp+PPLnj7y6XszmiQuFegSqF12Q3/Fn5tk5hG3EGk0LP4rzZVoTyyr8y2Z4QHgUT Nc73eU/bd52RCxaj7EalmRQkpyKLtrwKHoLzlAvphQEfsn8E0SB/j9eF0UnkNvcq fAj13fBtB2kYwQeuFMloLqifSXrZNDVGVw3r2fX/0fef/QDGTNarqp5DyIbpO/+C XYd1Hu9VThMG5PMfQ9W4UpErjIS08972sbLIaqEmVP8HZ+Rpzdq/pId7EJXQ7A2a nSRLjGVrQw787Zyk0XaQgXhYqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBZ9hjk9 DGis4MPWjFxwJeuX4y5QMB8GA1UdIwQYMBaAFAR09AaheNIsVNXvckxrLCyaO2uY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjBDRi9FNTM2MDhGMDJB RkMxMUVGQTAyNDNDNEFDNEY5QUUwMi9CSFQwQnFGNDBpeFUxZTl5VEdzc0xKbzdh NWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JIVDBCcUY0MGl4VTFlOXlUR3NzTEpvN2E1Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjBDRi9FNTM2MDhGMDJBRkMxMUVGQTAyNDNDNEFDNEY5QUUwMi9CSFQwQnFGNDBp eFUxZTl5VEdzc0xKbzdhNWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCC2P2rx8pCZUYz4EjJ7thFrvlDihD7xTUu3rJ4aAujUfZE74FTopnr p4UPnmgOltBvmS4RqBMMfVeKFXyzemVU/00dYqgm6hyNAnPh4Lcwj8v12LaeOdxd NR6lj6fMyFbMSw7EkOa474rPOUM5mb/TzbZ3t2TkXnyzIohpm4J2USCwJR76I5+T 4ujsJYkLyZdmvYfLCBih1AKPOjajyaAEd1Mks/9GWB21/HjXvPKcdEdSnQ1E32jm +m/k5IEOxDQejaG57d1PP5QkaFV/lXAGbxzXpzObSX6UDAQupEUdOgkB+9bEN7yO YlzQHv4ovQW+yMLFR9bmCjRVPoEDUwEj -----END CERTIFICATE-----Generated at Tue Jun 3 23:47:58 2025 by rpki-client