$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD468/5B4A33C68C8F11EDBC8A6114C4F9AE02/7Tl4HnyiYyxUt_riJU4h8Bugdoc.mft File: 7Tl4HnyiYyxUt_riJU4h8Bugdoc.mft (raw, json) Hash identifier: UuMavHoDOEhr8L8qGvIxEVoDNGX9+BgYt0Or6zBaAt8= Subject key identifier: 0C:46:FC:82:92:70:BE:AB:72:3B:7F:DE:17:21:E2:5A:DB:08:6B:87 Authority key identifier: ED:39:78:1E:7C:A2:63:2C:54:B7:FA:E2:25:4E:21:F0:1B:A0:76:87 Certificate issuer: /CN=A91DD468/serialNumber=ED39781E7CA2632C54B7FAE2254E21F01BA07687 Certificate serial: 01C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Tl4HnyiYyxUt_riJU4h8Bugdoc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD468/5B4A33C68C8F11EDBC8A6114C4F9AE02/7Tl4HnyiYyxUt_riJU4h8Bugdoc.mft Manifest number: 01C0 Signing time: Sat 31 May 2025 02:43:34 +0000 Manifest this update: Sat 31 May 2025 02:43:34 +0000 Manifest next update: Sat 07 Jun 2025 02:43:34 +0000 Files and hashes: 1: 7Tl4HnyiYyxUt_riJU4h8Bugdoc.crl (hash: 6SUrn5AdLLgsTlUlXL6pPYlh/rznNeZxjQdlRqMFsAQ=) 2: 3FF7C9468C9211ED8D052619C4F9AE02.roa (hash: 5zp05k5VVLn+h5FTDM7wh1ceYmuMlTAzc+yFX4p/lNI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD468/5B4A33C68C8F11EDBC8A6114C4F9AE02/7Tl4HnyiYyxUt_riJU4h8Bugdoc.crl rsync://rpki.apnic.net/member_repository/A91DD468/5B4A33C68C8F11EDBC8A6114C4F9AE02/7Tl4HnyiYyxUt_riJU4h8Bugdoc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Tl4HnyiYyxUt_riJU4h8Bugdoc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:43:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 451 (0x1c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD468, serialNumber=ED39781E7CA2632C54B7FAE2254E21F01BA07687 Validity Not Before: May 31 02:43:34 2025 GMT Not After : Jun 7 02:43:34 2025 GMT Subject: CN=683a6cd6-8b9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:d9:f2:f0:7b:a7:76:32:de:56:6c:15:3f:88: 6d:33:1d:10:be:5d:f6:46:00:b3:7e:f4:29:8a:1c: 0d:e4:fc:a1:66:e4:f9:3b:40:9e:d0:82:d6:59:3f: 27:91:56:53:c9:f1:ca:04:2d:7b:4d:19:b7:e4:4e: 11:24:5f:7d:80:7d:ea:6a:1d:43:41:0f:27:61:7a: 3d:e7:96:42:f3:de:c1:b4:e4:b6:38:ce:f8:97:a0: c9:75:51:d7:14:15:ae:18:e3:da:11:b2:a9:88:e4: ad:fe:5b:d6:44:05:34:f9:1a:3b:a6:14:a6:e7:05: c1:c4:e8:7b:79:fe:6e:19:35:87:89:83:fc:16:e9: 39:af:37:97:76:47:2c:8b:b4:ea:1e:21:b7:33:0d: e6:96:59:5e:20:a8:c5:9e:4e:01:1e:91:2f:55:b4: 21:d1:4c:01:18:82:c3:70:ec:3e:6a:88:4c:0f:68: 5b:36:43:3b:9c:6f:17:13:f8:12:93:e1:32:ef:f0: c8:a6:96:7d:a7:00:93:2c:8c:e0:bb:63:c7:1e:2a: 8a:0a:f9:17:ba:fe:76:1b:19:38:1e:1e:ca:c3:24: bb:cc:d0:31:f3:9b:0f:ae:a1:ec:69:23:df:2a:aa: 9d:b4:c5:01:47:b1:81:d5:50:20:48:d2:f6:bd:bc: 34:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:46:FC:82:92:70:BE:AB:72:3B:7F:DE:17:21:E2:5A:DB:08:6B:87 X509v3 Authority Key Identifier: keyid:ED:39:78:1E:7C:A2:63:2C:54:B7:FA:E2:25:4E:21:F0:1B:A0:76:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD468/5B4A33C68C8F11EDBC8A6114C4F9AE02/7Tl4HnyiYyxUt_riJU4h8Bugdoc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Tl4HnyiYyxUt_riJU4h8Bugdoc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD468/5B4A33C68C8F11EDBC8A6114C4F9AE02/7Tl4HnyiYyxUt_riJU4h8Bugdoc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:38:0f:2c:f0:4f:4c:6b:fd:9e:72:27:a7:c5:43:2f:4c:5d: 3d:3c:19:26:76:30:24:65:71:51:cc:bf:a1:f2:0b:f5:fd:ee: f6:f5:2a:ee:ad:02:b2:c1:52:a6:05:6f:e1:02:3f:09:f3:a7: 94:c7:fd:a8:4a:0a:84:13:2e:36:24:2c:ab:de:b5:14:ba:ec: ae:9c:c8:71:22:fe:ad:54:6a:37:a5:90:29:a5:75:b1:b0:4c: 94:61:0f:c0:f4:d4:e2:1d:f6:30:99:4a:80:0e:cc:85:b3:6c: 6f:9d:26:03:e2:dc:68:ea:ef:4c:1e:de:76:64:b3:d6:5d:2f: 34:e1:4e:c7:de:0f:26:ff:65:48:c0:ef:2a:4c:0a:d9:25:f5: 3b:de:1d:32:95:b9:28:ff:88:65:3e:74:6b:3f:db:f0:9f:55: ee:50:76:ff:f2:4c:56:b7:1d:38:be:04:d3:7d:49:c8:97:43: bb:ee:c9:59:59:50:d8:2a:4d:9a:ca:6e:46:95:6f:33:c2:53: 57:1d:fd:21:b5:4e:38:e1:be:4c:c4:fd:38:fa:32:fb:48:0d: 2e:57:c7:e3:c9:28:8c:76:53:c3:9c:21:31:8e:37:7f:98:13: 5a:dd:a6:01:a6:7c:1e:4b:ec:e0:17:40:c9:92:2e:e4:04:51: ac:7d:fd:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ0NjgxMTAvBgNVBAUTKEVEMzk3ODFFN0NBMjYzMkM1NEI3RkFFMjI1NEUyMUYw MUJBMDc2ODcwHhcNMjUwNTMxMDI0MzM0WhcNMjUwNjA3MDI0MzM0WjAYMRYwFAYD VQQDEw02ODNhNmNkNi04YjljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu9ny8HundjLeVmwVP4htMx0Qvl32RgCzfvQpihwN5PyhZuT5O0Ce0ILWWT8n kVZTyfHKBC17TRm35E4RJF99gH3qah1DQQ8nYXo955ZC897BtOS2OM74l6DJdVHX FBWuGOPaEbKpiOSt/lvWRAU0+Ro7phSm5wXBxOh7ef5uGTWHiYP8Fuk5rzeXdkcs i7TqHiG3Mw3mllleIKjFnk4BHpEvVbQh0UwBGILDcOw+aohMD2hbNkM7nG8XE/gS k+Ey7/DIppZ9pwCTLIzgu2PHHiqKCvkXuv52Gxk4Hh7KwyS7zNAx85sPrqHsaSPf KqqdtMUBR7GB1VAgSNL2vbw0bQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAxG/IKS cL6rcjt/3hch4lrbCGuHMB8GA1UdIwQYMBaAFO05eB58omMsVLf64iVOIfAboHaH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDQ2OC81QjRBMzNDNjhD OEYxMUVEQkM4QTYxMTRDNEY5QUUwMi83VGw0SG55aVl5eFV0X3JpSlU0aDhCdWdk b2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdUbDRIbnlpWXl4VXRfcmlKVTRoOEJ1Z2RvYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDQ2OC81QjRBMzNDNjhDOEYxMUVEQkM4QTYxMTRDNEY5QUUwMi83VGw0SG55aVl5 eFV0X3JpSlU0aDhCdWdkb2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaOA8s8E9Ma/2ecienxUMvTF09PBkmdjAkZXFRzL+h8gv1/e729Sru rQKywVKmBW/hAj8J86eUx/2oSgqEEy42JCyr3rUUuuyunMhxIv6tVGo3pZAppXWx sEyUYQ/A9NTiHfYwmUqADsyFs2xvnSYD4txo6u9MHt52ZLPWXS804U7H3g8m/2VI wO8qTArZJfU73h0ylbko/4hlPnRrP9vwn1XuUHb/8kxWtx04vgTTfUnIl0O77slZ WVDYKk2aym5GlW8zwlNXHf0htU444b5MxP04+jL7SA0uV8fjySiMdlPDnCExjjd/ mBNa3aYBpnweS+zgF0DJki7kBFGsff3S -----END CERTIFICATE-----Generated at Sat May 31 17:02:20 2025 by rpki-client