$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0CE8/900D2646066A11E8B9BAF682C4F9AE02/BsYn2cMSx7R9HDpTtEdVoQpoSHw.mft File: BsYn2cMSx7R9HDpTtEdVoQpoSHw.mft (raw, json) Hash identifier: gs2eKJBxXYGvMooZsBR/RZPGugUkPF2XalAbcdB9cr8= Subject key identifier: 6D:6B:25:49:37:FE:D2:62:0C:D4:65:D7:97:6E:70:C4:3D:B4:35:2D Authority key identifier: 06:C6:27:D9:C3:12:C7:B4:7D:1C:3A:53:B4:47:55:A1:0A:68:48:7C Certificate issuer: /CN=A91E0CE8/serialNumber=06C627D9C312C7B47D1C3A53B44755A10A68487C Certificate serial: 1692 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BsYn2cMSx7R9HDpTtEdVoQpoSHw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0CE8/900D2646066A11E8B9BAF682C4F9AE02/BsYn2cMSx7R9HDpTtEdVoQpoSHw.mft Manifest number: 1679 Signing time: Fri 30 May 2025 16:53:08 +0000 Manifest this update: Fri 30 May 2025 16:53:07 +0000 Manifest next update: Fri 06 Jun 2025 16:53:07 +0000 Files and hashes: 1: BsYn2cMSx7R9HDpTtEdVoQpoSHw.crl (hash: C1gwyI2EMUKg1p2o6KT+CkD/tt5jAbVnWtKOqF+MX1w=) 2: 091435C84FA911EFB86F4D40C4F9AE02.roa (hash: e5jgIESXFxNT6NU+78fDrpwylXFQS920y6o/aeQL2pY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0CE8/900D2646066A11E8B9BAF682C4F9AE02/BsYn2cMSx7R9HDpTtEdVoQpoSHw.crl rsync://rpki.apnic.net/member_repository/A91E0CE8/900D2646066A11E8B9BAF682C4F9AE02/BsYn2cMSx7R9HDpTtEdVoQpoSHw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BsYn2cMSx7R9HDpTtEdVoQpoSHw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 16:53:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5778 (0x1692) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0CE8, serialNumber=06C627D9C312C7B47D1C3A53B44755A10A68487C Validity Not Before: May 30 16:53:07 2025 GMT Not After : Jun 6 16:53:07 2025 GMT Subject: CN=6839e273-576c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:7f:5b:54:54:69:94:ff:54:13:0f:5c:84:18: 7b:96:0c:dc:02:b2:92:f5:94:57:23:34:91:68:05: ef:2d:36:21:68:1c:43:e9:7e:9e:e1:e4:65:11:b7: 5c:97:7f:4f:d0:5b:fd:c2:dc:d2:13:f6:1e:2e:ea: 07:d8:13:a5:14:22:84:1e:0f:cb:b5:0b:67:9f:e6: bb:f2:1d:5c:63:83:cb:07:8a:00:11:64:ab:c4:31: 11:24:db:cc:a6:5f:e6:9b:b3:4e:fd:be:56:b8:c0: bd:db:23:b0:d1:49:17:1f:3b:69:88:08:22:37:e6: 59:56:d8:93:d7:78:6d:80:56:6e:cc:e1:42:5e:0c: 84:5e:09:f7:3d:61:04:31:ee:f5:6b:82:a2:79:68: ab:3b:f8:8a:65:ab:a8:dd:ae:c8:9d:a2:d9:3a:cd: 3b:17:c7:35:5b:52:11:01:8d:51:88:9c:4b:30:06: f8:16:01:35:ef:38:15:9c:87:57:02:b3:6f:d0:3f: b0:39:44:89:a7:07:0a:bb:77:30:15:25:52:3c:9f: be:ff:85:cb:97:a0:77:81:e2:66:c3:61:39:05:d3: a6:c8:eb:cc:2e:8f:a0:ef:99:ea:ee:f6:92:58:fc: 64:0e:15:2d:37:f5:2e:a3:90:9e:04:f0:e7:dc:ce: b9:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:6B:25:49:37:FE:D2:62:0C:D4:65:D7:97:6E:70:C4:3D:B4:35:2D X509v3 Authority Key Identifier: keyid:06:C6:27:D9:C3:12:C7:B4:7D:1C:3A:53:B4:47:55:A1:0A:68:48:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0CE8/900D2646066A11E8B9BAF682C4F9AE02/BsYn2cMSx7R9HDpTtEdVoQpoSHw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BsYn2cMSx7R9HDpTtEdVoQpoSHw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0CE8/900D2646066A11E8B9BAF682C4F9AE02/BsYn2cMSx7R9HDpTtEdVoQpoSHw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:4d:4e:a2:40:ec:7a:3f:4a:b9:5f:b1:c1:e1:ec:ff:3c:b7: f9:82:0f:f0:4e:f3:22:98:e4:e0:08:4a:85:c4:12:d3:4d:27: 79:5d:f0:68:ac:31:5d:3d:55:dc:e7:15:83:e0:fd:87:40:df: db:3f:fa:6c:14:e1:94:f3:55:58:4d:ae:92:f5:ae:95:ea:32: 43:c2:19:3d:a4:23:00:1d:7b:98:97:78:db:37:d8:4f:1a:4f: dc:0d:17:47:41:d1:17:32:49:2a:6d:df:ff:2e:54:49:38:36: 7e:ff:9a:9f:b8:c1:e5:8f:f9:a6:16:9e:7c:2b:51:0f:31:52: ae:30:07:49:1e:39:94:0e:7a:bc:71:f6:24:6e:2c:92:ad:28: db:5a:75:44:29:af:71:c9:e3:4d:3d:45:d0:7e:4d:e2:a3:fb: 73:fd:70:5f:7c:8c:19:7e:6b:3d:24:64:9f:87:b1:80:0a:29: ff:7d:94:31:df:ae:f1:13:1c:c5:1a:1f:d5:2e:bb:48:72:8f: 72:df:c4:e7:79:43:54:0a:6d:54:87:6e:76:db:ab:59:b3:e5: 2c:b5:31:29:59:8d:8c:de:5b:5c:99:46:79:76:9f:7e:d0:d4: 88:a2:55:cb:56:54:0f:fd:85:e4:1e:1f:3b:79:f9:84:6d:02: 65:7f:3d:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFpIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBDRTgxMTAvBgNVBAUTKDA2QzYyN0Q5QzMxMkM3QjQ3RDFDM0E1M0I0NDc1NUEx MEE2ODQ4N0MwHhcNMjUwNTMwMTY1MzA3WhcNMjUwNjA2MTY1MzA3WjAYMRYwFAYD VQQDEw02ODM5ZTI3My01NzZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvH9bVFRplP9UEw9chBh7lgzcArKS9ZRXIzSRaAXvLTYhaBxD6X6e4eRlEbdc l39P0Fv9wtzSE/YeLuoH2BOlFCKEHg/LtQtnn+a78h1cY4PLB4oAEWSrxDERJNvM pl/mm7NO/b5WuMC92yOw0UkXHztpiAgiN+ZZVtiT13htgFZuzOFCXgyEXgn3PWEE Me71a4KieWirO/iKZauo3a7InaLZOs07F8c1W1IRAY1RiJxLMAb4FgE17zgVnIdX ArNv0D+wOUSJpwcKu3cwFSVSPJ++/4XLl6B3geJmw2E5BdOmyOvMLo+g75nq7vaS WPxkDhUtN/Uuo5CeBPDn3M65hQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG1rJUk3 /tJiDNRl15ducMQ9tDUtMB8GA1UdIwQYMBaAFAbGJ9nDEse0fRw6U7RHVaEKaEh8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMENFOC85MDBEMjY0NjA2 NkExMUU4QjlCQUY2ODJDNEY5QUUwMi9Cc1luMmNNU3g3UjlIRHBUdEVkVm9RcG9T SHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JzWW4yY01TeDdSOUhEcFR0RWRWb1Fwb1NIdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MENFOC85MDBEMjY0NjA2NkExMUU4QjlCQUY2ODJDNEY5QUUwMi9Cc1luMmNNU3g3 UjlIRHBUdEVkVm9RcG9TSHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsTU6iQOx6P0q5X7HB4ez/PLf5gg/wTvMimOTgCEqFxBLTTSd5XfBo rDFdPVXc5xWD4P2HQN/bP/psFOGU81VYTa6S9a6V6jJDwhk9pCMAHXuYl3jbN9hP Gk/cDRdHQdEXMkkqbd//LlRJODZ+/5qfuMHlj/mmFp58K1EPMVKuMAdJHjmUDnq8 cfYkbiySrSjbWnVEKa9xyeNNPUXQfk3io/tz/XBffIwZfms9JGSfh7GACin/fZQx 367xExzFGh/VLrtIco9y38TneUNUCm1Uh25226tZs+UstTEpWY2M3ltcmUZ5dp9+ 0NSIolXLVlQP/YXkHh87efmEbQJlfz2m -----END CERTIFICATE-----Generated at Sat May 31 17:37:44 2025 by rpki-client