$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.mft File: Bc1Un1RUvTKyKPavyN424Ej2SA0.mft (raw, json) Hash identifier: lOTWK9yqORuVH5TAahrzFfmZ/Zws7agYXf3bj2T6+3Y= Subject key identifier: 0B:7A:37:AF:7D:EC:91:57:69:36:71:02:68:9F:59:1D:6F:80:6D:E2 Authority key identifier: 05:CD:54:9F:54:54:BD:32:B2:28:F6:AF:C8:DE:36:E0:48:F6:48:0D Certificate issuer: /CN=A91E8881/serialNumber=05CD549F5454BD32B228F6AFC8DE36E048F6480D Certificate serial: 07B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bc1Un1RUvTKyKPavyN424Ej2SA0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.mft Manifest number: 07B0 Signing time: Wed 04 Jun 2025 21:05:42 +0000 Manifest this update: Wed 04 Jun 2025 21:05:41 +0000 Manifest next update: Wed 11 Jun 2025 21:05:41 +0000 Files and hashes: 1: Bc1Un1RUvTKyKPavyN424Ej2SA0.crl (hash: gCACannzoNUpxUZSyCXrLlyu99bFrneGNzVWc8XybDI=) 2: EAC9D46200F911EB8E61B84CC4F9AE02.roa (hash: Vn5biCjexx3cjiQ4QgNEGs4i33iiyVoqmR3L4tJPzNU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.crl rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bc1Un1RUvTKyKPavyN424Ej2SA0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 21:05:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1975 (0x7b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8881, serialNumber=05CD549F5454BD32B228F6AFC8DE36E048F6480D Validity Not Before: Jun 4 21:05:41 2025 GMT Not After : Jun 11 21:05:41 2025 GMT Subject: CN=6840b526-395b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:ba:87:d7:99:f8:83:43:b2:06:13:50:de:c2: 5c:29:e4:7f:58:95:2b:09:af:38:5e:40:76:60:97: 4e:12:47:e6:6e:fe:9b:13:71:79:54:36:48:24:8a: d9:0c:01:91:c1:80:ee:ed:e4:32:18:50:f9:e4:11: 20:44:95:71:eb:78:91:54:e9:1e:56:90:f5:dd:02: 97:2e:b9:ef:61:c4:04:17:35:7c:35:66:1e:c0:23: d4:2f:73:16:bf:8f:17:2f:7b:fa:d3:db:ff:90:8d: db:50:6a:d2:33:18:4b:80:ea:20:d8:05:e1:d2:b0: 04:4c:5a:22:6a:12:f5:f6:a0:bb:55:28:40:ff:f9: a9:9c:01:9f:39:6b:41:ac:dd:3e:d7:8d:ad:93:24: 27:79:4e:a0:a1:7c:5e:4d:6f:6a:49:61:25:41:c5: 60:e7:3b:69:d1:8f:24:66:1a:69:94:70:f4:e2:8f: c1:e6:11:24:15:05:47:a4:2b:87:5e:20:cd:56:c2: 88:db:6d:9f:33:0d:eb:e9:c0:ab:23:20:b0:f0:c4: b5:2f:00:da:47:d5:90:63:e2:51:19:1d:74:0c:8c: 4b:8d:a9:86:90:3e:6d:3f:42:d4:36:75:dd:fe:f3: cd:63:73:80:f3:40:b5:da:98:74:77:b0:56:3a:15: ac:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:7A:37:AF:7D:EC:91:57:69:36:71:02:68:9F:59:1D:6F:80:6D:E2 X509v3 Authority Key Identifier: keyid:05:CD:54:9F:54:54:BD:32:B2:28:F6:AF:C8:DE:36:E0:48:F6:48:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bc1Un1RUvTKyKPavyN424Ej2SA0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8881/089DE84000F811EBB217A449C4F9AE02/Bc1Un1RUvTKyKPavyN424Ej2SA0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:9c:4b:c1:68:ad:f9:33:a3:99:65:f2:9d:db:e4:83:3e:57: d2:83:c3:70:c1:52:91:b3:83:04:bb:ef:69:81:82:b4:b2:35: a8:be:9c:bf:6f:01:6b:a9:f5:e8:23:78:30:c3:42:2b:8f:74: ef:d2:c4:7a:90:45:a4:2d:6e:c3:92:ca:d4:84:32:a0:cf:e0: 32:5d:03:df:d5:32:1a:60:6b:02:9c:6e:ab:4d:f5:46:b4:92: 7c:7c:56:ad:57:a1:ac:3d:d0:42:ec:9c:5a:e5:8c:41:e9:24: 80:5f:ee:46:7f:3d:51:16:58:a0:d3:af:08:c0:80:6d:52:57: 92:0b:d0:01:8d:0f:82:0c:1e:9f:c4:cb:02:4a:b0:59:fe:0e: a9:ca:10:78:09:cd:67:66:80:b0:17:c7:b7:25:6c:ab:01:4b: 6e:b4:d2:73:b1:24:10:8a:2f:75:b0:97:80:cb:ee:a1:4c:52: 3c:aa:49:0b:0b:d0:71:39:67:79:b7:28:ed:b7:95:af:80:20: 85:b3:ae:75:72:a4:0c:3a:2f:eb:94:a7:85:11:9f:47:19:35: 3d:50:2e:68:67:db:f0:3b:eb:f9:52:b7:15:94:f7:39:c3:13: 50:23:69:78:79:48:c7:8b:e5:5d:d8:6c:94:ff:30:7c:d5:79: c8:62:7d:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg4ODExMTAvBgNVBAUTKDA1Q0Q1NDlGNTQ1NEJEMzJCMjI4RjZBRkM4REUzNkUw NDhGNjQ4MEQwHhcNMjUwNjA0MjEwNTQxWhcNMjUwNjExMjEwNTQxWjAYMRYwFAYD VQQDEw02ODQwYjUyNi0zOTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3LqH15n4g0OyBhNQ3sJcKeR/WJUrCa84XkB2YJdOEkfmbv6bE3F5VDZIJIrZ DAGRwYDu7eQyGFD55BEgRJVx63iRVOkeVpD13QKXLrnvYcQEFzV8NWYewCPUL3MW v48XL3v609v/kI3bUGrSMxhLgOog2AXh0rAETFoiahL19qC7VShA//mpnAGfOWtB rN0+142tkyQneU6goXxeTW9qSWElQcVg5ztp0Y8kZhpplHD04o/B5hEkFQVHpCuH XiDNVsKI222fMw3r6cCrIyCw8MS1LwDaR9WQY+JRGR10DIxLjamGkD5tP0LUNnXd /vPNY3OA80C12ph0d7BWOhWsEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAt6N699 7JFXaTZxAmifWR1vgG3iMB8GA1UdIwQYMBaAFAXNVJ9UVL0ysij2r8jeNuBI9kgN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODg4MS8wODlERTg0MDAw RjgxMUVCQjIxN0E0NDlDNEY5QUUwMi9CYzFVbjFSVXZUS3lLUGF2eU40MjRFajJT QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JjMVVuMVJVdlRLeUtQYXZ5TjQyNEVqMlNBMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODg4MS8wODlERTg0MDAwRjgxMUVCQjIxN0E0NDlDNEY5QUUwMi9CYzFVbjFSVXZU S3lLUGF2eU40MjRFajJTQTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6nEvBaK35M6OZZfKd2+SDPlfSg8NwwVKRs4MEu+9pgYK0sjWovpy/ bwFrqfXoI3gww0Irj3Tv0sR6kEWkLW7DksrUhDKgz+AyXQPf1TIaYGsCnG6rTfVG tJJ8fFatV6GsPdBC7Jxa5YxB6SSAX+5Gfz1RFlig068IwIBtUleSC9ABjQ+CDB6f xMsCSrBZ/g6pyhB4Cc1nZoCwF8e3JWyrAUtutNJzsSQQii91sJeAy+6hTFI8qkkL C9BxOWd5tyjtt5WvgCCFs651cqQMOi/rlKeFEZ9HGTU9UC5oZ9vwO+v5UrcVlPc5 wxNQI2l4eUjHi+Vd2GyU/zB81XnIYn3R -----END CERTIFICATE-----Generated at Thu Jun 5 20:06:01 2025 by rpki-client