$ rpki-client -vvf rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft File: BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft (raw, json) Hash identifier: tTRMehOaWoZqmO6FjpDdlxm2r8FKZJKRMhuuNGDF3Nk= Subject key identifier: 55:84:0D:15:B8:64:B7:C9:34:D4:4A:69:28:EF:A1:53:2B:51:3B:EA Authority key identifier: 06:66:6A:EC:D7:8C:0A:5E:D1:37:90:A5:E9:AA:40:C3:49:0F:BC:F1 Certificate issuer: /CN=A91F63DC/serialNumber=06666AECD78C0A5ED13790A5E9AA40C3490FBCF1 Certificate serial: 0135 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BmZq7NeMCl7RN5Cl6apAw0kPvPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft Manifest number: 0133 Signing time: Sat 31 May 2025 04:07:54 +0000 Manifest this update: Sat 31 May 2025 04:07:54 +0000 Manifest next update: Sat 07 Jun 2025 04:07:54 +0000 Files and hashes: 1: BmZq7NeMCl7RN5Cl6apAw0kPvPE.crl (hash: DVkHb6LI0NPGSIIZFuonLEfHDKN7z9lgUylexyXbatc=) 2: 9FFF0E74665511EEB872BE4DC4F9AE02.roa (hash: HsI9s/avf/WsE7yy/2Fnz0a9pkM1ZrwF3kHF8jU1yp8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.crl rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BmZq7NeMCl7RN5Cl6apAw0kPvPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:07:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 309 (0x135) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F63DC, serialNumber=06666AECD78C0A5ED13790A5E9AA40C3490FBCF1 Validity Not Before: May 31 04:07:54 2025 GMT Not After : Jun 7 04:07:54 2025 GMT Subject: CN=683a809a-ee83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:0d:05:e1:b0:06:fe:d0:8b:7b:68:0c:b7:2b: f7:65:61:c4:7c:c6:98:6d:a1:f3:7a:dc:c6:5e:fe: 95:b7:f0:41:94:b4:cb:e7:e5:96:5a:a2:82:bc:78: 51:46:f3:31:e0:0d:ba:54:f0:27:1a:c0:c8:e0:a9: fa:da:ac:24:8a:04:15:76:04:96:ca:ce:47:d9:a5: 37:14:be:f1:e2:a5:50:e4:f3:57:b4:cb:09:0e:3f: eb:41:f9:b2:c3:fa:77:76:79:05:f6:37:8e:ba:48: b4:36:6e:68:31:35:3e:2c:62:a0:93:7b:8a:36:80: 74:df:35:ae:23:9f:ce:9e:7e:b2:85:e0:67:f2:bf: 1b:e1:ad:52:65:e2:40:e1:94:66:8a:4f:70:25:ec: 9c:02:53:3e:3a:bc:99:db:8b:43:18:19:0a:10:c0: 21:2c:a2:56:a3:c0:3c:2f:3b:d2:37:e9:1b:be:23: a8:ba:d3:e0:7b:28:90:a1:f5:47:4c:73:7d:74:45: b9:6d:35:17:46:21:80:dd:67:54:67:46:1c:fd:e1: 99:0c:29:44:df:9c:e2:2d:f2:c6:c5:db:bb:fd:15: cb:68:5a:bf:ca:3c:d1:4c:36:e6:d6:48:cc:a5:cb: cd:f1:37:5f:4c:1d:64:d2:81:5c:5c:fb:67:73:cb: f2:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:84:0D:15:B8:64:B7:C9:34:D4:4A:69:28:EF:A1:53:2B:51:3B:EA X509v3 Authority Key Identifier: keyid:06:66:6A:EC:D7:8C:0A:5E:D1:37:90:A5:E9:AA:40:C3:49:0F:BC:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BmZq7NeMCl7RN5Cl6apAw0kPvPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:4a:50:f5:a0:22:3b:41:98:95:0b:ae:b4:c9:6d:b3:bd:9a: d6:1f:e1:73:5a:fe:36:29:e7:b8:b6:b5:39:b4:00:e0:52:1d: 34:12:6e:f3:6f:ad:92:37:7e:ec:b2:c1:a6:b2:61:b6:47:26: 19:6f:23:4c:62:00:2a:81:2e:c3:26:a5:3c:bb:67:8c:42:35: ce:8a:37:d9:3a:03:a7:79:0c:8a:f8:69:32:f8:22:a8:1d:39: 6a:c1:e3:00:f1:4e:5e:3b:27:74:10:70:05:a1:d3:9a:a3:16: d5:60:90:6b:16:7f:9e:5c:59:f6:bf:37:05:4b:be:16:77:1d: ab:d6:83:03:95:da:f9:85:3b:62:b4:26:75:a7:1d:e6:44:e0: 8f:96:50:a6:c2:1b:a4:e4:78:73:ef:00:78:7b:1f:26:03:e7: 42:94:68:69:c7:4e:fa:04:ac:29:8f:1f:05:cf:52:30:e4:1c: 04:14:77:92:12:e8:e2:70:3c:28:c7:ea:e9:0a:af:5b:e4:03: e4:a0:e7:02:c3:65:df:6d:12:ca:3e:8b:9d:3a:e3:07:d2:70: 81:35:ed:ce:7d:8a:d3:32:f8:a6:0f:db:2b:b9:89:f5:45:9a: 62:05:5a:6d:f8:74:31:71:4f:74:0c:e9:b8:c2:0c:f5:6b:63: 74:fa:58:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYzREMxMTAvBgNVBAUTKDA2NjY2QUVDRDc4QzBBNUVEMTM3OTBBNUU5QUE0MEMz NDkwRkJDRjEwHhcNMjUwNTMxMDQwNzU0WhcNMjUwNjA3MDQwNzU0WjAYMRYwFAYD VQQDEw02ODNhODA5YS1lZTgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyg0F4bAG/tCLe2gMtyv3ZWHEfMaYbaHzetzGXv6Vt/BBlLTL5+WWWqKCvHhR RvMx4A26VPAnGsDI4Kn62qwkigQVdgSWys5H2aU3FL7x4qVQ5PNXtMsJDj/rQfmy w/p3dnkF9jeOuki0Nm5oMTU+LGKgk3uKNoB03zWuI5/Onn6yheBn8r8b4a1SZeJA 4ZRmik9wJeycAlM+OryZ24tDGBkKEMAhLKJWo8A8LzvSN+kbviOoutPgeyiQofVH THN9dEW5bTUXRiGA3WdUZ0Yc/eGZDClE35ziLfLGxdu7/RXLaFq/yjzRTDbm1kjM pcvN8TdfTB1k0oFcXPtnc8vynwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFWEDRW4 ZLfJNNRKaSjvoVMrUTvqMB8GA1UdIwQYMBaAFAZmauzXjApe0TeQpemqQMNJD7zx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjNEQy8wNDMxNTJFMjY2 NTMxMUVFOUM2OEVFMkJDNEY5QUUwMi9CbVpxN05lTUNsN1JONUNsNmFwQXcwa1B2 UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JtWnE3TmVNQ2w3Uk41Q2w2YXBBdzBrUHZQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjNEQy8wNDMxNTJFMjY2NTMxMUVFOUM2OEVFMkJDNEY5QUUwMi9CbVpxN05lTUNs N1JONUNsNmFwQXcwa1B2UEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+SlD1oCI7QZiVC660yW2zvZrWH+FzWv42Kee4trU5tADgUh00Em7z b62SN37sssGmsmG2RyYZbyNMYgAqgS7DJqU8u2eMQjXOijfZOgOneQyK+Gky+CKo HTlqweMA8U5eOyd0EHAFodOaoxbVYJBrFn+eXFn2vzcFS74Wdx2r1oMDldr5hTti tCZ1px3mROCPllCmwhuk5Hhz7wB4ex8mA+dClGhpx076BKwpjx8Fz1Iw5BwEFHeS EujicDwox+rpCq9b5APkoOcCw2XfbRLKPoudOuMH0nCBNe3OfYrTMvimD9sruYn1 RZpiBVpt+HQxcU90DOm4wgz1a2N0+ljH -----END CERTIFICATE-----Generated at Sat May 31 16:26:51 2025 by rpki-client