$ rpki-client -vvf rpki.sub.apnic.net/repository/A917447B0000/0/BD435E3ED6FEEC26F879A0542F609A272CC71307.mft File: BD435E3ED6FEEC26F879A0542F609A272CC71307.mft (raw, json) Hash identifier: jLlLZUgLYLi4thegBCJq7h4gWysx2mp1NOdZPGAJYl4= Subject key identifier: 2F:1F:59:3A:9D:10:CB:1C:EB:B3:72:D9:B3:87:0F:4A:91:8C:E8:43 Authority key identifier: BD:43:5E:3E:D6:FE:EC:26:F8:79:A0:54:2F:60:9A:27:2C:C7:13:07 Certificate issuer: /CN=A917447B0000/serialNumber=BD435E3ED6FEEC26F879A0542F609A272CC71307 Certificate serial: 32C9C2FB9EA9F83A82FD4895C5B6540CCCBBF99C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vUNePtb-7Cb4eaBUL2CaJyzHEwc.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A917447B0000/0/BD435E3ED6FEEC26F879A0542F609A272CC71307.mft Manifest number: 015F Signing time: Mon 02 Jun 2025 12:13:57 +0000 Manifest this update: Mon 02 Jun 2025 12:08:57 +0000 Manifest next update: Tue 03 Jun 2025 13:42:57 +0000 Files and hashes: 1: 3136302e3138372e3132342e302f32332d3234203d3e20313533333436.roa (hash: 6Sq9SvcA7Ko4uHqBJaPg4mhC8hCWFMTiL0m1v1oh8PE=) 2: BD435E3ED6FEEC26F879A0542F609A272CC71307.crl (hash: 82denQTIKglQ1nVsXeNAYNlEgsn2HyHYnsGcU3shn6E=) Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A917447B0000/0/BD435E3ED6FEEC26F879A0542F609A272CC71307.crl rsync://rpki.sub.apnic.net/repository/A917447B0000/0/BD435E3ED6FEEC26F879A0542F609A272CC71307.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vUNePtb-7Cb4eaBUL2CaJyzHEwc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Jun 2025 13:42:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:c9:c2:fb:9e:a9:f8:3a:82:fd:48:95:c5:b6:54:0c:cc:bb:f9:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917447B0000, serialNumber=BD435E3ED6FEEC26F879A0542F609A272CC71307 Validity Not Before: Jun 2 12:08:57 2025 GMT Not After : Jun 3 13:42:57 2025 GMT Subject: CN=2F1F593A9D10CB1CEBB372D9B3870F4A918CE843 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:2b:a7:f6:9b:6c:e0:32:58:2e:79:a7:bf:f1: 13:0a:58:62:7b:3c:b0:0d:ee:21:e5:3d:49:1d:e7: 13:01:a2:c5:f1:8e:b8:86:9f:66:b7:c8:08:97:c1: eb:d2:0d:a4:e3:ad:ad:b8:10:85:c0:85:7e:5b:77: fb:04:57:f1:b7:34:af:25:01:1d:f7:14:a8:78:a3: a0:87:3b:7b:22:a9:11:51:ae:cf:f6:01:fd:fe:01: a9:37:a2:b4:96:0b:97:3f:aa:fd:25:e8:90:fa:86: ac:0e:0c:30:c2:d8:69:ce:ea:fd:10:70:75:fe:d4: 09:33:f5:9c:b0:82:2a:b8:ac:00:14:58:8c:6c:47: ec:1f:69:11:19:3b:bc:90:d1:3f:b0:79:0d:33:28: 83:7e:3c:ad:4f:f8:3f:43:76:1c:3e:0c:53:22:71: 36:67:f2:7f:6d:7f:18:c5:48:f1:b1:01:2c:00:d8: 57:bb:81:07:05:c3:e6:21:29:5f:f1:ea:99:1c:15: 9b:84:cb:21:ad:c9:40:1e:2c:d1:e6:88:09:f0:ac: bc:54:23:45:2f:13:31:54:c9:fe:a6:c2:dd:3f:07: 95:90:65:58:62:60:08:52:51:2c:cf:03:1e:90:da: 15:72:a9:a3:d7:10:c2:f5:7c:61:85:5f:10:f3:e1: 3a:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:1F:59:3A:9D:10:CB:1C:EB:B3:72:D9:B3:87:0F:4A:91:8C:E8:43 X509v3 Authority Key Identifier: keyid:BD:43:5E:3E:D6:FE:EC:26:F8:79:A0:54:2F:60:9A:27:2C:C7:13:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A917447B0000/0/BD435E3ED6FEEC26F879A0542F609A272CC71307.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vUNePtb-7Cb4eaBUL2CaJyzHEwc.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A917447B0000/0/BD435E3ED6FEEC26F879A0542F609A272CC71307.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 04:b4:64:2a:74:d5:8e:c9:70:c3:18:67:cb:4b:05:39:df:3b: aa:86:32:93:67:9e:30:26:ab:c5:6c:64:79:50:9c:3d:e2:09: 82:3b:52:ed:d2:b2:8c:d1:94:c9:36:fb:c1:05:86:3b:3f:47: ce:04:b5:da:23:c7:70:28:83:cd:52:bb:8f:b2:20:24:ce:95: fd:25:b6:ea:e8:08:94:33:88:7f:b2:5e:41:66:c5:bc:0d:8b: e8:cd:6d:9f:95:7e:53:a6:29:fe:fe:6e:e4:8e:c2:3c:1c:53: fe:af:da:0e:4a:83:11:c4:21:f1:89:60:ce:2d:4a:64:a4:8a: 07:86:b7:3f:ee:21:0f:21:4a:bf:6c:c5:dc:56:b6:0b:12:6b: e6:ac:4c:ba:60:4b:a7:95:00:26:10:97:da:c9:02:cf:d4:e6: 4d:80:53:68:1a:f6:10:22:13:12:8e:3f:ea:a9:32:12:d8:81: 8e:1f:dc:0c:95:aa:44:77:6c:42:d1:e9:cb:07:01:35:ac:c3: 9f:7b:5e:a2:47:99:93:d9:94:44:1d:17:a2:99:d3:2f:e2:8c: 90:69:9f:50:a6:b2:79:e9:95:c7:1d:61:0c:64:12:55:a7:df: 08:09:e4:70:30:e0:d2:4b:37:12:14:5f:28:62:1c:1c:02:45: f8:78:e7:b7 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUMsnC+56p+DqC/UiVxbZUDMy7+ZwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNzQ0N0IwMDAwMTEwLwYDVQQFEyhCRDQzNUUzRUQ2 RkVFQzI2Rjg3OUEwNTQyRjYwOUEyNzJDQzcxMzA3MB4XDTI1MDYwMjEyMDg1N1oX DTI1MDYwMzEzNDI1N1owMzExMC8GA1UEAxMoMkYxRjU5M0E5RDEwQ0IxQ0VCQjM3 MkQ5QjM4NzBGNEE5MThDRTg0MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK4rp/abbOAyWC55p7/xEwpYYns8sA3uIeU9SR3nEwGixfGOuIafZrfICJfB 69INpOOtrbgQhcCFflt3+wRX8bc0ryUBHfcUqHijoIc7eyKpEVGuz/YB/f4BqTei tJYLlz+q/SXokPqGrA4MMMLYac7q/RBwdf7UCTP1nLCCKrisABRYjGxH7B9pERk7 vJDRP7B5DTMog348rU/4P0N2HD4MUyJxNmfyf21/GMVI8bEBLADYV7uBBwXD5iEp X/HqmRwVm4TLIa3JQB4s0eaICfCsvFQjRS8TMVTJ/qbC3T8HlZBlWGJgCFJRLM8D HpDaFXKpo9cQwvV8YYVfEPPhOncCAwEAAaOCAhswggIXMB0GA1UdDgQWBBQvH1k6 nRDLHOuzctmzhw9KkYzoQzAfBgNVHSMEGDAWgBS9Q14+1v7sJvh5oFQvYJonLMcT BzAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE3NDQ3QjAwMDAvMC9CRDQzNUUz RUQ2RkVFQzI2Rjg3OUEwNTQyRjYwOUEyNzJDQzcxMzA3LmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CM0EyNEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi92VU5lUHRiLTdD YjRlYUJVTDJDYUp5ekhFd2MuY2VyMH0GCCsGAQUFBwELBHEwbzBtBggrBgEFBQcw C4ZhcnN5bmM6Ly9ycGtpLnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTE3NDQ3 QjAwMDAvMC9CRDQzNUUzRUQ2RkVFQzI2Rjg3OUEwNTQyRjYwOUEyNzJDQzcxMzA3 Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIw EDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG 9w0BAQsFAAOCAQEABLRkKnTVjslwwxhny0sFOd87qoYyk2eeMCarxWxkeVCcPeIJ gjtS7dKyjNGUyTb7wQWGOz9HzgS12iPHcCiDzVK7j7IgJM6V/SW26ugIlDOIf7Je QWbFvA2L6M1tn5V+U6Yp/v5u5I7CPBxT/q/aDkqDEcQh8Ylgzi1KZKSKB4a3P+4h DyFKv2zF3Fa2CxJr5qxMumBLp5UAJhCX2skCz9TmTYBTaBr2ECITEo4/6qkyEtiB jh/cDJWqRHdsQtHpywcBNazDn3teokeZk9mURB0XopnTL+KMkGmfUKayeemVxx1h DGQSVaffCAnkcDDg0ks3EhRfKGIcHAJF+Hjntw== -----END CERTIFICATE-----Generated at Mon Jun 2 20:04:20 2025 by rpki-client