$ rpki-client -vvf rpki.apnic.net/member_repository/A91166D1/ABDA5142E71511ECB82CB06EC4F9AE02/bgopAGEwM5uDbSj3ABgC9xpaTkI.mft File: bgopAGEwM5uDbSj3ABgC9xpaTkI.mft (raw, json) Hash identifier: D7vE5f3JPzm5Cq0wz6H9Js+VwDBm3EihdZr1Yo9SfS0= Subject key identifier: 5F:36:33:42:61:24:F2:C1:3B:96:B6:1F:72:3B:DB:4D:91:B1:D3:C6 Authority key identifier: 6E:0A:29:00:61:30:33:9B:83:6D:28:F7:00:18:02:F7:1A:5A:4E:42 Certificate issuer: /CN=A91166D1/serialNumber=6E0A29006130339B836D28F7001802F71A5A4E42 Certificate serial: 02CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bgopAGEwM5uDbSj3ABgC9xpaTkI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91166D1/ABDA5142E71511ECB82CB06EC4F9AE02/bgopAGEwM5uDbSj3ABgC9xpaTkI.mft Manifest number: 02C8 Signing time: Fri 25 Apr 2025 01:09:36 +0000 Manifest this update: Fri 25 Apr 2025 01:09:36 +0000 Manifest next update: Fri 02 May 2025 01:09:36 +0000 Files and hashes: 1: bgopAGEwM5uDbSj3ABgC9xpaTkI.crl (hash: 533ZN+abFcZVQb7e1Ky/ZwOTnBkpsz64wXLMuIjGOKA=) 2: 3C3A98A4E71C11EC9128DF0BC4F9AE02.roa (hash: mDMM1HWL4v8E6URAbVQH/swVIK5fppcG8TmZuHg6PMs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91166D1/ABDA5142E71511ECB82CB06EC4F9AE02/bgopAGEwM5uDbSj3ABgC9xpaTkI.crl rsync://rpki.apnic.net/member_repository/A91166D1/ABDA5142E71511ECB82CB06EC4F9AE02/bgopAGEwM5uDbSj3ABgC9xpaTkI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bgopAGEwM5uDbSj3ABgC9xpaTkI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:09:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 715 (0x2cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91166D1, serialNumber=6E0A29006130339B836D28F7001802F71A5A4E42 Validity Not Before: Apr 25 01:09:36 2025 GMT Not After : May 2 01:09:36 2025 GMT Subject: CN=680ae0d0-fb99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:30:d1:86:82:73:c6:41:93:18:84:85:9d:30: 03:92:c8:67:df:1e:8c:72:b8:38:a7:3d:a0:cb:66: db:14:bc:27:a8:30:bf:f8:db:a3:d7:6a:29:40:cf: 54:3e:27:01:e1:17:82:df:c8:93:7d:e2:79:8d:db: 05:01:a0:29:9c:5f:88:d8:72:ce:f7:91:11:97:81: 58:17:63:a5:82:29:cf:e5:52:ec:dd:41:19:2f:66: 67:02:98:2d:5b:44:8a:81:28:cc:52:ff:79:cd:ea: 6f:84:3e:56:88:ac:f5:6a:5e:56:16:9d:c0:4b:d5: ed:17:93:c4:33:2a:bd:a8:dd:35:36:de:50:a0:f1: c7:c9:13:8c:94:b3:f9:68:cd:3e:18:6b:68:ac:6c: 84:d8:ed:8e:dd:21:9c:b1:31:a7:55:b9:00:5c:46: 4b:37:bf:31:27:87:f2:9f:d3:c6:10:6f:de:fa:f2: d8:5e:82:83:5f:a6:3e:dc:35:76:c9:c2:eb:f6:e1: 65:a1:88:03:7d:02:9f:ee:f1:d8:64:d4:ad:cd:52: b8:14:8d:9f:19:4d:92:3b:64:e4:72:9f:24:71:39: ad:db:f2:45:5d:3b:13:53:17:52:14:1b:c0:b6:7a: 41:99:12:b4:b4:7a:03:a4:47:5d:04:76:11:01:44: bf:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:36:33:42:61:24:F2:C1:3B:96:B6:1F:72:3B:DB:4D:91:B1:D3:C6 X509v3 Authority Key Identifier: keyid:6E:0A:29:00:61:30:33:9B:83:6D:28:F7:00:18:02:F7:1A:5A:4E:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91166D1/ABDA5142E71511ECB82CB06EC4F9AE02/bgopAGEwM5uDbSj3ABgC9xpaTkI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bgopAGEwM5uDbSj3ABgC9xpaTkI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91166D1/ABDA5142E71511ECB82CB06EC4F9AE02/bgopAGEwM5uDbSj3ABgC9xpaTkI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ce:2a:6b:6f:e8:8e:bf:38:2b:64:fb:2d:e3:72:3d:8a:92:9f: 44:b4:ff:29:e8:e0:37:a9:f6:f0:72:76:73:f1:53:bf:37:b9: 36:02:64:06:2a:7a:84:27:d0:84:3c:5f:5f:d7:60:5f:9d:34: 53:f3:47:59:c1:92:6a:97:e2:74:d5:ac:78:98:a5:2c:36:e0: b5:d3:eb:2d:93:39:5c:bf:8d:8e:fb:67:cf:ec:42:45:6a:20: bd:c9:94:f8:21:63:78:ed:1a:6c:b1:a8:15:18:7e:51:88:0b: 0d:01:82:d0:96:8b:a3:e7:79:94:fc:97:50:4e:0e:a0:f5:49: 46:2a:93:f4:16:fd:11:46:06:de:0a:74:d7:c7:d2:20:4b:ff: 0e:7d:c8:f4:6c:73:6a:bd:da:a2:1e:f2:3d:5d:b7:2a:2c:d3: a1:bb:d8:0e:88:67:40:4a:b9:a7:a6:85:4e:3f:0d:7b:d6:df: 43:aa:b8:17:83:8e:90:ce:dc:4e:88:12:3b:99:eb:9a:ed:b5: 4d:fa:e1:7c:41:f7:34:02:e3:29:4a:a7:93:0c:76:18:d6:4b: 44:96:75:70:bb:32:d2:f6:22:2d:8d:64:45:56:c0:72:48:a8: 0b:49:eb:49:94:a8:21:40:10:f2:42:49:51:64:56:34:20:fe: 53:65:e5:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAsswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY2RDExMTAvBgNVBAUTKDZFMEEyOTAwNjEzMDMzOUI4MzZEMjhGNzAwMTgwMkY3 MUE1QTRFNDIwHhcNMjUwNDI1MDEwOTM2WhcNMjUwNTAyMDEwOTM2WjAYMRYwFAYD VQQDEw02ODBhZTBkMC1mYjk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuTDRhoJzxkGTGISFnTADkshn3x6Mcrg4pz2gy2bbFLwnqDC/+Nuj12opQM9U PicB4ReC38iTfeJ5jdsFAaApnF+I2HLO95ERl4FYF2OlginP5VLs3UEZL2ZnApgt W0SKgSjMUv95zepvhD5WiKz1al5WFp3AS9XtF5PEMyq9qN01Nt5QoPHHyROMlLP5 aM0+GGtorGyE2O2O3SGcsTGnVbkAXEZLN78xJ4fyn9PGEG/e+vLYXoKDX6Y+3DV2 ycLr9uFloYgDfQKf7vHYZNStzVK4FI2fGU2SO2Tkcp8kcTmt2/JFXTsTUxdSFBvA tnpBmRK0tHoDpEddBHYRAUS/YQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF82M0Jh JPLBO5a2H3I7202RsdPGMB8GA1UdIwQYMBaAFG4KKQBhMDObg20o9wAYAvcaWk5C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjZEMS9BQkRBNTE0MkU3 MTUxMUVDQjgyQ0IwNkVDNEY5QUUwMi9iZ29wQUdFd001dURiU2ozQUJnQzl4cGFU a0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Jnb3BBR0V3TTV1RGJTajNBQmdDOXhwYVRrSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjZEMS9BQkRBNTE0MkU3MTUxMUVDQjgyQ0IwNkVDNEY5QUUwMi9iZ29wQUdFd001 dURiU2ozQUJnQzl4cGFUa0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDOKmtv6I6/OCtk+y3jcj2Kkp9EtP8p6OA3qfbwcnZz8VO/N7k2AmQG KnqEJ9CEPF9f12BfnTRT80dZwZJql+J01ax4mKUsNuC10+stkzlcv42O+2fP7EJF aiC9yZT4IWN47RpssagVGH5RiAsNAYLQlouj53mU/JdQTg6g9UlGKpP0Fv0RRgbe CnTXx9IgS/8Ofcj0bHNqvdqiHvI9XbcqLNOhu9gOiGdASrmnpoVOPw171t9DqrgX g46QztxOiBI7meua7bVN+uF8Qfc0AuMpSqeTDHYY1ktElnVwuzLS9iItjWRFVsBy SKgLSetJlKghQBDyQklRZFY0IP5TZeVs -----END CERTIFICATE-----Generated at Sat Apr 26 16:33:04 2025 by rpki-client