$ rpki-client -vvf rpki.apnic.net/member_repository/A91166D1/ABDA5142E71511ECB82CB06EC4F9AE02/bgopAGEwM5uDbSj3ABgC9xpaTkI.mft File: bgopAGEwM5uDbSj3ABgC9xpaTkI.mft (raw, json) Hash identifier: 5PQ97Z83YByqtm0GlTPapg+SEgIwj53hC3Wqk7oAjmg= Subject key identifier: A8:0E:E9:DC:F9:F5:82:EC:D3:67:1B:1E:DE:69:35:B1:B5:32:50:5B Authority key identifier: 6E:0A:29:00:61:30:33:9B:83:6D:28:F7:00:18:02:F7:1A:5A:4E:42 Certificate issuer: /CN=A91166D1/serialNumber=6E0A29006130339B836D28F7001802F71A5A4E42 Certificate serial: 02E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bgopAGEwM5uDbSj3ABgC9xpaTkI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91166D1/ABDA5142E71511ECB82CB06EC4F9AE02/bgopAGEwM5uDbSj3ABgC9xpaTkI.mft Manifest number: 02E2 Signing time: Fri 13 Jun 2025 00:51:12 +0000 Manifest this update: Fri 13 Jun 2025 00:51:11 +0000 Manifest next update: Fri 20 Jun 2025 00:51:11 +0000 Files and hashes: 1: bgopAGEwM5uDbSj3ABgC9xpaTkI.crl (hash: q6Yw62BjnEqjYRRYNPIN65LO5I5MqJFTOWE0OZcDark=) 2: 3C3A98A4E71C11EC9128DF0BC4F9AE02.roa (hash: rY7SQuVKgC/AxWbpxkoT7pJkBb/Nudv0kRr7++VnHvQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91166D1/ABDA5142E71511ECB82CB06EC4F9AE02/bgopAGEwM5uDbSj3ABgC9xpaTkI.crl rsync://rpki.apnic.net/member_repository/A91166D1/ABDA5142E71511ECB82CB06EC4F9AE02/bgopAGEwM5uDbSj3ABgC9xpaTkI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bgopAGEwM5uDbSj3ABgC9xpaTkI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 00:51:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 742 (0x2e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91166D1, serialNumber=6E0A29006130339B836D28F7001802F71A5A4E42 Validity Not Before: Jun 13 00:51:11 2025 GMT Not After : Jun 20 00:51:11 2025 GMT Subject: CN=684b75ff-3374 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:01:b7:ba:81:41:97:31:a2:54:cc:65:cc:72: 54:4e:91:a0:4e:41:18:6f:ac:c2:e1:d6:91:c0:4a: a0:b9:f2:04:ad:00:09:02:d4:38:d1:38:6f:46:98: f4:25:c9:1d:8c:43:68:a8:da:ef:ff:29:fa:31:84: b4:c5:83:fc:e2:66:05:77:26:a1:81:67:54:3f:9b: 3c:62:48:07:0f:e7:5e:3d:53:fb:c0:50:24:bc:cd: 15:d0:3d:f7:0a:ca:24:0c:46:7a:9b:b7:3d:a0:39: ce:cf:cf:f0:bf:d8:3f:94:5d:d1:6b:51:a6:97:31: f5:00:84:90:a6:da:f7:ca:c8:16:63:4b:31:30:06: 50:ee:17:4a:79:49:ff:2b:ad:a6:4c:3a:92:16:1f: ba:ba:90:31:f3:40:62:c3:13:89:3e:14:ca:72:f2: 82:7b:74:3e:cb:ac:4c:af:c9:ab:44:51:4d:ed:f4: ea:25:97:e0:28:1c:77:ab:49:f8:0e:c0:05:85:f6: d0:66:cd:49:5a:09:72:a2:37:1b:42:05:e4:37:cb: e1:f9:31:8e:2c:77:86:85:b3:fb:41:34:42:f9:91: f0:b9:be:d8:b9:06:17:da:05:4a:2f:f9:26:5b:bd: 8b:8d:99:fa:b6:41:95:1c:03:4a:d3:f0:22:b4:0f: b9:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:0E:E9:DC:F9:F5:82:EC:D3:67:1B:1E:DE:69:35:B1:B5:32:50:5B X509v3 Authority Key Identifier: keyid:6E:0A:29:00:61:30:33:9B:83:6D:28:F7:00:18:02:F7:1A:5A:4E:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91166D1/ABDA5142E71511ECB82CB06EC4F9AE02/bgopAGEwM5uDbSj3ABgC9xpaTkI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bgopAGEwM5uDbSj3ABgC9xpaTkI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91166D1/ABDA5142E71511ECB82CB06EC4F9AE02/bgopAGEwM5uDbSj3ABgC9xpaTkI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:f2:f3:98:fb:2e:c6:3b:9a:fa:ca:4d:a2:a2:34:b0:15:ad: 52:83:27:96:5a:03:e9:ca:8e:ad:34:b2:65:7d:ea:23:1c:76: 34:04:18:6c:c5:e7:57:4e:61:9b:13:d1:fd:ff:db:91:46:8c: 7a:68:b0:5f:54:e9:88:fe:c1:85:3f:19:1d:f3:0a:fe:4c:be: 71:a6:33:f4:3e:65:5e:76:85:72:69:bc:14:be:24:3c:5d:cb: 60:3d:8e:20:4a:96:76:a5:5f:46:df:13:c4:a7:8e:95:02:ea: 0c:d2:60:70:49:ba:41:33:7c:b4:66:bd:ba:ff:12:f1:66:79: e9:76:0c:1b:ad:42:19:39:74:9f:d8:79:41:c7:22:a2:e0:b6: e5:02:04:aa:d6:89:ed:e1:c6:d6:a4:7a:2a:19:12:37:3f:93: 6a:69:76:99:29:18:f7:fe:44:63:44:59:ee:a5:35:c6:fa:40: 23:20:06:06:59:3c:00:df:e9:22:20:bf:4b:1d:08:3c:f5:ba: 2e:9d:dd:e2:fd:a5:64:e1:92:72:58:e0:68:4c:67:49:ef:8f: 08:68:bf:40:ef:2b:de:ef:46:c3:86:05:89:3d:1a:66:7b:34: 6e:3e:58:79:dd:2c:3c:7f:fa:01:bb:b6:36:2e:ea:c6:21:47: 8c:a6:13:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAuYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY2RDExMTAvBgNVBAUTKDZFMEEyOTAwNjEzMDMzOUI4MzZEMjhGNzAwMTgwMkY3 MUE1QTRFNDIwHhcNMjUwNjEzMDA1MTExWhcNMjUwNjIwMDA1MTExWjAYMRYwFAYD VQQDEw02ODRiNzVmZi0zMzc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5QG3uoFBlzGiVMxlzHJUTpGgTkEYb6zC4daRwEqgufIErQAJAtQ40ThvRpj0 JckdjENoqNrv/yn6MYS0xYP84mYFdyahgWdUP5s8YkgHD+dePVP7wFAkvM0V0D33 CsokDEZ6m7c9oDnOz8/wv9g/lF3Ra1GmlzH1AISQptr3ysgWY0sxMAZQ7hdKeUn/ K62mTDqSFh+6upAx80BiwxOJPhTKcvKCe3Q+y6xMr8mrRFFN7fTqJZfgKBx3q0n4 DsAFhfbQZs1JWglyojcbQgXkN8vh+TGOLHeGhbP7QTRC+ZHwub7YuQYX2gVKL/km W72LjZn6tkGVHANK0/AitA+5CwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKgO6dz5 9YLs02cbHt5pNbG1MlBbMB8GA1UdIwQYMBaAFG4KKQBhMDObg20o9wAYAvcaWk5C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjZEMS9BQkRBNTE0MkU3 MTUxMUVDQjgyQ0IwNkVDNEY5QUUwMi9iZ29wQUdFd001dURiU2ozQUJnQzl4cGFU a0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Jnb3BBR0V3TTV1RGJTajNBQmdDOXhwYVRrSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjZEMS9BQkRBNTE0MkU3MTUxMUVDQjgyQ0IwNkVDNEY5QUUwMi9iZ29wQUdFd001 dURiU2ozQUJnQzl4cGFUa0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCv8vOY+y7GO5r6yk2iojSwFa1SgyeWWgPpyo6tNLJlfeojHHY0BBhs xedXTmGbE9H9/9uRRox6aLBfVOmI/sGFPxkd8wr+TL5xpjP0PmVedoVyabwUviQ8 XctgPY4gSpZ2pV9G3xPEp46VAuoM0mBwSbpBM3y0Zr26/xLxZnnpdgwbrUIZOXSf 2HlBxyKi4LblAgSq1ont4cbWpHoqGRI3P5NqaXaZKRj3/kRjRFnupTXG+kAjIAYG WTwA3+kiIL9LHQg89bound3i/aVk4ZJyWOBoTGdJ748IaL9A7yve70bDhgWJPRpm ezRuPlh53Sw8f/oBu7Y2LurGIUeMphPN -----END CERTIFICATE-----Generated at Sat Jun 14 18:52:17 2025 by rpki-client