$ rpki-client -vvf rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.mft File: BkbFIpHVzU30oP94Z4T89Sg0YyQ.mft (raw, json) Hash identifier: z413P29CXETB3qj08BVHsNtiNRxMPNL/zH+NXyAvkFg= Subject key identifier: 82:7F:45:D2:FF:9A:3B:80:05:85:F2:B4:FC:67:94:8A:D1:59:0F:EF Authority key identifier: 06:46:C5:22:91:D5:CD:4D:F4:A0:FF:78:67:84:FC:F5:28:34:63:24 Certificate issuer: /CN=A9122905/serialNumber=0646C52291D5CD4DF4A0FF786784FCF528346324 Certificate serial: 0222 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BkbFIpHVzU30oP94Z4T89Sg0YyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.mft Manifest number: 021F Signing time: Sun 15 Jun 2025 01:37:56 +0000 Manifest this update: Sun 15 Jun 2025 01:37:55 +0000 Manifest next update: Sun 22 Jun 2025 01:37:55 +0000 Files and hashes: 1: BkbFIpHVzU30oP94Z4T89Sg0YyQ.crl (hash: vxhHhjLRDEFr1gdy0AffOUmyJyk1HOdqIOx6JZck2cg=) 2: 8BFE9EA6335911EDBC60AC44C4F9AE02.roa (hash: PkaRAOyxeuH2U7UkwpCaJHtr/yLJ/iuQhH7B44HKa84=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.crl rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BkbFIpHVzU30oP94Z4T89Sg0YyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 01:37:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 546 (0x222) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122905, serialNumber=0646C52291D5CD4DF4A0FF786784FCF528346324 Validity Not Before: Jun 15 01:37:55 2025 GMT Not After : Jun 22 01:37:55 2025 GMT Subject: CN=684e23f3-6775 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:14:e1:35:8e:f9:06:0a:d8:19:c6:3e:93:05: 68:3e:d5:bf:e3:54:63:f5:86:b4:dd:58:f6:5d:05: d5:bc:09:b2:4f:de:41:f9:37:96:61:22:bb:09:f0: fd:13:62:f1:b5:8e:52:ee:91:a0:ca:9d:31:4f:3b: 78:ac:38:0d:f7:9c:f8:e3:31:6b:f5:10:8c:18:8a: 5d:0b:97:2b:1c:95:53:91:91:8b:d9:fc:22:bd:bc: 3b:93:8a:30:5c:43:d0:50:b7:79:c2:09:00:e2:aa: 2a:e0:25:de:d0:2b:c5:70:62:9b:c3:d5:fc:3b:e9: a2:a9:fc:5e:a9:5d:82:02:e3:90:63:73:c6:0b:f5: 31:ad:72:ef:17:3c:80:42:ac:1e:04:f5:a1:a8:e2: f6:38:0d:ca:e8:60:22:fd:1c:e8:55:c0:1d:b2:ce: c2:e3:97:38:7c:f1:a2:27:25:fa:46:57:bd:eb:84: c4:a0:ab:cc:a7:89:d4:0f:f1:e1:89:14:58:5c:94: 30:f6:ab:7c:01:08:be:03:2e:14:ec:e0:85:f4:94: 52:15:69:12:1e:96:71:87:a8:11:24:06:87:39:de: b7:b1:3d:c6:3b:5a:3b:ee:7a:f9:6a:89:34:a3:a6: 57:11:ff:8d:e9:97:e0:7f:a1:94:eb:d1:7d:07:a1: dd:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:7F:45:D2:FF:9A:3B:80:05:85:F2:B4:FC:67:94:8A:D1:59:0F:EF X509v3 Authority Key Identifier: keyid:06:46:C5:22:91:D5:CD:4D:F4:A0:FF:78:67:84:FC:F5:28:34:63:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BkbFIpHVzU30oP94Z4T89Sg0YyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:e7:26:74:46:69:2f:7c:4a:29:a6:c8:2d:cb:be:16:04:38: 02:3b:14:54:60:38:06:9e:45:69:8e:51:d3:fd:58:fa:d6:8b: 03:3a:73:91:3f:bb:aa:8d:88:c2:5e:29:c8:6f:41:f4:f0:5b: 1c:f3:4d:3c:a0:b0:04:84:2f:22:65:45:d2:73:8f:10:02:26: d3:4f:97:f2:08:83:08:1f:55:c7:4a:cc:2e:75:af:c4:b4:20: 1c:20:0f:dc:8f:a9:e0:5e:77:0a:3d:e1:c7:23:f7:3c:a0:f0: 7a:83:81:0c:1e:3a:e3:d1:0a:52:78:4d:cf:80:8b:ff:eb:96: 82:a7:3f:dc:6f:86:27:91:c8:18:13:5c:d5:c2:6b:de:6b:be: 72:8b:50:55:03:57:66:f9:b5:21:6e:7f:92:88:48:c6:f4:46: 91:52:45:48:7c:01:3b:f2:37:10:e9:5a:49:dd:d0:c5:1b:54: e9:52:8d:55:28:b7:f1:a7:c6:a8:d7:5f:69:61:2a:20:bd:86: d1:86:66:ad:9e:56:3f:b8:7d:c8:8c:da:d8:aa:5e:11:a2:a9: 59:6b:e1:0d:91:db:8c:7e:45:50:d4:53:cf:25:6f:ea:24:d6: f9:22:78:e9:e2:27:28:b2:53:c8:3e:d4:8a:1d:2a:cd:f5:7b: e1:7e:3f:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjI5MDUxMTAvBgNVBAUTKDA2NDZDNTIyOTFENUNENERGNEEwRkY3ODY3ODRGQ0Y1 MjgzNDYzMjQwHhcNMjUwNjE1MDEzNzU1WhcNMjUwNjIyMDEzNzU1WjAYMRYwFAYD VQQDEw02ODRlMjNmMy02Nzc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtRThNY75BgrYGcY+kwVoPtW/41Rj9Ya03Vj2XQXVvAmyT95B+TeWYSK7CfD9 E2LxtY5S7pGgyp0xTzt4rDgN95z44zFr9RCMGIpdC5crHJVTkZGL2fwivbw7k4ow XEPQULd5wgkA4qoq4CXe0CvFcGKbw9X8O+miqfxeqV2CAuOQY3PGC/UxrXLvFzyA QqweBPWhqOL2OA3K6GAi/RzoVcAdss7C45c4fPGiJyX6Rle964TEoKvMp4nUD/Hh iRRYXJQw9qt8AQi+Ay4U7OCF9JRSFWkSHpZxh6gRJAaHOd63sT3GO1o77nr5aok0 o6ZXEf+N6Zfgf6GU69F9B6HdiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIJ/RdL/ mjuABYXytPxnlIrRWQ/vMB8GA1UdIwQYMBaAFAZGxSKR1c1N9KD/eGeE/PUoNGMk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjkwNS8xMUVCMDg2QTMz NTUxMUVEOTQzRkE1M0JDNEY5QUUwMi9Ca2JGSXBIVnpVMzBvUDk0WjRUODlTZzBZ eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JrYkZJcEhWelUzMG9QOTRaNFQ4OVNnMFl5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MjkwNS8xMUVCMDg2QTMzNTUxMUVEOTQzRkE1M0JDNEY5QUUwMi9Ca2JGSXBIVnpV MzBvUDk0WjRUODlTZzBZeVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAc5yZ0RmkvfEoppsgty74WBDgCOxRUYDgGnkVpjlHT/Vj61osDOnOR P7uqjYjCXinIb0H08Fsc8008oLAEhC8iZUXSc48QAibTT5fyCIMIH1XHSswuda/E tCAcIA/cj6ngXncKPeHHI/c8oPB6g4EMHjrj0QpSeE3PgIv/65aCpz/cb4YnkcgY E1zVwmvea75yi1BVA1dm+bUhbn+SiEjG9EaRUkVIfAE78jcQ6VpJ3dDFG1TpUo1V KLfxp8ao119pYSogvYbRhmatnlY/uH3IjNrYql4RoqlZa+ENkduMfkVQ1FPPJW/q JNb5Injp4icoslPIPtSKHSrN9Xvhfj8N -----END CERTIFICATE-----Generated at Sun Jun 15 08:50:47 2025 by rpki-client