$ rpki-client -vvf rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft File: BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft (raw, json) Hash identifier: rHDvyEzf3AhTcZY0VO3dG7OzG6dZcGx05XgjID7L2SA= Subject key identifier: 5C:7D:A9:57:A9:3B:63:E4:CB:1E:B8:24:7C:92:28:44:8B:F8:1D:D4 Authority key identifier: 04:83:2F:BE:70:C7:B8:85:9C:A1:A0:E3:E0:5A:29:6B:B0:9C:5D:3D Certificate issuer: /CN=A91238EC/serialNumber=04832FBE70C7B8859CA1A0E3E05A296BB09C5D3D Certificate serial: 174E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIMvvnDHuIWcoaDj4Fopa7CcXT0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft Manifest number: 1733 Signing time: Sat 14 Jun 2025 16:34:45 +0000 Manifest this update: Sat 14 Jun 2025 16:34:45 +0000 Manifest next update: Sat 21 Jun 2025 16:34:45 +0000 Files and hashes: 1: BIMvvnDHuIWcoaDj4Fopa7CcXT0.crl (hash: vW1e7UyMjJvwORhbuznLP2/MgbIfscFeBd3FFsVUHqw=) 2: 2F9D268C76B211ECABA1A612C4F9AE02.roa (hash: N4cX9Gn5/2UN1QBdCa0fdRS9KCB6RvJx+JIs1tA6NvU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.crl rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIMvvnDHuIWcoaDj4Fopa7CcXT0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 16:34:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5966 (0x174e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91238EC, serialNumber=04832FBE70C7B8859CA1A0E3E05A296BB09C5D3D Validity Not Before: Jun 14 16:34:45 2025 GMT Not After : Jun 21 16:34:45 2025 GMT Subject: CN=684da4a5-adc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:5a:88:f5:97:a4:bf:28:0f:c4:cf:76:82:9e: d2:49:b3:92:dd:9d:6b:63:71:e9:4c:d3:3b:2a:24: a0:24:35:b1:af:d4:6f:5a:df:dc:61:28:ea:ea:d7: 30:45:a2:e1:f4:d7:bc:8e:5a:77:ca:1b:58:ee:c4: 6c:22:97:b5:4f:ca:18:54:11:c8:6b:57:7d:c7:d9: ec:29:91:a0:fc:1a:1b:9f:b1:16:6f:4f:37:c1:4f: 54:eb:fa:c8:f8:84:06:17:92:58:08:85:5d:67:d6: c9:02:33:9c:84:a0:d7:e7:4d:a1:aa:99:e1:8a:d4: 6e:3a:c6:37:bb:a2:ac:97:41:bc:89:1d:f3:b4:75: f9:1b:a8:7d:39:d1:b7:af:18:64:2e:c8:e5:34:9f: 2c:9b:fb:b2:fb:cb:bc:a8:48:1b:d9:d3:ce:bc:ad: cd:48:83:a1:e8:d8:b8:6c:5c:c6:e9:9b:91:e0:c2: fa:b8:e0:0d:fd:42:22:c3:3e:03:0e:6c:74:01:e6: bc:d6:b5:5f:a9:4d:83:a3:23:07:d1:4b:72:36:12: 1a:43:c9:42:4c:4b:23:c0:94:33:35:db:7b:f0:4e: 42:f3:50:48:8e:ec:57:59:22:d2:8e:e0:2b:60:5f: 80:2c:27:9b:ce:91:2d:92:e2:ae:94:c9:cc:74:c6: ba:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:7D:A9:57:A9:3B:63:E4:CB:1E:B8:24:7C:92:28:44:8B:F8:1D:D4 X509v3 Authority Key Identifier: keyid:04:83:2F:BE:70:C7:B8:85:9C:A1:A0:E3:E0:5A:29:6B:B0:9C:5D:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIMvvnDHuIWcoaDj4Fopa7CcXT0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91238EC/61D4F48AE3E611E7AF2F615EC4F9AE02/BIMvvnDHuIWcoaDj4Fopa7CcXT0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:b0:35:55:7d:b4:cd:87:95:92:38:f9:12:5f:4d:32:0e:92: 62:be:26:12:60:81:d7:d0:a3:e6:a6:2f:b6:cb:15:70:1b:bb: 82:82:3a:39:75:f2:a2:19:ae:3b:86:9e:a9:a1:99:ec:ad:b5: c6:57:76:e3:f8:2d:c6:ef:68:1a:f3:c0:48:ca:90:cf:b2:fe: 56:51:c2:42:5b:73:a7:27:77:bd:72:c5:bf:5a:c3:5f:28:0e: b5:c7:f1:be:e4:5c:09:00:33:76:2e:77:9d:44:38:6f:47:67: 17:4e:41:c8:e8:3e:3c:85:ab:41:e4:62:91:a4:6c:38:5e:dc: b9:b1:4d:59:e5:cb:a1:a2:ae:1d:54:03:55:1b:fc:0f:23:36: c9:65:dd:40:c4:94:0b:bc:0d:d8:71:8e:f8:f7:f8:18:9b:c9: 98:78:7d:a8:ae:67:4c:8f:e1:05:ae:91:54:4a:8b:57:88:22: 71:d1:e1:53:0d:9f:d2:ba:32:8a:5a:93:50:95:41:03:20:42: af:70:2c:37:49:48:98:cb:d0:81:72:65:f0:20:34:9b:b4:b7: b0:0e:c5:b0:4e:34:64:4c:4a:8a:74:6c:ff:21:45:73:30:4b: 8c:67:2b:94:4a:3c:2c:c0:0f:94:e9:d0:97:81:af:8e:9c:d8: 5d:08:53:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF04wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4RUMxMTAvBgNVBAUTKDA0ODMyRkJFNzBDN0I4ODU5Q0ExQTBFM0UwNUEyOTZC QjA5QzVEM0QwHhcNMjUwNjE0MTYzNDQ1WhcNMjUwNjIxMTYzNDQ1WjAYMRYwFAYD VQQDEw02ODRkYTRhNS1hZGMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyVqI9ZekvygPxM92gp7SSbOS3Z1rY3HpTNM7KiSgJDWxr9RvWt/cYSjq6tcw RaLh9Ne8jlp3yhtY7sRsIpe1T8oYVBHIa1d9x9nsKZGg/Bobn7EWb083wU9U6/rI +IQGF5JYCIVdZ9bJAjOchKDX502hqpnhitRuOsY3u6Ksl0G8iR3ztHX5G6h9OdG3 rxhkLsjlNJ8sm/uy+8u8qEgb2dPOvK3NSIOh6Ni4bFzG6ZuR4ML6uOAN/UIiwz4D Dmx0Aea81rVfqU2DoyMH0UtyNhIaQ8lCTEsjwJQzNdt78E5C81BIjuxXWSLSjuAr YF+ALCebzpEtkuKulMnMdMa6PQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFx9qVep O2Pkyx64JHySKESL+B3UMB8GA1UdIwQYMBaAFASDL75wx7iFnKGg4+BaKWuwnF09 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzhFQy82MUQ0RjQ4QUUz RTYxMUU3QUYyRjYxNUVDNEY5QUUwMi9CSU12dm5ESHVJV2NvYURqNEZvcGE3Q2NY VDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JJTXZ2bkRIdUlXY29hRGo0Rm9wYTdDY1hUMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzhFQy82MUQ0RjQ4QUUzRTYxMUU3QUYyRjYxNUVDNEY5QUUwMi9CSU12dm5ESHVJ V2NvYURqNEZvcGE3Q2NYVDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6sDVVfbTNh5WSOPkSX00yDpJiviYSYIHX0KPmpi+2yxVwG7uCgjo5 dfKiGa47hp6poZnsrbXGV3bj+C3G72ga88BIypDPsv5WUcJCW3OnJ3e9csW/WsNf KA61x/G+5FwJADN2LnedRDhvR2cXTkHI6D48hatB5GKRpGw4Xty5sU1Z5cuhoq4d VANVG/wPIzbJZd1AxJQLvA3YcY749/gYm8mYeH2ormdMj+EFrpFUSotXiCJx0eFT DZ/SujKKWpNQlUEDIEKvcCw3SUiYy9CBcmXwIDSbtLewDsWwTjRkTEqKdGz/IUVz MEuMZyuUSjwswA+U6dCXga+OnNhdCFNV -----END CERTIFICATE-----Generated at Sun Jun 15 05:09:27 2025 by rpki-client