$ rpki-client -vvf rpki.apnic.net/member_repository/A912391D/B571CCBE0EE111ED84674C0EC4F9AE02/BWvvRscxWDfrrepBeAueQaP7fqA.mft File: BWvvRscxWDfrrepBeAueQaP7fqA.mft (raw, json) Hash identifier: oDA/mH2Os7AceqvipxFUAzLxx3OpPlrOwSLsAaT7Rxg= Subject key identifier: E7:F7:8C:50:C5:4C:61:0B:48:A1:21:2D:DD:1B:D4:96:23:78:FD:0F Authority key identifier: 05:6B:EF:46:C7:31:58:37:EB:AD:EA:41:78:0B:9E:41:A3:FB:7E:A0 Certificate issuer: /CN=A912391D/serialNumber=056BEF46C7315837EBADEA41780B9E41A3FB7EA0 Certificate serial: 0267 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BWvvRscxWDfrrepBeAueQaP7fqA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912391D/B571CCBE0EE111ED84674C0EC4F9AE02/BWvvRscxWDfrrepBeAueQaP7fqA.mft Manifest number: 0263 Signing time: Fri 25 Apr 2025 01:32:25 +0000 Manifest this update: Fri 25 Apr 2025 01:32:24 +0000 Manifest next update: Fri 02 May 2025 01:32:24 +0000 Files and hashes: 1: BWvvRscxWDfrrepBeAueQaP7fqA.crl (hash: Ov9tMg3WToWhTyC7qgW/jVh+x0xiHf0oaxUfGLwOEPM=) 2: 207B27560EE411EDA32ABE0FC4F9AE02.roa (hash: 6uwFx8/ukSzKKH+6QOFIRRiywJ0AdBaXItyBqWPv0ck=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912391D/B571CCBE0EE111ED84674C0EC4F9AE02/BWvvRscxWDfrrepBeAueQaP7fqA.crl rsync://rpki.apnic.net/member_repository/A912391D/B571CCBE0EE111ED84674C0EC4F9AE02/BWvvRscxWDfrrepBeAueQaP7fqA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BWvvRscxWDfrrepBeAueQaP7fqA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:32:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 615 (0x267) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912391D, serialNumber=056BEF46C7315837EBADEA41780B9E41A3FB7EA0 Validity Not Before: Apr 25 01:32:24 2025 GMT Not After : May 2 01:32:24 2025 GMT Subject: CN=680ae629-2e6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:d8:29:c8:4b:10:ff:c1:c6:8e:8f:c5:58:14: 7b:1a:a5:1f:53:b5:40:30:02:65:4c:20:3a:ca:04: e1:fb:55:a1:69:35:55:74:d4:b6:e9:c0:04:f9:1b: fe:60:38:40:45:1b:56:af:ea:c2:79:8d:0b:27:ba: 9b:ab:0f:97:f7:33:6d:d8:c0:49:6b:84:c0:be:27: 96:35:1a:0c:cd:02:46:90:b1:f4:c0:46:9b:ec:a1: aa:6a:90:dd:91:28:7c:35:0e:5f:09:aa:3a:ee:50: 37:6a:bb:df:e0:23:d0:53:8c:84:cd:5f:54:87:87: 4c:d7:f3:0e:ed:92:62:04:cc:73:96:ee:60:45:7b: 6c:4b:a6:f8:6a:51:1c:30:5d:dc:51:1f:89:21:95: 9a:8b:46:3a:da:1b:92:02:3a:da:bb:0b:d8:52:dd: 1f:cc:45:01:4d:83:3d:da:1e:64:43:f7:37:9a:83: 3b:8e:1d:a2:b0:e6:71:93:f8:4a:7c:67:38:b6:0d: 23:45:80:ff:cd:a9:d7:19:16:73:83:14:bb:e2:4b: 37:66:69:6d:23:c6:a8:06:2b:a5:c1:c8:a5:c1:82: 3f:a4:19:91:5a:ab:14:75:9c:90:80:85:c8:2f:12: b0:1b:c7:1d:2c:be:6f:83:83:7f:e8:ea:12:5b:f5: e0:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:F7:8C:50:C5:4C:61:0B:48:A1:21:2D:DD:1B:D4:96:23:78:FD:0F X509v3 Authority Key Identifier: keyid:05:6B:EF:46:C7:31:58:37:EB:AD:EA:41:78:0B:9E:41:A3:FB:7E:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912391D/B571CCBE0EE111ED84674C0EC4F9AE02/BWvvRscxWDfrrepBeAueQaP7fqA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BWvvRscxWDfrrepBeAueQaP7fqA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912391D/B571CCBE0EE111ED84674C0EC4F9AE02/BWvvRscxWDfrrepBeAueQaP7fqA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:29:ca:2c:1e:12:f6:23:9d:62:39:0c:cd:5a:c0:8d:c3:3c: 37:20:3c:bd:8e:c5:15:65:d8:18:cb:52:9e:4a:e1:ef:94:3c: d2:95:8d:ac:ce:ee:a2:da:7d:63:fd:06:5d:99:ba:72:a4:e9: 9e:18:c4:7c:02:99:e7:6f:e6:cd:31:8a:1f:9b:95:bb:8f:3b: 05:c8:00:f6:2c:da:16:d6:83:b9:87:e7:4d:e7:9b:77:27:4d: 53:64:26:ba:75:93:4e:d1:3b:bb:b3:a3:e6:04:10:4b:e2:1f: d9:a2:66:2c:61:57:be:1e:d8:25:24:44:89:29:d6:48:10:3c: 6b:75:a5:bc:0c:fe:42:ec:84:29:df:7f:6e:95:dc:4d:19:0d: 63:81:f1:e0:fc:8b:30:3d:dd:9b:32:ce:9f:29:8c:e1:cb:d4: 19:2a:c4:5d:35:66:95:8b:c2:59:4c:c3:80:e7:8e:12:9d:7e: d1:35:1f:c0:4b:df:69:36:d2:e0:3d:cb:f7:ec:d2:8b:f6:e7: 32:21:84:12:17:c4:cc:c3:d0:6c:80:0a:5b:68:3a:e5:65:4e: 2e:f2:f6:17:53:a1:08:6d:f7:3a:5f:81:06:d2:f1:dd:d5:92: 0b:a9:77:22:a7:42:1c:42:83:11:ec:53:28:81:eb:d6:97:16: c0:1f:07:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM5MUQxMTAvBgNVBAUTKDA1NkJFRjQ2QzczMTU4MzdFQkFERUE0MTc4MEI5RTQx QTNGQjdFQTAwHhcNMjUwNDI1MDEzMjI0WhcNMjUwNTAyMDEzMjI0WjAYMRYwFAYD VQQDEw02ODBhZTYyOS0yZTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy9gpyEsQ/8HGjo/FWBR7GqUfU7VAMAJlTCA6ygTh+1WhaTVVdNS26cAE+Rv+ YDhARRtWr+rCeY0LJ7qbqw+X9zNt2MBJa4TAvieWNRoMzQJGkLH0wEab7KGqapDd kSh8NQ5fCao67lA3arvf4CPQU4yEzV9Uh4dM1/MO7ZJiBMxzlu5gRXtsS6b4alEc MF3cUR+JIZWai0Y62huSAjrauwvYUt0fzEUBTYM92h5kQ/c3moM7jh2isOZxk/hK fGc4tg0jRYD/zanXGRZzgxS74ks3ZmltI8aoBiulwcilwYI/pBmRWqsUdZyQgIXI LxKwG8cdLL5vg4N/6OoSW/XgHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOf3jFDF TGELSKEhLd0b1JYjeP0PMB8GA1UdIwQYMBaAFAVr70bHMVg3663qQXgLnkGj+36g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzkxRC9CNTcxQ0NCRTBF RTExMUVEODQ2NzRDMEVDNEY5QUUwMi9CV3Z2UnNjeFdEZnJyZXBCZUF1ZVFhUDdm cUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JXdnZSc2N4V0RmcnJlcEJlQXVlUWFQN2ZxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzkxRC9CNTcxQ0NCRTBFRTExMUVEODQ2NzRDMEVDNEY5QUUwMi9CV3Z2UnNjeFdE ZnJyZXBCZUF1ZVFhUDdmcUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATKcosHhL2I51iOQzNWsCNwzw3IDy9jsUVZdgYy1KeSuHvlDzSlY2s zu6i2n1j/QZdmbpypOmeGMR8Apnnb+bNMYofm5W7jzsFyAD2LNoW1oO5h+dN55t3 J01TZCa6dZNO0Tu7s6PmBBBL4h/ZomYsYVe+HtglJESJKdZIEDxrdaW8DP5C7IQp 339uldxNGQ1jgfHg/IswPd2bMs6fKYzhy9QZKsRdNWaVi8JZTMOA544SnX7RNR/A S99pNtLgPcv37NKL9ucyIYQSF8TMw9BsgApbaDrlZU4u8vYXU6EIbfc6X4EG0vHd 1ZILqXcip0IcQoMR7FMogevWlxbAHwcd -----END CERTIFICATE-----Generated at Sat Apr 26 16:57:01 2025 by rpki-client