$ rpki-client -vvf rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft File: bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft (raw, json) Hash identifier: 08CTg56DFyfDaJ8GCsBY+9cV0fhTZFe5xOPakyPULOk= Subject key identifier: 1F:EA:CB:8A:8A:DE:F5:5E:1C:80:FF:17:4F:74:4A:4B:99:B3:BA:C0 Authority key identifier: 6D:CE:52:F9:A2:28:CB:F6:F3:0C:D5:5D:43:38:4D:12:68:48:7B:65 Certificate issuer: /CN=A91240E6/serialNumber=6DCE52F9A228CBF6F30CD55D43384D1268487B65 Certificate serial: 2623 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bc5S-aIoy_bzDNVdQzhNEmhIe2U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft Manifest number: 260A Signing time: Sat 14 Jun 2025 15:40:36 +0000 Manifest this update: Sat 14 Jun 2025 15:40:36 +0000 Manifest next update: Sat 21 Jun 2025 15:40:35 +0000 Files and hashes: 1: bc5S-aIoy_bzDNVdQzhNEmhIe2U.crl (hash: c24o/LiNbH89rdLLt6+A/nvsO6eZqN8jGrwoVZkf2II=) 2: 8A721F4EB10C11E5BB6B2A16C4F9AE02.roa (hash: mvyjt+3dRIE1/Krz/XL4fNVu3c2fcm82NTuO/MfHBcQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.crl rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bc5S-aIoy_bzDNVdQzhNEmhIe2U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:40:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9763 (0x2623) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91240E6, serialNumber=6DCE52F9A228CBF6F30CD55D43384D1268487B65 Validity Not Before: Jun 14 15:40:36 2025 GMT Not After : Jun 21 15:40:35 2025 GMT Subject: CN=684d97f4-7e3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:53:bb:55:4c:3d:0f:6a:cd:16:cc:d4:ee:c3: a0:95:ec:99:d6:4b:31:93:92:3a:6f:ef:78:db:0b: 23:60:ee:a2:c1:da:9e:76:94:02:78:8e:69:b4:7e: 8b:02:bc:48:fb:e9:88:c4:71:20:26:9c:d9:cc:23: 77:13:9c:8a:9a:ce:ae:e2:53:07:cc:a1:07:a4:c3: fd:c3:71:fb:53:d6:d3:25:2f:a6:bc:98:79:65:45: 26:db:a0:70:3e:0d:52:89:ae:c5:a5:a8:9b:a6:36: 5b:0c:cc:3d:9f:29:82:54:9c:f9:d9:09:7d:d4:6b: 9a:d2:c3:68:dd:a7:3e:10:66:0c:4e:78:43:5f:33: 3c:a6:17:71:8a:d9:7e:b8:bc:d6:a9:a1:83:b7:4d: 07:03:40:55:85:5e:82:eb:cc:95:98:ea:74:3e:c0: 09:23:26:a5:d1:16:80:e0:91:87:ee:cc:54:ef:a8: 06:f0:2d:ac:61:a1:3f:c9:9a:d2:80:bf:a6:5a:1d: eb:88:90:1c:10:45:75:da:ad:bc:74:ef:96:9b:3a: a8:a5:99:45:8f:63:d0:d3:99:03:19:ca:a9:7b:bf: 05:59:54:06:c3:90:38:2a:1d:77:9c:8d:9d:c3:05: e1:37:8d:11:09:82:9e:ff:e7:c5:e7:cf:3e:d7:2a: 4e:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:EA:CB:8A:8A:DE:F5:5E:1C:80:FF:17:4F:74:4A:4B:99:B3:BA:C0 X509v3 Authority Key Identifier: keyid:6D:CE:52:F9:A2:28:CB:F6:F3:0C:D5:5D:43:38:4D:12:68:48:7B:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bc5S-aIoy_bzDNVdQzhNEmhIe2U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:46:b9:fd:e2:99:96:c1:b7:41:ee:08:5b:76:e2:68:83:a4: e4:ae:86:b7:99:d1:45:ac:eb:28:46:29:c4:70:8f:65:2f:2c: a0:ed:22:94:dc:a4:2b:3f:32:41:19:b4:07:a4:5d:e2:96:05: b9:0b:a0:a1:3b:34:ae:41:5b:c2:31:47:78:85:76:6b:e8:70: 91:9c:a9:c3:66:f4:32:8e:a9:43:44:61:3e:44:ee:bc:be:28: dc:3d:14:88:13:1c:4f:6f:c3:cc:dd:63:69:dc:1a:64:26:fd: fc:7c:2e:6c:ae:00:e9:0d:e6:03:4f:4b:3b:87:08:13:d0:42: b9:ec:3d:53:81:d4:6a:fe:3d:d4:f8:e0:9e:4b:ff:82:8d:aa: 72:06:fd:49:b9:46:be:fe:40:7c:9a:70:9b:91:0f:90:0a:3f: 2c:53:2b:de:35:47:99:40:2d:6f:12:75:bb:bc:58:7e:4f:0d: 68:4f:05:80:4a:a5:63:5d:f3:4b:f4:bc:a9:34:7d:59:44:c6: 1f:23:5d:4c:bd:63:4b:38:d9:a0:b8:64:45:71:10:bd:13:b5: a3:2e:ae:e1:94:02:19:c4:d3:b1:a5:7c:6a:2d:d4:9f:7a:9b: ef:bb:e0:00:09:99:20:36:75:4e:78:27:5f:da:ec:09:77:1a: fb:b7:60:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJiMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQwRTYxMTAvBgNVBAUTKDZEQ0U1MkY5QTIyOENCRjZGMzBDRDU1RDQzMzg0RDEy Njg0ODdCNjUwHhcNMjUwNjE0MTU0MDM2WhcNMjUwNjIxMTU0MDM1WjAYMRYwFAYD VQQDEw02ODRkOTdmNC03ZTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr1O7VUw9D2rNFszU7sOgleyZ1ksxk5I6b+942wsjYO6iwdqedpQCeI5ptH6L ArxI++mIxHEgJpzZzCN3E5yKms6u4lMHzKEHpMP9w3H7U9bTJS+mvJh5ZUUm26Bw Pg1Sia7FpaibpjZbDMw9nymCVJz52Ql91Gua0sNo3ac+EGYMTnhDXzM8phdxitl+ uLzWqaGDt00HA0BVhV6C68yVmOp0PsAJIyal0RaA4JGH7sxU76gG8C2sYaE/yZrS gL+mWh3riJAcEEV12q28dO+WmzqopZlFj2PQ05kDGcqpe78FWVQGw5A4Kh13nI2d wwXhN40RCYKe/+fF588+1ypOlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB/qy4qK 3vVeHID/F090SkuZs7rAMB8GA1UdIwQYMBaAFG3OUvmiKMv28wzVXUM4TRJoSHtl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDBFNi82NjA3NDJDOEZE MjExMUU0ODhBQjBDMzRDNEY5QUUwMi9iYzVTLWFJb3lfYnpETlZkUXpoTkVtaEll MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JjNVMtYUlveV9iekROVmRRemhORW1oSWUyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NDBFNi82NjA3NDJDOEZEMjExMUU0ODhBQjBDMzRDNEY5QUUwMi9iYzVTLWFJb3lf YnpETlZkUXpoTkVtaEllMlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDRrn94pmWwbdB7ghbduJog6Tkroa3mdFFrOsoRinEcI9lLyyg7SKU 3KQrPzJBGbQHpF3ilgW5C6ChOzSuQVvCMUd4hXZr6HCRnKnDZvQyjqlDRGE+RO68 vijcPRSIExxPb8PM3WNp3BpkJv38fC5srgDpDeYDT0s7hwgT0EK57D1TgdRq/j3U +OCeS/+CjapyBv1JuUa+/kB8mnCbkQ+QCj8sUyveNUeZQC1vEnW7vFh+Tw1oTwWA SqVjXfNL9LypNH1ZRMYfI11MvWNLONmguGRFcRC9E7WjLq7hlAIZxNOxpXxqLdSf epvvu+AACZkgNnVOeCdf2uwJdxr7t2Bg -----END CERTIFICATE-----Generated at Sun Jun 15 09:44:01 2025 by rpki-client