$ rpki-client -vvf rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft File: bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft (raw, json) Hash identifier: 1C8rhSdqt+bZiShlGIdC0WLueZtBw3DIXLF+C2IVtuE= Subject key identifier: B6:A2:21:0B:41:04:CE:F5:84:6C:E7:8F:11:A9:03:72:CD:8E:80:F8 Authority key identifier: 6D:CE:52:F9:A2:28:CB:F6:F3:0C:D5:5D:43:38:4D:12:68:48:7B:65 Certificate issuer: /CN=A91240E6/serialNumber=6DCE52F9A228CBF6F30CD55D43384D1268487B65 Certificate serial: 2609 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bc5S-aIoy_bzDNVdQzhNEmhIe2U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft Manifest number: 25F0 Signing time: Thu 24 Apr 2025 15:43:37 +0000 Manifest this update: Thu 24 Apr 2025 15:43:36 +0000 Manifest next update: Thu 01 May 2025 15:43:36 +0000 Files and hashes: 1: bc5S-aIoy_bzDNVdQzhNEmhIe2U.crl (hash: TEx2lmabZtqP1T2hD4rvyRYAiG46C5CjqkAcxQQ0ROk=) 2: 8A721F4EB10C11E5BB6B2A16C4F9AE02.roa (hash: mvyjt+3dRIE1/Krz/XL4fNVu3c2fcm82NTuO/MfHBcQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.crl rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bc5S-aIoy_bzDNVdQzhNEmhIe2U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:43:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9737 (0x2609) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91240E6, serialNumber=6DCE52F9A228CBF6F30CD55D43384D1268487B65 Validity Not Before: Apr 24 15:43:36 2025 GMT Not After : May 1 15:43:36 2025 GMT Subject: CN=680a5c29-78cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:28:b0:ce:7e:17:37:94:0f:1e:f8:7e:4e:29: 60:7b:4b:eb:05:da:0c:5c:1d:d4:6f:d7:cd:55:39: db:ee:d9:7b:cc:42:22:3e:62:c0:ba:f0:94:95:74: 44:b5:62:75:a6:4b:86:4d:6c:ef:a8:e4:c1:a8:93: 79:ca:c7:72:af:d1:da:94:35:66:9c:19:b2:fe:1e: 04:19:14:ca:ed:a1:b8:4c:72:52:67:a4:eb:96:df: ac:6b:ca:7e:11:71:f4:09:2d:6c:bc:f8:bb:64:8d: fd:14:f3:9e:49:7b:a0:bb:75:d6:fa:17:8f:17:ce: 0a:8b:eb:10:b3:86:94:2e:ed:46:9c:8a:91:c7:1f: 5f:82:82:f8:aa:36:a4:09:8a:13:46:af:84:ee:5f: bb:4d:45:14:ab:4d:0f:d2:45:6c:ef:26:68:5c:c2: 19:05:f5:b7:53:28:cf:b2:cf:35:f7:36:fe:c9:96: 3a:a6:d3:d8:01:8f:b2:b5:0d:3a:e5:2f:4b:ca:4c: 6c:8e:5e:46:bd:c9:ba:02:e2:9d:0f:47:48:8a:60: 7d:35:ad:85:87:ff:3c:1e:f7:a2:b0:f3:03:01:30: 5d:83:2a:50:73:c2:fd:63:5a:4d:aa:4e:2c:e8:ff: bd:cf:ba:40:be:4f:a8:c9:10:2a:77:33:29:99:d3: 1a:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:A2:21:0B:41:04:CE:F5:84:6C:E7:8F:11:A9:03:72:CD:8E:80:F8 X509v3 Authority Key Identifier: keyid:6D:CE:52:F9:A2:28:CB:F6:F3:0C:D5:5D:43:38:4D:12:68:48:7B:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bc5S-aIoy_bzDNVdQzhNEmhIe2U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91240E6/660742C8FD2111E488AB0C34C4F9AE02/bc5S-aIoy_bzDNVdQzhNEmhIe2U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:6f:e6:fc:c4:64:5b:6d:f5:51:aa:05:2b:84:a5:42:6b:ab: d8:f9:6e:1d:f5:9f:f9:da:76:23:4c:f1:de:51:a7:db:87:da: 41:ea:7b:15:4c:4a:00:f5:28:f2:87:90:b0:98:df:a3:3f:79: d9:04:89:79:8f:c9:4b:17:da:48:50:d2:bc:f9:12:d1:db:d7: 89:a7:7a:4c:f6:cd:0c:1d:e3:1f:bc:65:9b:ff:27:1c:eb:9a: 7d:28:94:f1:e1:89:d7:16:86:c8:29:7b:f8:11:71:6e:35:3d: 23:f7:90:c2:bc:63:34:95:75:2c:f9:46:a7:f3:4e:2b:08:ef: c5:aa:fc:fd:3f:58:e2:37:ee:87:ae:f9:fa:9e:ca:53:cd:f9: 31:68:c0:2c:7c:e1:a3:f6:c6:d2:f3:13:d6:e6:8a:15:66:12: b2:56:ff:b8:6d:47:3a:3b:bc:ce:b9:46:c2:c5:0f:bf:4c:30: f1:3b:47:1a:58:65:ea:36:ea:74:a2:80:0d:15:fe:f0:15:9c: fb:e7:a5:a7:b3:42:f1:49:65:aa:0a:b0:2b:33:b9:fe:6c:5d: b9:ca:66:b3:38:7b:e9:e0:11:39:7e:79:f0:20:cd:f5:2f:eb: 82:f3:6b:f4:59:4d:07:2e:e3:59:08:92:77:2f:e8:e4:de:3e: 9b:2b:5c:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJgkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQwRTYxMTAvBgNVBAUTKDZEQ0U1MkY5QTIyOENCRjZGMzBDRDU1RDQzMzg0RDEy Njg0ODdCNjUwHhcNMjUwNDI0MTU0MzM2WhcNMjUwNTAxMTU0MzM2WjAYMRYwFAYD VQQDEw02ODBhNWMyOS03OGNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzCiwzn4XN5QPHvh+Tilge0vrBdoMXB3Ub9fNVTnb7tl7zEIiPmLAuvCUlXRE tWJ1pkuGTWzvqOTBqJN5ysdyr9HalDVmnBmy/h4EGRTK7aG4THJSZ6Trlt+sa8p+ EXH0CS1svPi7ZI39FPOeSXugu3XW+hePF84Ki+sQs4aULu1GnIqRxx9fgoL4qjak CYoTRq+E7l+7TUUUq00P0kVs7yZoXMIZBfW3UyjPss819zb+yZY6ptPYAY+ytQ06 5S9Lykxsjl5Gvcm6AuKdD0dIimB9Na2Fh/88HveisPMDATBdgypQc8L9Y1pNqk4s 6P+9z7pAvk+oyRAqdzMpmdMaUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLaiIQtB BM71hGznjxGpA3LNjoD4MB8GA1UdIwQYMBaAFG3OUvmiKMv28wzVXUM4TRJoSHtl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDBFNi82NjA3NDJDOEZE MjExMUU0ODhBQjBDMzRDNEY5QUUwMi9iYzVTLWFJb3lfYnpETlZkUXpoTkVtaEll MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JjNVMtYUlveV9iekROVmRRemhORW1oSWUyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NDBFNi82NjA3NDJDOEZEMjExMUU0ODhBQjBDMzRDNEY5QUUwMi9iYzVTLWFJb3lf YnpETlZkUXpoTkVtaEllMlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJb+b8xGRbbfVRqgUrhKVCa6vY+W4d9Z/52nYjTPHeUafbh9pB6nsV TEoA9Sjyh5CwmN+jP3nZBIl5j8lLF9pIUNK8+RLR29eJp3pM9s0MHeMfvGWb/ycc 65p9KJTx4YnXFobIKXv4EXFuNT0j95DCvGM0lXUs+Uan804rCO/Fqvz9P1jiN+6H rvn6nspTzfkxaMAsfOGj9sbS8xPW5ooVZhKyVv+4bUc6O7zOuUbCxQ+/TDDxO0ca WGXqNup0ooANFf7wFZz756Wns0LxSWWqCrArM7n+bF25ymazOHvp4BE5fnnwIM31 L+uC82v0WU0HLuNZCJJ3L+jk3j6bK1w6 -----END CERTIFICATE-----Generated at Sat Apr 26 03:56:35 2025 by rpki-client