$ rpki-client -vvf rpki.apnic.net/member_repository/A912978E/D5AE7FAC53CA11EE8049935EC4F9AE02/bfCTVmC1JNKoCAZDaLCvxWU4ppo.mft File: bfCTVmC1JNKoCAZDaLCvxWU4ppo.mft (raw, json) Hash identifier: XL6jNXKMXVBX1YsisjX7sbA9jTFjwBIRAwg+o/fYpxE= Subject key identifier: F7:1E:35:99:BD:B5:A8:DD:71:5E:EB:AA:80:0E:89:5B:04:87:77:75 Authority key identifier: 6D:F0:93:56:60:B5:24:D2:A8:08:06:43:68:B0:AF:C5:65:38:A6:9A Certificate issuer: /CN=A912978E/serialNumber=6DF0935660B524D2A808064368B0AFC56538A69A Certificate serial: 0153 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bfCTVmC1JNKoCAZDaLCvxWU4ppo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912978E/D5AE7FAC53CA11EE8049935EC4F9AE02/bfCTVmC1JNKoCAZDaLCvxWU4ppo.mft Manifest number: 014E Signing time: Thu 19 Jun 2025 03:39:01 +0000 Manifest this update: Thu 19 Jun 2025 03:39:01 +0000 Manifest next update: Thu 26 Jun 2025 03:39:01 +0000 Files and hashes: 1: bfCTVmC1JNKoCAZDaLCvxWU4ppo.crl (hash: O+TJjopK/HK5UN1jddXtd07A9F6DNcXM5cWxTjCn1Zg=) 2: 59923F2CA72011EEA63ABF4AC4F9AE02.roa (hash: jVn5ZxyveGa/F3Z17pqMoq5Bfa+WnZz2iNW6T6RgwPs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912978E/D5AE7FAC53CA11EE8049935EC4F9AE02/bfCTVmC1JNKoCAZDaLCvxWU4ppo.crl rsync://rpki.apnic.net/member_repository/A912978E/D5AE7FAC53CA11EE8049935EC4F9AE02/bfCTVmC1JNKoCAZDaLCvxWU4ppo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bfCTVmC1JNKoCAZDaLCvxWU4ppo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 03:39:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 339 (0x153) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912978E, serialNumber=6DF0935660B524D2A808064368B0AFC56538A69A Validity Not Before: Jun 19 03:39:01 2025 GMT Not After : Jun 26 03:39:01 2025 GMT Subject: CN=68538655-c0fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:00:2e:c4:85:36:5e:29:95:e8:29:bf:c4:b0: 3b:ae:63:2c:ea:56:af:7b:c1:65:f2:95:f3:9c:62: 5c:bb:a9:05:ef:ca:07:6b:65:b3:f1:a0:f0:4a:0e: af:fe:49:91:65:a2:80:6d:80:21:13:ff:12:9a:5b: 39:b7:7d:fe:c2:8c:97:b4:a6:ce:d5:79:0f:a7:2d: 35:cc:5a:f0:1f:8a:7f:2d:c1:1d:3e:61:30:6e:d1: b4:e9:af:5f:5c:43:6d:81:05:4a:b4:65:00:6a:25: ba:9f:78:5c:7d:6a:d7:e0:f1:ea:b0:5b:08:86:07: 50:b9:8e:bb:00:3d:37:35:f6:dd:56:ae:38:74:6f: 58:e8:c7:a0:40:38:62:78:d2:8c:aa:e6:d2:b8:19: e6:95:47:c1:59:2b:0d:d8:98:f1:82:46:a9:78:b3: f0:d3:87:e6:54:4f:12:59:1e:f5:15:3a:f6:c0:9c: e7:69:03:b7:1f:63:f0:f7:ff:80:49:df:8a:7e:f3: 71:e0:62:49:de:d3:c1:3c:14:66:0c:b6:6e:74:f9: eb:ce:c5:92:f6:e0:b8:2d:e1:c6:e7:28:bb:41:67: 4e:52:9e:a7:ee:1f:7a:f9:9e:de:fe:ae:99:04:ed: 10:e5:77:75:c8:cb:e9:9d:4b:86:62:ec:80:40:96: 50:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:1E:35:99:BD:B5:A8:DD:71:5E:EB:AA:80:0E:89:5B:04:87:77:75 X509v3 Authority Key Identifier: keyid:6D:F0:93:56:60:B5:24:D2:A8:08:06:43:68:B0:AF:C5:65:38:A6:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912978E/D5AE7FAC53CA11EE8049935EC4F9AE02/bfCTVmC1JNKoCAZDaLCvxWU4ppo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bfCTVmC1JNKoCAZDaLCvxWU4ppo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912978E/D5AE7FAC53CA11EE8049935EC4F9AE02/bfCTVmC1JNKoCAZDaLCvxWU4ppo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:d8:52:be:80:65:80:8b:d7:b3:41:a1:55:4e:4b:4d:aa:8f: 4b:c5:04:ba:69:70:35:d6:8e:87:43:d7:b1:c9:0b:95:a7:34: cc:e8:4e:a6:ea:3a:5d:03:af:c7:18:bf:41:e8:04:84:eb:a9: 01:31:d2:74:df:7c:61:5f:63:16:5d:50:32:1b:87:0b:dc:1e: ba:a4:5c:bd:40:d8:57:4f:46:b5:5d:26:60:9f:19:ab:fe:02: be:00:68:ab:cb:8a:26:df:c0:90:3e:c3:8a:8b:6d:fb:93:fd: 74:64:2e:01:07:a1:61:44:ee:8e:ef:53:37:df:a9:bf:5d:24: 6b:46:7a:46:da:dd:1b:01:bc:f3:e9:4b:fc:44:94:ca:a1:ba: b8:ff:1e:0a:a1:71:21:fc:27:e6:b1:81:5d:c0:30:e7:fe:15: c8:a6:04:36:d4:2e:eb:a4:8e:87:56:8f:33:fe:74:36:c6:57: 2e:54:51:28:8f:43:55:43:ba:d2:ba:42:82:7b:67:7e:89:03: 70:76:43:5e:5e:61:21:5e:b4:be:38:10:2a:a3:d3:f3:4f:59: 2f:86:05:27:b1:ce:92:d9:07:49:30:ef:16:69:5d:35:18:07: a5:e7:98:da:c8:f3:1d:16:b8:e4:42:3a:a3:df:c3:a0:9d:db: 7d:84:42:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk3OEUxMTAvBgNVBAUTKDZERjA5MzU2NjBCNTI0RDJBODA4MDY0MzY4QjBBRkM1 NjUzOEE2OUEwHhcNMjUwNjE5MDMzOTAxWhcNMjUwNjI2MDMzOTAxWjAYMRYwFAYD VQQDEw02ODUzODY1NS1jMGZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAygAuxIU2XimV6Cm/xLA7rmMs6lave8Fl8pXznGJcu6kF78oHa2Wz8aDwSg6v /kmRZaKAbYAhE/8Smls5t33+woyXtKbO1XkPpy01zFrwH4p/LcEdPmEwbtG06a9f XENtgQVKtGUAaiW6n3hcfWrX4PHqsFsIhgdQuY67AD03NfbdVq44dG9Y6MegQDhi eNKMqubSuBnmlUfBWSsN2JjxgkapeLPw04fmVE8SWR71FTr2wJznaQO3H2Pw9/+A Sd+KfvNx4GJJ3tPBPBRmDLZudPnrzsWS9uC4LeHG5yi7QWdOUp6n7h96+Z7e/q6Z BO0Q5Xd1yMvpnUuGYuyAQJZQOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPceNZm9 tajdcV7rqoAOiVsEh3d1MB8GA1UdIwQYMBaAFG3wk1ZgtSTSqAgGQ2iwr8VlOKaa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTc4RS9ENUFFN0ZBQzUz Q0ExMUVFODA0OTkzNUVDNEY5QUUwMi9iZkNUVm1DMUpOS29DQVpEYUxDdnhXVTRw cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JmQ1RWbUMxSk5Lb0NBWkRhTEN2eFdVNHBwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OTc4RS9ENUFFN0ZBQzUzQ0ExMUVFODA0OTkzNUVDNEY5QUUwMi9iZkNUVm1DMUpO S29DQVpEYUxDdnhXVTRwcG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA22FK+gGWAi9ezQaFVTktNqo9LxQS6aXA11o6HQ9exyQuVpzTM6E6m 6jpdA6/HGL9B6ASE66kBMdJ033xhX2MWXVAyG4cL3B66pFy9QNhXT0a1XSZgnxmr /gK+AGiry4om38CQPsOKi237k/10ZC4BB6FhRO6O71M336m/XSRrRnpG2t0bAbzz 6Uv8RJTKobq4/x4KoXEh/CfmsYFdwDDn/hXIpgQ21C7rpI6HVo8z/nQ2xlcuVFEo j0NVQ7rSukKCe2d+iQNwdkNeXmEhXrS+OBAqo9PzT1kvhgUnsc6S2QdJMO8WaV01 GAel55jayPMdFrjkQjqj38Ogndt9hEJ+ -----END CERTIFICATE-----Generated at Thu Jun 19 05:49:08 2025 by rpki-client