$ rpki-client -vvf rpki.apnic.net/member_repository/A912B751/72D7D8B4FDD711EC90CAEF4CC4F9AE02/6BH2N9bdhj5cdPMuKbziePqyWPc.mft File: 6BH2N9bdhj5cdPMuKbziePqyWPc.mft (raw, json) Hash identifier: jm8UmsaQGSqPc3Pj6WnNI488vjIRkUa10ibVQa/W15I= Subject key identifier: D5:6D:61:4F:19:78:DB:9D:BA:BA:01:61:00:95:85:9E:A2:5F:84:9F Authority key identifier: E8:11:F6:37:D6:DD:86:3E:5C:74:F3:2E:29:BC:E2:78:FA:B2:58:F7 Certificate issuer: /CN=A912B751/serialNumber=E811F637D6DD863E5C74F32E29BCE278FAB258F7 Certificate serial: 0299 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6BH2N9bdhj5cdPMuKbziePqyWPc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B751/72D7D8B4FDD711EC90CAEF4CC4F9AE02/6BH2N9bdhj5cdPMuKbziePqyWPc.mft Manifest number: 0293 Signing time: Fri 25 Apr 2025 01:19:32 +0000 Manifest this update: Fri 25 Apr 2025 01:19:31 +0000 Manifest next update: Fri 02 May 2025 01:19:31 +0000 Files and hashes: 1: 6BH2N9bdhj5cdPMuKbziePqyWPc.crl (hash: 5BeLP3sLfUCVEWsyCg2yC9HBHfw7tQJARWUxGMJHRQE=) 2: 96BC85E8145711EF8ED9C174C4F9AE02.roa (hash: r9L4CmzavsqqBK92JPFfdFnoYkrBESFuwdtJEjg40XU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B751/72D7D8B4FDD711EC90CAEF4CC4F9AE02/6BH2N9bdhj5cdPMuKbziePqyWPc.crl rsync://rpki.apnic.net/member_repository/A912B751/72D7D8B4FDD711EC90CAEF4CC4F9AE02/6BH2N9bdhj5cdPMuKbziePqyWPc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6BH2N9bdhj5cdPMuKbziePqyWPc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:19:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 665 (0x299) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B751, serialNumber=E811F637D6DD863E5C74F32E29BCE278FAB258F7 Validity Not Before: Apr 25 01:19:31 2025 GMT Not After : May 2 01:19:31 2025 GMT Subject: CN=680ae324-aed5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f9:39:0c:5c:af:9f:83:4b:66:b0:3a:e5:9a: a8:0e:02:96:0e:e9:a3:82:07:0c:a2:0b:0d:9d:95: 7c:c8:95:0a:26:d6:fa:eb:e9:8d:16:d3:7d:98:0f: 62:88:bc:84:3e:4c:a5:89:49:d3:2e:a6:99:5a:c0: 68:7e:57:f5:6d:3e:4b:7b:d7:94:1f:d2:5d:bd:be: 49:a6:2f:de:b9:ed:be:6c:0e:06:4c:0c:64:47:0a: e5:84:3b:86:d7:35:38:c2:78:78:5f:5f:02:40:0f: 43:e0:1c:92:b3:1f:7c:2c:a4:c8:5d:17:fd:65:94: 75:f8:49:f4:33:ea:f8:f8:41:08:13:6b:6c:7b:3b: c9:e5:88:68:77:0e:1a:4b:af:00:14:e3:48:ce:5a: a1:b6:25:89:ee:bf:26:9c:40:2a:d1:10:0f:03:9b: d4:c6:d0:d5:c7:7e:81:f6:b2:a9:6e:62:72:28:9a: 10:b9:2a:c0:d8:86:ea:94:48:52:cd:12:92:35:e9: d4:dc:e6:d2:a1:a3:26:28:b6:7f:80:54:ad:bb:2b: 72:2e:f1:66:75:64:05:be:74:66:f7:66:76:cf:cb: 7c:85:23:cb:c8:49:92:64:b6:b9:8b:8c:e9:af:82: ee:8e:96:32:9d:07:fe:45:b3:68:d2:aa:19:32:16: df:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:6D:61:4F:19:78:DB:9D:BA:BA:01:61:00:95:85:9E:A2:5F:84:9F X509v3 Authority Key Identifier: keyid:E8:11:F6:37:D6:DD:86:3E:5C:74:F3:2E:29:BC:E2:78:FA:B2:58:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B751/72D7D8B4FDD711EC90CAEF4CC4F9AE02/6BH2N9bdhj5cdPMuKbziePqyWPc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6BH2N9bdhj5cdPMuKbziePqyWPc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B751/72D7D8B4FDD711EC90CAEF4CC4F9AE02/6BH2N9bdhj5cdPMuKbziePqyWPc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:3c:03:5a:9b:eb:cb:69:18:22:76:3a:c3:d6:86:a4:cc:fe: fc:a6:49:a7:5d:3d:92:0f:78:07:81:83:23:94:c2:36:5f:49: 86:ea:71:82:06:d1:09:9e:52:58:fb:5a:d4:d8:40:5d:3b:2b: 24:9d:45:a7:0d:38:c1:67:39:3f:a9:13:a2:e7:35:80:f7:ed: 89:e3:aa:04:a2:5a:52:a3:51:f4:1f:ee:c5:96:fe:c6:21:69: 2d:01:27:10:4a:c7:6a:06:c3:53:d5:0f:99:63:d6:87:79:3c: 2c:53:f2:db:f5:47:ea:de:4e:f9:6e:dd:67:f0:70:7f:51:18: c0:13:bf:6d:a0:54:f6:b4:79:f1:6b:c0:7c:6e:79:a8:28:14: d0:81:95:35:c1:4d:e4:be:cd:be:3f:0e:ea:af:b4:4c:c2:29: 8a:cb:82:de:29:5f:cb:4a:b6:34:4b:7d:e7:00:5c:c8:5c:53: f8:e1:a4:73:a5:1b:1c:8e:bc:e0:c9:b2:ed:b6:a9:20:7a:43: fa:da:93:4c:04:8b:60:26:ab:0b:bf:84:fe:a5:d4:40:f6:0e: 71:eb:ee:94:f1:d8:4c:4c:60:d5:d2:e1:12:03:f6:a8:3d:a6: e1:51:4c:5d:72:b0:a6:b5:41:bc:b1:e2:71:93:18:0a:6e:5a: 79:5b:91:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkI3NTExMTAvBgNVBAUTKEU4MTFGNjM3RDZERDg2M0U1Qzc0RjMyRTI5QkNFMjc4 RkFCMjU4RjcwHhcNMjUwNDI1MDExOTMxWhcNMjUwNTAyMDExOTMxWjAYMRYwFAYD VQQDEw02ODBhZTMyNC1hZWQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvfk5DFyvn4NLZrA65ZqoDgKWDumjggcMogsNnZV8yJUKJtb66+mNFtN9mA9i iLyEPkyliUnTLqaZWsBoflf1bT5Le9eUH9Jdvb5Jpi/eue2+bA4GTAxkRwrlhDuG 1zU4wnh4X18CQA9D4BySsx98LKTIXRf9ZZR1+En0M+r4+EEIE2tsezvJ5Yhodw4a S68AFONIzlqhtiWJ7r8mnEAq0RAPA5vUxtDVx36B9rKpbmJyKJoQuSrA2IbqlEhS zRKSNenU3ObSoaMmKLZ/gFStuytyLvFmdWQFvnRm92Z2z8t8hSPLyEmSZLa5i4zp r4LujpYynQf+RbNo0qoZMhbfjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNVtYU8Z eNuduroBYQCVhZ6iX4SfMB8GA1UdIwQYMBaAFOgR9jfW3YY+XHTzLim84nj6slj3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjc1MS83MkQ3RDhCNEZE RDcxMUVDOTBDQUVGNENDNEY5QUUwMi82QkgyTjliZGhqNWNkUE11S2J6aWVQcXlX UGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZCSDJOOWJkaGo1Y2RQTXVLYnppZVBxeVdQYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy Qjc1MS83MkQ3RDhCNEZERDcxMUVDOTBDQUVGNENDNEY5QUUwMi82QkgyTjliZGhq NWNkUE11S2J6aWVQcXlXUGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPPANam+vLaRgidjrD1oakzP78pkmnXT2SD3gHgYMjlMI2X0mG6nGC BtEJnlJY+1rU2EBdOysknUWnDTjBZzk/qROi5zWA9+2J46oEolpSo1H0H+7Flv7G IWktAScQSsdqBsNT1Q+ZY9aHeTwsU/Lb9Ufq3k75bt1n8HB/URjAE79toFT2tHnx a8B8bnmoKBTQgZU1wU3kvs2+Pw7qr7RMwimKy4LeKV/LSrY0S33nAFzIXFP44aRz pRscjrzgybLttqkgekP62pNMBItgJqsLv4T+pdRA9g5x6+6U8dhMTGDV0uESA/ao PabhUUxdcrCmtUG8seJxkxgKblp5W5FS -----END CERTIFICATE-----Generated at Sat Apr 26 05:06:58 2025 by rpki-client