$ rpki-client -vvf rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft File: BN7ay9uvpcHBT5KBe5b39QMQCig.mft (raw, json) Hash identifier: Prr2+7M11fj8+eJwHbBhZUMJV9rgn4z+s1AUkeN05IE= Subject key identifier: 22:59:CD:55:9E:54:03:2B:61:66:40:E0:29:08:D4:3C:97:BF:F4:E3 Authority key identifier: 04:DE:DA:CB:DB:AF:A5:C1:C1:4F:92:81:7B:96:F7:F5:03:10:0A:28 Certificate issuer: /CN=A912DD36/serialNumber=04DEDACBDBAFA5C1C14F92817B96F7F503100A28 Certificate serial: C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft Manifest number: C1 Signing time: Sun 15 Jun 2025 04:58:22 +0000 Manifest this update: Sun 15 Jun 2025 04:58:22 +0000 Manifest next update: Sun 22 Jun 2025 04:58:22 +0000 Files and hashes: 1: BN7ay9uvpcHBT5KBe5b39QMQCig.crl (hash: 5YnWJ2MUIesbeMsCoPaxRAn+MCGN841qzCPyxiS6RyI=) 2: 09EC8E16662211EFB6FA446CC4F9AE02.roa (hash: urnxskxc6j+If6xUlVvxOJwYlSVOMo9w2F7g3T2GGgM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.crl rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 196 (0xc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DD36, serialNumber=04DEDACBDBAFA5C1C14F92817B96F7F503100A28 Validity Not Before: Jun 15 04:58:22 2025 GMT Not After : Jun 22 04:58:22 2025 GMT Subject: CN=684e52ee-8711 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:47:6b:dd:94:90:32:95:4f:83:32:30:45:b2: 48:c0:24:3e:57:21:9f:f9:1e:ef:09:73:77:c8:61: af:00:33:6f:e0:74:63:6c:9b:1f:c9:c5:97:f1:38: 43:5f:6f:23:bd:1d:d5:ce:5d:63:2d:f3:82:e4:58: 78:01:77:ed:ab:6b:1f:f2:b1:67:46:95:7e:de:b5: b9:21:bf:8d:cc:d6:c9:8b:66:e0:5c:18:2d:b3:9f: 68:d1:55:3e:62:a9:e5:9a:fa:8d:7a:92:e1:1c:c0: d7:03:87:fb:bb:9f:f8:0d:60:9f:30:3b:1c:e9:bd: 8b:83:e1:69:d7:f8:4d:1e:27:41:ba:a5:aa:79:66: 1e:5c:ba:3a:a9:17:09:ee:f8:95:a7:c9:be:00:f8: 1a:a1:1a:49:9e:2e:11:e3:13:96:36:96:2c:7e:9f: 69:60:02:cf:81:84:fc:58:37:2c:aa:89:03:84:03: f9:86:49:56:3a:c6:67:ad:5d:5d:e8:58:db:d7:23: 24:fd:af:81:8f:65:92:3a:a6:bb:5d:7f:5a:91:41: 8f:72:0c:a2:1a:cf:ca:e6:2f:3a:6f:4d:d6:de:ce: 4c:43:40:7d:f7:40:64:ab:16:3c:10:5d:81:1b:52: e6:fd:1f:36:ed:81:14:ce:76:20:56:80:75:40:29: ea:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:59:CD:55:9E:54:03:2B:61:66:40:E0:29:08:D4:3C:97:BF:F4:E3 X509v3 Authority Key Identifier: keyid:04:DE:DA:CB:DB:AF:A5:C1:C1:4F:92:81:7B:96:F7:F5:03:10:0A:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:8d:6f:ca:77:5e:da:74:79:4d:85:58:43:9e:9c:b6:bd:14: 49:80:cc:5a:d2:e6:3f:2e:c9:90:3d:ce:80:e8:03:c0:47:82: b6:00:6c:3c:30:3b:12:ce:86:b1:cb:83:0c:0b:ae:97:3e:13: 43:23:7d:c8:0e:73:59:58:e6:e6:6b:13:b4:a5:34:24:5e:36: 13:65:bc:6c:6a:a6:95:23:7f:87:1f:cc:9a:bf:28:5c:6e:c7: 83:54:2b:c7:d4:cf:6b:23:09:46:1e:63:43:38:93:3e:e8:cc: 4d:12:21:2c:b2:34:39:4e:91:2a:93:a8:b1:54:d4:35:51:fa: 01:48:1b:5a:e8:07:38:a6:96:99:64:34:52:19:7c:8a:e1:84: 18:52:3b:6f:34:a8:3b:ce:54:a0:27:69:d9:56:67:6e:75:14: 91:e9:be:c5:1c:16:b2:4b:cc:a2:43:a5:f6:70:b5:c7:0c:74: 13:cc:30:60:af:9a:74:e1:14:6e:89:2d:bb:2d:5f:c5:f9:b3: 20:34:6d:de:d6:aa:63:0a:f2:98:22:4c:2b:db:0a:ca:62:06: 6a:8e:41:d8:39:08:b8:f5:bf:92:4f:db:46:8b:e2:fc:44:cc: f8:ea:bb:65:c1:09:31:db:95:dd:8c:7a:34:b6:22:6b:0e:08: 0e:87:a2:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkREMzYxMTAvBgNVBAUTKDA0REVEQUNCREJBRkE1QzFDMTRGOTI4MTdCOTZGN0Y1 MDMxMDBBMjgwHhcNMjUwNjE1MDQ1ODIyWhcNMjUwNjIyMDQ1ODIyWjAYMRYwFAYD VQQDEw02ODRlNTJlZS04NzExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Edr3ZSQMpVPgzIwRbJIwCQ+VyGf+R7vCXN3yGGvADNv4HRjbJsfycWX8ThD X28jvR3Vzl1jLfOC5Fh4AXftq2sf8rFnRpV+3rW5Ib+NzNbJi2bgXBgts59o0VU+ YqnlmvqNepLhHMDXA4f7u5/4DWCfMDsc6b2Lg+Fp1/hNHidBuqWqeWYeXLo6qRcJ 7viVp8m+APgaoRpJni4R4xOWNpYsfp9pYALPgYT8WDcsqokDhAP5hklWOsZnrV1d 6Fjb1yMk/a+Bj2WSOqa7XX9akUGPcgyiGs/K5i86b03W3s5MQ0B990BkqxY8EF2B G1Lm/R827YEUznYgVoB1QCnqUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCJZzVWe VAMrYWZA4CkI1DyXv/TjMB8GA1UdIwQYMBaAFATe2svbr6XBwU+SgXuW9/UDEAoo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREQzNi83RjQwMjNGMjI1 MzIxMUVGQkM5MzIxMUFDNEY5QUUwMi9CTjdheTl1dnBjSEJUNUtCZTViMzlRTVFD aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JON2F5OXV2cGNIQlQ1S0JlNWIzOVFNUUNpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REQzNi83RjQwMjNGMjI1MzIxMUVGQkM5MzIxMUFDNEY5QUUwMi9CTjdheTl1dnBj SEJUNUtCZTViMzlRTVFDaWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDjW/Kd17adHlNhVhDnpy2vRRJgMxa0uY/LsmQPc6A6APAR4K2AGw8 MDsSzoaxy4MMC66XPhNDI33IDnNZWObmaxO0pTQkXjYTZbxsaqaVI3+HH8yavyhc bseDVCvH1M9rIwlGHmNDOJM+6MxNEiEssjQ5TpEqk6ixVNQ1UfoBSBta6Ac4ppaZ ZDRSGXyK4YQYUjtvNKg7zlSgJ2nZVmdudRSR6b7FHBayS8yiQ6X2cLXHDHQTzDBg r5p04RRuiS27LV/F+bMgNG3e1qpjCvKYIkwr2wrKYgZqjkHYOQi49b+ST9tGi+L8 RMz46rtlwQkx25XdjHo0tiJrDggOh6JZ -----END CERTIFICATE-----Generated at Sun Jun 15 09:52:04 2025 by rpki-client