$ rpki-client -vvf rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft File: bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft (raw, json) Hash identifier: F2GXraJID0PSbN3CsoG3SQIwyXGnVMDsxCoAaWoCkMk= Subject key identifier: B9:18:57:2B:73:41:C9:65:B2:86:E5:82:12:BC:67:0D:BD:61:0C:DA Authority key identifier: 6E:14:8A:0D:08:57:80:38:6A:81:7D:CD:8D:64:69:54:11:C7:68:38 Certificate issuer: /CN=A913EA16/serialNumber=6E148A0D085780386A817DCD8D64695411C76838 Certificate serial: 040B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhSKDQhXgDhqgX3NjWRpVBHHaDg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft Manifest number: 0404 Signing time: Fri 13 Jun 2025 00:00:56 +0000 Manifest this update: Fri 13 Jun 2025 00:00:56 +0000 Manifest next update: Fri 20 Jun 2025 00:00:56 +0000 Files and hashes: 1: bhSKDQhXgDhqgX3NjWRpVBHHaDg.crl (hash: yTcZJ8rFNE4EGkhXVLLmtnjLdyVz4Br3vnXvBAukb3s=) 2: 8B729608B62F11EFB2DE315FC4F9AE02.roa (hash: ERP6Y5/dUFxszjFDuuFfjwGYbKhjm1R8qrQOrEiUTKw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.crl rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhSKDQhXgDhqgX3NjWRpVBHHaDg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 00:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1035 (0x40b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913EA16, serialNumber=6E148A0D085780386A817DCD8D64695411C76838 Validity Not Before: Jun 13 00:00:56 2025 GMT Not After : Jun 20 00:00:56 2025 GMT Subject: CN=684b6a38-724a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:f3:31:00:01:ea:6c:f3:e5:10:06:57:5e:c5: 5a:05:68:1d:5c:74:47:e8:ba:45:17:44:dd:c8:ba: 7b:c9:e5:ff:13:45:67:07:9d:51:ad:a6:25:53:60: be:a1:74:1e:48:f1:61:c9:fc:47:1f:97:65:7b:c8: b5:e7:cc:7b:2c:09:9a:2c:86:95:5a:0a:bb:a6:d4: b1:56:59:a7:1f:c9:fe:4e:e7:9b:81:b8:f5:11:27: 76:3a:85:cf:a6:81:e4:86:fd:64:91:f8:57:28:51: a5:31:a3:0c:19:39:08:17:5c:b4:67:ad:22:7b:7c: 37:d4:8f:bf:58:ae:ff:f6:6d:79:0c:60:33:e8:01: b0:e9:93:94:4e:7a:40:e9:5a:57:1c:7a:39:e3:cc: e4:70:15:fa:ae:85:1c:82:a8:d0:60:49:2c:55:51: c2:40:03:84:27:98:25:d1:60:ad:2b:d5:8e:e8:18: 02:a1:47:3d:f4:f3:4c:ad:97:8a:0a:6f:c1:40:c5: 17:5c:81:14:eb:5c:e1:c6:a9:fd:e0:e7:3c:d8:1f: 94:e3:27:23:7d:ef:de:5d:28:f8:94:27:f0:f5:af: 11:cc:1b:6b:91:c5:31:ee:15:68:d7:ae:ac:e8:e8: e4:f7:59:7e:6e:1f:33:31:ff:84:f6:cf:dd:d8:cc: 8a:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:18:57:2B:73:41:C9:65:B2:86:E5:82:12:BC:67:0D:BD:61:0C:DA X509v3 Authority Key Identifier: keyid:6E:14:8A:0D:08:57:80:38:6A:81:7D:CD:8D:64:69:54:11:C7:68:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhSKDQhXgDhqgX3NjWRpVBHHaDg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:f1:1f:34:c8:72:89:26:7c:4b:52:11:6c:8c:4a:a6:a2:b4: 99:c4:d9:dd:d1:f5:11:a0:f4:56:67:f6:9c:48:77:9a:65:18: 9f:07:9a:ca:01:b4:d3:70:3c:e8:0b:8d:88:2b:ac:c9:79:54: 25:23:4e:ac:18:56:ff:c7:e7:2e:bc:01:d4:44:30:b8:dc:83: 6a:50:31:92:1c:09:dc:7a:95:55:e4:04:d5:9f:05:35:12:cc: ca:3c:35:43:75:16:b0:e0:98:dc:e4:96:58:28:42:93:71:8b: 3f:aa:c7:bb:7c:71:e9:fb:02:45:51:00:81:fc:d9:90:14:88: 18:b0:b9:ab:ac:01:44:23:95:21:48:98:3b:cf:dc:92:e0:a6: f3:73:07:d6:d5:41:7d:f3:d1:53:3d:a6:39:59:2b:f8:b3:6f: de:3d:a6:50:2e:6b:f1:57:57:7b:fd:44:5c:7d:aa:a2:a9:d6: 0a:12:3d:aa:16:f5:ce:ec:12:41:9e:78:bc:77:25:0e:69:9b: 83:a6:f1:5f:85:50:74:35:75:fc:75:65:2d:f3:7c:ff:fe:bf: d9:f0:ae:f3:d2:9a:dc:51:95:70:ea:ab:a2:32:11:6d:1e:5f: 4a:2c:d8:a7:78:93:6d:3e:2c:0d:e5:f5:52:96:e1:f8:4d:95: 44:70:60:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBAswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0VBMTYxMTAvBgNVBAUTKDZFMTQ4QTBEMDg1NzgwMzg2QTgxN0RDRDhENjQ2OTU0 MTFDNzY4MzgwHhcNMjUwNjEzMDAwMDU2WhcNMjUwNjIwMDAwMDU2WjAYMRYwFAYD VQQDEw02ODRiNmEzOC03MjRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy/MxAAHqbPPlEAZXXsVaBWgdXHRH6LpFF0TdyLp7yeX/E0VnB51RraYlU2C+ oXQeSPFhyfxHH5dle8i158x7LAmaLIaVWgq7ptSxVlmnH8n+Tuebgbj1ESd2OoXP poHkhv1kkfhXKFGlMaMMGTkIF1y0Z60ie3w31I+/WK7/9m15DGAz6AGw6ZOUTnpA 6VpXHHo548zkcBX6roUcgqjQYEksVVHCQAOEJ5gl0WCtK9WO6BgCoUc99PNMrZeK Cm/BQMUXXIEU61zhxqn94Oc82B+U4ycjfe/eXSj4lCfw9a8RzBtrkcUx7hVo166s 6Ojk91l+bh8zMf+E9s/d2MyKtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLkYVytz QcllsoblghK8Zw29YQzaMB8GA1UdIwQYMBaAFG4Uig0IV4A4aoF9zY1kaVQRx2g4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRUExNi80NTJGN0FFRTc3 N0IxMUVDODZGQzEwNURDNEY5QUUwMi9iaFNLRFFoWGdEaHFnWDNOaldScFZCSEhh RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JoU0tEUWhYZ0RocWdYM05qV1JwVkJISGFEZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RUExNi80NTJGN0FFRTc3N0IxMUVDODZGQzEwNURDNEY5QUUwMi9iaFNLRFFoWGdE aHFnWDNOaldScFZCSEhhRGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/8R80yHKJJnxLUhFsjEqmorSZxNnd0fURoPRWZ/acSHeaZRifB5rK AbTTcDzoC42IK6zJeVQlI06sGFb/x+cuvAHURDC43INqUDGSHAncepVV5ATVnwU1 EszKPDVDdRaw4Jjc5JZYKEKTcYs/qse7fHHp+wJFUQCB/NmQFIgYsLmrrAFEI5Uh SJg7z9yS4KbzcwfW1UF989FTPaY5WSv4s2/ePaZQLmvxV1d7/URcfaqiqdYKEj2q FvXO7BJBnni8dyUOaZuDpvFfhVB0NXX8dWUt83z//r/Z8K7z0prcUZVw6quiMhFt Hl9KLNineJNtPiwN5fVSluH4TZVEcGAf -----END CERTIFICATE-----Generated at Sat Jun 14 18:50:31 2025 by rpki-client