$ rpki-client -vvf rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft File: bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft (raw, json) Hash identifier: edaXUGJAVKzyt6ps8XeLB+wEY+u+MXOqwn9k23nPzpA= Subject key identifier: 83:7E:0D:9F:E8:06:C8:16:AC:58:A5:D5:84:07:BD:73:7D:09:5F:51 Authority key identifier: 6E:14:8A:0D:08:57:80:38:6A:81:7D:CD:8D:64:69:54:11:C7:68:38 Certificate issuer: /CN=A913EA16/serialNumber=6E148A0D085780386A817DCD8D64695411C76838 Certificate serial: 03F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhSKDQhXgDhqgX3NjWRpVBHHaDg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft Manifest number: 03EE Signing time: Tue 29 Apr 2025 01:08:26 +0000 Manifest this update: Tue 29 Apr 2025 01:08:26 +0000 Manifest next update: Tue 06 May 2025 01:08:26 +0000 Files and hashes: 1: bhSKDQhXgDhqgX3NjWRpVBHHaDg.crl (hash: D/52Pt7VZPCCff7JpU6w06Kc8Z8AXGVaOyV/seRkEwI=) 2: 8B729608B62F11EFB2DE315FC4F9AE02.roa (hash: ERP6Y5/dUFxszjFDuuFfjwGYbKhjm1R8qrQOrEiUTKw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.crl rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhSKDQhXgDhqgX3NjWRpVBHHaDg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 06 May 2025 01:08:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1013 (0x3f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913EA16, serialNumber=6E148A0D085780386A817DCD8D64695411C76838 Validity Not Before: Apr 29 01:08:26 2025 GMT Not After : May 6 01:08:26 2025 GMT Subject: CN=6810268a-905c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:41:27:95:9c:44:60:0c:0d:ad:dd:69:7c:1c: 64:86:3b:ec:6e:60:ee:c2:a6:8f:1f:de:14:78:6d: 7f:ac:7e:2b:6f:cb:8f:b5:e7:7f:26:e3:12:56:45: 79:ab:40:f5:fa:0a:4c:9b:97:19:aa:c9:20:b2:16: 26:4c:f9:09:70:61:79:bb:55:67:85:ad:25:d7:58: 06:1c:17:12:76:44:06:5b:2e:1a:30:29:26:98:45: 32:05:0d:7a:c6:ad:d3:cb:2a:18:f1:46:06:d8:9a: ac:72:52:92:7e:ae:e0:d4:98:1b:68:aa:0c:62:bb: de:27:55:3a:d2:bc:9f:8e:2a:ca:66:62:5f:83:55: 1d:9e:60:dc:c6:b5:3a:cb:6a:34:4e:61:a3:27:0c: e3:f4:b4:06:ed:f1:d6:3a:b5:aa:be:38:ef:2a:04: 2d:82:31:c7:d2:8c:9c:86:df:80:98:c8:36:a7:6e: e1:2f:ea:de:5e:1e:a9:d0:d4:d2:1a:4f:0b:8a:0d: d1:67:0b:4b:b2:a4:12:7b:ee:65:c0:da:4a:2a:04: b8:f4:26:59:22:ab:7a:59:a6:46:09:69:de:37:6b: f5:b3:17:97:1c:c9:12:a7:30:bf:cc:0b:85:08:58: a3:74:c1:41:bf:e3:d2:63:52:c5:83:17:35:53:7a: 8d:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:7E:0D:9F:E8:06:C8:16:AC:58:A5:D5:84:07:BD:73:7D:09:5F:51 X509v3 Authority Key Identifier: keyid:6E:14:8A:0D:08:57:80:38:6A:81:7D:CD:8D:64:69:54:11:C7:68:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhSKDQhXgDhqgX3NjWRpVBHHaDg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:b7:b7:52:26:aa:d6:e7:61:94:25:96:35:59:35:9e:10:24: 9e:51:3f:1d:38:1d:f1:f5:7a:e9:84:2c:83:f2:67:49:77:1c: 58:d5:ea:96:ee:61:67:15:71:58:7e:46:3c:4a:65:cb:65:e0: 8f:62:61:08:61:ca:0f:3d:3f:f1:c6:30:8a:b3:fa:9f:e5:09: 6b:0c:e0:f4:4c:76:bb:eb:51:ff:6e:a5:41:b3:f8:e6:f6:77: c5:69:fc:fa:30:4f:b9:49:c7:c5:eb:3c:ca:fb:d0:8b:e8:b1: c5:d2:cb:6d:c8:bd:24:c4:5b:79:c9:04:e1:2b:fa:1d:7e:d6: 1f:cd:f2:e3:9b:8e:bb:e7:8f:e4:69:cf:86:bc:a2:a8:0a:f6: c3:45:4d:0b:4e:5c:10:16:3b:dd:f5:bd:8b:4f:e5:1d:c3:ec: ba:b3:49:1b:a1:17:b5:ee:0f:04:80:1a:95:d6:ee:80:9f:0a: a4:1b:9d:75:d4:12:f1:8a:56:b3:f5:81:d4:f0:2b:5e:73:cc: 88:4b:7d:41:bd:d2:2e:a9:17:b9:27:1d:65:6d:64:1b:e9:73: 25:ec:d2:1e:f3:c6:a6:27:47:7e:e0:3b:6f:1e:e8:f4:ac:ab: 6e:93:d0:67:c1:35:26:c3:42:3c:d9:6a:a5:9f:a7:66:39:28: b6:0b:1e:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0VBMTYxMTAvBgNVBAUTKDZFMTQ4QTBEMDg1NzgwMzg2QTgxN0RDRDhENjQ2OTU0 MTFDNzY4MzgwHhcNMjUwNDI5MDEwODI2WhcNMjUwNTA2MDEwODI2WjAYMRYwFAYD VQQDEw02ODEwMjY4YS05MDVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwkEnlZxEYAwNrd1pfBxkhjvsbmDuwqaPH94UeG1/rH4rb8uPted/JuMSVkV5 q0D1+gpMm5cZqskgshYmTPkJcGF5u1Vnha0l11gGHBcSdkQGWy4aMCkmmEUyBQ16 xq3TyyoY8UYG2JqsclKSfq7g1JgbaKoMYrveJ1U60ryfjirKZmJfg1UdnmDcxrU6 y2o0TmGjJwzj9LQG7fHWOrWqvjjvKgQtgjHH0oycht+AmMg2p27hL+reXh6p0NTS Gk8Lig3RZwtLsqQSe+5lwNpKKgS49CZZIqt6WaZGCWneN2v1sxeXHMkSpzC/zAuF CFijdMFBv+PSY1LFgxc1U3qNUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIN+DZ/o BsgWrFil1YQHvXN9CV9RMB8GA1UdIwQYMBaAFG4Uig0IV4A4aoF9zY1kaVQRx2g4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRUExNi80NTJGN0FFRTc3 N0IxMUVDODZGQzEwNURDNEY5QUUwMi9iaFNLRFFoWGdEaHFnWDNOaldScFZCSEhh RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JoU0tEUWhYZ0RocWdYM05qV1JwVkJISGFEZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RUExNi80NTJGN0FFRTc3N0IxMUVDODZGQzEwNURDNEY5QUUwMi9iaFNLRFFoWGdE aHFnWDNOaldScFZCSEhhRGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAit7dSJqrW52GUJZY1WTWeECSeUT8dOB3x9XrphCyD8mdJdxxY1eqW 7mFnFXFYfkY8SmXLZeCPYmEIYcoPPT/xxjCKs/qf5QlrDOD0THa761H/bqVBs/jm 9nfFafz6ME+5ScfF6zzK+9CL6LHF0sttyL0kxFt5yQThK/odftYfzfLjm46754/k ac+GvKKoCvbDRU0LTlwQFjvd9b2LT+Udw+y6s0kboRe17g8EgBqV1u6AnwqkG511 1BLxilaz9YHU8Ctec8yIS31BvdIuqRe5Jx1lbWQb6XMl7NIe88amJ0d+4DtvHuj0 rKtuk9BnwTUmw0I82Wqln6dmOSi2Cx7+ -----END CERTIFICATE-----Generated at Wed Apr 30 00:53:00 2025 by rpki-client