$ rpki-client -vvf rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft File: bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft (raw, json) Hash identifier: NMURTKtPvUCGOsEXQRVUSEPSpIS19+ZSxnyw4FRoQY0= Subject key identifier: 6C:AC:34:37:05:96:15:A1:B0:A8:BA:9B:C5:B7:B7:92:53:AC:D9:AE Authority key identifier: 6E:14:8A:0D:08:57:80:38:6A:81:7D:CD:8D:64:69:54:11:C7:68:38 Certificate issuer: /CN=A913EA16/serialNumber=6E148A0D085780386A817DCD8D64695411C76838 Certificate serial: 03F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhSKDQhXgDhqgX3NjWRpVBHHaDg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft Manifest number: 03EC Signing time: Fri 25 Apr 2025 00:17:42 +0000 Manifest this update: Fri 25 Apr 2025 00:17:42 +0000 Manifest next update: Fri 02 May 2025 00:17:42 +0000 Files and hashes: 1: bhSKDQhXgDhqgX3NjWRpVBHHaDg.crl (hash: LOusXvxVeYrUyNB9VDcXLb5PyB50zKo3WlBoTdsYhwc=) 2: 8B729608B62F11EFB2DE315FC4F9AE02.roa (hash: ERP6Y5/dUFxszjFDuuFfjwGYbKhjm1R8qrQOrEiUTKw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.crl rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhSKDQhXgDhqgX3NjWRpVBHHaDg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:17:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1011 (0x3f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913EA16, serialNumber=6E148A0D085780386A817DCD8D64695411C76838 Validity Not Before: Apr 25 00:17:42 2025 GMT Not After : May 2 00:17:42 2025 GMT Subject: CN=680ad4a6-7ed2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:76:d8:30:c9:19:d8:01:8b:bf:1b:85:ea:83: a7:be:73:48:0d:c5:2f:da:5b:c9:bb:eb:97:73:48: 17:ba:c2:86:a6:e5:d9:fc:22:c6:e1:9b:8a:13:94: 6b:4b:55:25:1b:77:5e:87:46:cb:bb:72:e8:94:c5: 14:ea:30:ab:57:1a:cb:cb:e1:eb:8f:4c:84:2e:60: 6b:b9:01:93:b0:38:bc:1f:a3:4b:1d:62:9c:68:6b: 43:a6:91:58:6a:59:6e:ab:dd:0b:71:b0:b1:0f:29: 70:ff:60:b2:8a:e2:60:51:36:43:6e:5c:38:d9:34: 27:62:f6:32:92:77:9b:7e:44:e4:73:26:8d:d8:82: 51:a0:2e:f3:cf:6f:c2:16:e6:9d:c5:41:cb:6e:f1: 0b:aa:da:ef:ce:0e:c5:ca:bd:82:26:fa:a1:45:22: c8:c1:8d:63:f9:9e:8d:96:57:d7:b6:96:00:bc:e0: 15:63:0f:bc:0d:01:9f:82:fc:ca:df:f9:e9:d3:e4: b2:5e:4e:a6:f2:34:05:02:c6:e4:41:4a:4d:7d:0b: b4:5b:2d:b4:98:07:f5:ec:18:6a:ef:2a:18:ba:13: 5c:ef:c6:52:c1:d7:f2:e6:58:80:b5:04:a5:13:cc: 66:b5:8d:bc:a2:31:50:77:d1:0c:f2:34:9e:92:53: 65:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:AC:34:37:05:96:15:A1:B0:A8:BA:9B:C5:B7:B7:92:53:AC:D9:AE X509v3 Authority Key Identifier: keyid:6E:14:8A:0D:08:57:80:38:6A:81:7D:CD:8D:64:69:54:11:C7:68:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhSKDQhXgDhqgX3NjWRpVBHHaDg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:67:fe:9b:3d:e1:c4:e9:37:18:18:d1:99:b6:d6:0a:63:e6: 03:18:01:08:1d:14:89:9a:8b:32:15:ef:12:68:30:e5:5d:b2: 80:4d:1b:c3:ff:6f:bf:c7:5e:0d:be:25:5f:43:7d:cd:e4:f5: cd:1a:95:0b:d5:55:62:9d:04:15:5b:29:3a:cd:64:44:5b:4c: c1:9b:04:86:2e:bc:b5:26:90:12:d4:67:78:4b:4f:3c:b3:94: 60:87:7c:e2:85:5e:b1:7c:c0:b4:bc:da:17:7f:ba:49:c8:d9: 9d:cc:21:3b:a8:db:8a:6a:ae:cb:15:0a:97:20:8d:d0:c6:43: dc:01:10:4e:fd:a2:f8:37:02:1a:31:91:79:a4:5e:b2:97:15: 3d:31:16:31:2d:b4:f9:09:7a:cd:65:29:00:7d:7b:18:0b:96: 74:05:02:e7:6d:82:42:98:2f:d0:57:47:7a:e6:d9:92:67:0b: cf:af:59:fd:d1:fc:7a:f2:69:6d:84:e9:26:95:3e:13:82:bb: d2:e4:33:02:11:f5:a7:34:d8:b3:23:ec:b6:58:dc:1c:ba:3b: ea:eb:55:67:62:31:15:9a:30:3a:4b:df:fe:87:8b:36:cf:e1: 30:b5:68:42:95:b7:ff:80:14:25:e4:89:75:d5:4f:20:a2:f8: 0f:8d:7c:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0VBMTYxMTAvBgNVBAUTKDZFMTQ4QTBEMDg1NzgwMzg2QTgxN0RDRDhENjQ2OTU0 MTFDNzY4MzgwHhcNMjUwNDI1MDAxNzQyWhcNMjUwNTAyMDAxNzQyWjAYMRYwFAYD VQQDEw02ODBhZDRhNi03ZWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxHbYMMkZ2AGLvxuF6oOnvnNIDcUv2lvJu+uXc0gXusKGpuXZ/CLG4ZuKE5Rr S1UlG3deh0bLu3LolMUU6jCrVxrLy+Hrj0yELmBruQGTsDi8H6NLHWKcaGtDppFY alluq90LcbCxDylw/2CyiuJgUTZDblw42TQnYvYyknebfkTkcyaN2IJRoC7zz2/C FuadxUHLbvELqtrvzg7Fyr2CJvqhRSLIwY1j+Z6NllfXtpYAvOAVYw+8DQGfgvzK 3/np0+SyXk6m8jQFAsbkQUpNfQu0Wy20mAf17Bhq7yoYuhNc78ZSwdfy5liAtQSl E8xmtY28ojFQd9EM8jSeklNlCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGysNDcF lhWhsKi6m8W3t5JTrNmuMB8GA1UdIwQYMBaAFG4Uig0IV4A4aoF9zY1kaVQRx2g4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRUExNi80NTJGN0FFRTc3 N0IxMUVDODZGQzEwNURDNEY5QUUwMi9iaFNLRFFoWGdEaHFnWDNOaldScFZCSEhh RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JoU0tEUWhYZ0RocWdYM05qV1JwVkJISGFEZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RUExNi80NTJGN0FFRTc3N0IxMUVDODZGQzEwNURDNEY5QUUwMi9iaFNLRFFoWGdE aHFnWDNOaldScFZCSEhhRGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANZ/6bPeHE6TcYGNGZttYKY+YDGAEIHRSJmosyFe8SaDDlXbKATRvD /2+/x14NviVfQ33N5PXNGpUL1VVinQQVWyk6zWREW0zBmwSGLry1JpAS1Gd4S088 s5Rgh3zihV6xfMC0vNoXf7pJyNmdzCE7qNuKaq7LFQqXII3QxkPcARBO/aL4NwIa MZF5pF6ylxU9MRYxLbT5CXrNZSkAfXsYC5Z0BQLnbYJCmC/QV0d65tmSZwvPr1n9 0fx68mlthOkmlT4TgrvS5DMCEfWnNNizI+y2WNwcujvq61VnYjEVmjA6S9/+h4s2 z+EwtWhClbf/gBQl5Il11U8govgPjXyj -----END CERTIFICATE-----Generated at Sat Apr 26 14:58:54 2025 by rpki-client