$ rpki-client -vvf rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft File: bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft (raw, json) Hash identifier: cIvDnIa7r43ymMJOQgQ31prEDZxAOT/9P8NGGrFUleU= Subject key identifier: 6E:22:7E:5A:D1:C0:30:71:DB:B7:AB:E7:29:B5:45:4C:6F:8F:75:25 Authority key identifier: 6C:A2:CF:A6:88:BD:F9:E2:D6:56:16:08:67:7A:30:C9:15:24:3D:0C Certificate issuer: /CN=A9148F80/serialNumber=6CA2CFA688BDF9E2D6561608677A30C915243D0C Certificate serial: 068D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKLPpoi9-eLWVhYIZ3owyRUkPQw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft Manifest number: 0686 Signing time: Sat 14 Jun 2025 22:04:05 +0000 Manifest this update: Sat 14 Jun 2025 22:04:04 +0000 Manifest next update: Sat 21 Jun 2025 22:04:04 +0000 Files and hashes: 1: bKLPpoi9-eLWVhYIZ3owyRUkPQw.crl (hash: ViasuzY2HqQSefziItKXnE75X/QT+LyNni8Dr20L+EQ=) 2: 1C93BF747CD011EB9F876E78C4F9AE02.roa (hash: vUduh0w3eSZesFepaO929FwqL1Ap+OkfqL7IQgJ/yu0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.crl rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKLPpoi9-eLWVhYIZ3owyRUkPQw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 22:04:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1677 (0x68d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148F80, serialNumber=6CA2CFA688BDF9E2D6561608677A30C915243D0C Validity Not Before: Jun 14 22:04:04 2025 GMT Not After : Jun 21 22:04:04 2025 GMT Subject: CN=684df1d5-7308 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:5f:5d:64:eb:ad:fc:b9:df:88:ed:ba:59:23: 02:4f:75:1e:78:5e:a8:16:b1:b8:f7:27:ed:62:1b: 3a:64:07:84:f6:59:b3:e0:50:99:e7:7f:49:ad:12: a7:ee:78:67:42:fd:ba:c6:bb:40:81:3d:58:79:b1: 2b:24:72:22:9b:c0:5f:9f:cf:f2:9b:79:9e:e6:a6: a3:55:44:25:43:8d:66:dc:29:e0:5c:12:eb:7c:d8: c1:cb:2d:c7:8f:31:2e:59:1d:e8:76:8a:75:61:c4: 75:7e:c4:e7:f8:79:22:1c:2b:3a:b3:3a:f7:c4:4a: 84:44:e3:36:ac:03:2e:d5:ab:48:26:2b:e5:89:f4: 03:06:d8:da:0c:c9:89:68:7d:78:55:e9:e8:2f:5b: c4:2a:b0:fb:bf:35:7e:f3:17:18:93:66:f9:dd:d9: e3:14:4e:f2:53:70:0e:54:53:a4:fa:8f:97:58:94: 16:a1:9e:88:63:fd:6d:25:dd:8b:1a:84:93:10:05: 7f:03:56:e0:0f:1a:3f:0e:5d:fe:b1:64:89:a3:39: 63:d6:dd:f1:ae:dc:47:e5:18:d3:53:e3:32:d6:4f: 1a:a0:72:3b:f5:49:ef:9c:3b:a0:e4:da:de:9e:de: a0:22:7c:35:45:ff:ad:f2:43:a6:fd:51:26:85:c2: 48:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:22:7E:5A:D1:C0:30:71:DB:B7:AB:E7:29:B5:45:4C:6F:8F:75:25 X509v3 Authority Key Identifier: keyid:6C:A2:CF:A6:88:BD:F9:E2:D6:56:16:08:67:7A:30:C9:15:24:3D:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKLPpoi9-eLWVhYIZ3owyRUkPQw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148F80/071DEA407CCE11EBBB882976C4F9AE02/bKLPpoi9-eLWVhYIZ3owyRUkPQw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:82:f5:4d:b7:77:4a:22:20:63:50:af:80:2f:74:d4:9c:c5: 1c:11:41:2b:1d:d6:f4:18:53:d8:fa:4e:be:5a:cd:48:e6:55: fa:8c:ee:22:25:87:78:60:1a:b7:77:d1:34:29:92:42:4c:1d: 55:61:dc:7b:3c:08:86:14:6e:cc:07:88:c2:9e:7a:3b:90:81: f8:5b:7f:d4:47:ce:8c:f3:38:d1:cb:41:6b:8c:de:ea:b7:58: 7a:68:45:a4:44:a6:1a:d8:10:f4:45:ea:53:00:0b:a1:1e:86: 83:27:7d:57:f9:e0:a6:9b:dc:d4:26:01:5b:92:ed:5e:75:86: 8a:64:4d:09:07:11:a5:bc:ad:30:c2:2d:77:83:6d:63:f9:53: bc:26:f7:7e:84:7d:d9:02:6c:d5:78:f4:84:85:9f:ac:01:aa: a1:19:67:a7:34:30:46:d3:66:20:9b:93:ce:58:2e:73:54:13: 7b:7a:2d:47:1d:8f:6a:b3:8e:18:8e:7d:7b:d7:31:50:7e:cc: 71:53:be:fd:39:3b:4f:ad:f4:10:c0:70:a5:c0:95:01:a7:43: 29:0a:28:29:64:5f:09:31:f8:af:d6:d3:d4:4a:61:25:9a:c1: c2:67:a8:ec:ba:a5:c0:da:fa:e1:55:cc:1e:83:9f:44:bd:d6: 98:45:d3:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBo0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhGODAxMTAvBgNVBAUTKDZDQTJDRkE2ODhCREY5RTJENjU2MTYwODY3N0EzMEM5 MTUyNDNEMEMwHhcNMjUwNjE0MjIwNDA0WhcNMjUwNjIxMjIwNDA0WjAYMRYwFAYD VQQDEw02ODRkZjFkNS03MzA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvV9dZOut/LnfiO26WSMCT3UeeF6oFrG49yftYhs6ZAeE9lmz4FCZ539JrRKn 7nhnQv26xrtAgT1YebErJHIim8Bfn8/ym3me5qajVUQlQ41m3CngXBLrfNjByy3H jzEuWR3odop1YcR1fsTn+HkiHCs6szr3xEqEROM2rAMu1atIJivlifQDBtjaDMmJ aH14VenoL1vEKrD7vzV+8xcYk2b53dnjFE7yU3AOVFOk+o+XWJQWoZ6IY/1tJd2L GoSTEAV/A1bgDxo/Dl3+sWSJozlj1t3xrtxH5RjTU+My1k8aoHI79UnvnDug5Nre nt6gInw1Rf+t8kOm/VEmhcJIRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG4iflrR wDBx27er5ym1RUxvj3UlMB8GA1UdIwQYMBaAFGyiz6aIvfni1lYWCGd6MMkVJD0M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEY4MC8wNzFERUE0MDdD Q0UxMUVCQkI4ODI5NzZDNEY5QUUwMi9iS0xQcG9pOS1lTFdWaFlJWjNvd3lSVWtQ UXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JLTFBwb2k5LWVMV1ZoWUlaM293eVJVa1BRdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEY4MC8wNzFERUE0MDdDQ0UxMUVCQkI4ODI5NzZDNEY5QUUwMi9iS0xQcG9pOS1l TFdWaFlJWjNvd3lSVWtQUXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcgvVNt3dKIiBjUK+AL3TUnMUcEUErHdb0GFPY+k6+Ws1I5lX6jO4i JYd4YBq3d9E0KZJCTB1VYdx7PAiGFG7MB4jCnno7kIH4W3/UR86M8zjRy0FrjN7q t1h6aEWkRKYa2BD0RepTAAuhHoaDJ31X+eCmm9zUJgFbku1edYaKZE0JBxGlvK0w wi13g21j+VO8Jvd+hH3ZAmzVePSEhZ+sAaqhGWenNDBG02Ygm5POWC5zVBN7ei1H HY9qs44Yjn171zFQfsxxU779OTtPrfQQwHClwJUBp0MpCigpZF8JMfiv1tPUSmEl msHCZ6jsuqXA2vrhVcweg59EvdaYRdOZ -----END CERTIFICATE-----Generated at Sun Jun 15 10:22:56 2025 by rpki-client