$ rpki-client -vvf rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.mft File: BSmF8r4ox5507_TbTHFCKEVHc1w.mft (raw, json) Hash identifier: XSx32OXbKdjM0b4xf++MPDZYmA+2wBGzHc2TI0S8oPU= Subject key identifier: 65:F7:F0:81:D6:59:03:D6:5E:CB:A0:F3:A9:57:FB:70:59:15:C5:EB Authority key identifier: 05:29:85:F2:BE:28:C7:9E:74:EF:F4:DB:4C:71:42:28:45:47:73:5C Certificate issuer: /CN=A9151A79/serialNumber=052985F2BE28C79E74EFF4DB4C7142284547735C Certificate serial: 0173 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BSmF8r4ox5507_TbTHFCKEVHc1w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.mft Manifest number: 016D Signing time: Fri 25 Apr 2025 03:01:50 +0000 Manifest this update: Fri 25 Apr 2025 03:01:49 +0000 Manifest next update: Fri 02 May 2025 03:01:49 +0000 Files and hashes: 1: BSmF8r4ox5507_TbTHFCKEVHc1w.crl (hash: LNhNm1ucmToYgYNaqLLkV0wjrAHD5c0h+62wLeRU5Es=) 2: A799F54AF1F111EE9D899046C4F9AE02.roa (hash: s9Hq2WKNBLpIHUUpKntveP4U+1sM2OLROzstT7r+cr8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.crl rsync://rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BSmF8r4ox5507_TbTHFCKEVHc1w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:01:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 371 (0x173) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151A79, serialNumber=052985F2BE28C79E74EFF4DB4C7142284547735C Validity Not Before: Apr 25 03:01:49 2025 GMT Not After : May 2 03:01:49 2025 GMT Subject: CN=680afb1d-aac7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f0:18:bb:e9:c6:ca:c2:ea:f1:60:2b:bd:4c: 11:c1:04:5c:39:4c:20:99:60:e1:47:86:9d:51:4d: 4c:af:86:77:26:1a:eb:b4:1e:f4:ec:5c:96:bc:95: e8:8d:79:41:42:f1:94:aa:92:8e:58:29:a6:5f:be: 87:b9:ed:4f:a8:32:e1:56:9f:78:d8:68:cd:f3:b1: ba:17:d7:d9:9e:52:65:db:44:49:56:c5:a0:2a:2a: 9a:29:97:c4:96:8d:a2:5f:80:0f:f3:34:4c:c5:bf: 6c:96:59:13:ed:cf:64:d0:59:53:00:f4:da:c5:8b: 55:33:6e:c8:57:0a:59:1b:f5:75:07:9a:67:ea:04: 3a:74:94:e1:6c:a2:39:1d:28:1e:19:c5:25:26:3a: 1c:ec:21:d5:d7:b4:82:9c:6b:fe:4a:e4:ae:33:87: c7:f4:42:38:74:b1:91:cb:01:41:7b:79:81:07:43: 60:b8:a6:8c:22:a2:3b:30:fd:10:09:0a:fa:29:aa: 8b:6d:f9:32:e7:6e:16:16:4e:26:70:86:f5:66:6f: b9:e4:84:e5:ed:88:ab:70:a1:db:60:f2:83:f6:1d: c9:55:d6:5d:b7:7d:55:dd:71:04:bc:59:e1:a3:e4: 76:bb:5a:33:42:0f:29:08:27:ba:51:91:00:9f:aa: cc:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:F7:F0:81:D6:59:03:D6:5E:CB:A0:F3:A9:57:FB:70:59:15:C5:EB X509v3 Authority Key Identifier: keyid:05:29:85:F2:BE:28:C7:9E:74:EF:F4:DB:4C:71:42:28:45:47:73:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BSmF8r4ox5507_TbTHFCKEVHc1w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:8d:95:06:e1:ba:e6:c5:74:6a:e5:65:0c:e7:7a:29:ed:fa: 3c:06:c9:0c:04:39:33:c0:a6:59:46:99:a7:e5:b6:04:f9:62: d3:49:4d:aa:19:15:0e:22:f7:f2:b9:1b:05:5a:10:44:04:3d: 03:0b:aa:e9:90:7c:4c:27:1d:94:5d:c2:c8:28:8b:85:d1:3c: 65:27:98:72:84:70:b8:2d:96:e5:61:f2:8d:fa:66:90:60:4a: bf:de:5c:04:b7:5f:9e:b6:aa:2f:4c:68:61:50:2a:7c:6c:da: 2a:2a:8f:20:69:8a:2c:82:d5:4a:b8:a6:91:86:3c:07:8a:36: 4c:e9:2b:a1:2e:e9:75:f9:b8:3e:19:9a:91:e1:63:ab:66:7e: b4:16:52:4e:08:47:93:dc:f2:63:db:20:1e:8d:be:51:8b:57: 12:62:e1:89:70:e2:88:22:16:08:02:c0:29:cb:ca:4f:e3:70: d1:1d:33:e3:43:9a:95:e4:e6:94:1e:c6:a4:71:33:26:93:e1: bc:f5:9c:4c:ca:2b:16:30:29:4e:79:a5:23:27:1d:0a:80:0f: a4:80:f3:59:10:5a:6e:06:c2:cd:81:0d:e0:7a:e1:d1:fb:b5: 69:c1:3e:c8:34:c9:59:41:7b:4b:74:ca:2e:79:52:7b:6c:ac: 78:97:4c:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTFBNzkxMTAvBgNVBAUTKDA1Mjk4NUYyQkUyOEM3OUU3NEVGRjREQjRDNzE0MjI4 NDU0NzczNUMwHhcNMjUwNDI1MDMwMTQ5WhcNMjUwNTAyMDMwMTQ5WjAYMRYwFAYD VQQDEw02ODBhZmIxZC1hYWM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwfAYu+nGysLq8WArvUwRwQRcOUwgmWDhR4adUU1Mr4Z3JhrrtB707FyWvJXo jXlBQvGUqpKOWCmmX76Hue1PqDLhVp942GjN87G6F9fZnlJl20RJVsWgKiqaKZfE lo2iX4AP8zRMxb9sllkT7c9k0FlTAPTaxYtVM27IVwpZG/V1B5pn6gQ6dJThbKI5 HSgeGcUlJjoc7CHV17SCnGv+SuSuM4fH9EI4dLGRywFBe3mBB0NguKaMIqI7MP0Q CQr6KaqLbfky524WFk4mcIb1Zm+55ITl7YircKHbYPKD9h3JVdZdt31V3XEEvFnh o+R2u1ozQg8pCCe6UZEAn6rMFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGX38IHW WQPWXsug86lX+3BZFcXrMB8GA1UdIwQYMBaAFAUphfK+KMeedO/020xxQihFR3Nc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MUE3OS9ENENBMTVDMEY5 NDcxMUVEODhDMTg3NDZDNEY5QUUwMi9CU21GOHI0b3g1NTA3X1RiVEhGQ0tFVkhj MXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JTbUY4cjRveDU1MDdfVGJUSEZDS0VWSGMxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MUE3OS9ENENBMTVDMEY5NDcxMUVEODhDMTg3NDZDNEY5QUUwMi9CU21GOHI0b3g1 NTA3X1RiVEhGQ0tFVkhjMXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOjZUG4brmxXRq5WUM53op7fo8BskMBDkzwKZZRpmn5bYE+WLTSU2q GRUOIvfyuRsFWhBEBD0DC6rpkHxMJx2UXcLIKIuF0TxlJ5hyhHC4LZblYfKN+maQ YEq/3lwEt1+etqovTGhhUCp8bNoqKo8gaYosgtVKuKaRhjwHijZM6SuhLul1+bg+ GZqR4WOrZn60FlJOCEeT3PJj2yAejb5Ri1cSYuGJcOKIIhYIAsApy8pP43DRHTPj Q5qV5OaUHsakcTMmk+G89ZxMyisWMClOeaUjJx0KgA+kgPNZEFpuBsLNgQ3geuHR +7VpwT7INMlZQXtLdMoueVJ7bKx4l0xS -----END CERTIFICATE-----Generated at Sat Apr 26 14:10:25 2025 by rpki-client