$ rpki-client -vvf rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.mft File: BSmF8r4ox5507_TbTHFCKEVHc1w.mft (raw, json) Hash identifier: fBJuJ/HaCDI8lqb+46nWR0Nf6u3LN/Km7AxXZb8Lk3g= Subject key identifier: 09:14:0C:9B:40:83:F4:46:5C:EC:34:4D:F7:41:5D:CF:1F:67:E4:37 Authority key identifier: 05:29:85:F2:BE:28:C7:9E:74:EF:F4:DB:4C:71:42:28:45:47:73:5C Certificate issuer: /CN=A9151A79/serialNumber=052985F2BE28C79E74EFF4DB4C7142284547735C Certificate serial: 0193 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BSmF8r4ox5507_TbTHFCKEVHc1w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.mft Manifest number: 018B Signing time: Sun 15 Jun 2025 02:50:35 +0000 Manifest this update: Sun 15 Jun 2025 02:50:35 +0000 Manifest next update: Sun 22 Jun 2025 02:50:34 +0000 Files and hashes: 1: BSmF8r4ox5507_TbTHFCKEVHc1w.crl (hash: IIng+cwhZGvruL4u8uk5btfZH1/QIaDM2R2cGlInRP0=) 2: A799F54AF1F111EE9D899046C4F9AE02.roa (hash: Q3/I4xZV8CvWyhr+A+P9zzW5K8pcc6S3V6pLPjC2BoQ=) 3: EA22589E373C11F0909EF25DC4F9AE02.roa (hash: pK7K0oDGB09OEHam5uLFYf312YyVDqFKY5nBRiwk3eo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.crl rsync://rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BSmF8r4ox5507_TbTHFCKEVHc1w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 403 (0x193) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151A79, serialNumber=052985F2BE28C79E74EFF4DB4C7142284547735C Validity Not Before: Jun 15 02:50:35 2025 GMT Not After : Jun 22 02:50:34 2025 GMT Subject: CN=684e34fb-2e20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:8b:8c:70:37:10:ae:a7:43:79:ed:eb:25:4b: cd:90:6b:b1:61:1b:fc:f2:d7:f4:02:e5:29:21:02: 2d:32:41:72:4e:fd:30:01:90:6b:f0:e6:36:af:01: ab:65:93:5c:eb:83:c4:bd:f9:ab:a5:7c:28:af:1d: 17:05:54:66:fc:0f:5e:aa:48:2e:1a:15:1c:de:91: 26:7e:4a:06:aa:d2:bc:6c:fc:63:6c:5e:3a:02:b9: 46:75:6b:3e:47:8d:1d:fd:11:bb:c9:2d:c7:91:0f: 40:40:bc:74:66:7f:5a:b9:58:2b:ea:7d:dc:d6:73: 8f:b4:1a:7b:fc:f4:20:45:40:68:d6:2c:7b:98:83: 04:0f:91:15:25:79:92:cc:06:51:56:1e:38:31:79: e6:4c:48:a7:93:a4:ac:0b:03:5d:3e:49:6e:6f:ca: 5d:d0:74:22:af:51:d2:f7:8f:b8:b7:f6:7c:7a:04: 36:cc:7e:27:19:55:b3:e9:3a:4f:68:d0:39:93:8e: 53:41:4c:42:67:a0:e4:dd:d1:44:45:ba:29:5c:4d: 1e:84:24:68:1c:20:f6:db:06:2a:d3:9f:8e:6e:de: 0e:12:83:fd:ee:7a:7c:bf:af:f6:b8:0f:71:5b:47: e2:ce:b6:3d:e0:4d:b9:31:27:21:0f:8e:d3:c5:db: 9a:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:14:0C:9B:40:83:F4:46:5C:EC:34:4D:F7:41:5D:CF:1F:67:E4:37 X509v3 Authority Key Identifier: keyid:05:29:85:F2:BE:28:C7:9E:74:EF:F4:DB:4C:71:42:28:45:47:73:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BSmF8r4ox5507_TbTHFCKEVHc1w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:21:ce:b9:33:a2:95:a1:7f:58:76:d2:76:32:05:68:18:2b: e3:15:1c:6c:ce:23:32:0c:fb:88:7f:56:66:cb:b6:52:42:11: 6a:70:bb:72:93:b0:ee:2f:1a:7e:32:55:20:8d:9e:04:28:e9: 84:2b:ae:94:9c:2a:8f:17:bb:32:b5:3e:6c:aa:60:db:55:28: eb:82:d1:6f:b2:61:10:fe:9c:c9:e9:bb:ff:18:6e:d1:18:57: b5:9b:db:9c:23:c3:c1:de:c2:66:0e:d4:d5:90:cf:d8:04:72: ee:c0:46:dc:79:36:99:29:b2:a1:17:d3:3f:03:e8:38:0b:70: b5:b1:cb:76:86:cc:12:bd:aa:d1:d8:69:52:4f:c4:88:c8:b4: 82:02:a8:ea:e1:c8:41:6e:fb:3f:66:70:30:e2:53:b6:68:ec: 84:a1:da:43:7c:cf:54:ab:74:1b:0a:fd:62:81:29:93:92:01: c6:20:ff:ea:bb:38:28:db:f7:46:20:f0:4b:23:a8:e9:ea:dd: 5c:97:df:66:1e:e4:e5:3b:f8:e2:05:23:ac:62:3a:6e:46:4b: 77:0c:f5:52:1c:c8:e6:d1:54:d9:51:32:95:58:f1:98:46:07: 93:ed:4d:6a:f6:d2:1e:07:05:75:4c:85:7f:6d:a3:8a:a1:79: 52:f7:6e:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTFBNzkxMTAvBgNVBAUTKDA1Mjk4NUYyQkUyOEM3OUU3NEVGRjREQjRDNzE0MjI4 NDU0NzczNUMwHhcNMjUwNjE1MDI1MDM1WhcNMjUwNjIyMDI1MDM0WjAYMRYwFAYD VQQDEw02ODRlMzRmYi0yZTIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA04uMcDcQrqdDee3rJUvNkGuxYRv88tf0AuUpIQItMkFyTv0wAZBr8OY2rwGr ZZNc64PEvfmrpXworx0XBVRm/A9eqkguGhUc3pEmfkoGqtK8bPxjbF46ArlGdWs+ R40d/RG7yS3HkQ9AQLx0Zn9auVgr6n3c1nOPtBp7/PQgRUBo1ix7mIMED5EVJXmS zAZRVh44MXnmTEink6SsCwNdPklub8pd0HQir1HS94+4t/Z8egQ2zH4nGVWz6TpP aNA5k45TQUxCZ6Dk3dFERbopXE0ehCRoHCD22wYq05+Obt4OEoP97np8v6/2uA9x W0fizrY94E25MSchD47TxduadwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAkUDJtA g/RGXOw0TfdBXc8fZ+Q3MB8GA1UdIwQYMBaAFAUphfK+KMeedO/020xxQihFR3Nc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MUE3OS9ENENBMTVDMEY5 NDcxMUVEODhDMTg3NDZDNEY5QUUwMi9CU21GOHI0b3g1NTA3X1RiVEhGQ0tFVkhj MXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JTbUY4cjRveDU1MDdfVGJUSEZDS0VWSGMxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MUE3OS9ENENBMTVDMEY5NDcxMUVEODhDMTg3NDZDNEY5QUUwMi9CU21GOHI0b3g1 NTA3X1RiVEhGQ0tFVkhjMXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTIc65M6KVoX9YdtJ2MgVoGCvjFRxsziMyDPuIf1Zmy7ZSQhFqcLty k7DuLxp+MlUgjZ4EKOmEK66UnCqPF7sytT5sqmDbVSjrgtFvsmEQ/pzJ6bv/GG7R GFe1m9ucI8PB3sJmDtTVkM/YBHLuwEbceTaZKbKhF9M/A+g4C3C1sct2hswSvarR 2GlST8SIyLSCAqjq4chBbvs/ZnAw4lO2aOyEodpDfM9Uq3QbCv1igSmTkgHGIP/q uzgo2/dGIPBLI6jp6t1cl99mHuTlO/jiBSOsYjpuRkt3DPVSHMjm0VTZUTKVWPGY RgeT7U1q9tIeBwV1TIV/baOKoXlS924k -----END CERTIFICATE-----Generated at Sun Jun 15 09:32:33 2025 by rpki-client