$ rpki-client -vvf rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.mft File: BdJLO4oiJ7b-6S3NJdVL8F7oaMo.mft (raw, json) Hash identifier: 0rPRpT0/VUa2M3R0B4jPzFATemmEgc++TrxV/86xl+g= Subject key identifier: 4E:D0:DB:91:47:08:D2:9B:15:3D:38:01:E7:61:01:9D:B2:50:A2:27 Authority key identifier: 05:D2:4B:3B:8A:22:27:B6:FE:E9:2D:CD:25:D5:4B:F0:5E:E8:68:CA Certificate issuer: /CN=A9157724/serialNumber=05D24B3B8A2227B6FEE92DCD25D54BF05EE868CA Certificate serial: 010F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.mft Manifest number: 010A Signing time: Fri 25 Apr 2025 04:09:14 +0000 Manifest this update: Fri 25 Apr 2025 04:09:13 +0000 Manifest next update: Fri 02 May 2025 04:09:13 +0000 Files and hashes: 1: BdJLO4oiJ7b-6S3NJdVL8F7oaMo.crl (hash: Qa7Elb6Y8vPUJVSVW0sbE+vybF+/xQTQ5JQChCkAIpA=) 2: 6063C75CB6E411EE94471D14C4F9AE02.roa (hash: HDfP4LwrloNXU1nzvfFcUeha0pVa0Ubh8d+qNote20c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.crl rsync://rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:09:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 271 (0x10f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157724, serialNumber=05D24B3B8A2227B6FEE92DCD25D54BF05EE868CA Validity Not Before: Apr 25 04:09:13 2025 GMT Not After : May 2 04:09:13 2025 GMT Subject: CN=680b0ae9-8038 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:34:33:3b:10:2c:78:5f:84:26:25:c8:86:d1: 1a:ca:6e:8a:70:f0:16:26:6d:b8:21:e4:09:01:02: 09:20:8b:8a:91:fe:12:95:5a:54:ae:5b:7c:46:a1: 77:97:33:a3:1b:03:3f:fc:7a:ef:51:fa:37:bb:e1: 37:cc:ee:0b:a8:fc:e3:70:e1:40:fb:a7:98:e7:4e: b2:3f:5e:a3:83:d9:a0:0c:11:4c:f1:c9:2d:b0:4c: e3:43:a2:bb:3b:23:ee:13:c2:de:76:7a:9e:7d:03: 29:ee:3d:19:03:30:c5:5e:a5:ce:29:7e:7c:28:3b: 51:33:c7:92:91:b6:da:f6:36:86:55:e1:24:04:6d: a8:4b:ab:5e:3b:49:90:7b:fb:34:d8:bb:55:47:d8: e0:3a:08:a5:ce:9c:6f:9b:a2:1c:1c:43:56:ea:ce: 45:14:82:b0:fb:fb:0a:cb:7e:70:7b:a2:ff:6b:ac: 1d:0c:11:01:f5:5f:1b:c5:4a:a9:32:85:55:ad:bb: 65:fe:ef:af:0d:86:bd:5a:01:47:1e:80:98:a5:23: 81:ff:cf:2f:8b:3d:07:4f:60:cf:2c:49:15:ed:f8: 0e:cc:7c:63:81:42:9a:86:47:c3:8b:8f:be:16:39: 0d:f6:9c:1e:46:a5:38:89:ad:54:23:7d:14:f9:fc: 58:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:D0:DB:91:47:08:D2:9B:15:3D:38:01:E7:61:01:9D:B2:50:A2:27 X509v3 Authority Key Identifier: keyid:05:D2:4B:3B:8A:22:27:B6:FE:E9:2D:CD:25:D5:4B:F0:5E:E8:68:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:09:a0:d9:4a:d0:92:43:d0:8d:2a:dd:84:04:65:67:6d:af: a8:c4:35:e8:f2:7f:ea:89:13:b8:0d:15:c8:91:f7:eb:0a:8c: 06:3d:cb:e0:32:9c:a7:d2:b1:73:45:55:bb:35:17:ea:ec:03: 7e:37:c8:c7:cd:f0:ca:41:d1:f7:43:c7:9f:12:5c:38:61:d1: 49:b0:ed:4a:8f:81:03:b5:1b:76:64:de:26:11:1a:e7:2b:40: 77:0f:32:34:57:c4:18:96:c4:6b:a3:bf:69:b0:45:fc:fa:64: 92:1e:2c:1f:e3:f1:6c:dc:83:60:59:40:8b:09:41:8b:de:a1: 24:55:f1:70:65:67:cd:ab:f8:42:a1:3b:f0:c4:3c:06:17:ef: 04:26:d9:f9:a8:ab:f2:19:1e:e2:a9:db:69:21:b3:d8:88:90: 52:5b:7b:f2:8f:f0:55:e9:a5:99:67:51:36:4c:5e:cd:27:ae: fd:ef:73:b3:b8:f1:6f:6a:1a:a1:dc:dd:9b:2f:09:ce:e0:18: 84:0d:9c:7c:49:68:e9:c9:91:f2:e0:3f:98:a6:1d:f0:d8:7f: e9:df:43:e6:b5:cd:68:a6:42:7e:c5:97:c2:1a:51:89:7f:39: b8:9d:0d:70:5c:0a:08:f9:b6:0f:54:63:bc:fa:ad:54:b4:f2: 95:f7:70:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc3MjQxMTAvBgNVBAUTKDA1RDI0QjNCOEEyMjI3QjZGRUU5MkRDRDI1RDU0QkYw NUVFODY4Q0EwHhcNMjUwNDI1MDQwOTEzWhcNMjUwNTAyMDQwOTEzWjAYMRYwFAYD VQQDEw02ODBiMGFlOS04MDM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7jQzOxAseF+EJiXIhtEaym6KcPAWJm24IeQJAQIJIIuKkf4SlVpUrlt8RqF3 lzOjGwM//HrvUfo3u+E3zO4LqPzjcOFA+6eY506yP16jg9mgDBFM8cktsEzjQ6K7 OyPuE8LednqefQMp7j0ZAzDFXqXOKX58KDtRM8eSkbba9jaGVeEkBG2oS6teO0mQ e/s02LtVR9jgOgilzpxvm6IcHENW6s5FFIKw+/sKy35we6L/a6wdDBEB9V8bxUqp MoVVrbtl/u+vDYa9WgFHHoCYpSOB/88viz0HT2DPLEkV7fgOzHxjgUKahkfDi4++ FjkN9pweRqU4ia1UI30U+fxYjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE7Q25FH CNKbFT04AedhAZ2yUKInMB8GA1UdIwQYMBaAFAXSSzuKIie2/uktzSXVS/Be6GjK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzcyNC9ENzM5ODcyODk1 ODcxMUVFQUQzQkIyNjJDNEY5QUUwMi9CZEpMTzRvaUo3Yi02UzNOSmRWTDhGN29h TW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JkSkxPNG9pSjdiLTZTM05KZFZMOEY3b2FNby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzcyNC9ENzM5ODcyODk1ODcxMUVFQUQzQkIyNjJDNEY5QUUwMi9CZEpMTzRvaUo3 Yi02UzNOSmRWTDhGN29hTW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCCaDZStCSQ9CNKt2EBGVnba+oxDXo8n/qiRO4DRXIkffrCowGPcvg Mpyn0rFzRVW7NRfq7AN+N8jHzfDKQdH3Q8efElw4YdFJsO1Kj4EDtRt2ZN4mERrn K0B3DzI0V8QYlsRro79psEX8+mSSHiwf4/Fs3INgWUCLCUGL3qEkVfFwZWfNq/hC oTvwxDwGF+8EJtn5qKvyGR7iqdtpIbPYiJBSW3vyj/BV6aWZZ1E2TF7NJ67973Oz uPFvahqh3N2bLwnO4BiEDZx8SWjpyZHy4D+Yph3w2H/p30Pmtc1opkJ+xZfCGlGJ fzm4nQ1wXAoI+bYPVGO8+q1UtPKV93CM -----END CERTIFICATE-----Generated at Sat Apr 26 04:22:50 2025 by rpki-client