$ rpki-client -vvf rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.mft File: BdJLO4oiJ7b-6S3NJdVL8F7oaMo.mft (raw, json) Hash identifier: rOsTg5c105N4Do6dbMwSm4+0M9N/QWeIYX3EBI6tT8w= Subject key identifier: D6:3C:13:53:A5:7C:52:B7:17:5A:CE:B8:76:88:EC:6B:1E:5F:D7:C8 Authority key identifier: 05:D2:4B:3B:8A:22:27:B6:FE:E9:2D:CD:25:D5:4B:F0:5E:E8:68:CA Certificate issuer: /CN=A9157724/serialNumber=05D24B3B8A2227B6FEE92DCD25D54BF05EE868CA Certificate serial: 0128 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.mft Manifest number: 0123 Signing time: Sun 15 Jun 2025 03:57:38 +0000 Manifest this update: Sun 15 Jun 2025 03:57:38 +0000 Manifest next update: Sun 22 Jun 2025 03:57:38 +0000 Files and hashes: 1: BdJLO4oiJ7b-6S3NJdVL8F7oaMo.crl (hash: wyivpOZa3KW8TyueNzmhMrX7AgQ5m4WLXtDKylcg0pY=) 2: 6063C75CB6E411EE94471D14C4F9AE02.roa (hash: HDfP4LwrloNXU1nzvfFcUeha0pVa0Ubh8d+qNote20c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.crl rsync://rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 03:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 296 (0x128) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157724, serialNumber=05D24B3B8A2227B6FEE92DCD25D54BF05EE868CA Validity Not Before: Jun 15 03:57:38 2025 GMT Not After : Jun 22 03:57:38 2025 GMT Subject: CN=684e44b2-c336 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:f9:1a:93:2f:c5:2d:06:8c:24:0b:3f:7d:02: 0c:8d:f1:e2:83:ac:0e:66:4a:1c:c2:73:52:75:35: ee:11:af:a1:68:e8:64:92:97:f3:62:4a:b0:52:3f: e0:f1:18:5f:e9:8d:d7:b9:6d:1d:04:54:ca:d9:39: 16:fb:f7:4f:29:8c:e8:64:90:ba:06:42:05:78:b5: 55:a1:85:c9:b3:a5:eb:e8:82:f9:bd:0d:18:af:bc: cc:39:c6:5e:7f:d9:ab:ea:27:b6:e0:51:6b:87:f4: fe:c5:5a:b2:e9:2a:9c:93:0f:b0:f7:36:df:84:dc: f5:9f:2d:f0:d4:2d:55:7a:f5:82:10:68:bb:19:84: 76:12:1c:a0:17:e3:37:8b:8b:c9:59:67:26:cd:1c: 07:65:e7:af:5e:02:12:bb:cf:eb:4c:ae:c3:e1:1f: c2:14:20:75:79:5f:21:2d:9e:06:bb:c9:56:ff:18: 65:3d:67:44:50:38:c5:59:10:6c:02:b6:40:d6:de: 07:66:23:4b:7e:af:77:3a:1b:f3:f4:fa:64:85:8b: b8:da:68:79:c8:0c:ca:1c:66:8a:b2:2c:a4:e9:4c: 4e:37:49:66:e0:b0:37:1e:68:ca:f1:b8:ac:77:59: 7e:a0:7a:8c:62:15:15:59:d0:60:76:5e:d5:2a:b8: 01:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:3C:13:53:A5:7C:52:B7:17:5A:CE:B8:76:88:EC:6B:1E:5F:D7:C8 X509v3 Authority Key Identifier: keyid:05:D2:4B:3B:8A:22:27:B6:FE:E9:2D:CD:25:D5:4B:F0:5E:E8:68:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:e8:ce:27:4d:93:3e:b7:f8:ab:ae:a9:ca:9d:cc:09:23:5b: ad:65:75:69:d0:c8:3c:39:42:18:e4:f7:25:d4:9e:9f:ab:ce: ff:03:71:2d:5d:54:46:69:a7:0a:12:c4:5e:ed:cd:30:05:2c: dc:42:cf:c7:4f:2d:59:11:c3:55:40:c8:01:f8:81:0c:ae:76: ad:27:90:7f:9a:63:bb:44:8a:4d:2d:a3:5b:b5:e7:eb:98:f8: fd:9a:f3:b7:91:ac:22:71:00:70:a1:7c:08:a2:3b:f0:fc:39: 1b:03:f8:f4:4f:ef:c2:b4:98:87:f2:9e:01:3e:9f:5e:88:6b: 9f:60:51:c9:fa:ea:46:31:02:cd:f6:9e:39:ad:56:35:a8:c3: a2:df:c8:78:fc:8b:70:c8:42:18:2f:14:3a:82:59:10:39:79: af:47:7f:86:4c:3d:86:32:a9:1b:68:85:21:34:91:01:56:e8: b8:09:31:bd:ca:70:07:8b:d6:85:08:5e:ab:64:34:40:2e:69: c7:21:72:02:7d:f0:35:8d:21:82:e1:34:4f:99:4c:bb:90:33: 3b:41:91:de:02:3e:87:e1:b8:5d:1c:79:b7:40:12:ba:50:ea: 84:ad:59:cd:a6:d2:88:d9:31:0e:7d:88:a0:2f:7f:f1:21:ef: f2:56:e8:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc3MjQxMTAvBgNVBAUTKDA1RDI0QjNCOEEyMjI3QjZGRUU5MkRDRDI1RDU0QkYw NUVFODY4Q0EwHhcNMjUwNjE1MDM1NzM4WhcNMjUwNjIyMDM1NzM4WjAYMRYwFAYD VQQDEw02ODRlNDRiMi1jMzM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Pkaky/FLQaMJAs/fQIMjfHig6wOZkocwnNSdTXuEa+haOhkkpfzYkqwUj/g 8Rhf6Y3XuW0dBFTK2TkW+/dPKYzoZJC6BkIFeLVVoYXJs6Xr6IL5vQ0Yr7zMOcZe f9mr6ie24FFrh/T+xVqy6Sqckw+w9zbfhNz1ny3w1C1VevWCEGi7GYR2EhygF+M3 i4vJWWcmzRwHZeevXgISu8/rTK7D4R/CFCB1eV8hLZ4Gu8lW/xhlPWdEUDjFWRBs ArZA1t4HZiNLfq93Ohvz9PpkhYu42mh5yAzKHGaKsiyk6UxON0lm4LA3HmjK8bis d1l+oHqMYhUVWdBgdl7VKrgBuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNY8E1Ol fFK3F1rOuHaI7GseX9fIMB8GA1UdIwQYMBaAFAXSSzuKIie2/uktzSXVS/Be6GjK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzcyNC9ENzM5ODcyODk1 ODcxMUVFQUQzQkIyNjJDNEY5QUUwMi9CZEpMTzRvaUo3Yi02UzNOSmRWTDhGN29h TW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JkSkxPNG9pSjdiLTZTM05KZFZMOEY3b2FNby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzcyNC9ENzM5ODcyODk1ODcxMUVFQUQzQkIyNjJDNEY5QUUwMi9CZEpMTzRvaUo3 Yi02UzNOSmRWTDhGN29hTW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCi6M4nTZM+t/irrqnKncwJI1utZXVp0Mg8OUIY5Pcl1J6fq87/A3Et XVRGaacKEsRe7c0wBSzcQs/HTy1ZEcNVQMgB+IEMrnatJ5B/mmO7RIpNLaNbtefr mPj9mvO3kawicQBwoXwIojvw/DkbA/j0T+/CtJiH8p4BPp9eiGufYFHJ+upGMQLN 9p45rVY1qMOi38h4/ItwyEIYLxQ6glkQOXmvR3+GTD2GMqkbaIUhNJEBVui4CTG9 ynAHi9aFCF6rZDRALmnHIXICffA1jSGC4TRPmUy7kDM7QZHeAj6H4bhdHHm3QBK6 UOqErVnNptKI2TEOfYigL3/xIe/yVugo -----END CERTIFICATE-----Generated at Mon Jun 16 10:34:34 2025 by rpki-client