$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft File: bifP0YnuRkQx1LkBO8wHWKgCZOY.mft (raw, json) Hash identifier: TZr+i7E7qMH2ffahpiC/GmvwfLYyRTXEQrHlSPwhdf4= Subject key identifier: 85:59:08:AB:79:47:D1:9C:1C:FF:00:6D:D5:EF:B9:21:22:A1:20:95 Authority key identifier: 6E:27:CF:D1:89:EE:46:44:31:D4:B9:01:3B:CC:07:58:A8:02:64:E6 Certificate issuer: /CN=A9157D13/serialNumber=6E27CFD189EE464431D4B9013BCC0758A80264E6 Certificate serial: 18BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft Manifest number: 18A9 Signing time: Sat 14 Jun 2025 16:26:42 +0000 Manifest this update: Sat 14 Jun 2025 16:26:41 +0000 Manifest next update: Sat 21 Jun 2025 16:26:41 +0000 Files and hashes: 1: bifP0YnuRkQx1LkBO8wHWKgCZOY.crl (hash: xT3iLzF+H1FeWvHgNrweh8JrKEv/S5eWKz/yc9S+8oY=) 2: 33E73FAAE50B11EF838B6642C4F9AE02.roa (hash: hGExMUb+w4JyWjME6Pb9a+xtMzWk7NBawSO3YXbXwM4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.crl rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 16:26:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6335 (0x18bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157D13, serialNumber=6E27CFD189EE464431D4B9013BCC0758A80264E6 Validity Not Before: Jun 14 16:26:41 2025 GMT Not After : Jun 21 16:26:41 2025 GMT Subject: CN=684da2c1-8520 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:04:aa:9a:ca:95:7a:16:c4:70:2e:d9:46:1d: c1:55:96:84:a9:71:46:80:7a:e3:0c:da:e6:4b:b5: 08:d4:6e:79:61:48:31:06:1b:a7:8d:29:fb:4e:f3: 8e:fd:71:eb:06:2d:39:b1:62:ba:08:bf:33:8b:f8: c3:7c:0e:68:9b:22:0c:9e:dc:07:fc:df:40:c7:94: 17:e0:2d:ad:91:e8:6e:5f:0f:ce:15:a2:44:68:2c: 09:6b:36:6c:f8:62:a1:60:86:b3:14:0b:48:d9:48: b9:3b:e7:b8:80:5a:19:ae:db:98:03:8f:11:da:91: 80:d8:72:68:e6:a3:00:7c:7e:d5:c4:ef:b6:ba:7f: 80:2c:db:e3:42:81:34:43:b7:0c:2a:38:19:e0:13: 4e:4c:4d:d6:58:54:1e:83:9f:db:33:d0:3e:4d:dc: 6d:b9:3b:9e:bc:71:f7:8a:23:98:bf:63:9d:23:0f: b6:1e:eb:10:97:14:d1:85:76:cb:71:d9:c0:0f:5d: f5:f5:3a:79:7f:5f:c9:15:0f:0a:fd:82:a9:70:17: 03:10:ac:d5:b8:30:bc:c5:0b:c0:47:4e:94:96:65: a2:da:a9:53:31:e4:22:48:45:ae:75:9f:88:22:62: eb:fb:69:67:4c:d4:2a:b0:4c:7e:36:8e:74:6a:96: 00:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:59:08:AB:79:47:D1:9C:1C:FF:00:6D:D5:EF:B9:21:22:A1:20:95 X509v3 Authority Key Identifier: keyid:6E:27:CF:D1:89:EE:46:44:31:D4:B9:01:3B:CC:07:58:A8:02:64:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:f4:86:1d:a2:f0:c4:b2:bf:6e:42:fb:d8:fe:f3:7a:65:c1: 84:a2:e0:29:45:a4:2b:75:33:23:55:0c:ab:51:d3:31:e2:34: a8:6e:49:4e:86:c9:4d:8b:ab:3f:5d:d2:b3:e3:14:45:97:a7: a0:df:5d:8a:d5:a0:06:79:4f:50:80:70:dd:cd:7a:9f:99:4f: c5:80:c6:91:d7:6c:9b:39:2c:53:94:9b:44:f7:c5:16:0b:1e: ac:21:09:88:92:17:16:e9:52:3f:95:3e:b6:3c:77:1a:3e:43: 1b:7c:f9:28:9b:9e:fc:ad:f3:1e:8e:b5:61:b8:8b:27:17:6b: 7d:60:8d:ad:9a:e0:35:03:b3:52:f4:13:bf:b3:26:26:ca:95: bc:b5:a8:d9:40:ed:fd:e4:2c:81:a4:01:21:cd:d4:8d:c6:f3: ea:b9:07:8e:14:ea:d9:e5:38:3b:c4:49:b6:74:b8:fc:7a:c1: d2:ff:94:84:0d:fe:52:67:a3:1d:57:e3:07:e2:91:b6:c5:4d: 79:40:85:f7:54:d4:98:2c:70:99:ca:db:6d:bc:6a:47:2e:f1: fb:94:3f:8c:93:41:b8:bb:c1:50:e0:ea:ae:f2:1f:53:f8:5a: 6a:f3:ea:ed:a1:4e:a7:55:21:2c:24:02:02:56:18:d4:7f:4c: 55:a8:31:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEMTMxMTAvBgNVBAUTKDZFMjdDRkQxODlFRTQ2NDQzMUQ0QjkwMTNCQ0MwNzU4 QTgwMjY0RTYwHhcNMjUwNjE0MTYyNjQxWhcNMjUwNjIxMTYyNjQxWjAYMRYwFAYD VQQDEw02ODRkYTJjMS04NTIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuwSqmsqVehbEcC7ZRh3BVZaEqXFGgHrjDNrmS7UI1G55YUgxBhunjSn7TvOO /XHrBi05sWK6CL8zi/jDfA5omyIMntwH/N9Ax5QX4C2tkehuXw/OFaJEaCwJazZs +GKhYIazFAtI2Ui5O+e4gFoZrtuYA48R2pGA2HJo5qMAfH7VxO+2un+ALNvjQoE0 Q7cMKjgZ4BNOTE3WWFQeg5/bM9A+TdxtuTuevHH3iiOYv2OdIw+2HusQlxTRhXbL cdnAD1319Tp5f1/JFQ8K/YKpcBcDEKzVuDC8xQvAR06UlmWi2qlTMeQiSEWudZ+I ImLr+2lnTNQqsEx+No50apYANwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIVZCKt5 R9GcHP8AbdXvuSEioSCVMB8GA1UdIwQYMBaAFG4nz9GJ7kZEMdS5ATvMB1ioAmTm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0QxMy9BQTI1REYxQzk4 RkQxMUU3QTgxNDU1NjBDNEY5QUUwMi9iaWZQMFludVJrUXgxTGtCTzh3SFdLZ0Na T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JpZlAwWW51UmtReDFMa0JPOHdIV0tnQ1pPWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0QxMy9BQTI1REYxQzk4RkQxMUU3QTgxNDU1NjBDNEY5QUUwMi9iaWZQMFludVJr UXgxTGtCTzh3SFdLZ0NaT1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAV9IYdovDEsr9uQvvY/vN6ZcGEouApRaQrdTMjVQyrUdMx4jSobklO hslNi6s/XdKz4xRFl6eg312K1aAGeU9QgHDdzXqfmU/FgMaR12ybOSxTlJtE98UW Cx6sIQmIkhcW6VI/lT62PHcaPkMbfPkom578rfMejrVhuIsnF2t9YI2tmuA1A7NS 9BO/syYmypW8tajZQO395CyBpAEhzdSNxvPquQeOFOrZ5Tg7xEm2dLj8esHS/5SE Df5SZ6MdV+MH4pG2xU15QIX3VNSYLHCZytttvGpHLvH7lD+Mk0G4u8FQ4Oqu8h9T +Fpq8+rtoU6nVSEsJAICVhjUf0xVqDFi -----END CERTIFICATE-----Generated at Sun Jun 15 05:09:55 2025 by rpki-client