$ rpki-client -vvf rpki.apnic.net/member_repository/A915B0C9/0C778CB47D1A11ED8E8BEB82C4F9AE02/BzgX21Kc2-s_-TiuXuCEiOF-TpA.mft File: BzgX21Kc2-s_-TiuXuCEiOF-TpA.mft (raw, json) Hash identifier: GKgA7hQqJl73I4b0tWyU6EU1CVIixCrzXM+NemEfB50= Subject key identifier: AC:E3:43:F2:A9:27:92:0C:5A:72:18:03:36:33:02:62:67:09:C9:45 Authority key identifier: 07:38:17:DB:52:9C:DB:EB:3F:F9:38:AE:5E:E0:84:88:E1:7E:4E:90 Certificate issuer: /CN=A915B0C9/serialNumber=073817DB529CDBEB3FF938AE5EE08488E17E4E90 Certificate serial: 01D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BzgX21Kc2-s_-TiuXuCEiOF-TpA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B0C9/0C778CB47D1A11ED8E8BEB82C4F9AE02/BzgX21Kc2-s_-TiuXuCEiOF-TpA.mft Manifest number: 01D6 Signing time: Fri 13 Jun 2025 01:54:48 +0000 Manifest this update: Fri 13 Jun 2025 01:54:48 +0000 Manifest next update: Fri 20 Jun 2025 01:54:48 +0000 Files and hashes: 1: BzgX21Kc2-s_-TiuXuCEiOF-TpA.crl (hash: qJTHVY3Eyxtn+NiChbXUwuQpk0acPORVZrKvJpmv8Cc=) 2: F0F09EAA7D1D11EDAE0CF917C4F9AE02.roa (hash: /AIOMPF379cdDnZ0oCHY5QGxjdpZh2kab3GCf0LfQ6w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B0C9/0C778CB47D1A11ED8E8BEB82C4F9AE02/BzgX21Kc2-s_-TiuXuCEiOF-TpA.crl rsync://rpki.apnic.net/member_repository/A915B0C9/0C778CB47D1A11ED8E8BEB82C4F9AE02/BzgX21Kc2-s_-TiuXuCEiOF-TpA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BzgX21Kc2-s_-TiuXuCEiOF-TpA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 01:54:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 473 (0x1d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B0C9, serialNumber=073817DB529CDBEB3FF938AE5EE08488E17E4E90 Validity Not Before: Jun 13 01:54:48 2025 GMT Not After : Jun 20 01:54:48 2025 GMT Subject: CN=684b84e8-7a95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:66:9a:6b:2b:6f:60:26:20:2b:2e:71:31:06: ad:e3:cf:42:cd:34:68:55:b7:bd:60:14:21:95:95: f1:23:fd:55:76:f5:e6:3b:01:a8:d7:6a:11:c2:c2: 86:0d:6b:7d:0f:c6:10:38:ca:e8:fa:bb:d8:04:f9: 5f:92:e6:aa:ad:6c:74:5d:50:c4:5c:23:7f:74:73: a2:22:42:36:2d:ec:d1:6b:44:44:5e:fc:29:95:dd: 7e:14:ab:6c:6d:8a:2e:50:46:52:fe:31:1f:55:cf: 94:da:bf:d9:56:fb:c1:d8:bc:24:35:0d:7d:d1:a2: 42:37:1e:81:6b:84:cf:ef:0c:f4:a3:af:df:c4:b2: 31:a3:6b:d6:43:60:6f:f5:51:88:a4:9a:d1:a7:19: 98:5f:43:62:fc:94:1e:90:4f:e2:58:23:f3:69:b8: e2:3f:94:b4:eb:82:81:38:2f:4b:67:ba:f4:1b:51: 38:55:5e:54:56:46:c5:f0:23:95:8a:bd:72:e2:4d: 24:53:63:6f:ef:a8:65:f0:7f:ab:0d:b8:0f:c3:30: cf:29:d3:8a:60:aa:b0:fd:c3:71:25:d7:2a:1e:42: 27:9c:39:28:b1:02:6d:69:ba:70:35:38:d3:55:2d: de:f9:95:ad:b1:6c:00:70:d7:91:5c:64:88:cd:cb: 2e:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:E3:43:F2:A9:27:92:0C:5A:72:18:03:36:33:02:62:67:09:C9:45 X509v3 Authority Key Identifier: keyid:07:38:17:DB:52:9C:DB:EB:3F:F9:38:AE:5E:E0:84:88:E1:7E:4E:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B0C9/0C778CB47D1A11ED8E8BEB82C4F9AE02/BzgX21Kc2-s_-TiuXuCEiOF-TpA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BzgX21Kc2-s_-TiuXuCEiOF-TpA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B0C9/0C778CB47D1A11ED8E8BEB82C4F9AE02/BzgX21Kc2-s_-TiuXuCEiOF-TpA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d9:15:79:5c:2c:77:35:24:38:68:59:ca:5a:9b:94:a5:a9:c4: a8:a8:f2:2a:81:41:cb:62:6a:01:36:43:da:b0:08:d1:83:ed: 42:79:00:bd:a1:68:37:d9:03:b6:ae:62:02:bc:b1:56:ba:30: 73:24:5b:b0:28:38:cd:3a:75:d9:1d:b7:ce:cd:8b:c9:e3:8d: b6:c4:89:6e:68:54:43:58:35:61:1a:3e:26:75:52:68:8b:6f: d7:b7:bd:54:e8:85:04:12:67:ab:f4:a1:36:e6:5a:39:c0:bd: c7:37:4f:c5:bd:26:e6:1b:68:80:ea:ac:98:4b:be:3d:0d:27: 83:ef:74:48:77:75:eb:66:da:36:ec:13:69:a6:ed:3b:2a:c8: 76:97:30:e2:a9:fb:ac:eb:b9:9c:02:ad:6b:98:e1:61:2d:ef: c6:14:21:2b:ec:45:3c:28:4e:7f:7e:7a:6c:fc:25:d3:4f:2f: e0:0e:ee:f0:24:d5:7c:58:43:19:0a:37:d9:c4:5b:53:1d:0c: 96:28:70:9f:ae:1a:87:48:7b:90:a6:50:90:05:78:9e:bc:b3: 67:09:6a:10:44:32:51:65:09:2f:66:fa:68:c2:69:b1:11:32: ee:48:6d:c9:b7:e9:30:0a:d1:ac:30:4e:0b:de:b0:dd:50:2f: 99:12:c0:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUIwQzkxMTAvBgNVBAUTKDA3MzgxN0RCNTI5Q0RCRUIzRkY5MzhBRTVFRTA4NDg4 RTE3RTRFOTAwHhcNMjUwNjEzMDE1NDQ4WhcNMjUwNjIwMDE1NDQ4WjAYMRYwFAYD VQQDEw02ODRiODRlOC03YTk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArmaaaytvYCYgKy5xMQat489CzTRoVbe9YBQhlZXxI/1VdvXmOwGo12oRwsKG DWt9D8YQOMro+rvYBPlfkuaqrWx0XVDEXCN/dHOiIkI2LezRa0REXvwpld1+FKts bYouUEZS/jEfVc+U2r/ZVvvB2LwkNQ190aJCNx6Ba4TP7wz0o6/fxLIxo2vWQ2Bv 9VGIpJrRpxmYX0Ni/JQekE/iWCPzabjiP5S064KBOC9LZ7r0G1E4VV5UVkbF8COV ir1y4k0kU2Nv76hl8H+rDbgPwzDPKdOKYKqw/cNxJdcqHkInnDkosQJtabpwNTjT VS3e+ZWtsWwAcNeRXGSIzcsu+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKzjQ/Kp J5IMWnIYAzYzAmJnCclFMB8GA1UdIwQYMBaAFAc4F9tSnNvrP/k4rl7ghIjhfk6Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjBDOS8wQzc3OENCNDdE MUExMUVEOEU4QkVCODJDNEY5QUUwMi9CemdYMjFLYzItc18tVGl1WHVDRWlPRi1U cEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0J6Z1gyMUtjMi1zXy1UaXVYdUNFaU9GLVRwQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QjBDOS8wQzc3OENCNDdEMUExMUVEOEU4QkVCODJDNEY5QUUwMi9CemdYMjFLYzIt c18tVGl1WHVDRWlPRi1UcEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDZFXlcLHc1JDhoWcpam5SlqcSoqPIqgUHLYmoBNkPasAjRg+1CeQC9 oWg32QO2rmICvLFWujBzJFuwKDjNOnXZHbfOzYvJ4422xIluaFRDWDVhGj4mdVJo i2/Xt71U6IUEEmer9KE25lo5wL3HN0/FvSbmG2iA6qyYS749DSeD73RId3XrZto2 7BNppu07Ksh2lzDiqfus67mcAq1rmOFhLe/GFCEr7EU8KE5/fnps/CXTTy/gDu7w JNV8WEMZCjfZxFtTHQyWKHCfrhqHSHuQplCQBXievLNnCWoQRDJRZQkvZvpowmmx ETLuSG3Jt+kwCtGsME4L3rDdUC+ZEsBg -----END CERTIFICATE-----Generated at Sat Jun 14 19:28:51 2025 by rpki-client