$ rpki-client -vvf rpki.apnic.net/member_repository/A915B0C9/0C778CB47D1A11ED8E8BEB82C4F9AE02/BzgX21Kc2-s_-TiuXuCEiOF-TpA.mft File: BzgX21Kc2-s_-TiuXuCEiOF-TpA.mft (raw, json) Hash identifier: gpMxwCdnwrpZjhkgvx3i4Mr1GF25Yk5TzCFx6qqnaiw= Subject key identifier: 0C:5B:CE:BB:64:7B:92:6A:C2:6E:0F:6E:6D:0A:9F:F9:E3:56:2C:B7 Authority key identifier: 07:38:17:DB:52:9C:DB:EB:3F:F9:38:AE:5E:E0:84:88:E1:7E:4E:90 Certificate issuer: /CN=A915B0C9/serialNumber=073817DB529CDBEB3FF938AE5EE08488E17E4E90 Certificate serial: 01C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BzgX21Kc2-s_-TiuXuCEiOF-TpA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B0C9/0C778CB47D1A11ED8E8BEB82C4F9AE02/BzgX21Kc2-s_-TiuXuCEiOF-TpA.mft Manifest number: 01BE Signing time: Fri 25 Apr 2025 02:16:09 +0000 Manifest this update: Fri 25 Apr 2025 02:16:09 +0000 Manifest next update: Fri 02 May 2025 02:16:09 +0000 Files and hashes: 1: BzgX21Kc2-s_-TiuXuCEiOF-TpA.crl (hash: zdi1hNhkJyRjaPlYwIkgJl73BJmL/E5lZiVgJyRWLHU=) 2: F0F09EAA7D1D11EDAE0CF917C4F9AE02.roa (hash: /AIOMPF379cdDnZ0oCHY5QGxjdpZh2kab3GCf0LfQ6w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B0C9/0C778CB47D1A11ED8E8BEB82C4F9AE02/BzgX21Kc2-s_-TiuXuCEiOF-TpA.crl rsync://rpki.apnic.net/member_repository/A915B0C9/0C778CB47D1A11ED8E8BEB82C4F9AE02/BzgX21Kc2-s_-TiuXuCEiOF-TpA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BzgX21Kc2-s_-TiuXuCEiOF-TpA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:16:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 449 (0x1c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B0C9, serialNumber=073817DB529CDBEB3FF938AE5EE08488E17E4E90 Validity Not Before: Apr 25 02:16:09 2025 GMT Not After : May 2 02:16:09 2025 GMT Subject: CN=680af069-1c59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:eb:f4:bb:94:ab:fc:53:95:c1:aa:b2:fe:3a: 3b:5f:00:4b:04:71:83:a9:8e:c4:c7:94:d0:d4:62: de:3d:96:e1:ec:b2:18:6a:b3:d1:7e:a4:40:17:db: 47:31:ba:16:5c:46:bc:b2:28:30:4b:eb:ec:a3:ed: f4:ac:0f:b3:b3:ba:04:5f:19:48:73:7d:68:b3:09: 3e:54:72:45:3a:47:22:f7:8b:62:75:fb:fc:de:b4: c4:b6:96:95:c7:be:6d:57:7d:25:f8:4b:2c:b9:a2: 43:42:6b:fb:41:20:c0:d2:2b:4d:68:01:84:13:15: 09:69:6f:79:46:2a:5e:c0:f0:4f:bd:53:02:34:4b: 9b:01:73:b7:d6:56:94:13:28:0d:2c:12:48:37:de: 25:56:22:1d:de:0c:a7:d9:99:8e:a7:97:13:85:d2: b7:e5:65:33:ff:00:86:6f:28:d5:e8:43:bd:a9:9e: 39:75:07:54:2b:a6:4c:c2:aa:6d:0d:14:e2:f7:5e: bf:d8:e1:c0:4e:d6:f3:c5:4a:3f:b6:f6:98:d2:f6: 33:e7:78:a2:0f:5d:6f:c8:ad:59:60:cd:c5:12:6f: 0f:f7:c2:15:6b:cb:5c:a6:a0:e9:ca:a1:6d:70:84: ae:20:42:fb:5b:07:ba:30:b2:d5:cd:a1:e2:60:de: 6a:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:5B:CE:BB:64:7B:92:6A:C2:6E:0F:6E:6D:0A:9F:F9:E3:56:2C:B7 X509v3 Authority Key Identifier: keyid:07:38:17:DB:52:9C:DB:EB:3F:F9:38:AE:5E:E0:84:88:E1:7E:4E:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B0C9/0C778CB47D1A11ED8E8BEB82C4F9AE02/BzgX21Kc2-s_-TiuXuCEiOF-TpA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BzgX21Kc2-s_-TiuXuCEiOF-TpA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B0C9/0C778CB47D1A11ED8E8BEB82C4F9AE02/BzgX21Kc2-s_-TiuXuCEiOF-TpA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d5:8a:b3:09:9e:12:be:e5:04:3e:bf:22:13:06:89:7e:a4:67: a4:0f:9f:c8:a1:e9:4d:c4:ff:ff:1e:9f:8d:36:b6:ce:62:46: a5:26:2e:33:6c:0c:2e:6c:ee:65:3f:ac:7f:1d:7e:36:da:03: c0:b5:7a:03:dc:1a:7e:49:f6:87:f8:a3:db:8f:16:0f:d1:d2: 99:7e:b5:55:f5:25:75:02:f2:35:2b:3d:84:b2:09:af:02:d3: 51:c7:11:49:31:34:40:d8:76:de:cc:94:82:58:7f:8f:28:90: 08:d7:4e:c3:55:65:9f:c4:d2:ed:e4:b0:0e:fe:22:26:d6:46: 61:64:dd:de:99:5f:79:1c:a6:65:ed:7a:65:75:23:b9:94:fe: 60:ba:71:58:62:11:8c:58:7a:98:00:de:a8:c7:b8:b6:04:9c: 38:40:0f:9c:42:47:bb:98:41:d7:5e:67:a8:60:01:c7:41:2e: 2a:d1:a6:73:38:a5:34:2e:f2:98:c8:1d:23:9c:61:ed:8b:48: 7e:2d:da:37:3f:46:3b:e2:2e:83:46:93:04:0f:6b:a8:6a:83: 48:b5:1e:e9:74:f5:72:ee:fb:19:fa:30:16:1b:30:e1:2c:73: da:2c:b3:a8:67:f3:01:22:1d:34:5c:c6:f9:97:c1:ab:c8:99: 7d:16:6f:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUIwQzkxMTAvBgNVBAUTKDA3MzgxN0RCNTI5Q0RCRUIzRkY5MzhBRTVFRTA4NDg4 RTE3RTRFOTAwHhcNMjUwNDI1MDIxNjA5WhcNMjUwNTAyMDIxNjA5WjAYMRYwFAYD VQQDEw02ODBhZjA2OS0xYzU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0uv0u5Sr/FOVwaqy/jo7XwBLBHGDqY7Ex5TQ1GLePZbh7LIYarPRfqRAF9tH MboWXEa8sigwS+vso+30rA+zs7oEXxlIc31oswk+VHJFOkci94tidfv83rTEtpaV x75tV30l+EssuaJDQmv7QSDA0itNaAGEExUJaW95RipewPBPvVMCNEubAXO31laU EygNLBJIN94lViId3gyn2ZmOp5cThdK35WUz/wCGbyjV6EO9qZ45dQdUK6ZMwqpt DRTi916/2OHATtbzxUo/tvaY0vYz53iiD11vyK1ZYM3FEm8P98IVa8tcpqDpyqFt cISuIEL7Wwe6MLLVzaHiYN5q9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAxbzrtk e5Jqwm4Pbm0Kn/njViy3MB8GA1UdIwQYMBaAFAc4F9tSnNvrP/k4rl7ghIjhfk6Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjBDOS8wQzc3OENCNDdE MUExMUVEOEU4QkVCODJDNEY5QUUwMi9CemdYMjFLYzItc18tVGl1WHVDRWlPRi1U cEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0J6Z1gyMUtjMi1zXy1UaXVYdUNFaU9GLVRwQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QjBDOS8wQzc3OENCNDdEMUExMUVEOEU4QkVCODJDNEY5QUUwMi9CemdYMjFLYzIt c18tVGl1WHVDRWlPRi1UcEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDVirMJnhK+5QQ+vyITBol+pGekD5/IoelNxP//Hp+NNrbOYkalJi4z bAwubO5lP6x/HX422gPAtXoD3Bp+SfaH+KPbjxYP0dKZfrVV9SV1AvI1Kz2Esgmv AtNRxxFJMTRA2HbezJSCWH+PKJAI107DVWWfxNLt5LAO/iIm1kZhZN3emV95HKZl 7XpldSO5lP5gunFYYhGMWHqYAN6ox7i2BJw4QA+cQke7mEHXXmeoYAHHQS4q0aZz OKU0LvKYyB0jnGHti0h+Ldo3P0Y74i6DRpMED2uoaoNItR7pdPVy7vsZ+jAWGzDh LHPaLLOoZ/MBIh00XMb5l8GryJl9Fm/E -----END CERTIFICATE-----Generated at Sat Apr 26 15:06:30 2025 by rpki-client