$ rpki-client -vvf rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.mft File: BfhBmvmqMYTqsf-HQkpq4zz3MsQ.mft (raw, json) Hash identifier: bfXGwLnqusPQdmkd5QkQd8lX7UpC0i4qWwhHUnobtYo= Subject key identifier: 8C:AE:80:D3:9C:A2:A9:50:00:9D:E6:68:FD:F2:79:37:F4:56:8E:BB Authority key identifier: 05:F8:41:9A:F9:AA:31:84:EA:B1:FF:87:42:4A:6A:E3:3C:F7:32:C4 Certificate issuer: /CN=A915E575/serialNumber=05F8419AF9AA3184EAB1FF87424A6AE33CF732C4 Certificate serial: 03C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.mft Manifest number: 03BE Signing time: Fri 13 Jun 2025 00:13:07 +0000 Manifest this update: Fri 13 Jun 2025 00:13:07 +0000 Manifest next update: Fri 20 Jun 2025 00:13:07 +0000 Files and hashes: 1: BfhBmvmqMYTqsf-HQkpq4zz3MsQ.crl (hash: PmQx4oTFkFc+XagNzN5WJyidclNjFobIg4NRCvIKALk=) 2: D86008008FAA11ECB0728B0FC4F9AE02.roa (hash: RsMIAFkbpydCDPohis69ldhzmBpnzB7IY6eRBCKfLas=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.crl rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 00:13:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 962 (0x3c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E575, serialNumber=05F8419AF9AA3184EAB1FF87424A6AE33CF732C4 Validity Not Before: Jun 13 00:13:07 2025 GMT Not After : Jun 20 00:13:07 2025 GMT Subject: CN=684b6d13-5897 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:34:c3:46:d6:ce:97:fe:db:77:07:bf:8e:0f: bd:9f:95:7d:57:1f:87:08:11:29:0d:be:ae:da:72: 8a:03:5e:0e:86:92:9d:39:bf:01:da:ec:56:66:b0: f4:42:a6:79:4d:f9:7c:52:e6:ff:d1:09:06:41:7a: 23:6e:c6:37:79:77:3a:31:e2:3a:49:71:8b:cd:df: dd:13:4b:e0:9f:5d:0c:3e:f6:e1:ab:10:50:ba:82: 44:0d:d1:ba:47:f4:7c:df:80:21:1b:9d:b5:88:87: 59:81:ef:f5:ff:55:79:12:b6:3d:12:bc:a7:be:c5: 23:fa:1f:99:18:1e:d0:73:29:f0:78:0a:c8:2c:af: 1f:08:07:64:91:8f:1d:cc:99:cd:2d:32:ff:41:33: 44:39:d6:4c:b2:58:4b:22:01:cd:4d:56:2c:d8:c1: 6b:03:bb:2e:04:8d:da:16:1f:f8:af:e5:e5:bb:00: 37:ef:e7:5a:52:05:f0:18:2f:ab:a2:2c:01:5b:32: f1:a4:03:0b:ff:2a:0e:25:10:a1:9f:54:d5:f7:6c: e5:f3:cf:8d:90:80:87:07:4b:ff:83:6e:27:a0:e8: 82:ec:26:4f:d9:6e:60:92:78:32:da:c4:38:4f:b3: ac:4d:ab:03:be:1e:45:d6:88:c5:56:5c:53:63:23: 8d:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:AE:80:D3:9C:A2:A9:50:00:9D:E6:68:FD:F2:79:37:F4:56:8E:BB X509v3 Authority Key Identifier: keyid:05:F8:41:9A:F9:AA:31:84:EA:B1:FF:87:42:4A:6A:E3:3C:F7:32:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:9c:63:40:e9:8f:82:16:da:05:cd:75:74:6b:9d:82:99:e5: 82:d9:22:c8:98:14:d4:41:89:92:6e:96:47:cc:59:2d:1e:24: f3:cd:28:02:c8:25:74:b0:f2:f7:c8:28:1c:36:dc:56:59:3e: 9f:63:89:e5:95:d8:dd:91:d5:92:d3:b9:4a:a8:fd:57:14:97: 75:c1:28:19:90:b5:52:5c:e4:3f:f2:4f:eb:f6:cd:89:a3:dc: 84:e6:67:af:fd:96:1a:ab:a4:ce:79:bc:00:72:b5:7d:ab:33: a9:4d:7c:c3:c7:2f:77:68:1b:27:27:3a:df:f9:52:1e:3e:0a: ae:ef:15:75:66:43:1c:5f:5c:3d:dc:1e:31:bf:de:dc:e4:1d: a4:0a:64:cc:97:c6:23:be:ff:18:fe:11:13:95:81:b5:04:c3: 4b:58:42:fc:2b:55:c7:bf:c4:d9:13:11:81:9b:88:7a:c7:f1: aa:c6:9c:7a:50:b5:db:dc:dd:71:65:22:5a:84:03:f5:d6:09: 52:36:17:d1:da:cd:65:4e:2c:ae:f5:fc:d9:8a:47:b7:4b:07: 55:ef:44:ad:f6:6b:bc:70:cb:ce:88:89:42:b1:59:d0:7f:cb: f6:50:06:44:ef:04:99:67:10:06:9f:ec:7c:d3:b7:f3:e4:20: d0:64:c1:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA8IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUU1NzUxMTAvBgNVBAUTKDA1Rjg0MTlBRjlBQTMxODRFQUIxRkY4NzQyNEE2QUUz M0NGNzMyQzQwHhcNMjUwNjEzMDAxMzA3WhcNMjUwNjIwMDAxMzA3WjAYMRYwFAYD VQQDEw02ODRiNmQxMy01ODk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvjTDRtbOl/7bdwe/jg+9n5V9Vx+HCBEpDb6u2nKKA14OhpKdOb8B2uxWZrD0 QqZ5Tfl8Uub/0QkGQXojbsY3eXc6MeI6SXGLzd/dE0vgn10MPvbhqxBQuoJEDdG6 R/R834AhG521iIdZge/1/1V5ErY9ErynvsUj+h+ZGB7QcynweArILK8fCAdkkY8d zJnNLTL/QTNEOdZMslhLIgHNTVYs2MFrA7suBI3aFh/4r+XluwA37+daUgXwGC+r oiwBWzLxpAML/yoOJRChn1TV92zl88+NkICHB0v/g24noOiC7CZP2W5gkngy2sQ4 T7OsTasDvh5F1ojFVlxTYyONGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIyugNOc oqlQAJ3maP3yeTf0Vo67MB8GA1UdIwQYMBaAFAX4QZr5qjGE6rH/h0JKauM89zLE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTU3NS9GMEIyNDIxNDhG QTYxMUVDOUMzOTc3NjJDNEY5QUUwMi9CZmhCbXZtcU1ZVHFzZi1IUWtwcTR6ejNN c1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JmaEJtdm1xTVlUcXNmLUhRa3BxNHp6M01zUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RTU3NS9GMEIyNDIxNDhGQTYxMUVDOUMzOTc3NjJDNEY5QUUwMi9CZmhCbXZtcU1Z VHFzZi1IUWtwcTR6ejNNc1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4nGNA6Y+CFtoFzXV0a52CmeWC2SLImBTUQYmSbpZHzFktHiTzzSgC yCV0sPL3yCgcNtxWWT6fY4nlldjdkdWS07lKqP1XFJd1wSgZkLVSXOQ/8k/r9s2J o9yE5mev/ZYaq6TOebwAcrV9qzOpTXzDxy93aBsnJzrf+VIePgqu7xV1ZkMcX1w9 3B4xv97c5B2kCmTMl8Yjvv8Y/hETlYG1BMNLWEL8K1XHv8TZExGBm4h6x/Gqxpx6 ULXb3N1xZSJahAP11glSNhfR2s1lTiyu9fzZike3SwdV70St9mu8cMvOiIlCsVnQ f8v2UAZE7wSZZxAGn+x807fz5CDQZMFF -----END CERTIFICATE-----Generated at Sat Jun 14 19:20:01 2025 by rpki-client