$ rpki-client -vvf rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.mft File: BfhBmvmqMYTqsf-HQkpq4zz3MsQ.mft (raw, json) Hash identifier: tV/bPnHbFiIjmCqhQwWHlKbYE6SsnBF3fddyQ25ArZU= Subject key identifier: 4D:E7:3C:52:BD:83:57:2F:D7:09:93:6E:B0:A5:41:BB:74:A0:C1:BB Authority key identifier: 05:F8:41:9A:F9:AA:31:84:EA:B1:FF:87:42:4A:6A:E3:3C:F7:32:C4 Certificate issuer: /CN=A915E575/serialNumber=05F8419AF9AA3184EAB1FF87424A6AE33CF732C4 Certificate serial: 03AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.mft Manifest number: 03A6 Signing time: Fri 25 Apr 2025 00:29:55 +0000 Manifest this update: Fri 25 Apr 2025 00:29:54 +0000 Manifest next update: Fri 02 May 2025 00:29:54 +0000 Files and hashes: 1: BfhBmvmqMYTqsf-HQkpq4zz3MsQ.crl (hash: j0RSCUwPjUAs0NcIWuBWnw+3JAqG4Hr4eq025D8Yky4=) 2: D86008008FAA11ECB0728B0FC4F9AE02.roa (hash: RsMIAFkbpydCDPohis69ldhzmBpnzB7IY6eRBCKfLas=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.crl rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:29:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 938 (0x3aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E575, serialNumber=05F8419AF9AA3184EAB1FF87424A6AE33CF732C4 Validity Not Before: Apr 25 00:29:54 2025 GMT Not After : May 2 00:29:54 2025 GMT Subject: CN=680ad783-1f4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:b5:50:08:5a:27:af:56:fe:b5:49:5b:34:ac: f5:a3:63:a6:b4:2e:84:8a:a9:9f:3c:11:88:bd:07: c3:a4:1f:bb:dd:3a:fc:84:12:89:25:00:5e:e1:53: 25:8f:1b:3d:4b:dd:24:af:52:2e:ee:a3:34:27:b5: ed:54:1b:35:26:8a:f6:40:da:cd:a9:12:6a:0b:57: e2:c7:e0:fe:4f:3d:d5:6c:19:2e:a9:df:cc:23:5a: cc:f6:3e:98:bf:2c:98:60:13:93:f3:c6:62:17:2a: 81:ca:53:bd:c1:e9:e6:a5:01:d0:f6:0f:cf:d6:a7: 9e:60:41:fb:53:4c:fa:a2:63:b7:22:f3:93:58:71: 82:e0:45:91:9a:5d:fe:11:8d:cd:6b:ba:6e:ea:7f: ad:42:57:b3:e4:3a:3d:80:ec:c4:6a:b9:33:05:14: 06:4d:f3:85:c3:95:33:96:99:74:e2:5d:fb:b7:63: 66:7b:dc:11:94:8e:f2:d3:76:43:b7:7c:ee:dc:42: b6:42:90:0d:c9:6d:95:53:b8:d4:87:a2:b4:15:f3: 19:59:01:a5:78:db:4f:8e:61:88:02:6a:32:ef:de: b6:c7:e8:87:5b:d6:40:b1:53:83:43:2c:e9:73:3a: 62:29:39:43:98:05:6e:bd:e5:c2:61:71:5c:a9:40: ed:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:E7:3C:52:BD:83:57:2F:D7:09:93:6E:B0:A5:41:BB:74:A0:C1:BB X509v3 Authority Key Identifier: keyid:05:F8:41:9A:F9:AA:31:84:EA:B1:FF:87:42:4A:6A:E3:3C:F7:32:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:4c:35:d3:94:4a:59:eb:31:6e:23:c4:cf:b1:9f:72:07:4b: 58:7d:e9:6e:45:ac:ed:c6:1c:fa:7e:f6:69:83:3b:57:8d:98: 32:78:ae:ba:bb:93:c9:1c:f4:27:4a:08:dd:5f:15:cb:ab:2a: 9f:7e:15:63:c5:9d:9d:95:4a:e7:e7:79:47:c7:a5:81:ae:90: 04:8b:4f:e9:e5:14:5b:16:7c:e7:93:97:a0:8f:da:4e:c1:6d: c8:4d:eb:de:19:e6:b8:b7:97:c8:41:06:5f:b5:ad:f1:b2:c0: 97:cc:e4:90:02:80:fc:06:49:3e:b1:25:80:c9:2c:d1:e6:fd: 27:54:eb:bd:a0:26:a6:dd:8f:44:ab:b2:cc:a8:5a:a0:68:71: 21:46:45:90:d2:3d:88:40:21:0f:c5:2c:7b:43:70:9a:a0:64: d5:3c:b1:fd:1a:50:9c:cb:8b:75:b4:51:50:5a:f2:f5:35:16: 90:d6:b5:a9:ba:e2:ed:0e:0b:42:34:97:59:b6:f5:57:60:37: db:d0:85:45:86:7c:dd:db:57:f3:c7:74:7f:1c:8a:33:c7:72: b3:df:10:04:7f:28:fe:46:83:3a:22:2e:24:cc:9b:f2:3e:db: bb:31:fb:31:19:5a:8c:47:9a:ef:93:2c:18:c9:ea:a3:07:b3: 63:19:54:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUU1NzUxMTAvBgNVBAUTKDA1Rjg0MTlBRjlBQTMxODRFQUIxRkY4NzQyNEE2QUUz M0NGNzMyQzQwHhcNMjUwNDI1MDAyOTU0WhcNMjUwNTAyMDAyOTU0WjAYMRYwFAYD VQQDEw02ODBhZDc4My0xZjRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3LVQCFonr1b+tUlbNKz1o2OmtC6EiqmfPBGIvQfDpB+73Tr8hBKJJQBe4VMl jxs9S90kr1Iu7qM0J7XtVBs1Jor2QNrNqRJqC1fix+D+Tz3VbBkuqd/MI1rM9j6Y vyyYYBOT88ZiFyqBylO9wenmpQHQ9g/P1qeeYEH7U0z6omO3IvOTWHGC4EWRml3+ EY3Na7pu6n+tQlez5Do9gOzEarkzBRQGTfOFw5Uzlpl04l37t2Nme9wRlI7y03ZD t3zu3EK2QpANyW2VU7jUh6K0FfMZWQGleNtPjmGIAmoy7962x+iHW9ZAsVODQyzp czpiKTlDmAVuveXCYXFcqUDtJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE3nPFK9 g1cv1wmTbrClQbt0oMG7MB8GA1UdIwQYMBaAFAX4QZr5qjGE6rH/h0JKauM89zLE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTU3NS9GMEIyNDIxNDhG QTYxMUVDOUMzOTc3NjJDNEY5QUUwMi9CZmhCbXZtcU1ZVHFzZi1IUWtwcTR6ejNN c1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JmaEJtdm1xTVlUcXNmLUhRa3BxNHp6M01zUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RTU3NS9GMEIyNDIxNDhGQTYxMUVDOUMzOTc3NjJDNEY5QUUwMi9CZmhCbXZtcU1Z VHFzZi1IUWtwcTR6ejNNc1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZTDXTlEpZ6zFuI8TPsZ9yB0tYfeluRaztxhz6fvZpgztXjZgyeK66 u5PJHPQnSgjdXxXLqyqffhVjxZ2dlUrn53lHx6WBrpAEi0/p5RRbFnznk5egj9pO wW3ITeveGea4t5fIQQZfta3xssCXzOSQAoD8Bkk+sSWAySzR5v0nVOu9oCam3Y9E q7LMqFqgaHEhRkWQ0j2IQCEPxSx7Q3CaoGTVPLH9GlCcy4t1tFFQWvL1NRaQ1rWp uuLtDgtCNJdZtvVXYDfb0IVFhnzd21fzx3R/HIozx3Kz3xAEfyj+RoM6Ii4kzJvy Ptu7MfsxGVqMR5rvkywYyeqjB7NjGVQG -----END CERTIFICATE-----Generated at Sat Apr 26 14:15:54 2025 by rpki-client