$ rpki-client -vvf rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft File: BQFHuU3J1svowLDxrQwBg6YHfDQ.mft (raw, json) Hash identifier: ZvG/zW20ZPGQeDtH/0VIqIgR9AkNjPDu9hbMFemDDcM= Subject key identifier: 2A:C3:E4:2C:7A:29:26:E0:16:F0:B5:6E:78:24:F8:A7:26:03:29:CC Authority key identifier: 05:01:47:B9:4D:C9:D6:CB:E8:C0:B0:F1:AD:0C:01:83:A6:07:7C:34 Certificate issuer: /CN=A91629AA/serialNumber=050147B94DC9D6CBE8C0B0F1AD0C0183A6077C34 Certificate serial: D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQFHuU3J1svowLDxrQwBg6YHfDQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft Manifest number: CF Signing time: Fri 25 Apr 2025 04:44:47 +0000 Manifest this update: Fri 25 Apr 2025 04:44:47 +0000 Manifest next update: Fri 02 May 2025 04:44:47 +0000 Files and hashes: 1: BQFHuU3J1svowLDxrQwBg6YHfDQ.crl (hash: UG8rq/5nhpWlUp+VQs/dvma5j1DHG9LktS6tV1frF70=) 2: 1E347CDCE74A11EE8602742BC4F9AE02.roa (hash: RDRsbI0QCe3WCyYIAxbPkTT+7Ici1TKwxRZtpP0NFiU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.crl rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQFHuU3J1svowLDxrQwBg6YHfDQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:44:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 210 (0xd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91629AA, serialNumber=050147B94DC9D6CBE8C0B0F1AD0C0183A6077C34 Validity Not Before: Apr 25 04:44:47 2025 GMT Not After : May 2 04:44:47 2025 GMT Subject: CN=680b133f-292d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:44:03:3e:dd:aa:11:99:a1:13:7a:ba:6e:87: 18:e7:5f:e3:fa:73:08:7e:c3:37:f2:41:0f:db:d3: 13:99:1c:e3:c3:ec:ed:67:22:b0:a3:aa:13:9f:e6: 79:1e:f2:6f:f4:dd:b3:88:58:3f:d7:b6:4f:95:92: 30:2d:9c:f8:ab:bb:56:e7:88:ec:1f:d6:62:ef:a3: 73:af:a7:23:04:78:5e:cd:99:03:c2:b3:14:e1:9d: a5:91:09:a0:f7:77:f0:f7:e3:8a:d9:b4:65:91:dc: 3b:5e:7d:6b:07:89:be:bf:e0:c9:32:30:b4:04:9d: 5b:40:45:ce:14:3b:7c:42:5d:81:e8:2c:a4:59:f5: bd:07:1b:a1:9d:cf:d9:65:93:62:2a:73:47:53:4c: 87:a6:46:a5:8f:e9:dd:e4:ff:b8:86:ba:62:e9:01: b4:a3:9d:ea:9c:b2:ae:aa:22:c1:19:52:b8:be:ee: be:20:ee:04:d9:50:02:e0:bd:d2:fe:cc:05:10:0c: 6f:08:96:02:cc:94:7c:92:51:6a:5f:1c:71:a3:12: ce:9e:5d:59:65:db:11:54:43:f9:67:41:81:ad:0a: b2:45:32:70:5e:5a:56:f4:b7:41:ef:fd:e3:78:ab: e6:37:4a:b8:22:6d:5a:f5:ed:3c:12:26:27:89:5a: b3:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:C3:E4:2C:7A:29:26:E0:16:F0:B5:6E:78:24:F8:A7:26:03:29:CC X509v3 Authority Key Identifier: keyid:05:01:47:B9:4D:C9:D6:CB:E8:C0:B0:F1:AD:0C:01:83:A6:07:7C:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQFHuU3J1svowLDxrQwBg6YHfDQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:ad:5e:7c:0e:f5:1c:ef:95:0e:fe:7b:62:c2:0a:fb:e8:95: a0:fd:8c:b6:a7:9b:d4:fd:5d:0a:a7:ba:6e:1f:4c:3b:04:67: c5:91:89:b8:1c:50:f4:b8:b3:03:e7:42:3a:c8:3a:8d:0f:64: d6:23:85:57:9e:0d:5c:79:a8:6d:d1:b6:be:89:36:f4:fd:41: 21:67:4a:c6:56:16:39:b0:2c:10:ab:d0:d2:f1:8f:08:12:f1: 71:a3:b1:5a:9a:a0:7e:c6:3f:df:ca:88:f2:25:04:08:d4:a4: 51:19:0a:9c:39:d5:4f:a2:2a:f8:03:48:d0:05:33:50:af:ab: dd:f4:d7:68:d0:10:29:5a:af:f0:d8:9b:55:63:d7:83:2f:9f: 6f:6d:29:f0:54:bf:6e:23:d0:84:6b:51:3f:5b:22:cd:8a:a0: ed:70:11:01:7e:d2:df:fa:c8:c7:4a:46:33:07:b5:26:b1:86: e0:fb:e3:1c:c6:ba:65:42:9f:6f:3d:ab:0c:0a:3e:bf:c0:1c: 3d:97:0c:88:6a:14:8b:aa:01:35:42:0c:7e:5d:1d:fd:64:a1: 86:24:c1:6b:84:80:c4:b8:92:84:9e:f7:94:ea:d4:c3:89:4f: a0:59:0b:c9:14:13:ab:7b:d3:cb:a9:19:a6:a9:17:e4:53:aa: a7:49:33:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI5QUExMTAvBgNVBAUTKDA1MDE0N0I5NERDOUQ2Q0JFOEMwQjBGMUFEMEMwMTgz QTYwNzdDMzQwHhcNMjUwNDI1MDQ0NDQ3WhcNMjUwNTAyMDQ0NDQ3WjAYMRYwFAYD VQQDEw02ODBiMTMzZi0yOTJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsEQDPt2qEZmhE3q6bocY51/j+nMIfsM38kEP29MTmRzjw+ztZyKwo6oTn+Z5 HvJv9N2ziFg/17ZPlZIwLZz4q7tW54jsH9Zi76Nzr6cjBHhezZkDwrMU4Z2lkQmg 93fw9+OK2bRlkdw7Xn1rB4m+v+DJMjC0BJ1bQEXOFDt8Ql2B6CykWfW9Bxuhnc/Z ZZNiKnNHU0yHpkalj+nd5P+4hrpi6QG0o53qnLKuqiLBGVK4vu6+IO4E2VAC4L3S /swFEAxvCJYCzJR8klFqXxxxoxLOnl1ZZdsRVEP5Z0GBrQqyRTJwXlpW9LdB7/3j eKvmN0q4Im1a9e08EiYniVqzUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCrD5Cx6 KSbgFvC1bngk+KcmAynMMB8GA1UdIwQYMBaAFAUBR7lNydbL6MCw8a0MAYOmB3w0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjlBQS81RjA2OTNGNEU3 NDkxMUVFQkM1MjZGMjlDNEY5QUUwMi9CUUZIdVUzSjFzdm93TER4clF3Qmc2WUhm RFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRRkh1VTNKMXN2b3dMRHhyUXdCZzZZSGZEUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjlBQS81RjA2OTNGNEU3NDkxMUVFQkM1MjZGMjlDNEY5QUUwMi9CUUZIdVUzSjFz dm93TER4clF3Qmc2WUhmRFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0rV58DvUc75UO/ntiwgr76JWg/Yy2p5vU/V0Kp7puH0w7BGfFkYm4 HFD0uLMD50I6yDqND2TWI4VXng1ceaht0ba+iTb0/UEhZ0rGVhY5sCwQq9DS8Y8I EvFxo7FamqB+xj/fyojyJQQI1KRRGQqcOdVPoir4A0jQBTNQr6vd9Ndo0BApWq/w 2JtVY9eDL59vbSnwVL9uI9CEa1E/WyLNiqDtcBEBftLf+sjHSkYzB7UmsYbg++Mc xrplQp9vPasMCj6/wBw9lwyIahSLqgE1Qgx+XR39ZKGGJMFrhIDEuJKEnveU6tTD iU+gWQvJFBOre9PLqRmmqRfkU6qnSTN2 -----END CERTIFICATE-----Generated at Sat Apr 26 16:57:24 2025 by rpki-client