$ rpki-client -vvf rpki.apnic.net/member_repository/A916B2C1/2EA51D5620DC11EC9B3CE973C4F9AE02/BtehAtOMEJaAT42lLiz3jYkaxyE.mft File: BtehAtOMEJaAT42lLiz3jYkaxyE.mft (raw, json) Hash identifier: DKOlcbq5aQYyt66q0FM2RC2ilyVJkP3MuxPMEgmE3xU= Subject key identifier: 1D:B6:3F:0B:EA:6A:B5:FC:34:D0:FE:C6:33:93:24:38:A8:E2:0B:BC Authority key identifier: 06:D7:A1:02:D3:8C:10:96:80:4F:8D:A5:2E:2C:F7:8D:89:1A:C7:21 Certificate issuer: /CN=A916B2C1/serialNumber=06D7A102D38C1096804F8DA52E2CF78D891AC721 Certificate serial: 04C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BtehAtOMEJaAT42lLiz3jYkaxyE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B2C1/2EA51D5620DC11EC9B3CE973C4F9AE02/BtehAtOMEJaAT42lLiz3jYkaxyE.mft Manifest number: 04C0 Signing time: Thu 24 Apr 2025 23:37:32 +0000 Manifest this update: Thu 24 Apr 2025 23:37:32 +0000 Manifest next update: Thu 01 May 2025 23:37:32 +0000 Files and hashes: 1: BtehAtOMEJaAT42lLiz3jYkaxyE.crl (hash: 8vf/noW6JF6SHQtSwQptj89YXi53YdQ834t3Lo6JlHE=) 2: 551FA6B620DE11EC8CA3EC74C4F9AE02.roa (hash: sy0Mbt4ke59HBbem5DYUNkJ8NfZs0P/CrbYjmapjxqM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B2C1/2EA51D5620DC11EC9B3CE973C4F9AE02/BtehAtOMEJaAT42lLiz3jYkaxyE.crl rsync://rpki.apnic.net/member_repository/A916B2C1/2EA51D5620DC11EC9B3CE973C4F9AE02/BtehAtOMEJaAT42lLiz3jYkaxyE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BtehAtOMEJaAT42lLiz3jYkaxyE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:37:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1221 (0x4c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B2C1, serialNumber=06D7A102D38C1096804F8DA52E2CF78D891AC721 Validity Not Before: Apr 24 23:37:32 2025 GMT Not After : May 1 23:37:32 2025 GMT Subject: CN=680acb3c-e359 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:dd:29:f5:ad:a7:6a:b9:85:90:69:e2:d8:86: 5c:8d:ee:79:40:a5:64:3a:c3:7a:de:53:d4:ff:21: 32:cb:d3:fc:cf:32:49:89:78:ee:89:47:57:d1:6c: de:cb:4b:ce:79:0f:a5:e1:8d:22:40:25:a9:e2:7d: 34:2e:77:3b:99:c1:3c:b6:1d:fc:6f:12:af:42:c4: 90:2f:f4:e2:27:1d:76:77:5c:8c:93:f8:87:76:dd: 2d:4a:f7:6f:9e:b8:01:6b:cf:c1:55:e4:4b:dc:84: dc:e7:92:0c:0e:a9:41:48:44:2f:87:f3:96:9d:93: 44:e1:ed:d8:2e:b0:a9:67:82:da:7d:e9:b0:a5:0e: f9:fd:15:9a:c2:b1:9f:d8:03:53:7b:4b:4e:1b:6c: 61:cc:76:f3:1a:d2:7b:90:a5:4b:c4:ed:0e:b6:55: 71:00:e5:ab:50:8a:92:bb:6e:e6:56:32:c3:ea:f7: 46:25:1c:e4:80:52:fc:a7:02:62:86:02:eb:fa:3b: aa:2d:67:76:47:d4:c7:b4:70:67:15:ec:3a:3a:0f: 5d:0f:a2:5a:52:73:a4:16:d2:7f:75:7b:45:b1:46: d1:65:32:3e:57:a1:87:47:e3:20:28:27:13:9a:de: e6:16:63:0b:5e:12:af:1c:21:b5:5a:bb:41:1d:b0: ff:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:B6:3F:0B:EA:6A:B5:FC:34:D0:FE:C6:33:93:24:38:A8:E2:0B:BC X509v3 Authority Key Identifier: keyid:06:D7:A1:02:D3:8C:10:96:80:4F:8D:A5:2E:2C:F7:8D:89:1A:C7:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B2C1/2EA51D5620DC11EC9B3CE973C4F9AE02/BtehAtOMEJaAT42lLiz3jYkaxyE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BtehAtOMEJaAT42lLiz3jYkaxyE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B2C1/2EA51D5620DC11EC9B3CE973C4F9AE02/BtehAtOMEJaAT42lLiz3jYkaxyE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:f4:c8:5d:1f:3e:7f:e4:3a:9b:a7:fe:7d:82:2c:ba:c1:16: bf:70:f3:7b:a2:f8:ed:53:e1:44:ef:e2:45:07:f5:8d:cf:07: 86:fa:34:bf:08:a1:79:3a:56:9b:ab:98:80:45:f1:c1:aa:f1: e4:88:87:8a:3b:64:f5:56:f4:95:07:72:a9:f5:c6:09:fb:71: b8:ed:ab:50:90:37:65:45:1f:24:7a:d2:f6:b4:a6:1d:04:dd: a7:79:05:36:7e:54:ec:d2:26:2d:75:23:92:eb:f3:44:f6:b2: a3:40:6e:f1:5c:e6:37:0b:ed:0f:2a:f2:da:8f:95:62:d0:f8: 3e:32:b2:70:18:1a:12:02:a2:a9:ce:f9:9f:98:71:e3:9b:5b: 09:92:7d:2e:ee:0f:03:e3:47:76:ea:98:6c:4a:47:6d:4a:2f: 87:bf:fd:d0:83:16:8d:bc:2e:66:54:14:65:ac:25:f5:bc:e8: cd:e7:5b:0d:b8:1a:0d:da:63:c1:b2:8e:79:c7:61:9d:82:c3: c6:1a:02:41:94:2e:40:df:a6:81:2a:2c:d9:e6:ba:6e:14:f6: ec:1b:6e:df:ba:e5:f2:50:e1:38:26:63:ed:dd:f4:e5:f2:df: 62:fb:d8:83:e7:a5:f0:66:e5:16:c7:73:6c:70:99:77:0e:28: 4a:75:3a:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIyQzExMTAvBgNVBAUTKDA2RDdBMTAyRDM4QzEwOTY4MDRGOERBNTJFMkNGNzhE ODkxQUM3MjEwHhcNMjUwNDI0MjMzNzMyWhcNMjUwNTAxMjMzNzMyWjAYMRYwFAYD VQQDEw02ODBhY2IzYy1lMzU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2N0p9a2narmFkGni2IZcje55QKVkOsN63lPU/yEyy9P8zzJJiXjuiUdX0Wze y0vOeQ+l4Y0iQCWp4n00Lnc7mcE8th38bxKvQsSQL/TiJx12d1yMk/iHdt0tSvdv nrgBa8/BVeRL3ITc55IMDqlBSEQvh/OWnZNE4e3YLrCpZ4LafemwpQ75/RWawrGf 2ANTe0tOG2xhzHbzGtJ7kKVLxO0OtlVxAOWrUIqSu27mVjLD6vdGJRzkgFL8pwJi hgLr+juqLWd2R9THtHBnFew6Og9dD6JaUnOkFtJ/dXtFsUbRZTI+V6GHR+MgKCcT mt7mFmMLXhKvHCG1WrtBHbD/5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB22Pwvq arX8NND+xjOTJDio4gu8MB8GA1UdIwQYMBaAFAbXoQLTjBCWgE+NpS4s942JGsch MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjJDMS8yRUE1MUQ1NjIw REMxMUVDOUIzQ0U5NzNDNEY5QUUwMi9CdGVoQXRPTUVKYUFUNDJsTGl6M2pZa2F4 eUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0J0ZWhBdE9NRUphQVQ0MmxMaXozallrYXh5RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjJDMS8yRUE1MUQ1NjIwREMxMUVDOUIzQ0U5NzNDNEY5QUUwMi9CdGVoQXRPTUVK YUFUNDJsTGl6M2pZa2F4eUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCG9MhdHz5/5Dqbp/59giy6wRa/cPN7ovjtU+FE7+JFB/WNzweG+jS/ CKF5Olabq5iARfHBqvHkiIeKO2T1VvSVB3Kp9cYJ+3G47atQkDdlRR8ketL2tKYd BN2neQU2flTs0iYtdSOS6/NE9rKjQG7xXOY3C+0PKvLaj5Vi0Pg+MrJwGBoSAqKp zvmfmHHjm1sJkn0u7g8D40d26phsSkdtSi+Hv/3QgxaNvC5mVBRlrCX1vOjN51sN uBoN2mPBso55x2GdgsPGGgJBlC5A36aBKizZ5rpuFPbsG27fuuXyUOE4JmPt3fTl 8t9i+9iD56XwZuUWx3NscJl3DihKdToD -----END CERTIFICATE-----Generated at Sat Apr 26 13:06:22 2025 by rpki-client