$ rpki-client -vvf rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft File: bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft (raw, json) Hash identifier: KPtWjmGcJ+TDAm6+9Tdx3rsjokJU3ZzJ/ieP6oKgL8I= Subject key identifier: 4E:B9:97:8E:68:29:97:DB:F8:80:AE:87:7A:EE:71:02:E6:7F:70:1C Authority key identifier: 6F:00:24:6A:85:88:84:8C:3A:17:27:52:F3:2A:E4:EA:30:C6:80:A4 Certificate issuer: /CN=A917983D/serialNumber=6F00246A8588848C3A172752F32AE4EA30C680A4 Certificate serial: 02A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwAkaoWIhIw6FydS8yrk6jDGgKQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft Manifest number: 02A0 Signing time: Sun 27 Apr 2025 01:08:15 +0000 Manifest this update: Sun 27 Apr 2025 01:08:15 +0000 Manifest next update: Sun 04 May 2025 01:08:15 +0000 Files and hashes: 1: bwAkaoWIhIw6FydS8yrk6jDGgKQ.crl (hash: /Og4/ikr+HECOXN45TZXQXQJrj4t9DQDmwQiJj5dpqc=) 2: 1F59A248F69E11EC947BBC5EC4F9AE02.roa (hash: IiOrImghzE2Vpf35rEo7vvLgM62zn5Ft6k44BhxCI6k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.crl rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwAkaoWIhIw6FydS8yrk6jDGgKQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 01:08:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 676 (0x2a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917983D, serialNumber=6F00246A8588848C3A172752F32AE4EA30C680A4 Validity Not Before: Apr 27 01:08:15 2025 GMT Not After : May 4 01:08:15 2025 GMT Subject: CN=680d837f-b553 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:6a:32:29:61:a7:26:ac:6e:d3:68:03:aa:ff: 31:41:10:7c:bd:23:cc:ac:7a:d5:66:fb:56:99:44: 10:f4:4e:f3:1b:53:40:99:3a:a6:66:ed:ec:8c:bd: 8a:7f:14:11:d9:69:61:99:6f:66:7f:8d:d4:e0:ca: a1:be:fb:ef:35:a6:8f:1c:05:00:01:6b:7f:d0:91: df:5d:5b:17:f8:21:ac:a1:d7:88:90:fc:9e:54:2a: 09:39:1e:ec:fc:dd:64:ef:5c:3b:b8:ca:fd:79:4e: 41:87:0e:25:8a:40:ae:83:65:27:92:8f:f0:dd:81: 09:bf:55:f3:c2:3b:53:4b:7b:14:13:06:82:a2:b7: 00:2a:ab:19:20:48:b5:65:dd:98:18:4b:9d:22:3e: 7f:4b:fa:a5:eb:52:98:87:95:2e:46:07:21:d4:f6: b6:bf:2f:87:fe:89:12:79:26:fb:56:91:bf:1b:8f: 37:dd:ef:11:61:92:c2:06:e5:41:68:ad:7f:38:2d: 4b:17:0b:46:bd:72:4c:3e:d2:d2:d4:be:58:77:0f: 0f:73:d7:bd:68:67:fc:a6:a5:f3:58:e6:63:52:f4: ba:7b:67:ef:83:f9:b4:26:ee:cd:a1:61:ea:2e:6d: 9e:51:68:18:35:4e:4d:21:4f:68:eb:4c:84:c4:39: c7:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:B9:97:8E:68:29:97:DB:F8:80:AE:87:7A:EE:71:02:E6:7F:70:1C X509v3 Authority Key Identifier: keyid:6F:00:24:6A:85:88:84:8C:3A:17:27:52:F3:2A:E4:EA:30:C6:80:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwAkaoWIhIw6FydS8yrk6jDGgKQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:1d:69:07:60:a6:02:cd:26:7a:4a:dd:ec:57:e8:82:84:c2: 30:59:a4:2f:89:48:1f:9e:0e:e6:75:a8:3b:d6:1f:31:0a:4b: 75:cc:12:04:20:98:3c:ea:8a:31:25:05:96:32:e7:0a:66:ac: e9:f8:dd:c0:53:24:ea:36:ba:c6:b2:1f:ca:54:0e:61:9f:2e: 7a:76:13:d3:51:a9:58:6b:d8:61:72:09:41:39:a1:a1:04:d1: 04:76:f3:d1:a4:b4:fe:40:03:0e:0f:83:6b:84:fe:cd:02:31: 5a:9a:a0:53:8a:2a:6f:3d:8f:4b:e5:11:f7:ed:36:d1:15:d4: a3:19:c5:23:b8:b1:aa:b2:3b:97:c3:bb:1f:91:83:90:40:40: b3:a0:48:7f:d5:a2:3d:dc:78:f1:af:db:a4:94:1b:0b:62:71: d7:06:06:52:31:3d:00:e9:55:c6:df:a9:2a:b2:99:cd:1d:97: 7d:c3:ca:eb:d3:03:c4:c8:5d:42:2d:47:28:e7:28:10:b9:14: 19:84:fb:ac:dd:75:6d:71:19:ca:02:a8:58:cb:5b:eb:0e:93: 24:be:11:a3:52:7c:21:72:e0:f6:fb:06:77:37:6d:35:81:06: 51:5d:5f:ee:c8:8d:fe:7f:5c:e7:88:1c:12:9a:df:ff:2f:ce: be:40:82:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk4M0QxMTAvBgNVBAUTKDZGMDAyNDZBODU4ODg0OEMzQTE3Mjc1MkYzMkFFNEVB MzBDNjgwQTQwHhcNMjUwNDI3MDEwODE1WhcNMjUwNTA0MDEwODE1WjAYMRYwFAYD VQQDEw02ODBkODM3Zi1iNTUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApmoyKWGnJqxu02gDqv8xQRB8vSPMrHrVZvtWmUQQ9E7zG1NAmTqmZu3sjL2K fxQR2WlhmW9mf43U4MqhvvvvNaaPHAUAAWt/0JHfXVsX+CGsodeIkPyeVCoJOR7s /N1k71w7uMr9eU5Bhw4likCug2Unko/w3YEJv1XzwjtTS3sUEwaCorcAKqsZIEi1 Zd2YGEudIj5/S/ql61KYh5UuRgch1Pa2vy+H/okSeSb7VpG/G4833e8RYZLCBuVB aK1/OC1LFwtGvXJMPtLS1L5Ydw8Pc9e9aGf8pqXzWOZjUvS6e2fvg/m0Ju7NoWHq Lm2eUWgYNU5NIU9o60yExDnHwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE65l45o KZfb+ICuh3rucQLmf3AcMB8GA1UdIwQYMBaAFG8AJGqFiISMOhcnUvMq5OowxoCk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTgzRC80MTYyRjQ0Q0Y2 OUExMUVDQTc4NTNCNTlDNEY5QUUwMi9id0FrYW9XSWhJdzZGeWRTOHlyazZqREdn S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J3QWthb1dJaEl3NkZ5ZFM4eXJrNmpER2dLUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTgzRC80MTYyRjQ0Q0Y2OUExMUVDQTc4NTNCNTlDNEY5QUUwMi9id0FrYW9XSWhJ dzZGeWRTOHlyazZqREdnS1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVHWkHYKYCzSZ6St3sV+iChMIwWaQviUgfng7mdag71h8xCkt1zBIE IJg86ooxJQWWMucKZqzp+N3AUyTqNrrGsh/KVA5hny56dhPTUalYa9hhcglBOaGh BNEEdvPRpLT+QAMOD4NrhP7NAjFamqBTiipvPY9L5RH37TbRFdSjGcUjuLGqsjuX w7sfkYOQQECzoEh/1aI93Hjxr9uklBsLYnHXBgZSMT0A6VXG36kqspnNHZd9w8rr 0wPEyF1CLUco5ygQuRQZhPus3XVtcRnKAqhYy1vrDpMkvhGjUnwhcuD2+wZ3N201 gQZRXV/uyI3+f1zniBwSmt//L86+QIJX -----END CERTIFICATE-----Generated at Sun Apr 27 05:28:56 2025 by rpki-client