$ rpki-client -vvf rpki.apnic.net/member_repository/A917C0C4/9180C822055711F09C6A8E49C4F9AE02/bpBL4FGCvLH29QXQowWJHm6NEDk.mft File: bpBL4FGCvLH29QXQowWJHm6NEDk.mft (raw, json) Hash identifier: F4qHgtidjObfopY82W0y4qXPpE2shuza4Y1MEF176mU= Subject key identifier: AD:D3:55:3C:7D:E3:0E:91:8D:9A:63:BC:76:AD:4A:21:37:BB:D2:B4 Authority key identifier: 6E:90:4B:E0:51:82:BC:B1:F6:F5:05:D0:A3:05:89:1E:6E:8D:10:39 Certificate issuer: /CN=A917C0C4/serialNumber=6E904BE05182BCB1F6F505D0A305891E6E8D1039 Certificate serial: 31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bpBL4FGCvLH29QXQowWJHm6NEDk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C0C4/9180C822055711F09C6A8E49C4F9AE02/bpBL4FGCvLH29QXQowWJHm6NEDk.mft Manifest number: 2F Signing time: Fri 13 Jun 2025 06:37:59 +0000 Manifest this update: Fri 13 Jun 2025 06:37:58 +0000 Manifest next update: Fri 20 Jun 2025 06:37:58 +0000 Files and hashes: 1: bpBL4FGCvLH29QXQowWJHm6NEDk.crl (hash: +LPAwCf5uHIpPC4llLKCtG5hlx+tHTmBfNKcQPPizls=) 2: 102AA41C479911F09F9DEE1CC4F9AE02.roa (hash: hOrU8uA8iaO1fbWpYsy0A7EGK7qiHOoOrOhcbSxH6W8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C0C4/9180C822055711F09C6A8E49C4F9AE02/bpBL4FGCvLH29QXQowWJHm6NEDk.crl rsync://rpki.apnic.net/member_repository/A917C0C4/9180C822055711F09C6A8E49C4F9AE02/bpBL4FGCvLH29QXQowWJHm6NEDk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bpBL4FGCvLH29QXQowWJHm6NEDk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 06:37:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49 (0x31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C0C4, serialNumber=6E904BE05182BCB1F6F505D0A305891E6E8D1039 Validity Not Before: Jun 13 06:37:58 2025 GMT Not After : Jun 20 06:37:58 2025 GMT Subject: CN=684bc746-69fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:26:3d:8e:9a:ea:b8:a1:27:9c:fb:fb:c8:4c: dc:e9:c3:34:46:22:fe:56:92:fd:d0:31:49:e0:cc: 66:4e:a0:c3:d9:bf:f6:cf:65:cc:99:52:3d:f4:d5: 78:ca:86:34:55:c0:8a:4b:56:26:12:7d:64:40:0b: d7:66:b8:7a:38:ee:62:53:db:a6:d2:a4:6d:0a:f7: 5c:89:65:56:06:6e:e4:fb:9b:3a:21:2a:2f:e0:69: a7:76:89:bc:e5:32:10:b4:78:98:f7:68:a0:25:ea: cd:5f:d2:48:3d:cc:03:61:9d:53:74:35:af:f7:0b: 5e:8c:ae:1a:d9:03:c4:63:1b:89:5c:e7:1b:01:cb: 1b:00:c0:92:6a:3f:83:9f:f1:2e:ab:1a:b3:0c:83: f5:33:f6:fd:d5:44:80:a0:44:05:04:c7:a3:ee:1f: 42:77:80:95:23:95:fa:26:b6:04:99:5c:0d:d1:1d: 17:d1:8f:e5:8d:41:08:70:46:ff:ef:67:4e:f0:f7: a0:fb:39:06:ce:b2:f8:90:7a:29:4e:0d:2e:ed:c2: d6:ab:27:82:21:9b:52:62:03:1e:a7:28:62:0c:09: d9:d7:4b:fe:c1:ac:3a:2a:f1:32:3d:a2:9b:cd:d4: d2:36:32:df:69:cc:e1:90:c0:b8:9e:26:ef:08:53: aa:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:D3:55:3C:7D:E3:0E:91:8D:9A:63:BC:76:AD:4A:21:37:BB:D2:B4 X509v3 Authority Key Identifier: keyid:6E:90:4B:E0:51:82:BC:B1:F6:F5:05:D0:A3:05:89:1E:6E:8D:10:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C0C4/9180C822055711F09C6A8E49C4F9AE02/bpBL4FGCvLH29QXQowWJHm6NEDk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bpBL4FGCvLH29QXQowWJHm6NEDk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C0C4/9180C822055711F09C6A8E49C4F9AE02/bpBL4FGCvLH29QXQowWJHm6NEDk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:c8:5a:a9:79:39:54:60:20:33:05:03:9e:22:0f:33:5d:20: 8a:71:54:19:15:3f:f4:cc:3b:86:79:03:46:4f:e7:cb:74:90: 5a:51:13:eb:8a:75:2e:90:5a:f4:5a:76:d4:29:f8:05:6f:88: 44:d1:3f:c1:31:2e:3a:8c:fa:73:ff:77:a0:c4:29:b9:3e:ab: e3:e3:3c:20:a9:c7:3b:72:1b:17:3e:6f:99:ab:86:01:25:f8: 45:f3:3e:ce:42:63:08:2b:47:3d:59:47:ad:42:aa:cc:69:68: 88:b3:0a:c1:3a:dd:10:58:49:8c:8f:c1:ba:7b:5c:5d:92:10: b4:98:28:8d:34:c7:09:e8:90:55:70:ff:d3:c5:2d:d4:5d:57: 20:4c:c3:6b:c4:9b:36:23:3a:9e:e1:bf:99:1d:11:ab:29:31: 53:d8:fb:91:f8:39:a0:58:0c:35:94:33:08:6e:c7:3b:e2:4a: 99:fc:ae:ed:69:fd:e4:48:ab:5a:7f:68:21:e5:a6:9a:93:60: e0:af:88:a9:08:43:3b:21:ce:f7:5d:32:70:8e:c5:75:10:7e: 8e:ca:a3:3a:a6:0e:ab:1a:09:fe:f2:08:4d:3d:a8:f4:6c:64: be:c4:a8:fa:9c:d7:e0:41:e9:b9:c9:43:7f:b5:4e:e6:3f:76: 86:27:05:fd -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QzBDNDExMC8GA1UEBRMoNkU5MDRCRTA1MTgyQkNCMUY2RjUwNUQwQTMwNTg5MUU2 RThEMTAzOTAeFw0yNTA2MTMwNjM3NThaFw0yNTA2MjAwNjM3NThaMBgxFjAUBgNV BAMTDTY4NGJjNzQ2LTY5ZmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDJj2Omuq4oSec+/vITNzpwzRGIv5Wkv3QMUngzGZOoMPZv/bPZcyZUj301XjK hjRVwIpLViYSfWRAC9dmuHo47mJT26bSpG0K91yJZVYGbuT7mzohKi/gaad2ibzl MhC0eJj3aKAl6s1f0kg9zANhnVN0Na/3C16MrhrZA8RjG4lc5xsByxsAwJJqP4Of 8S6rGrMMg/Uz9v3VRICgRAUEx6PuH0J3gJUjlfomtgSZXA3RHRfRj+WNQQhwRv/v Z07w96D7OQbOsviQeilODS7twtarJ4Ihm1JiAx6nKGIMCdnXS/7BrDoq8TI9opvN 1NI2Mt9pzOGQwLieJu8IU6rNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUrdNVPH3j DpGNmmO8dq1KITe70rQwHwYDVR0jBBgwFoAUbpBL4FGCvLH29QXQowWJHm6NEDkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdDMEM0LzkxODBDODIyMDU1 NzExRjA5QzZBOEU0OUM0RjlBRTAyL2JwQkw0RkdDdkxIMjlRWFFvd1dKSG02TkVE ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYnBCTDRGR0N2TEgyOVFYUW93V0pIbTZORURrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdD MEM0LzkxODBDODIyMDU1NzExRjA5QzZBOEU0OUM0RjlBRTAyL2JwQkw0RkdDdkxI MjlRWFFvd1dKSG02TkVEay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAH7IWql5OVRgIDMFA54iDzNdIIpxVBkVP/TMO4Z5A0ZP58t0kFpRE+uK dS6QWvRadtQp+AVviETRP8ExLjqM+nP/d6DEKbk+q+PjPCCpxztyGxc+b5mrhgEl +EXzPs5CYwgrRz1ZR61CqsxpaIizCsE63RBYSYyPwbp7XF2SELSYKI00xwnokFVw /9PFLdRdVyBMw2vEmzYjOp7hv5kdEaspMVPY+5H4OaBYDDWUMwhuxzviSpn8ru1p /eRIq1p/aCHlppqTYOCviKkIQzshzvddMnCOxXUQfo7KozqmDqsaCf7yCE09qPRs ZL7EqPqc1+BB6bnJQ3+1TuY/doYnBf0= -----END CERTIFICATE-----Generated at Sat Jun 14 17:51:04 2025 by rpki-client