$ rpki-client -vvf rpki.apnic.net/member_repository/A917C0C4/9180C822055711F09C6A8E49C4F9AE02/bpBL4FGCvLH29QXQowWJHm6NEDk.mft File: bpBL4FGCvLH29QXQowWJHm6NEDk.mft (raw, json) Hash identifier: xVi4GoW1lcOGqL3eRILYxMIBwej3gU3vUZetZS77Iog= Subject key identifier: 73:6B:45:01:CB:F7:A7:7F:63:F5:B1:80:A4:32:FE:B1:1D:41:C9:F4 Authority key identifier: 6E:90:4B:E0:51:82:BC:B1:F6:F5:05:D0:A3:05:89:1E:6E:8D:10:39 Certificate issuer: /CN=A917C0C4/serialNumber=6E904BE05182BCB1F6F505D0A305891E6E8D1039 Certificate serial: 17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bpBL4FGCvLH29QXQowWJHm6NEDk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C0C4/9180C822055711F09C6A8E49C4F9AE02/bpBL4FGCvLH29QXQowWJHm6NEDk.mft Manifest number: 16 Signing time: Fri 25 Apr 2025 07:00:33 +0000 Manifest this update: Fri 25 Apr 2025 07:00:32 +0000 Manifest next update: Fri 02 May 2025 07:00:32 +0000 Files and hashes: 1: bpBL4FGCvLH29QXQowWJHm6NEDk.crl (hash: 5tgXf8SktsK9PW0HVyqLUGoT5llURhG0Q/JPU8D9lNk=) 2: BA22BEB40B3011F0B579B519C4F9AE02.roa (hash: zdEqtGtii43VUXH0g8Jdd0m7uoQgCUcFB8S2j4k//AQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C0C4/9180C822055711F09C6A8E49C4F9AE02/bpBL4FGCvLH29QXQowWJHm6NEDk.crl rsync://rpki.apnic.net/member_repository/A917C0C4/9180C822055711F09C6A8E49C4F9AE02/bpBL4FGCvLH29QXQowWJHm6NEDk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bpBL4FGCvLH29QXQowWJHm6NEDk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 07:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23 (0x17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C0C4, serialNumber=6E904BE05182BCB1F6F505D0A305891E6E8D1039 Validity Not Before: Apr 25 07:00:32 2025 GMT Not After : May 2 07:00:32 2025 GMT Subject: CN=680b3310-82a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:1a:ca:5e:76:d6:c2:f5:1c:d8:95:13:1e:d7: 1f:f0:a9:9a:8c:f4:25:63:2e:bd:c8:a9:16:6c:3b: df:31:8f:b0:a5:8c:d3:17:1f:81:ec:e7:9f:99:24: c7:be:01:88:60:e9:4c:7a:e6:c2:b9:0d:93:22:78: 91:f6:82:8f:8f:df:03:53:41:a6:3a:0f:e3:97:81: e1:1d:71:fb:80:5f:b7:21:29:44:19:b1:93:5e:c2: 45:ec:0c:fa:41:f5:49:e1:d9:53:af:4c:70:ea:3c: a2:9a:21:3e:3b:a5:7e:61:de:3e:cc:0f:02:dd:31: 97:21:41:96:35:88:5a:0d:38:20:26:1d:51:d0:99: 41:fe:12:1a:9d:c6:c2:1c:36:9c:92:fc:02:ce:ad: 8e:ad:8e:a5:b4:55:20:48:4b:7d:7e:c1:24:95:53: 0f:d9:a3:13:9c:32:00:96:6d:03:ab:a2:8a:b6:1b: ed:b5:b1:28:5f:09:27:74:c0:7c:18:e7:6c:c4:55: d1:39:07:e1:51:62:17:87:e9:ef:d0:90:b6:15:71: b4:d4:2e:96:0e:1f:dd:e4:74:c2:11:2a:40:05:3a: 6e:2c:ff:9b:33:45:c9:ad:dc:24:5e:4d:5f:eb:9b: a0:9e:f0:47:62:ab:79:d3:ac:17:6c:35:7d:99:ea: 55:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:6B:45:01:CB:F7:A7:7F:63:F5:B1:80:A4:32:FE:B1:1D:41:C9:F4 X509v3 Authority Key Identifier: keyid:6E:90:4B:E0:51:82:BC:B1:F6:F5:05:D0:A3:05:89:1E:6E:8D:10:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C0C4/9180C822055711F09C6A8E49C4F9AE02/bpBL4FGCvLH29QXQowWJHm6NEDk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bpBL4FGCvLH29QXQowWJHm6NEDk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C0C4/9180C822055711F09C6A8E49C4F9AE02/bpBL4FGCvLH29QXQowWJHm6NEDk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:29:24:0a:e3:33:40:0c:4b:ab:29:bc:38:57:28:63:b2:f5: 49:ab:1a:4a:ed:a0:63:76:25:7b:02:84:11:a5:a1:ef:c0:27: 02:04:ea:f1:da:14:3b:da:ae:7c:ee:69:15:4a:26:e5:2b:6b: e1:be:26:e1:4c:6c:aa:c8:1c:bb:a5:2d:a7:b8:6b:a5:f7:aa: 10:dd:10:75:5d:3a:7b:fa:95:d0:d7:d3:29:5b:6a:47:c5:e7: 53:3b:19:37:ed:7b:1d:f1:9b:39:59:89:d3:24:98:0f:15:98: 66:ff:83:14:70:58:06:c6:e4:47:f0:b7:9b:ac:68:7e:59:bd: 62:44:fe:35:73:51:f0:49:ac:4d:ab:e2:7e:b8:bf:ba:cd:b1: 2e:30:98:cd:5b:a3:b0:96:de:65:4c:ed:c4:8e:f3:0a:30:97: 71:89:71:ac:37:8b:49:96:2b:8d:4a:0a:7b:ac:c8:69:57:9f: 55:0e:72:d4:4e:8c:23:e2:8d:ca:35:2e:18:6e:5b:47:28:57: 72:69:45:cc:6c:bb:c0:2c:6d:37:eb:5f:29:dd:70:73:c2:28: b8:04:b6:88:eb:12:9e:d8:d7:82:de:92:9a:fc:da:15:b1:c4: 08:b0:2a:a5:17:1f:37:38:d7:79:81:99:e4:45:78:c8:b9:ec: ee:2e:91:3a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QzBDNDExMC8GA1UEBRMoNkU5MDRCRTA1MTgyQkNCMUY2RjUwNUQwQTMwNTg5MUU2 RThEMTAzOTAeFw0yNTA0MjUwNzAwMzJaFw0yNTA1MDIwNzAwMzJaMBgxFjAUBgNV BAMTDTY4MGIzMzEwLTgyYTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDYGspedtbC9RzYlRMe1x/wqZqM9CVjLr3IqRZsO98xj7CljNMXH4Hs55+ZJMe+ AYhg6Ux65sK5DZMieJH2go+P3wNTQaY6D+OXgeEdcfuAX7chKUQZsZNewkXsDPpB 9Unh2VOvTHDqPKKaIT47pX5h3j7MDwLdMZchQZY1iFoNOCAmHVHQmUH+EhqdxsIc NpyS/ALOrY6tjqW0VSBIS31+wSSVUw/ZoxOcMgCWbQOrooq2G+21sShfCSd0wHwY 52zEVdE5B+FRYheH6e/QkLYVcbTULpYOH93kdMIRKkAFOm4s/5szRcmt3CReTV/r m6Ce8Ediq3nTrBdsNX2Z6lVVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUc2tFAcv3 p39j9bGApDL+sR1ByfQwHwYDVR0jBBgwFoAUbpBL4FGCvLH29QXQowWJHm6NEDkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdDMEM0LzkxODBDODIyMDU1 NzExRjA5QzZBOEU0OUM0RjlBRTAyL2JwQkw0RkdDdkxIMjlRWFFvd1dKSG02TkVE ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYnBCTDRGR0N2TEgyOVFYUW93V0pIbTZORURrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdD MEM0LzkxODBDODIyMDU1NzExRjA5QzZBOEU0OUM0RjlBRTAyL2JwQkw0RkdDdkxI MjlRWFFvd1dKSG02TkVEay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGgpJArjM0AMS6spvDhXKGOy9UmrGkrtoGN2JXsChBGloe/AJwIE6vHa FDvarnzuaRVKJuUra+G+JuFMbKrIHLulLae4a6X3qhDdEHVdOnv6ldDX0ylbakfF 51M7GTftex3xmzlZidMkmA8VmGb/gxRwWAbG5Efwt5usaH5ZvWJE/jVzUfBJrE2r 4n64v7rNsS4wmM1bo7CW3mVM7cSO8wowl3GJcaw3i0mWK41KCnusyGlXn1UOctRO jCPijco1LhhuW0coV3JpRcxsu8AsbTfrXyndcHPCKLgEtojrEp7Y14Lekpr82hWx xAiwKqUXHzc413mBmeRFeMi57O4ukTo= -----END CERTIFICATE-----Generated at Sat Apr 26 04:22:58 2025 by rpki-client