$ rpki-client -vvf rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.mft File: BL27YPamYNHS0BJzSQ_PCcw1m3M.mft (raw, json) Hash identifier: BdZ0VjqbfirmKzMLLeknbnJuZNhF2QJXxw1Ab6MUMR8= Subject key identifier: F0:48:6F:6E:97:90:2D:08:64:16:8B:EB:0C:A0:0B:10:2A:F9:4F:64 Authority key identifier: 04:BD:BB:60:F6:A6:60:D1:D2:D0:12:73:49:0F:CF:09:CC:35:9B:73 Certificate issuer: /CN=A917C59F/serialNumber=04BDBB60F6A660D1D2D01273490FCF09CC359B73 Certificate serial: 0875 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BL27YPamYNHS0BJzSQ_PCcw1m3M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.mft Manifest number: 086D Signing time: Thu 24 Apr 2025 20:32:19 +0000 Manifest this update: Thu 24 Apr 2025 20:32:19 +0000 Manifest next update: Thu 01 May 2025 20:32:19 +0000 Files and hashes: 1: BL27YPamYNHS0BJzSQ_PCcw1m3M.crl (hash: hiq+2XYSxfn01KJg5jdyB4Wp57Cxe3d3l6jvvBn2dC0=) 2: 12482BA205A211ED81E44F6DC4F9AE02.roa (hash: fYbzp1Oz4KIx83cDiZ+b+olfYLWh9zVxHoKcBuS5W0E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.crl rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BL27YPamYNHS0BJzSQ_PCcw1m3M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:32:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2165 (0x875) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C59F, serialNumber=04BDBB60F6A660D1D2D01273490FCF09CC359B73 Validity Not Before: Apr 24 20:32:19 2025 GMT Not After : May 1 20:32:19 2025 GMT Subject: CN=680a9fd3-b7b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:5d:17:9d:27:71:40:20:6c:47:37:f1:68:77: 25:67:db:a6:f5:bf:72:b4:b0:55:a2:29:73:73:c0: f9:fc:64:15:2c:fb:c1:59:96:83:a4:19:26:36:0a: 08:59:96:2a:c2:b1:55:be:a1:34:52:bf:e8:09:5e: 33:69:55:0c:d9:9a:1a:06:e8:b5:0e:8a:7d:ee:a3: 52:1e:a9:bb:48:5a:50:5e:b8:8f:f1:88:88:f7:83: 0c:dd:c8:57:47:35:af:cf:88:c5:76:84:bb:2a:37: e0:50:bf:35:b5:08:df:25:11:c9:79:8c:bb:33:bf: ac:9a:a1:de:0c:bf:9d:40:7e:3f:b1:4a:51:24:0c: 97:fd:d0:23:2e:e9:e3:b8:97:7f:6c:05:b9:a1:b4: ae:b6:50:8c:53:0a:77:84:91:0e:d4:d2:96:fb:26: 0a:93:65:9e:e2:eb:35:23:17:93:5a:62:8e:cf:3f: 86:fb:73:4d:27:f6:43:e1:ab:80:a2:82:fe:3e:0a: 9e:73:24:6d:6a:f0:97:1d:b8:86:5c:20:29:21:26: c9:7c:d3:f2:5b:29:57:80:9a:1a:91:6b:66:c1:db: 91:e3:98:d6:29:97:0f:07:a1:b7:f1:2c:9b:e9:2c: ff:44:c1:b7:cb:17:f0:e4:d4:31:0a:ed:d9:79:c0: c5:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:48:6F:6E:97:90:2D:08:64:16:8B:EB:0C:A0:0B:10:2A:F9:4F:64 X509v3 Authority Key Identifier: keyid:04:BD:BB:60:F6:A6:60:D1:D2:D0:12:73:49:0F:CF:09:CC:35:9B:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BL27YPamYNHS0BJzSQ_PCcw1m3M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:fd:3f:1a:24:13:3a:fe:2f:a6:a8:06:e5:6c:1e:cf:89:08: 3c:ba:23:99:9e:00:5a:b9:94:ac:08:46:da:1f:ce:03:61:e1: 2e:4e:71:72:82:18:ce:e2:2e:2f:6b:cd:28:14:c8:d6:0a:d5: 74:19:e1:76:7e:7e:52:99:40:7a:df:08:fa:1e:fc:bc:be:a3: 37:01:a3:b8:2d:87:1e:cd:6f:a6:43:0c:96:43:fc:68:40:6c: 9e:c1:bd:ab:c3:b7:a5:37:39:f2:60:69:51:ab:6e:c3:ca:21: b1:28:1d:90:d6:cf:1c:2b:db:ec:12:e6:03:c3:5a:0d:1a:56: 65:c7:f2:28:07:9f:5c:30:4e:6b:f6:d3:21:d5:8d:9e:67:35: 68:d2:33:82:1e:c1:72:29:37:fa:51:91:fa:ca:a0:f1:4b:f9: 6d:be:c4:4e:b4:16:71:28:b1:c7:d0:36:55:7a:50:57:b0:b2: b0:b7:ac:82:d9:e0:53:75:4d:ec:2e:f7:50:c8:5c:64:20:e4: 40:6f:ba:37:32:4c:11:5a:e2:fc:c6:75:5a:13:09:90:a6:ac: b2:cd:6f:76:f8:a0:89:52:ef:80:3b:5f:79:15:10:91:23:d5: ce:0f:ff:02:35:d9:03:06:3d:10:7b:07:8d:fa:02:5d:70:02: 20:a4:5e:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCHUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M1OUYxMTAvBgNVBAUTKDA0QkRCQjYwRjZBNjYwRDFEMkQwMTI3MzQ5MEZDRjA5 Q0MzNTlCNzMwHhcNMjUwNDI0MjAzMjE5WhcNMjUwNTAxMjAzMjE5WjAYMRYwFAYD VQQDEw02ODBhOWZkMy1iN2IyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwF0XnSdxQCBsRzfxaHclZ9um9b9ytLBVoilzc8D5/GQVLPvBWZaDpBkmNgoI WZYqwrFVvqE0Ur/oCV4zaVUM2ZoaBui1Dop97qNSHqm7SFpQXriP8YiI94MM3chX RzWvz4jFdoS7KjfgUL81tQjfJRHJeYy7M7+smqHeDL+dQH4/sUpRJAyX/dAjLunj uJd/bAW5obSutlCMUwp3hJEO1NKW+yYKk2We4us1IxeTWmKOzz+G+3NNJ/ZD4auA ooL+PgqecyRtavCXHbiGXCApISbJfNPyWylXgJoakWtmwduR45jWKZcPB6G38Syb 6Sz/RMG3yxfw5NQxCu3ZecDFCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPBIb26X kC0IZBaL6wygCxAq+U9kMB8GA1UdIwQYMBaAFAS9u2D2pmDR0tASc0kPzwnMNZtz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzU5Ri80MjVFODkwMkMx NDQxMUVBOTFGMDNBNkZDNEY5QUUwMi9CTDI3WVBhbVlOSFMwQkp6U1FfUENjdzFt M00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JMMjdZUGFtWU5IUzBCSnpTUV9QQ2N3MW0zTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzU5Ri80MjVFODkwMkMxNDQxMUVBOTFGMDNBNkZDNEY5QUUwMi9CTDI3WVBhbVlO SFMwQkp6U1FfUENjdzFtM00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCv/T8aJBM6/i+mqAblbB7PiQg8uiOZngBauZSsCEbaH84DYeEuTnFy ghjO4i4va80oFMjWCtV0GeF2fn5SmUB63wj6Hvy8vqM3AaO4LYcezW+mQwyWQ/xo QGyewb2rw7elNznyYGlRq27DyiGxKB2Q1s8cK9vsEuYDw1oNGlZlx/IoB59cME5r 9tMh1Y2eZzVo0jOCHsFyKTf6UZH6yqDxS/ltvsROtBZxKLHH0DZVelBXsLKwt6yC 2eBTdU3sLvdQyFxkIORAb7o3MkwRWuL8xnVaEwmQpqyyzW92+KCJUu+AO195FRCR I9XOD/8CNdkDBj0QeweN+gJdcAIgpF4s -----END CERTIFICATE-----Generated at Sat Apr 26 15:02:48 2025 by rpki-client