$ rpki-client -vvf rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.mft File: BL27YPamYNHS0BJzSQ_PCcw1m3M.mft (raw, json) Hash identifier: YB1j/hyV6LmmweXCkaVBpgA0UpC13qCwMyB+9LNTG5E= Subject key identifier: 8F:43:C5:25:AC:AF:44:4B:CB:7C:CF:18:8B:A6:48:0F:D1:94:A7:E8 Authority key identifier: 04:BD:BB:60:F6:A6:60:D1:D2:D0:12:73:49:0F:CF:09:CC:35:9B:73 Certificate issuer: /CN=A917C59F/serialNumber=04BDBB60F6A660D1D2D01273490FCF09CC359B73 Certificate serial: 088E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BL27YPamYNHS0BJzSQ_PCcw1m3M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.mft Manifest number: 0886 Signing time: Sat 14 Jun 2025 20:25:00 +0000 Manifest this update: Sat 14 Jun 2025 20:25:00 +0000 Manifest next update: Sat 21 Jun 2025 20:25:00 +0000 Files and hashes: 1: BL27YPamYNHS0BJzSQ_PCcw1m3M.crl (hash: OfaeHnVdxJPjD0mWO8tv3EvVYMMTb5ZW+bAIECOD7zo=) 2: 12482BA205A211ED81E44F6DC4F9AE02.roa (hash: fYbzp1Oz4KIx83cDiZ+b+olfYLWh9zVxHoKcBuS5W0E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.crl rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BL27YPamYNHS0BJzSQ_PCcw1m3M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 20:25:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2190 (0x88e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C59F, serialNumber=04BDBB60F6A660D1D2D01273490FCF09CC359B73 Validity Not Before: Jun 14 20:25:00 2025 GMT Not After : Jun 21 20:25:00 2025 GMT Subject: CN=684dda9c-fabc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:09:5c:e0:15:fc:7d:8d:27:60:df:7a:d2:10: be:30:3f:a8:46:6e:40:6b:dd:c8:b5:81:11:98:47: 8c:5f:20:ae:60:de:e5:02:ee:29:36:88:c5:a5:81: 25:bb:2b:88:cb:44:ba:36:33:58:8c:a8:51:c2:2e: e4:e4:f8:96:3a:a0:5d:70:b6:dd:a1:00:1a:59:bf: 6a:86:f1:d5:80:4a:96:3d:45:31:43:f5:17:b3:4d: 83:89:75:c8:08:25:54:e4:58:14:5c:8e:21:56:15: a6:ec:62:7f:66:b4:af:be:35:6a:5d:61:12:e6:80: da:e3:ef:88:48:c0:bb:e2:00:66:9b:03:c4:1a:22: 7e:ed:93:44:55:9e:6a:ed:02:ce:db:f9:e9:14:73: 66:56:7a:93:05:e3:fa:50:60:ad:23:93:f1:69:03: 8b:c1:08:99:ed:fc:ad:ea:85:d2:56:95:ff:68:77: b8:08:1b:dc:b3:7a:f4:f2:06:ce:f3:17:8e:58:e3: c5:e9:3b:af:c7:71:f1:30:2e:02:84:84:01:53:96: 22:59:c9:3a:f4:ea:fd:89:94:04:00:cd:c3:93:04: 8f:16:ca:da:ed:f9:99:41:12:cf:7d:77:9a:9b:de: 51:03:ee:e9:a3:14:4d:39:3f:2a:2f:a6:10:4f:52: c8:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:43:C5:25:AC:AF:44:4B:CB:7C:CF:18:8B:A6:48:0F:D1:94:A7:E8 X509v3 Authority Key Identifier: keyid:04:BD:BB:60:F6:A6:60:D1:D2:D0:12:73:49:0F:CF:09:CC:35:9B:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BL27YPamYNHS0BJzSQ_PCcw1m3M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C59F/425E8902C14411EA91F03A6FC4F9AE02/BL27YPamYNHS0BJzSQ_PCcw1m3M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:44:72:62:60:b7:88:5f:0c:45:3c:e8:48:f2:06:7c:8e:c6: ee:cd:27:50:ea:04:50:da:61:fd:b5:b4:df:a0:f7:74:ed:32: 2c:bd:57:f8:be:ea:c8:cb:59:69:d6:35:12:d0:8b:0e:b5:49: e1:84:6b:fa:54:cd:f5:d4:de:63:16:f9:d1:7a:30:6b:7b:79: ec:63:b3:49:27:0f:2f:11:99:80:d6:4c:0b:65:1f:0d:fb:fb: 42:88:32:62:9d:60:15:90:2d:ec:67:85:9f:a2:c5:63:e0:18: 3b:03:3d:12:24:6e:ef:8f:39:3e:43:7d:db:84:9c:a3:68:c4: 35:03:10:b7:b1:b6:93:d5:10:6d:4d:c4:f8:e7:a5:2b:70:33: 4d:4c:14:d2:2f:c0:5c:76:00:ad:39:1e:af:55:ab:a2:d7:d2: 64:c6:b1:60:ef:b4:43:12:cc:49:65:33:62:3e:1c:5c:85:3e: 9f:c0:ae:6c:1f:49:ef:b4:8f:64:20:75:db:9e:dd:91:4c:b2: 6e:7c:a3:e0:44:96:42:8d:ce:81:02:df:3e:c3:d1:43:16:76: 8c:38:a8:05:50:f9:b7:84:29:b9:d2:7d:9a:fa:e3:f7:62:80: d8:06:11:dc:70:47:3a:63:5a:bf:65:eb:b0:22:ca:c7:04:7f: ca:1d:c1:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCI4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M1OUYxMTAvBgNVBAUTKDA0QkRCQjYwRjZBNjYwRDFEMkQwMTI3MzQ5MEZDRjA5 Q0MzNTlCNzMwHhcNMjUwNjE0MjAyNTAwWhcNMjUwNjIxMjAyNTAwWjAYMRYwFAYD VQQDEw02ODRkZGE5Yy1mYWJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsglc4BX8fY0nYN960hC+MD+oRm5Aa93ItYERmEeMXyCuYN7lAu4pNojFpYEl uyuIy0S6NjNYjKhRwi7k5PiWOqBdcLbdoQAaWb9qhvHVgEqWPUUxQ/UXs02DiXXI CCVU5FgUXI4hVhWm7GJ/ZrSvvjVqXWES5oDa4++ISMC74gBmmwPEGiJ+7ZNEVZ5q 7QLO2/npFHNmVnqTBeP6UGCtI5PxaQOLwQiZ7fyt6oXSVpX/aHe4CBvcs3r08gbO 8xeOWOPF6Tuvx3HxMC4ChIQBU5YiWck69Or9iZQEAM3DkwSPFsra7fmZQRLPfXea m95RA+7poxRNOT8qL6YQT1LIeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI9DxSWs r0RLy3zPGIumSA/RlKfoMB8GA1UdIwQYMBaAFAS9u2D2pmDR0tASc0kPzwnMNZtz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzU5Ri80MjVFODkwMkMx NDQxMUVBOTFGMDNBNkZDNEY5QUUwMi9CTDI3WVBhbVlOSFMwQkp6U1FfUENjdzFt M00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JMMjdZUGFtWU5IUzBCSnpTUV9QQ2N3MW0zTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzU5Ri80MjVFODkwMkMxNDQxMUVBOTFGMDNBNkZDNEY5QUUwMi9CTDI3WVBhbVlO SFMwQkp6U1FfUENjdzFtM00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmRHJiYLeIXwxFPOhI8gZ8jsbuzSdQ6gRQ2mH9tbTfoPd07TIsvVf4 vurIy1lp1jUS0IsOtUnhhGv6VM311N5jFvnRejBre3nsY7NJJw8vEZmA1kwLZR8N +/tCiDJinWAVkC3sZ4WfosVj4Bg7Az0SJG7vjzk+Q33bhJyjaMQ1AxC3sbaT1RBt TcT456UrcDNNTBTSL8BcdgCtOR6vVaui19JkxrFg77RDEsxJZTNiPhxchT6fwK5s H0nvtI9kIHXbnt2RTLJufKPgRJZCjc6BAt8+w9FDFnaMOKgFUPm3hCm50n2a+uP3 YoDYBhHccEc6Y1q/ZeuwIsrHBH/KHcFP -----END CERTIFICATE-----Generated at Sun Jun 15 08:34:35 2025 by rpki-client