$ rpki-client -vvf rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.mft File: bBH4O5qMvdIVMt3w6mHek4jRPGs.mft (raw, json) Hash identifier: 069D9fSPdPRhcRGRoaloOtSBkF+7H1uB6e00koLTfLk= Subject key identifier: 1D:26:7D:62:4F:DE:2B:48:E2:CC:12:A2:E3:BD:C6:96:93:D8:E3:AA Authority key identifier: 6C:11:F8:3B:9A:8C:BD:D2:15:32:DD:F0:EA:61:DE:93:88:D1:3C:6B Certificate issuer: /CN=A917D958/serialNumber=6C11F83B9A8CBDD21532DDF0EA61DE9388D13C6B Certificate serial: 62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBH4O5qMvdIVMt3w6mHek4jRPGs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.mft Manifest number: 62 Signing time: Fri 13 Jun 2025 05:58:52 +0000 Manifest this update: Fri 13 Jun 2025 05:58:51 +0000 Manifest next update: Fri 20 Jun 2025 05:58:51 +0000 Files and hashes: 1: bBH4O5qMvdIVMt3w6mHek4jRPGs.crl (hash: WvsIrJXOk5b9a0o/Fm6adHg7gwdqSnmAtm/XHqXgS3o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.crl rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBH4O5qMvdIVMt3w6mHek4jRPGs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 05:58:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 98 (0x62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D958, serialNumber=6C11F83B9A8CBDD21532DDF0EA61DE9388D13C6B Validity Not Before: Jun 13 05:58:51 2025 GMT Not After : Jun 20 05:58:51 2025 GMT Subject: CN=684bbe1c-e6e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a8:a2:73:f8:4f:5d:ca:66:b5:9c:d9:08:a5: da:cf:b9:a5:39:6f:fa:58:ff:95:83:81:3b:c7:27: fe:93:65:ab:48:64:ef:3f:84:f8:d4:ef:57:ea:47: d7:f4:ca:78:73:82:49:37:86:b3:22:e1:c9:96:90: 99:cd:a6:91:54:f9:93:8c:94:ff:70:bc:a6:58:dd: 40:ea:9e:f9:8e:0d:66:ee:a5:e9:34:5d:67:2d:71: a9:02:d5:ff:90:99:7f:a2:88:a1:8e:33:df:94:cb: 58:24:3a:e0:03:d3:0c:c2:9c:8a:cb:3d:8f:29:45: e5:cf:1b:d4:47:ce:88:97:2f:b4:f0:aa:fd:4d:a3: 7e:4d:04:54:78:8b:70:b1:b5:b8:51:bb:c9:71:03: ba:f6:10:26:08:be:16:6a:bb:fd:30:2f:2a:c7:b2: 53:6f:c8:fd:4d:83:af:14:16:23:93:dd:e7:b9:56: 9b:25:67:54:6e:ae:34:47:90:90:2e:77:28:37:ac: b3:61:e8:ad:27:17:2e:e1:cd:30:b3:68:da:db:e1: b5:91:91:c7:79:d3:61:03:fa:9f:41:8e:f6:f0:3f: 41:25:05:06:cb:88:c0:a4:95:11:d0:c2:3d:3a:6b: 55:78:23:a8:fb:46:c5:62:28:e8:4d:9d:bf:c9:a2: 4c:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:26:7D:62:4F:DE:2B:48:E2:CC:12:A2:E3:BD:C6:96:93:D8:E3:AA X509v3 Authority Key Identifier: keyid:6C:11:F8:3B:9A:8C:BD:D2:15:32:DD:F0:EA:61:DE:93:88:D1:3C:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBH4O5qMvdIVMt3w6mHek4jRPGs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:ca:7d:13:e4:ef:b7:4c:fc:c0:4e:05:01:3c:74:64:b2:af: b5:32:a3:9e:d6:4f:33:78:fe:79:37:73:a9:73:5d:3d:58:2a: fa:fa:b5:5c:91:bb:a8:85:d8:26:cf:2e:59:34:b4:75:07:19: 78:bf:a1:fa:a7:af:78:8a:c8:93:e3:a4:2f:72:7b:f3:b3:5f: d8:d0:fa:49:2a:9b:3b:61:a3:b5:5c:46:5d:5c:54:89:ce:ad: 93:ff:f5:75:ca:9a:81:cd:ee:7b:ed:1c:b4:76:80:b6:e8:4c: d1:ea:65:26:8c:c9:65:b3:59:36:65:6f:0f:5d:1a:fb:ec:d6: 0b:c6:23:6f:03:e3:c9:20:9e:42:02:de:14:f9:69:9b:a6:b9: fe:ec:90:c3:20:12:71:74:be:ea:e0:67:f1:00:fe:71:f5:26: 72:51:e5:15:6a:d3:8f:26:9f:36:d2:01:e4:1b:7d:4a:c6:19: 17:40:3c:ea:04:04:47:87:9a:39:5a:fe:83:b1:e4:05:c0:9b: b1:5d:b9:15:74:b6:00:2e:2e:66:ee:80:80:51:f9:f8:54:8c: a6:e7:f6:6c:28:d8:d9:21:53:6c:e8:22:aa:c1:74:4b:2a:4f: 1e:4f:4d:0a:df:cb:9c:c9:4f:5c:20:12:af:49:8f:f3:ec:a2: f1:09:1d:d6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RDk1ODExMC8GA1UEBRMoNkMxMUY4M0I5QThDQkREMjE1MzJEREYwRUE2MURFOTM4 OEQxM0M2QjAeFw0yNTA2MTMwNTU4NTFaFw0yNTA2MjAwNTU4NTFaMBgxFjAUBgNV BAMTDTY4NGJiZTFjLWU2ZTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/qKJz+E9dyma1nNkIpdrPuaU5b/pY/5WDgTvHJ/6TZatIZO8/hPjU71fqR9f0 ynhzgkk3hrMi4cmWkJnNppFU+ZOMlP9wvKZY3UDqnvmODWbupek0XWctcakC1f+Q mX+iiKGOM9+Uy1gkOuAD0wzCnIrLPY8pReXPG9RHzoiXL7Twqv1No35NBFR4i3Cx tbhRu8lxA7r2ECYIvhZqu/0wLyrHslNvyP1Ng68UFiOT3ee5VpslZ1RurjRHkJAu dyg3rLNh6K0nFy7hzTCzaNrb4bWRkcd502ED+p9BjvbwP0ElBQbLiMCklRHQwj06 a1V4I6j7RsViKOhNnb/Jokx/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUHSZ9Yk/e K0jizBKi473GlpPY46owHwYDVR0jBBgwFoAUbBH4O5qMvdIVMt3w6mHek4jRPGsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdEOTU4LzZGNjI4Mzg4QjM5 QjExRUY4MEY2NDM1RUM0RjlBRTAyL2JCSDRPNXFNdmRJVk10M3c2bUhlazRqUlBH cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYkJINE81cU12ZElWTXQzdzZtSGVrNGpSUEdzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdE OTU4LzZGNjI4Mzg4QjM5QjExRUY4MEY2NDM1RUM0RjlBRTAyL2JCSDRPNXFNdmRJ Vk10M3c2bUhlazRqUlBHcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJTKfRPk77dM/MBOBQE8dGSyr7Uyo57WTzN4/nk3c6lzXT1YKvr6tVyR u6iF2CbPLlk0tHUHGXi/ofqnr3iKyJPjpC9ye/OzX9jQ+kkqmztho7VcRl1cVInO rZP/9XXKmoHN7nvtHLR2gLboTNHqZSaMyWWzWTZlbw9dGvvs1gvGI28D48kgnkIC 3hT5aZumuf7skMMgEnF0vurgZ/EA/nH1JnJR5RVq048mnzbSAeQbfUrGGRdAPOoE BEeHmjla/oOx5AXAm7FduRV0tgAuLmbugIBR+fhUjKbn9mwo2NkhU2zoIqrBdEsq Tx5PTQrfy5zJT1wgEq9Jj/PsovEJHdY= -----END CERTIFICATE-----Generated at Sun Jun 15 08:50:23 2025 by rpki-client