$ rpki-client -vvf rpki.apnic.net/member_repository/A9183BBC/140C175686D611EBB7B39C62C4F9AE02/BhgYSeLF-TE-pgozl9xhRyrBGw0.mft File: BhgYSeLF-TE-pgozl9xhRyrBGw0.mft (raw, json) Hash identifier: WEaJEjrbDN+MOW8J1SNhr0hu7KF4atxQon3ATD89HDs= Subject key identifier: 89:39:CB:AF:A4:0E:8C:31:8F:27:18:99:88:46:CA:66:F9:94:B0:90 Authority key identifier: 06:18:18:49:E2:C5:F9:31:3E:A6:0A:33:97:DC:61:47:2A:C1:1B:0D Certificate issuer: /CN=A9183BBC/serialNumber=06181849E2C5F9313EA60A3397DC61472AC11B0D Certificate serial: 0660 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BhgYSeLF-TE-pgozl9xhRyrBGw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9183BBC/140C175686D611EBB7B39C62C4F9AE02/BhgYSeLF-TE-pgozl9xhRyrBGw0.mft Manifest number: 064E Signing time: Thu 24 Apr 2025 22:22:01 +0000 Manifest this update: Thu 24 Apr 2025 22:22:01 +0000 Manifest next update: Thu 01 May 2025 22:22:01 +0000 Files and hashes: 1: BhgYSeLF-TE-pgozl9xhRyrBGw0.crl (hash: A3B07QbSMP0Xz9/UA3jdnQfauW19f4nilpXVW/xMUm8=) 2: 4F1694B4C87B11ED981CC523C4F9AE02.roa (hash: FWRlVE7qxAGVhNJeQGVLW3KvlIyEGk0A9fnepbZFOKE=) 3: E4205416B2F111EFBB14DE0FC4F9AE02.roa (hash: u41x8Ny1raTvp1vwnGwm7MW/cINQCDMdw5LO04vaVeU=) 4: C18726F486D711EBA06B0E64C4F9AE02.roa (hash: 46EUYT6r3IQXKkQnGUbOAbbi8lZTq+8CIfeQWVvyW6o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9183BBC/140C175686D611EBB7B39C62C4F9AE02/BhgYSeLF-TE-pgozl9xhRyrBGw0.crl rsync://rpki.apnic.net/member_repository/A9183BBC/140C175686D611EBB7B39C62C4F9AE02/BhgYSeLF-TE-pgozl9xhRyrBGw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BhgYSeLF-TE-pgozl9xhRyrBGw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:22:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1632 (0x660) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9183BBC, serialNumber=06181849E2C5F9313EA60A3397DC61472AC11B0D Validity Not Before: Apr 24 22:22:01 2025 GMT Not After : May 1 22:22:01 2025 GMT Subject: CN=680ab989-6ae1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:26:1d:2c:5e:2f:47:08:91:51:0a:e8:66:88: f0:d5:a1:d6:21:b9:57:04:3d:37:1d:80:e0:17:2b: e6:0d:0a:54:f2:d1:40:63:1c:7e:a6:40:85:cd:5a: ac:ff:6a:62:e6:df:ea:d3:a7:b2:a8:a0:54:d9:9d: fc:3a:95:73:86:07:21:99:aa:c2:0c:95:ef:38:56: 9d:dd:68:0d:f9:f4:94:e7:d5:38:bb:9e:f9:01:fc: 5d:52:08:49:2a:c5:66:67:a2:b2:22:de:b8:d2:23: dd:bf:17:94:67:bd:4e:30:18:38:63:2a:0b:99:15: a9:33:17:5c:45:00:4f:88:fd:74:99:7b:da:97:8f: b7:d2:49:32:4b:91:06:32:a5:0a:fb:0d:2b:0f:1d: c8:47:4a:b6:56:74:c6:df:6c:27:c2:b2:75:a2:4b: e5:de:28:a6:9e:9a:a8:a7:a1:6c:b3:ac:9e:5b:ae: 9f:11:37:b9:eb:30:ab:a7:c1:bd:b3:2a:1e:e2:ad: f2:98:f5:fa:48:72:0c:97:23:95:0c:60:f9:e7:c0: f5:f7:33:15:39:0d:dd:b5:b9:71:83:db:7e:56:13: 04:3d:b1:fb:25:25:10:a7:f1:f4:e0:85:ff:ec:4a: 6c:90:26:c8:66:64:6a:42:3d:df:52:09:e9:1e:dc: 2e:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:39:CB:AF:A4:0E:8C:31:8F:27:18:99:88:46:CA:66:F9:94:B0:90 X509v3 Authority Key Identifier: keyid:06:18:18:49:E2:C5:F9:31:3E:A6:0A:33:97:DC:61:47:2A:C1:1B:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9183BBC/140C175686D611EBB7B39C62C4F9AE02/BhgYSeLF-TE-pgozl9xhRyrBGw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BhgYSeLF-TE-pgozl9xhRyrBGw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9183BBC/140C175686D611EBB7B39C62C4F9AE02/BhgYSeLF-TE-pgozl9xhRyrBGw0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:9f:b3:74:a9:40:ed:c3:f6:eb:1c:49:95:02:e5:44:0c:c2: e6:a0:50:0b:f9:df:0a:ee:46:65:40:a9:01:16:77:4f:d3:01: 89:90:d2:96:27:71:07:0b:2a:8f:d4:5d:d2:56:3f:c1:3d:88: 51:c2:a1:82:a3:49:82:67:f3:e4:7c:a9:2f:5d:f7:62:6a:2a: 19:80:17:83:d1:d2:69:c2:25:4d:6e:c5:f2:cc:61:e3:7b:21: 70:6c:4b:61:b7:67:35:56:21:80:16:56:fe:25:5a:98:4f:b2: 8a:ee:ae:37:2b:71:4f:1d:55:30:e3:3d:b4:4f:fe:c4:5e:26: da:f6:ac:56:5a:e6:19:3d:bd:6e:e6:14:1a:39:cc:98:cf:6d: f9:41:f7:26:46:e7:6e:9b:de:5a:eb:93:b8:f0:3b:41:5f:dd: 9f:b8:64:54:95:38:16:84:e6:1f:6b:03:d8:fc:c4:cd:5d:3e: b2:f5:0a:6d:c7:36:ae:27:d1:61:c7:86:cd:1e:2a:5c:8d:14: 3b:6d:37:be:fc:5b:1e:96:b4:b2:4a:bf:58:c1:46:ca:db:5b: 16:48:e9:45:0a:7a:45:a1:a5:aa:b4:16:0c:ad:21:ad:5c:e7: c3:84:ec:97:2c:15:94:9c:8e:6c:d5:37:00:ea:43:54:2e:77: fd:90:8a:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODNCQkMxMTAvBgNVBAUTKDA2MTgxODQ5RTJDNUY5MzEzRUE2MEEzMzk3REM2MTQ3 MkFDMTFCMEQwHhcNMjUwNDI0MjIyMjAxWhcNMjUwNTAxMjIyMjAxWjAYMRYwFAYD VQQDEw02ODBhYjk4OS02YWUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsiYdLF4vRwiRUQroZojw1aHWIblXBD03HYDgFyvmDQpU8tFAYxx+pkCFzVqs /2pi5t/q06eyqKBU2Z38OpVzhgchmarCDJXvOFad3WgN+fSU59U4u575AfxdUghJ KsVmZ6KyIt640iPdvxeUZ71OMBg4YyoLmRWpMxdcRQBPiP10mXval4+30kkyS5EG MqUK+w0rDx3IR0q2VnTG32wnwrJ1okvl3iimnpqop6Fss6yeW66fETe56zCrp8G9 syoe4q3ymPX6SHIMlyOVDGD558D19zMVOQ3dtblxg9t+VhMEPbH7JSUQp/H04IX/ 7EpskCbIZmRqQj3fUgnpHtwujQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIk5y6+k DowxjycYmYhGymb5lLCQMB8GA1UdIwQYMBaAFAYYGEnixfkxPqYKM5fcYUcqwRsN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4M0JCQy8xNDBDMTc1Njg2 RDYxMUVCQjdCMzlDNjJDNEY5QUUwMi9CaGdZU2VMRi1URS1wZ296bDl4aFJ5ckJH dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JoZ1lTZUxGLVRFLXBnb3psOXhoUnlyQkd3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 M0JCQy8xNDBDMTc1Njg2RDYxMUVCQjdCMzlDNjJDNEY5QUUwMi9CaGdZU2VMRi1U RS1wZ296bDl4aFJ5ckJHdzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGn7N0qUDtw/brHEmVAuVEDMLmoFAL+d8K7kZlQKkBFndP0wGJkNKW J3EHCyqP1F3SVj/BPYhRwqGCo0mCZ/PkfKkvXfdiaioZgBeD0dJpwiVNbsXyzGHj eyFwbEtht2c1ViGAFlb+JVqYT7KK7q43K3FPHVUw4z20T/7EXiba9qxWWuYZPb1u 5hQaOcyYz235QfcmRudum95a65O48DtBX92fuGRUlTgWhOYfawPY/MTNXT6y9Qpt xzauJ9Fhx4bNHipcjRQ7bTe+/FselrSySr9YwUbK21sWSOlFCnpFoaWqtBYMrSGt XOfDhOyXLBWUnI5s1TcA6kNULnf9kIoy -----END CERTIFICATE-----Generated at Sat Apr 26 04:31:39 2025 by rpki-client