$ rpki-client -vvf rpki.apnic.net/member_repository/A9183BBC/140C175686D611EBB7B39C62C4F9AE02/BhgYSeLF-TE-pgozl9xhRyrBGw0.mft File: BhgYSeLF-TE-pgozl9xhRyrBGw0.mft (raw, json) Hash identifier: 3da8j0x3q5MDsJb0rGxYoiXvvFv6eQKGgQZc4sJ0n14= Subject key identifier: 87:ED:4B:C9:09:1C:C7:98:35:64:72:FD:CE:AC:74:82:7B:9D:3E:BD Authority key identifier: 06:18:18:49:E2:C5:F9:31:3E:A6:0A:33:97:DC:61:47:2A:C1:1B:0D Certificate issuer: /CN=A9183BBC/serialNumber=06181849E2C5F9313EA60A3397DC61472AC11B0D Certificate serial: 0678 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BhgYSeLF-TE-pgozl9xhRyrBGw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9183BBC/140C175686D611EBB7B39C62C4F9AE02/BhgYSeLF-TE-pgozl9xhRyrBGw0.mft Manifest number: 0666 Signing time: Thu 12 Jun 2025 22:08:32 +0000 Manifest this update: Thu 12 Jun 2025 22:08:31 +0000 Manifest next update: Thu 19 Jun 2025 22:08:31 +0000 Files and hashes: 1: BhgYSeLF-TE-pgozl9xhRyrBGw0.crl (hash: Am7DjYn9mSUZ3ML3UKCk9KiGXhc07I1saMGgp1Ackvk=) 2: 4F1694B4C87B11ED981CC523C4F9AE02.roa (hash: FWRlVE7qxAGVhNJeQGVLW3KvlIyEGk0A9fnepbZFOKE=) 3: E4205416B2F111EFBB14DE0FC4F9AE02.roa (hash: u41x8Ny1raTvp1vwnGwm7MW/cINQCDMdw5LO04vaVeU=) 4: C18726F486D711EBA06B0E64C4F9AE02.roa (hash: 46EUYT6r3IQXKkQnGUbOAbbi8lZTq+8CIfeQWVvyW6o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9183BBC/140C175686D611EBB7B39C62C4F9AE02/BhgYSeLF-TE-pgozl9xhRyrBGw0.crl rsync://rpki.apnic.net/member_repository/A9183BBC/140C175686D611EBB7B39C62C4F9AE02/BhgYSeLF-TE-pgozl9xhRyrBGw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BhgYSeLF-TE-pgozl9xhRyrBGw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 22:08:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1656 (0x678) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9183BBC, serialNumber=06181849E2C5F9313EA60A3397DC61472AC11B0D Validity Not Before: Jun 12 22:08:31 2025 GMT Not After : Jun 19 22:08:31 2025 GMT Subject: CN=684b4fe0-9941 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f5:81:76:76:c9:f3:88:6e:a1:11:2c:e0:69: 66:bb:95:fa:c1:4f:d8:84:a9:75:d1:9b:d0:41:30: 87:13:70:95:c9:cd:25:48:d7:00:c0:9a:d9:39:2d: 21:0e:8e:cf:d3:dc:37:fd:ce:52:37:37:ba:e0:46: ca:ed:40:f3:08:44:23:bc:d2:0d:80:bc:ca:6e:ef: 7e:68:2a:e3:e7:00:bf:82:33:63:0c:0c:2f:94:15: d7:ff:0d:b7:52:08:67:48:0d:dd:7f:f8:aa:36:9f: f5:03:76:a8:91:c1:dc:41:7b:d0:44:50:3c:fd:3b: 70:71:44:d7:bb:14:ee:8d:10:ec:5e:b3:c1:ba:b4: 02:c1:db:04:dd:b5:93:9e:e8:3b:b4:6e:ed:24:53: 6e:50:92:1a:22:36:ff:b0:a0:a8:94:50:18:9f:1f: 14:2d:a1:9d:12:29:ec:b3:39:9a:c3:cb:a2:fa:f3: e1:e0:56:c4:2e:6b:fe:c8:72:16:4d:4f:54:0c:aa: 41:be:de:c4:86:b7:19:46:f9:1f:67:a5:e1:69:21: e4:b5:0b:6d:03:2a:97:10:10:d5:89:23:27:98:7f: ff:c5:a8:e4:17:c4:e6:ed:5d:7d:8c:44:b7:8c:8e: 3b:94:e8:04:2d:51:fc:36:f8:02:97:b6:25:c8:93: 09:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:ED:4B:C9:09:1C:C7:98:35:64:72:FD:CE:AC:74:82:7B:9D:3E:BD X509v3 Authority Key Identifier: keyid:06:18:18:49:E2:C5:F9:31:3E:A6:0A:33:97:DC:61:47:2A:C1:1B:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9183BBC/140C175686D611EBB7B39C62C4F9AE02/BhgYSeLF-TE-pgozl9xhRyrBGw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BhgYSeLF-TE-pgozl9xhRyrBGw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9183BBC/140C175686D611EBB7B39C62C4F9AE02/BhgYSeLF-TE-pgozl9xhRyrBGw0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:63:43:35:7f:51:48:21:bf:c2:af:71:3c:a8:45:8a:f8:56: d2:41:b3:7a:9c:87:bc:d2:9f:fa:38:15:50:b9:92:3b:fd:3c: 61:f5:71:d9:91:f8:13:6e:e8:f6:40:50:b6:06:4a:67:0f:1d: f9:57:1b:29:43:a4:69:ae:d8:db:fa:64:7f:86:91:cd:ef:6d: 9e:85:b2:4d:ab:da:24:76:89:27:f5:35:4f:30:f3:af:5c:40: 8e:79:fc:8f:dd:49:e1:34:9d:0b:95:ae:f7:23:da:6c:f6:6b: 90:68:22:1a:73:48:37:44:e4:cd:c4:63:a6:04:41:09:b8:88: ef:7c:d8:56:6e:5c:0b:95:b9:5d:e0:2c:8e:0f:5f:43:18:45: d4:83:4d:eb:d6:02:f6:33:61:9f:6d:40:51:1e:fb:05:91:51: 2f:ec:03:c0:c0:5b:11:04:72:ae:a5:bf:ed:d4:3a:ca:d9:ca: c4:c9:41:c8:3f:e2:1d:3f:1b:c0:33:e7:f1:32:48:b8:90:de: 9b:5f:91:0a:8d:fc:88:22:ca:48:84:d7:94:ad:68:fe:c4:ce: 78:2d:00:e6:d8:26:b3:6e:e9:a8:17:45:fd:56:58:28:4f:4a: 5c:39:0c:ca:6a:c6:c4:c3:1c:36:6d:91:07:9a:60:68:dc:c2: 78:82:61:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBngwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODNCQkMxMTAvBgNVBAUTKDA2MTgxODQ5RTJDNUY5MzEzRUE2MEEzMzk3REM2MTQ3 MkFDMTFCMEQwHhcNMjUwNjEyMjIwODMxWhcNMjUwNjE5MjIwODMxWjAYMRYwFAYD VQQDEw02ODRiNGZlMC05OTQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv/WBdnbJ84huoREs4Glmu5X6wU/YhKl10ZvQQTCHE3CVyc0lSNcAwJrZOS0h Do7P09w3/c5SNze64EbK7UDzCEQjvNINgLzKbu9+aCrj5wC/gjNjDAwvlBXX/w23 UghnSA3df/iqNp/1A3aokcHcQXvQRFA8/TtwcUTXuxTujRDsXrPBurQCwdsE3bWT nug7tG7tJFNuUJIaIjb/sKColFAYnx8ULaGdEinsszmaw8ui+vPh4FbELmv+yHIW TU9UDKpBvt7EhrcZRvkfZ6XhaSHktQttAyqXEBDViSMnmH//xajkF8Tm7V19jES3 jI47lOgELVH8NvgCl7YlyJMJGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIftS8kJ HMeYNWRy/c6sdIJ7nT69MB8GA1UdIwQYMBaAFAYYGEnixfkxPqYKM5fcYUcqwRsN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4M0JCQy8xNDBDMTc1Njg2 RDYxMUVCQjdCMzlDNjJDNEY5QUUwMi9CaGdZU2VMRi1URS1wZ296bDl4aFJ5ckJH dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JoZ1lTZUxGLVRFLXBnb3psOXhoUnlyQkd3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 M0JCQy8xNDBDMTc1Njg2RDYxMUVCQjdCMzlDNjJDNEY5QUUwMi9CaGdZU2VMRi1U RS1wZ296bDl4aFJ5ckJHdzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGY0M1f1FIIb/Cr3E8qEWK+FbSQbN6nIe80p/6OBVQuZI7/Txh9XHZ kfgTbuj2QFC2BkpnDx35VxspQ6Rprtjb+mR/hpHN722ehbJNq9okdokn9TVPMPOv XECOefyP3UnhNJ0Lla73I9ps9muQaCIac0g3ROTNxGOmBEEJuIjvfNhWblwLlbld 4CyOD19DGEXUg03r1gL2M2GfbUBRHvsFkVEv7APAwFsRBHKupb/t1DrK2crEyUHI P+IdPxvAM+fxMki4kN6bX5EKjfyIIspIhNeUrWj+xM54LQDm2CazbumoF0X9Vlgo T0pcOQzKasbEwxw2bZEHmmBo3MJ4gmHH -----END CERTIFICATE-----Generated at Sat Jun 14 19:21:46 2025 by rpki-client