$ rpki-client -vvf rpki.apnic.net/member_repository/A91859C2/E7C0223E9F4211EB922D354FC4F9AE02/Bzzm268iYrP6YRXW_6ezNCFe-g0.mft File: Bzzm268iYrP6YRXW_6ezNCFe-g0.mft (raw, json) Hash identifier: 5b9+a9qo88/nRanJGAS2LxifmnkUOAp7EI6gXt5hpJk= Subject key identifier: 16:6F:A6:E0:A4:AD:9C:3E:46:B9:66:C6:FE:6F:2A:C5:AA:B7:3E:3D Authority key identifier: 07:3C:E6:DB:AF:22:62:B3:FA:61:15:D6:FF:A7:B3:34:21:5E:FA:0D Certificate issuer: /CN=A91859C2/serialNumber=073CE6DBAF2262B3FA6115D6FFA7B334215EFA0D Certificate serial: 060D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bzzm268iYrP6YRXW_6ezNCFe-g0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91859C2/E7C0223E9F4211EB922D354FC4F9AE02/Bzzm268iYrP6YRXW_6ezNCFe-g0.mft Manifest number: 0608 Signing time: Thu 24 Apr 2025 22:39:31 +0000 Manifest this update: Thu 24 Apr 2025 22:39:31 +0000 Manifest next update: Thu 01 May 2025 22:39:31 +0000 Files and hashes: 1: Bzzm268iYrP6YRXW_6ezNCFe-g0.crl (hash: COk8ioh+qqkMOcVfiTerHq6sDKnuqgWYkA5UxCw2Sfs=) 2: A80223709F4411EB92132051C4F9AE02.roa (hash: ZURzq5MNTYtgjtpZ673W988Pjm4b5QiAz5gyz+eygEs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91859C2/E7C0223E9F4211EB922D354FC4F9AE02/Bzzm268iYrP6YRXW_6ezNCFe-g0.crl rsync://rpki.apnic.net/member_repository/A91859C2/E7C0223E9F4211EB922D354FC4F9AE02/Bzzm268iYrP6YRXW_6ezNCFe-g0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bzzm268iYrP6YRXW_6ezNCFe-g0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1549 (0x60d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91859C2, serialNumber=073CE6DBAF2262B3FA6115D6FFA7B334215EFA0D Validity Not Before: Apr 24 22:39:31 2025 GMT Not After : May 1 22:39:31 2025 GMT Subject: CN=680abda3-1d8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:73:05:b6:bb:47:37:51:b8:81:20:b1:70:6f: 1d:11:ec:60:c0:dc:cc:5f:29:4b:3e:b9:ce:eb:0b: a0:63:30:7a:2b:89:15:d6:f5:06:c2:34:4b:2a:13: 84:14:5a:18:c4:22:1e:82:fe:64:48:7b:82:3b:0e: 73:6c:24:c1:a3:d9:fb:cc:bc:2f:1a:8d:de:d0:df: e1:63:23:80:94:a9:5b:df:ae:95:0e:99:42:a1:6c: 19:74:34:83:0a:7f:8f:55:ee:90:61:c2:d6:0d:7d: ba:c0:20:70:c1:7d:6c:37:4f:bc:d7:21:23:a4:f0: 74:eb:ba:99:1b:ce:e5:1f:c8:31:a5:9a:bf:ad:37: ba:cc:05:5c:61:be:db:72:23:ba:e9:97:8c:1c:20: 4a:16:be:12:bb:9d:65:28:ad:4c:4d:bd:bc:08:e7: cd:b1:44:15:d0:03:a5:ba:ee:c8:23:01:ba:f6:96: ad:42:37:58:a6:74:24:dd:8d:b3:b5:26:15:d4:2f: cf:d5:fd:28:37:39:7f:9a:10:57:ea:9a:1c:ea:1c: e0:36:74:f8:d0:2c:7c:02:aa:55:d2:7b:23:4a:c6: b4:f0:e3:14:3e:b5:8b:38:24:33:c3:5a:fb:83:3f: 17:91:ca:e0:31:40:d7:0b:a1:ff:b8:ef:18:39:63: 25:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:6F:A6:E0:A4:AD:9C:3E:46:B9:66:C6:FE:6F:2A:C5:AA:B7:3E:3D X509v3 Authority Key Identifier: keyid:07:3C:E6:DB:AF:22:62:B3:FA:61:15:D6:FF:A7:B3:34:21:5E:FA:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91859C2/E7C0223E9F4211EB922D354FC4F9AE02/Bzzm268iYrP6YRXW_6ezNCFe-g0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bzzm268iYrP6YRXW_6ezNCFe-g0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91859C2/E7C0223E9F4211EB922D354FC4F9AE02/Bzzm268iYrP6YRXW_6ezNCFe-g0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:75:90:84:57:6a:ba:af:f0:e7:8c:4c:22:b7:53:6b:74:be: 05:5c:69:9c:51:77:20:cf:69:af:92:36:70:a5:b4:96:c3:38: 90:3d:cf:a4:f6:64:4b:8f:31:e8:c1:f5:2b:3a:a9:d8:a4:10: e6:36:fe:06:5c:f6:79:59:0a:52:ba:15:5b:53:5d:6f:81:0b: cf:f8:df:d4:41:6a:7b:91:9b:13:c7:d8:ab:91:a9:fc:30:4a: ea:5a:3c:2e:d9:77:23:2d:5a:85:81:98:94:85:b5:d1:ed:59: f8:6c:bb:48:db:bf:35:fe:59:6a:61:db:7d:0e:f3:88:48:52: 84:f2:ee:28:c8:cb:02:10:ae:17:a4:9f:74:6a:f3:2d:23:99: 13:a0:f0:eb:1f:a6:54:17:8e:1c:c4:cf:de:ff:95:24:92:33: 56:0e:f3:35:1b:b7:7c:6f:59:e0:7f:99:68:cb:28:59:aa:9d: fa:60:34:63:dc:53:98:ce:e3:7c:ad:75:27:96:5c:3c:e9:94: 5c:fe:78:bf:9e:09:0d:07:a1:4e:be:a4:dd:7b:ab:e6:48:ce: b9:e0:fb:83:4d:58:a8:e9:2d:20:63:9e:ab:b7:81:fd:7e:a6: 9b:38:31:b0:5f:e2:0b:e1:b1:b2:a0:bd:fb:d7:92:1e:f9:f6: 2d:75:76:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBg0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU5QzIxMTAvBgNVBAUTKDA3M0NFNkRCQUYyMjYyQjNGQTYxMTVENkZGQTdCMzM0 MjE1RUZBMEQwHhcNMjUwNDI0MjIzOTMxWhcNMjUwNTAxMjIzOTMxWjAYMRYwFAYD VQQDEw02ODBhYmRhMy0xZDhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu3MFtrtHN1G4gSCxcG8dEexgwNzMXylLPrnO6wugYzB6K4kV1vUGwjRLKhOE FFoYxCIegv5kSHuCOw5zbCTBo9n7zLwvGo3e0N/hYyOAlKlb366VDplCoWwZdDSD Cn+PVe6QYcLWDX26wCBwwX1sN0+81yEjpPB067qZG87lH8gxpZq/rTe6zAVcYb7b ciO66ZeMHCBKFr4Su51lKK1MTb28COfNsUQV0AOluu7IIwG69patQjdYpnQk3Y2z tSYV1C/P1f0oNzl/mhBX6poc6hzgNnT40Cx8AqpV0nsjSsa08OMUPrWLOCQzw1r7 gz8XkcrgMUDXC6H/uO8YOWMlSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBZvpuCk rZw+Rrlmxv5vKsWqtz49MB8GA1UdIwQYMBaAFAc85tuvImKz+mEV1v+nszQhXvoN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTlDMi9FN0MwMjIzRTlG NDIxMUVCOTIyRDM1NEZDNEY5QUUwMi9CenptMjY4aVlyUDZZUlhXXzZlek5DRmUt ZzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0J6em0yNjhpWXJQNllSWFdfNmV6TkNGZS1nMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTlDMi9FN0MwMjIzRTlGNDIxMUVCOTIyRDM1NEZDNEY5QUUwMi9CenptMjY4aVly UDZZUlhXXzZlek5DRmUtZzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtdZCEV2q6r/DnjEwit1NrdL4FXGmcUXcgz2mvkjZwpbSWwziQPc+k 9mRLjzHowfUrOqnYpBDmNv4GXPZ5WQpSuhVbU11vgQvP+N/UQWp7kZsTx9irkan8 MErqWjwu2XcjLVqFgZiUhbXR7Vn4bLtI2781/llqYdt9DvOISFKE8u4oyMsCEK4X pJ90avMtI5kToPDrH6ZUF44cxM/e/5UkkjNWDvM1G7d8b1ngf5loyyhZqp36YDRj 3FOYzuN8rXUnllw86ZRc/ni/ngkNB6FOvqTde6vmSM654PuDTVio6S0gY56rt4H9 fqabODGwX+IL4bGyoL3715Ie+fYtdXZh -----END CERTIFICATE-----Generated at Sat Apr 26 12:24:20 2025 by rpki-client