$ rpki-client -vvf rpki.apnic.net/member_repository/A91859C2/E7C0223E9F4211EB922D354FC4F9AE02/Bzzm268iYrP6YRXW_6ezNCFe-g0.mft File: Bzzm268iYrP6YRXW_6ezNCFe-g0.mft (raw, json) Hash identifier: YdebNi/jE+C0ORw4xqu59T5uwxfYD0FWeaiD1mDVhq4= Subject key identifier: BA:07:82:CD:35:AE:17:3B:C7:F5:1D:15:4A:17:5A:B3:96:22:28:0C Authority key identifier: 07:3C:E6:DB:AF:22:62:B3:FA:61:15:D6:FF:A7:B3:34:21:5E:FA:0D Certificate issuer: /CN=A91859C2/serialNumber=073CE6DBAF2262B3FA6115D6FFA7B334215EFA0D Certificate serial: 0626 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bzzm268iYrP6YRXW_6ezNCFe-g0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91859C2/E7C0223E9F4211EB922D354FC4F9AE02/Bzzm268iYrP6YRXW_6ezNCFe-g0.mft Manifest number: 0621 Signing time: Sat 14 Jun 2025 22:30:53 +0000 Manifest this update: Sat 14 Jun 2025 22:30:53 +0000 Manifest next update: Sat 21 Jun 2025 22:30:53 +0000 Files and hashes: 1: Bzzm268iYrP6YRXW_6ezNCFe-g0.crl (hash: TiMMs8avqIbrC+upFqJTea+LvmrppGDtgXx2jBDB5vk=) 2: A80223709F4411EB92132051C4F9AE02.roa (hash: ZURzq5MNTYtgjtpZ673W988Pjm4b5QiAz5gyz+eygEs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91859C2/E7C0223E9F4211EB922D354FC4F9AE02/Bzzm268iYrP6YRXW_6ezNCFe-g0.crl rsync://rpki.apnic.net/member_repository/A91859C2/E7C0223E9F4211EB922D354FC4F9AE02/Bzzm268iYrP6YRXW_6ezNCFe-g0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bzzm268iYrP6YRXW_6ezNCFe-g0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 22:30:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1574 (0x626) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91859C2, serialNumber=073CE6DBAF2262B3FA6115D6FFA7B334215EFA0D Validity Not Before: Jun 14 22:30:53 2025 GMT Not After : Jun 21 22:30:53 2025 GMT Subject: CN=684df81d-8c53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:e0:75:18:70:eb:0f:eb:d5:93:d8:45:02:5b: 73:e9:73:21:f2:c4:0b:82:53:58:13:85:d5:7d:91: ce:0b:5d:63:42:0e:4f:a1:4c:b1:1d:b6:1d:43:e8: cf:33:8b:2b:a4:be:ae:d6:4c:cb:a1:81:cd:92:1c: c8:00:eb:3c:24:59:db:11:c3:1c:e0:b1:3a:28:a0: 02:37:be:99:88:fe:0d:d5:57:dd:a6:77:a4:ec:3d: d1:c8:76:21:2e:f2:8e:81:d8:01:94:f9:85:79:c8: bc:e5:53:55:fc:b9:04:29:56:95:ab:28:b1:b9:8d: b5:8c:25:15:1d:51:1d:f6:30:79:3a:dd:2f:a1:e9: b8:e2:62:19:cf:4e:10:84:82:1b:3e:01:73:55:78: 8d:75:42:0a:73:f1:5f:7f:46:72:96:3b:8b:08:cf: 15:a1:d6:86:70:c3:6f:65:a1:b9:ce:79:bf:48:35: 00:a3:1e:58:cb:b6:ef:a5:90:74:c4:0c:2c:a1:47: 9c:16:53:77:3c:e0:2d:f6:51:62:c2:06:4d:92:71: 97:b7:1d:81:b5:ea:d9:58:eb:de:d8:c8:82:fe:b0: 31:32:9c:7c:65:3d:9c:fb:49:96:b5:34:a0:58:95: 0d:37:43:4b:d3:50:1f:5b:c2:e9:4e:4f:cc:97:a6: 07:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:07:82:CD:35:AE:17:3B:C7:F5:1D:15:4A:17:5A:B3:96:22:28:0C X509v3 Authority Key Identifier: keyid:07:3C:E6:DB:AF:22:62:B3:FA:61:15:D6:FF:A7:B3:34:21:5E:FA:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91859C2/E7C0223E9F4211EB922D354FC4F9AE02/Bzzm268iYrP6YRXW_6ezNCFe-g0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bzzm268iYrP6YRXW_6ezNCFe-g0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91859C2/E7C0223E9F4211EB922D354FC4F9AE02/Bzzm268iYrP6YRXW_6ezNCFe-g0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:85:f3:a3:ca:f0:fc:d9:7e:58:32:4d:b5:b1:a4:28:79:bc: 5f:de:e8:07:ab:ea:fe:2e:da:22:81:42:5d:50:0a:74:d7:9e: 90:d9:a4:8d:62:7b:c1:96:b3:25:6a:9c:8a:3d:80:c4:d0:bd: 6d:9b:9f:a2:eb:e3:e3:77:0f:00:e6:0d:b5:1d:b3:99:68:29: 7c:40:bd:f0:85:6f:ac:78:02:2b:a6:a2:c0:79:34:53:39:d6: 1e:10:e1:1d:59:94:87:fa:09:15:67:40:df:e3:1f:ab:17:47: b8:82:f5:96:db:74:a3:8a:47:a8:98:56:31:a2:e6:eb:ea:e7: 00:3d:42:df:be:f8:c0:25:a5:e4:b6:90:cf:f6:59:d6:04:b3: f6:93:05:cd:9e:8f:87:81:f2:a4:f3:7f:13:0b:58:19:b7:d7: d2:21:05:0f:d0:3f:6b:72:26:d7:74:15:0b:c1:ed:d4:ff:4d: 87:20:d7:8b:8d:27:91:4b:bd:2a:77:d5:63:f6:4e:54:d7:5d: f7:d9:fc:dd:51:2e:68:9d:17:d4:7b:ca:d7:92:4d:95:c6:7e: 8b:31:8b:66:a7:8f:ee:7e:27:23:fa:8d:b5:90:e3:d8:18:12: 94:50:16:13:62:8c:f4:f8:c2:57:4b:06:54:f5:79:12:32:6f: 96:7f:93:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBiYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU5QzIxMTAvBgNVBAUTKDA3M0NFNkRCQUYyMjYyQjNGQTYxMTVENkZGQTdCMzM0 MjE1RUZBMEQwHhcNMjUwNjE0MjIzMDUzWhcNMjUwNjIxMjIzMDUzWjAYMRYwFAYD VQQDEw02ODRkZjgxZC04YzUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1OB1GHDrD+vVk9hFAltz6XMh8sQLglNYE4XVfZHOC11jQg5PoUyxHbYdQ+jP M4srpL6u1kzLoYHNkhzIAOs8JFnbEcMc4LE6KKACN76ZiP4N1Vfdpnek7D3RyHYh LvKOgdgBlPmFeci85VNV/LkEKVaVqyixuY21jCUVHVEd9jB5Ot0voem44mIZz04Q hIIbPgFzVXiNdUIKc/Fff0ZyljuLCM8VodaGcMNvZaG5znm/SDUAox5Yy7bvpZB0 xAwsoUecFlN3POAt9lFiwgZNknGXtx2BterZWOve2MiC/rAxMpx8ZT2c+0mWtTSg WJUNN0NL01AfW8LpTk/Ml6YHCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLoHgs01 rhc7x/UdFUoXWrOWIigMMB8GA1UdIwQYMBaAFAc85tuvImKz+mEV1v+nszQhXvoN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTlDMi9FN0MwMjIzRTlG NDIxMUVCOTIyRDM1NEZDNEY5QUUwMi9CenptMjY4aVlyUDZZUlhXXzZlek5DRmUt ZzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0J6em0yNjhpWXJQNllSWFdfNmV6TkNGZS1nMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTlDMi9FN0MwMjIzRTlGNDIxMUVCOTIyRDM1NEZDNEY5QUUwMi9CenptMjY4aVly UDZZUlhXXzZlek5DRmUtZzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXhfOjyvD82X5YMk21saQoebxf3ugHq+r+LtoigUJdUAp0156Q2aSN YnvBlrMlapyKPYDE0L1tm5+i6+Pjdw8A5g21HbOZaCl8QL3whW+seAIrpqLAeTRT OdYeEOEdWZSH+gkVZ0Df4x+rF0e4gvWW23SjikeomFYxoubr6ucAPULfvvjAJaXk tpDP9lnWBLP2kwXNno+HgfKk838TC1gZt9fSIQUP0D9rcibXdBULwe3U/02HINeL jSeRS70qd9Vj9k5U11332fzdUS5onRfUe8rXkk2Vxn6LMYtmp4/uficj+o21kOPY GBKUUBYTYoz0+MJXSwZU9XkSMm+Wf5Mh -----END CERTIFICATE-----Generated at Sun Jun 15 07:16:52 2025 by rpki-client