$ rpki-client -vvf rpki.apnic.net/member_repository/A9196C96/A8AE0F94904611EBBB84B227C4F9AE02/BGJ9zJuAhC1DY3HEzcc9Gat-Xbs.mft File: BGJ9zJuAhC1DY3HEzcc9Gat-Xbs.mft (raw, json) Hash identifier: Ip9c6FaG7HShremu92RAd+cxBCTedZ6jDVWZx/05OOA= Subject key identifier: 7A:1C:8F:C2:D2:FF:1B:55:6E:0A:8E:98:43:BF:AC:71:A0:5B:5D:03 Authority key identifier: 04:62:7D:CC:9B:80:84:2D:43:63:71:C4:CD:C7:3D:19:AB:7E:5D:BB Certificate issuer: /CN=A9196C96/serialNumber=04627DCC9B80842D436371C4CDC73D19AB7E5DBB Certificate serial: 0631 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BGJ9zJuAhC1DY3HEzcc9Gat-Xbs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196C96/A8AE0F94904611EBBB84B227C4F9AE02/BGJ9zJuAhC1DY3HEzcc9Gat-Xbs.mft Manifest number: 062C Signing time: Thu 24 Apr 2025 22:27:58 +0000 Manifest this update: Thu 24 Apr 2025 22:27:57 +0000 Manifest next update: Thu 01 May 2025 22:27:57 +0000 Files and hashes: 1: BGJ9zJuAhC1DY3HEzcc9Gat-Xbs.crl (hash: MxQzaJ5nUsC7OkNFP6n6K+Jpuzlnxvl1tKz7AWHz6q0=) 2: D49D6040912311EB9DCD2A33C4F9AE02.roa (hash: aGdwS0nqIDPQmrDed9aL2d/6MVOmtEOC5VWnxIsYspE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196C96/A8AE0F94904611EBBB84B227C4F9AE02/BGJ9zJuAhC1DY3HEzcc9Gat-Xbs.crl rsync://rpki.apnic.net/member_repository/A9196C96/A8AE0F94904611EBBB84B227C4F9AE02/BGJ9zJuAhC1DY3HEzcc9Gat-Xbs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BGJ9zJuAhC1DY3HEzcc9Gat-Xbs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:27:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1585 (0x631) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196C96, serialNumber=04627DCC9B80842D436371C4CDC73D19AB7E5DBB Validity Not Before: Apr 24 22:27:57 2025 GMT Not After : May 1 22:27:57 2025 GMT Subject: CN=680abaee-78c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:dc:f9:b1:44:61:dc:c6:35:eb:cc:b9:f5:37: 06:c9:5e:5d:f0:3c:a5:b4:2f:b7:04:22:fa:07:d2: 44:5f:37:6c:73:3a:d3:2f:c0:ba:87:7a:75:8f:47: b9:7d:be:5e:40:6d:f6:2f:a1:29:92:ef:99:fc:de: 15:de:f5:2b:78:e9:9b:5a:f4:53:ba:42:ab:51:af: 26:b0:36:49:a7:d2:fb:8d:0d:8a:00:c9:c1:83:39: 98:17:df:5b:63:50:d4:62:4b:0c:bd:1b:7e:1f:41: 93:b9:8a:a9:b8:5a:4e:b2:80:e9:53:41:73:30:48: a8:9f:01:f7:98:52:9b:94:fc:fe:95:07:bd:da:01: 73:6f:4f:90:ea:5f:8d:5d:24:af:b2:a8:38:20:02: 07:0c:40:f2:43:1d:d7:fc:72:58:f2:13:0d:bb:41: b6:09:84:8a:ed:db:94:d8:7c:45:31:bc:43:cc:c2: 2c:4b:74:60:0c:7d:1e:cc:51:6a:ff:c5:e3:67:1c: d8:2f:a0:fa:d3:cc:51:de:1e:bf:17:95:d5:28:03: bf:b7:25:7d:a0:e6:a3:8a:82:15:5b:f7:09:b4:6d: 5c:68:62:7c:5f:f0:a0:30:a7:a6:89:e3:85:ac:58: 1c:d1:6c:03:4d:28:66:42:d2:25:08:d0:17:44:34: b3:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:1C:8F:C2:D2:FF:1B:55:6E:0A:8E:98:43:BF:AC:71:A0:5B:5D:03 X509v3 Authority Key Identifier: keyid:04:62:7D:CC:9B:80:84:2D:43:63:71:C4:CD:C7:3D:19:AB:7E:5D:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196C96/A8AE0F94904611EBBB84B227C4F9AE02/BGJ9zJuAhC1DY3HEzcc9Gat-Xbs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BGJ9zJuAhC1DY3HEzcc9Gat-Xbs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196C96/A8AE0F94904611EBBB84B227C4F9AE02/BGJ9zJuAhC1DY3HEzcc9Gat-Xbs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:16:46:02:60:fd:7f:a2:33:8c:37:94:9b:1a:2c:83:3a:47: a1:c0:62:b4:6e:8b:33:17:e2:4d:4e:84:b1:da:a3:c4:2f:ba: 68:c4:02:11:a5:fe:ff:28:df:49:85:6c:ff:e8:3e:e4:ff:16: c2:fe:81:8f:82:9b:0a:36:43:42:ba:f0:53:6c:fb:4f:c0:ca: 2a:53:8e:5c:8e:c6:0f:14:f4:df:27:52:0e:46:e6:1f:22:cb: f3:8e:70:eb:48:91:0d:47:6c:13:27:1e:ca:d6:55:fb:31:bd: 10:41:c0:b7:e0:0b:0a:ac:9e:47:eb:91:92:3f:3a:5a:d0:3e: dc:e7:fa:5d:9c:a2:bc:e6:d2:88:d5:7f:8d:6c:1e:a5:64:ad: c9:4c:fb:72:40:46:4f:a4:4b:6b:bc:73:ea:a6:d3:16:e1:2b: b3:66:3b:ce:9e:6f:3d:76:e8:15:fd:f1:d1:f2:53:1a:b6:af: 83:52:60:24:3c:2e:a5:c2:3e:69:9a:d0:85:14:c3:aa:fc:d3: f7:13:f7:e2:f0:08:72:55:f8:3d:d3:8e:3b:b5:06:b9:1e:69: 63:74:62:37:f3:1d:f7:f2:89:39:da:be:b1:a2:2c:6f:fc:96: 77:3e:9f:cb:5e:97:55:2f:69:1a:0e:c8:90:b3:54:06:1d:ac: 76:9c:d3:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBjEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZDOTYxMTAvBgNVBAUTKDA0NjI3RENDOUI4MDg0MkQ0MzYzNzFDNENEQzczRDE5 QUI3RTVEQkIwHhcNMjUwNDI0MjIyNzU3WhcNMjUwNTAxMjIyNzU3WjAYMRYwFAYD VQQDEw02ODBhYmFlZS03OGMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4dz5sURh3MY168y59TcGyV5d8DyltC+3BCL6B9JEXzdsczrTL8C6h3p1j0e5 fb5eQG32L6Epku+Z/N4V3vUreOmbWvRTukKrUa8msDZJp9L7jQ2KAMnBgzmYF99b Y1DUYksMvRt+H0GTuYqpuFpOsoDpU0FzMEionwH3mFKblPz+lQe92gFzb0+Q6l+N XSSvsqg4IAIHDEDyQx3X/HJY8hMNu0G2CYSK7duU2HxFMbxDzMIsS3RgDH0ezFFq /8XjZxzYL6D608xR3h6/F5XVKAO/tyV9oOajioIVW/cJtG1caGJ8X/CgMKemieOF rFgc0WwDTShmQtIlCNAXRDSzPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHocj8LS /xtVbgqOmEO/rHGgW10DMB8GA1UdIwQYMBaAFARifcybgIQtQ2NxxM3HPRmrfl27 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkM5Ni9BOEFFMEY5NDkw NDYxMUVCQkI4NEIyMjdDNEY5QUUwMi9CR0o5ekp1QWhDMURZM0hFemNjOUdhdC1Y YnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JHSjl6SnVBaEMxRFkzSEV6Y2M5R2F0LVhicy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NkM5Ni9BOEFFMEY5NDkwNDYxMUVCQkI4NEIyMjdDNEY5QUUwMi9CR0o5ekp1QWhD MURZM0hFemNjOUdhdC1YYnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtFkYCYP1/ojOMN5SbGiyDOkehwGK0boszF+JNToSx2qPEL7poxAIR pf7/KN9JhWz/6D7k/xbC/oGPgpsKNkNCuvBTbPtPwMoqU45cjsYPFPTfJ1IORuYf IsvzjnDrSJENR2wTJx7K1lX7Mb0QQcC34AsKrJ5H65GSPzpa0D7c5/pdnKK85tKI 1X+NbB6lZK3JTPtyQEZPpEtrvHPqptMW4SuzZjvOnm89dugV/fHR8lMatq+DUmAk PC6lwj5pmtCFFMOq/NP3E/fi8AhyVfg90447tQa5HmljdGI38x338ok52r6xoixv /JZ3Pp/LXpdVL2kaDsiQs1QGHax2nNP1 -----END CERTIFICATE-----Generated at Sat Apr 26 17:13:06 2025 by rpki-client