$ rpki-client -vvf rpki.apnic.net/member_repository/A9196C96/A8AE0F94904611EBBB84B227C4F9AE02/BGJ9zJuAhC1DY3HEzcc9Gat-Xbs.mft File: BGJ9zJuAhC1DY3HEzcc9Gat-Xbs.mft (raw, json) Hash identifier: 6NW9qn1f+08LjgK2FYZbUJnfSxaCDWe30dW8KgiXxCA= Subject key identifier: 71:5F:CA:38:20:6C:C4:76:04:B8:4D:6F:6E:D9:CA:E3:C9:AE:AC:85 Authority key identifier: 04:62:7D:CC:9B:80:84:2D:43:63:71:C4:CD:C7:3D:19:AB:7E:5D:BB Certificate issuer: /CN=A9196C96/serialNumber=04627DCC9B80842D436371C4CDC73D19AB7E5DBB Certificate serial: 0649 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BGJ9zJuAhC1DY3HEzcc9Gat-Xbs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196C96/A8AE0F94904611EBBB84B227C4F9AE02/BGJ9zJuAhC1DY3HEzcc9Gat-Xbs.mft Manifest number: 0644 Signing time: Thu 12 Jun 2025 22:14:15 +0000 Manifest this update: Thu 12 Jun 2025 22:14:14 +0000 Manifest next update: Thu 19 Jun 2025 22:14:14 +0000 Files and hashes: 1: BGJ9zJuAhC1DY3HEzcc9Gat-Xbs.crl (hash: hI3ZeKiTT0yh/7hrOMkKfkZCGMvbf1k9WGgka01KcdM=) 2: D49D6040912311EB9DCD2A33C4F9AE02.roa (hash: aGdwS0nqIDPQmrDed9aL2d/6MVOmtEOC5VWnxIsYspE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196C96/A8AE0F94904611EBBB84B227C4F9AE02/BGJ9zJuAhC1DY3HEzcc9Gat-Xbs.crl rsync://rpki.apnic.net/member_repository/A9196C96/A8AE0F94904611EBBB84B227C4F9AE02/BGJ9zJuAhC1DY3HEzcc9Gat-Xbs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BGJ9zJuAhC1DY3HEzcc9Gat-Xbs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 22:14:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1609 (0x649) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196C96, serialNumber=04627DCC9B80842D436371C4CDC73D19AB7E5DBB Validity Not Before: Jun 12 22:14:14 2025 GMT Not After : Jun 19 22:14:14 2025 GMT Subject: CN=684b5137-6201 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:7f:a5:fb:36:95:52:f8:26:fc:dd:e6:b6:6d: e1:57:29:97:54:08:c5:6f:07:f3:4b:06:01:b3:2b: b2:68:ba:0c:df:c6:fc:a1:8b:9d:ea:c1:9e:66:83: 44:2e:5f:aa:14:f1:07:34:2b:3a:66:87:b7:21:7d: 01:ae:69:8b:5a:91:84:cb:a2:aa:1b:01:69:9c:cf: a8:1c:c8:0e:84:f1:81:a2:55:3a:b8:fe:a6:e0:d5: 5a:71:4e:05:1f:69:7b:e9:df:cb:07:d8:6f:50:dd: 84:ad:de:1f:b2:a4:27:44:92:bb:db:ca:6e:f7:5e: 49:7e:c8:ac:1d:12:89:5a:b4:d1:07:68:95:2d:84: ba:fe:a1:94:96:56:0d:1b:a9:1a:6e:fe:60:84:8c: d7:49:0e:7d:31:42:1b:b3:1e:81:e6:4d:b8:b0:02: e0:3a:2f:4a:a9:bb:ef:d6:d1:8b:4e:28:18:3c:3f: c0:c3:b7:cf:6c:d2:08:75:21:2f:67:72:45:6a:ad: 9f:44:b1:cd:84:23:74:90:e5:16:5f:17:70:27:96: 13:e3:10:2a:37:48:17:2a:85:89:3b:44:d1:c5:6f: 3f:79:a7:19:e5:1e:a6:02:89:e9:64:a2:98:71:51: e4:6e:6f:ec:d0:9e:40:40:3a:d4:e5:4b:e7:e7:2d: d1:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:5F:CA:38:20:6C:C4:76:04:B8:4D:6F:6E:D9:CA:E3:C9:AE:AC:85 X509v3 Authority Key Identifier: keyid:04:62:7D:CC:9B:80:84:2D:43:63:71:C4:CD:C7:3D:19:AB:7E:5D:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196C96/A8AE0F94904611EBBB84B227C4F9AE02/BGJ9zJuAhC1DY3HEzcc9Gat-Xbs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BGJ9zJuAhC1DY3HEzcc9Gat-Xbs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196C96/A8AE0F94904611EBBB84B227C4F9AE02/BGJ9zJuAhC1DY3HEzcc9Gat-Xbs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:eb:4a:0e:26:59:72:94:25:d7:cd:10:f2:79:75:e6:40:f9: 3c:00:6a:23:61:ed:7b:14:4d:b5:6a:a7:66:e5:ad:0e:02:bb: 22:4d:2c:00:63:41:c6:16:68:b0:79:a8:41:e8:f9:29:25:ff: f0:a0:bd:4a:6a:66:6a:15:f6:3a:6f:c1:6f:33:8a:fc:05:cf: db:75:03:7c:e2:6e:48:0f:6c:37:42:83:ee:54:8d:e1:2a:1e: 00:4a:fe:78:3e:af:31:99:03:74:45:59:59:63:19:17:95:d2: 7c:56:c7:f5:e8:c4:c2:6e:8d:06:91:ef:29:59:72:7a:b4:f2: d2:01:48:a3:dc:80:6c:bf:e1:25:2a:10:d2:da:33:dd:f5:c5: cb:5b:0a:bb:79:5b:59:39:b7:78:ee:89:dc:35:4f:eb:e8:8b: d3:0b:23:4a:d6:a2:f0:4d:57:a6:17:c1:94:03:91:10:d6:29: 15:6c:29:eb:ec:49:1e:bc:59:54:18:3a:a1:92:ce:e6:06:b2: fb:99:83:ae:6b:cc:89:6a:54:c7:1b:6a:f9:83:fa:4b:99:92: b9:b0:97:2e:35:32:51:c3:7d:88:56:3d:3a:44:96:8a:dd:6c: 9f:53:2d:ef:38:3b:8a:28:f7:fa:d9:a0:ef:52:d5:d6:da:ad: f9:36:ab:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZDOTYxMTAvBgNVBAUTKDA0NjI3RENDOUI4MDg0MkQ0MzYzNzFDNENEQzczRDE5 QUI3RTVEQkIwHhcNMjUwNjEyMjIxNDE0WhcNMjUwNjE5MjIxNDE0WjAYMRYwFAYD VQQDEw02ODRiNTEzNy02MjAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzH+l+zaVUvgm/N3mtm3hVymXVAjFbwfzSwYBsyuyaLoM38b8oYud6sGeZoNE Ll+qFPEHNCs6Zoe3IX0BrmmLWpGEy6KqGwFpnM+oHMgOhPGBolU6uP6m4NVacU4F H2l76d/LB9hvUN2Erd4fsqQnRJK728pu915JfsisHRKJWrTRB2iVLYS6/qGUllYN G6kabv5ghIzXSQ59MUIbsx6B5k24sALgOi9Kqbvv1tGLTigYPD/Aw7fPbNIIdSEv Z3JFaq2fRLHNhCN0kOUWXxdwJ5YT4xAqN0gXKoWJO0TRxW8/eacZ5R6mAonpZKKY cVHkbm/s0J5AQDrU5Uvn5y3R2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHFfyjgg bMR2BLhNb27ZyuPJrqyFMB8GA1UdIwQYMBaAFARifcybgIQtQ2NxxM3HPRmrfl27 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkM5Ni9BOEFFMEY5NDkw NDYxMUVCQkI4NEIyMjdDNEY5QUUwMi9CR0o5ekp1QWhDMURZM0hFemNjOUdhdC1Y YnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JHSjl6SnVBaEMxRFkzSEV6Y2M5R2F0LVhicy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NkM5Ni9BOEFFMEY5NDkwNDYxMUVCQkI4NEIyMjdDNEY5QUUwMi9CR0o5ekp1QWhD MURZM0hFemNjOUdhdC1YYnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDD60oOJllylCXXzRDyeXXmQPk8AGojYe17FE21aqdm5a0OArsiTSwA Y0HGFmiweahB6PkpJf/woL1KamZqFfY6b8FvM4r8Bc/bdQN84m5ID2w3QoPuVI3h Kh4ASv54Pq8xmQN0RVlZYxkXldJ8Vsf16MTCbo0Gke8pWXJ6tPLSAUij3IBsv+El KhDS2jPd9cXLWwq7eVtZObd47oncNU/r6IvTCyNK1qLwTVemF8GUA5EQ1ikVbCnr 7EkevFlUGDqhks7mBrL7mYOua8yJalTHG2r5g/pLmZK5sJcuNTJRw32IVj06RJaK 3WyfUy3vODuKKPf62aDvUtXW2q35Nqt2 -----END CERTIFICATE-----Generated at Sat Jun 14 19:36:05 2025 by rpki-client