$ rpki-client -vvf rpki.apnic.net/member_repository/A91992FA/FA46E0D2EE0311EF9C2B8A49C4F9AE02/BXtTd0A4JnigePW_KExyZ5S50TQ.mft File: BXtTd0A4JnigePW_KExyZ5S50TQ.mft (raw, json) Hash identifier: 0dmnErtSFjW2wwaNJQ9HcCZo8544ge6gfxHtKT5npBI= Subject key identifier: C6:65:1B:25:44:07:CB:E1:AC:73:0B:4D:3D:66:8C:E5:CB:2A:86:08 Authority key identifier: 05:7B:53:77:40:38:26:78:A0:78:F5:BF:28:4C:72:67:94:B9:D1:34 Certificate issuer: /CN=A91992FA/serialNumber=057B537740382678A078F5BF284C726794B9D134 Certificate serial: 3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BXtTd0A4JnigePW_KExyZ5S50TQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91992FA/FA46E0D2EE0311EF9C2B8A49C4F9AE02/BXtTd0A4JnigePW_KExyZ5S50TQ.mft Manifest number: 3C Signing time: Fri 13 Jun 2025 06:26:09 +0000 Manifest this update: Fri 13 Jun 2025 06:26:09 +0000 Manifest next update: Fri 20 Jun 2025 06:26:09 +0000 Files and hashes: 1: BXtTd0A4JnigePW_KExyZ5S50TQ.crl (hash: 6uUxk7/PfygdIrPZaAbd3C8Eivj8eFlH/Z+pK4BEeoA=) 2: 44A28FACEFEC11EF80EC123DC4F9AE02.roa (hash: kIHtM5yk/7E77z9qFDfBUJpQm2RMukSPxAc1zKCnuxc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91992FA/FA46E0D2EE0311EF9C2B8A49C4F9AE02/BXtTd0A4JnigePW_KExyZ5S50TQ.crl rsync://rpki.apnic.net/member_repository/A91992FA/FA46E0D2EE0311EF9C2B8A49C4F9AE02/BXtTd0A4JnigePW_KExyZ5S50TQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BXtTd0A4JnigePW_KExyZ5S50TQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 06:26:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61 (0x3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91992FA, serialNumber=057B537740382678A078F5BF284C726794B9D134 Validity Not Before: Jun 13 06:26:09 2025 GMT Not After : Jun 20 06:26:09 2025 GMT Subject: CN=684bc481-4de8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:e8:0a:63:a9:21:01:a9:f4:55:79:65:14:9f: 86:55:a5:d9:f5:6b:b6:15:c4:30:58:59:0d:ef:79: 19:95:1e:7e:96:a3:72:f9:2d:d2:80:9f:15:72:d2: 62:50:33:e1:7e:79:3f:46:50:58:47:96:f9:0e:ad: 95:75:c4:7d:67:ae:a7:ae:ef:92:26:53:31:96:f2: a5:0c:03:30:6e:13:2e:91:29:b3:d1:2c:99:e0:71: c1:af:70:bb:3e:b3:81:9c:df:98:dd:75:e4:af:bf: ec:82:2a:c8:99:41:e0:28:93:f9:ee:9b:ed:8b:24: ae:49:a6:08:5d:b0:b4:bc:dd:1f:ee:96:08:68:20: 82:51:4f:d4:90:26:79:18:62:18:b2:f8:7e:7a:08: 0f:ce:a9:84:a7:af:ef:b6:fa:f8:cf:ba:7f:08:f7: ff:fa:e0:8c:0b:20:6e:c2:7b:2d:bc:49:40:32:5e: d2:05:a1:e0:c8:0f:40:8f:05:8a:2e:15:5a:14:5c: 9d:da:d2:1f:e6:ee:1c:4f:44:03:e8:2b:d8:3f:c0: cc:61:1c:96:e3:4a:95:53:d2:62:31:8b:52:ae:09: b8:81:35:3f:29:d3:ee:6a:15:c5:db:54:ea:1a:f8: 5e:33:fe:a2:2b:82:70:35:2d:ea:f1:d7:2e:26:e6: bd:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:65:1B:25:44:07:CB:E1:AC:73:0B:4D:3D:66:8C:E5:CB:2A:86:08 X509v3 Authority Key Identifier: keyid:05:7B:53:77:40:38:26:78:A0:78:F5:BF:28:4C:72:67:94:B9:D1:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91992FA/FA46E0D2EE0311EF9C2B8A49C4F9AE02/BXtTd0A4JnigePW_KExyZ5S50TQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BXtTd0A4JnigePW_KExyZ5S50TQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91992FA/FA46E0D2EE0311EF9C2B8A49C4F9AE02/BXtTd0A4JnigePW_KExyZ5S50TQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:cf:5e:15:d6:22:72:d5:c3:ca:61:ec:55:dc:92:d3:ce:f0: 54:b1:e1:20:08:c4:0c:2b:8a:81:09:cf:fd:a8:a4:98:0a:ff: 95:5b:2e:ca:bd:7e:ce:70:82:41:2f:f6:ad:3b:24:34:cd:a1: b1:eb:ea:b9:3f:73:45:53:5e:b8:02:9d:52:46:a3:7b:e3:e3: fa:26:66:7a:88:64:64:25:be:76:0f:c9:ab:7e:ba:8c:f3:73: f6:bb:c1:7c:4c:d1:55:86:11:ec:fc:b9:4a:ea:4c:42:ac:e5: 8e:c3:9a:b1:24:80:e5:a5:3e:fb:bb:3a:ac:75:e7:4d:b3:3f: f4:4b:4f:ae:97:e0:c8:07:a5:b8:e2:4a:c4:a9:0d:43:9b:ba: 74:df:eb:70:f7:b6:2c:44:e4:fd:e5:23:49:8d:a9:0d:0b:43: d2:2e:24:85:24:f4:ab:24:6b:b7:0a:9c:a4:be:81:21:4c:05: 77:21:d2:ba:51:17:e1:c7:0e:03:81:ac:55:e3:a2:59:32:5a: fe:2a:66:6a:c5:d3:75:25:b6:a6:70:81:5c:d7:01:fb:ed:cb: cf:a0:94:1d:44:29:b0:54:a3:74:c9:11:80:28:60:9b:a0:24: 8a:6b:e6:77:28:4e:70:c9:13:d5:5d:b4:c8:d7:fa:80:80:7a: 55:66:90:d1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 OTJGQTExMC8GA1UEBRMoMDU3QjUzNzc0MDM4MjY3OEEwNzhGNUJGMjg0QzcyNjc5 NEI5RDEzNDAeFw0yNTA2MTMwNjI2MDlaFw0yNTA2MjAwNjI2MDlaMBgxFjAUBgNV BAMTDTY4NGJjNDgxLTRkZTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDS6ApjqSEBqfRVeWUUn4ZVpdn1a7YVxDBYWQ3veRmVHn6Wo3L5LdKAnxVy0mJQ M+F+eT9GUFhHlvkOrZV1xH1nrqeu75ImUzGW8qUMAzBuEy6RKbPRLJngccGvcLs+ s4Gc35jddeSvv+yCKsiZQeAok/num+2LJK5JpghdsLS83R/ulghoIIJRT9SQJnkY Yhiy+H56CA/OqYSnr++2+vjPun8I9//64IwLIG7Cey28SUAyXtIFoeDID0CPBYou FVoUXJ3a0h/m7hxPRAPoK9g/wMxhHJbjSpVT0mIxi1KuCbiBNT8p0+5qFcXbVOoa +F4z/qIrgnA1Lerx1y4m5r1/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUxmUbJUQH y+GscwtNPWaM5csqhggwHwYDVR0jBBgwFoAUBXtTd0A4JnigePW/KExyZ5S50TQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk5MkZBL0ZBNDZFMEQyRUUw MzExRUY5QzJCOEE0OUM0RjlBRTAyL0JYdFRkMEE0Sm5pZ2VQV19LRXh5WjVTNTBU US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQlh0VGQwQTRKbmlnZVBXX0tFeHlaNVM1MFRRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk5 MkZBL0ZBNDZFMEQyRUUwMzExRUY5QzJCOEE0OUM0RjlBRTAyL0JYdFRkMEE0Sm5p Z2VQV19LRXh5WjVTNTBUUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADnPXhXWInLVw8ph7FXcktPO8FSx4SAIxAwrioEJz/2opJgK/5VbLsq9 fs5wgkEv9q07JDTNobHr6rk/c0VTXrgCnVJGo3vj4/omZnqIZGQlvnYPyat+uozz c/a7wXxM0VWGEez8uUrqTEKs5Y7DmrEkgOWlPvu7Oqx1502zP/RLT66X4MgHpbji SsSpDUObunTf63D3tixE5P3lI0mNqQ0LQ9IuJIUk9Kska7cKnKS+gSFMBXch0rpR F+HHDgOBrFXjolkyWv4qZmrF03UltqZwgVzXAfvty8+glB1EKbBUo3TJEYAoYJug JIpr5ncoTnDJE9VdtMjX+oCAelVmkNE= -----END CERTIFICATE-----Generated at Sat Jun 14 19:41:50 2025 by rpki-client