$ rpki-client -vvf rpki.apnic.net/member_repository/A91995D5/163B1E7C2AAE11E9AA574E4EC4F9AE02/bywgdVh2TqtQ74UGb3hZDOWxxWE.mft File: bywgdVh2TqtQ74UGb3hZDOWxxWE.mft (raw, json) Hash identifier: lxbmC+7BpI2Q3x7hWTo1HopjyNm+6826tcyAZVkB7xI= Subject key identifier: 7F:05:FB:2E:6B:D0:03:8F:57:3D:EF:A9:8E:5E:F4:AB:C1:04:06:1F Authority key identifier: 6F:2C:20:75:58:76:4E:AB:50:EF:85:06:6F:78:59:0C:E5:B1:C5:61 Certificate issuer: /CN=A91995D5/serialNumber=6F2C207558764EAB50EF85066F78590CE5B1C561 Certificate serial: 10AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bywgdVh2TqtQ74UGb3hZDOWxxWE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91995D5/163B1E7C2AAE11E9AA574E4EC4F9AE02/bywgdVh2TqtQ74UGb3hZDOWxxWE.mft Manifest number: 10A2 Signing time: Sat 14 Jun 2025 17:16:01 +0000 Manifest this update: Sat 14 Jun 2025 17:16:00 +0000 Manifest next update: Sat 21 Jun 2025 17:16:00 +0000 Files and hashes: 1: bywgdVh2TqtQ74UGb3hZDOWxxWE.crl (hash: SDwqgFkO9BPF6WVNj4TurWxx7nTNGbieR6XWSEZ3+U0=) 2: ADA9DA3C2AAE11E9BEFAEF4EC4F9AE02.roa (hash: NcGX1+0f22h9EnvK4Hf3V559zCSmDIlERyuyLCtuDE0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91995D5/163B1E7C2AAE11E9AA574E4EC4F9AE02/bywgdVh2TqtQ74UGb3hZDOWxxWE.crl rsync://rpki.apnic.net/member_repository/A91995D5/163B1E7C2AAE11E9AA574E4EC4F9AE02/bywgdVh2TqtQ74UGb3hZDOWxxWE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bywgdVh2TqtQ74UGb3hZDOWxxWE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:13:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4266 (0x10aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91995D5, serialNumber=6F2C207558764EAB50EF85066F78590CE5B1C561 Validity Not Before: Jun 14 17:16:00 2025 GMT Not After : Jun 21 17:16:00 2025 GMT Subject: CN=684dae50-e9f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ef:26:c2:88:e5:db:1e:18:6b:40:eb:46:f4: 9c:65:5f:4d:2a:16:33:c5:64:33:d7:b6:f9:1f:07: 4c:04:a9:ba:3b:a3:fa:7b:e6:5c:10:81:1a:9a:a0: e6:9e:14:67:4e:74:e3:1f:79:79:b4:57:65:ef:ad: 38:08:08:11:1b:2d:ca:8c:9a:88:78:a7:b6:26:4d: d4:fb:38:6a:07:cc:b7:c9:cb:1a:41:30:d7:46:ac: 5c:f0:97:f4:2d:f4:47:a1:ce:0a:f6:eb:6e:08:7b: f1:84:9c:70:1d:7f:39:67:e1:b3:a0:d5:27:39:6c: 7e:31:a8:58:4e:ab:5e:0d:d6:91:05:13:a4:08:06: bc:40:63:77:8d:fa:d8:d4:75:86:53:93:62:70:7d: d4:0f:c0:70:ec:62:29:36:74:70:0b:c2:7b:18:85: 4d:1a:cc:db:b7:a5:72:4d:8a:54:f3:2c:05:03:86: e4:34:b4:b9:0e:18:e8:de:98:a0:5d:99:53:b1:4a: d1:28:4d:4c:00:b5:ff:71:11:ed:49:7e:a6:57:b7: 0d:df:53:d3:53:d2:23:0e:33:13:d9:14:43:09:f7: a1:74:39:50:49:c9:ee:a2:2f:c3:f1:be:d7:e7:95: a0:c5:24:a5:2a:59:23:15:d7:b0:3c:d7:70:26:09: 93:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:05:FB:2E:6B:D0:03:8F:57:3D:EF:A9:8E:5E:F4:AB:C1:04:06:1F X509v3 Authority Key Identifier: keyid:6F:2C:20:75:58:76:4E:AB:50:EF:85:06:6F:78:59:0C:E5:B1:C5:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91995D5/163B1E7C2AAE11E9AA574E4EC4F9AE02/bywgdVh2TqtQ74UGb3hZDOWxxWE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bywgdVh2TqtQ74UGb3hZDOWxxWE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91995D5/163B1E7C2AAE11E9AA574E4EC4F9AE02/bywgdVh2TqtQ74UGb3hZDOWxxWE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:e7:54:dd:20:b8:fd:77:53:95:1f:3f:2b:2a:34:5c:a8:ca: 8b:93:a3:b5:68:46:88:68:c0:d0:94:d1:82:4e:65:c2:32:27: b1:77:99:47:ba:5d:0a:0b:6c:3c:e9:a3:17:e2:1b:2d:a6:6c: 04:46:c7:69:47:71:fe:7a:f9:d7:2f:c4:07:e7:d9:51:20:80: a6:da:4e:cb:b6:46:4a:3a:24:f1:20:13:78:26:6f:c9:bf:af: 3f:9a:52:9b:c6:42:f1:6d:24:bd:8a:1c:3e:49:1f:3a:95:9a: 5e:3e:4f:76:f6:36:b3:4f:61:b5:bc:97:74:4e:f2:54:28:1d: e3:de:fd:b7:94:28:b8:99:e8:59:2b:07:82:ce:1e:56:f0:12: ee:14:10:db:f5:9f:01:b3:e7:7d:7f:b5:4c:5d:3f:47:33:ee: 8e:a4:28:f6:81:c4:43:73:c8:94:98:32:63:6c:c1:e4:fc:2b: 4d:03:db:39:2f:1d:3b:b9:4a:7f:2a:60:36:cf:9c:19:37:4b: 6a:68:ed:28:ff:f1:94:f2:d9:1f:26:a9:f5:b9:6f:bf:ae:bf: 30:9e:22:1a:7d:85:d3:87:89:02:97:4a:fc:c3:c9:0b:5c:02: d1:ee:ed:83:ed:02:53:d9:19:4f:2e:55:9e:52:9b:47:ae:12: 28:b2:f4:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk1RDUxMTAvBgNVBAUTKDZGMkMyMDc1NTg3NjRFQUI1MEVGODUwNjZGNzg1OTBD RTVCMUM1NjEwHhcNMjUwNjE0MTcxNjAwWhcNMjUwNjIxMTcxNjAwWjAYMRYwFAYD VQQDEw02ODRkYWU1MC1lOWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvO8mwojl2x4Ya0DrRvScZV9NKhYzxWQz17b5HwdMBKm6O6P6e+ZcEIEamqDm nhRnTnTjH3l5tFdl7604CAgRGy3KjJqIeKe2Jk3U+zhqB8y3ycsaQTDXRqxc8Jf0 LfRHoc4K9utuCHvxhJxwHX85Z+GzoNUnOWx+MahYTqteDdaRBROkCAa8QGN3jfrY 1HWGU5NicH3UD8Bw7GIpNnRwC8J7GIVNGszbt6VyTYpU8ywFA4bkNLS5Dhjo3pig XZlTsUrRKE1MALX/cRHtSX6mV7cN31PTU9IjDjMT2RRDCfehdDlQScnuoi/D8b7X 55WgxSSlKlkjFdewPNdwJgmTYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH8F+y5r 0AOPVz3vqY5e9KvBBAYfMB8GA1UdIwQYMBaAFG8sIHVYdk6rUO+FBm94WQzlscVh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTVENS8xNjNCMUU3QzJB QUUxMUU5QUE1NzRFNEVDNEY5QUUwMi9ieXdnZFZoMlRxdFE3NFVHYjNoWkRPV3h4 V0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J5d2dkVmgyVHF0UTc0VUdiM2haRE9XeHhXRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTVENS8xNjNCMUU3QzJBQUUxMUU5QUE1NzRFNEVDNEY5QUUwMi9ieXdnZFZoMlRx dFE3NFVHYjNoWkRPV3h4V0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCe51TdILj9d1OVHz8rKjRcqMqLk6O1aEaIaMDQlNGCTmXCMiexd5lH ul0KC2w86aMX4hstpmwERsdpR3H+evnXL8QH59lRIICm2k7LtkZKOiTxIBN4Jm/J v68/mlKbxkLxbSS9ihw+SR86lZpePk929jazT2G1vJd0TvJUKB3j3v23lCi4mehZ KweCzh5W8BLuFBDb9Z8Bs+d9f7VMXT9HM+6OpCj2gcRDc8iUmDJjbMHk/CtNA9s5 Lx07uUp/KmA2z5wZN0tqaO0o//GU8tkfJqn1uW+/rr8wniIafYXTh4kCl0r8w8kL XALR7u2D7QJT2RlPLlWeUptHrhIosvQ4 -----END CERTIFICATE-----Generated at Sat Jun 14 19:34:39 2025 by rpki-client