$ rpki-client -vvf rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.mft File: BKAnX1srXBgOfg0Slu7WC8DPY0c.mft (raw, json) Hash identifier: A0CUETTULSIP7ykk61oPFxjj/jWWIGH2vydrdxtNIjA= Subject key identifier: 99:E9:15:9C:74:4B:5B:CE:0D:2D:24:25:51:79:BF:1E:9E:9C:7D:62 Authority key identifier: 04:A0:27:5F:5B:2B:5C:18:0E:7E:0D:12:96:EE:D6:0B:C0:CF:63:47 Certificate issuer: /CN=A919C563/serialNumber=04A0275F5B2B5C180E7E0D1296EED60BC0CF6347 Certificate serial: 10FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKAnX1srXBgOfg0Slu7WC8DPY0c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.mft Manifest number: 10F0 Signing time: Thu 24 Apr 2025 17:18:45 +0000 Manifest this update: Thu 24 Apr 2025 17:18:44 +0000 Manifest next update: Thu 01 May 2025 17:18:44 +0000 Files and hashes: 1: BKAnX1srXBgOfg0Slu7WC8DPY0c.crl (hash: lnGCM2dBGsLVQV0hxmZSR1Fcz1veQbopd8Pb0mBqdgs=) 2: 2B2B06B2401E11EBB0588F5FC4F9AE02.roa (hash: njXqnLM6vnU07txVMRRTX8IPNMY9z1UdckP2aMY3pBQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.crl rsync://rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKAnX1srXBgOfg0Slu7WC8DPY0c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:18:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4347 (0x10fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C563, serialNumber=04A0275F5B2B5C180E7E0D1296EED60BC0CF6347 Validity Not Before: Apr 24 17:18:44 2025 GMT Not After : May 1 17:18:44 2025 GMT Subject: CN=680a7275-9583 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:f7:bf:bb:9e:af:f3:a1:e4:ef:7a:6f:8d:4a: 40:89:67:a4:be:52:0e:c7:99:14:8b:1e:70:03:55: 1e:a7:ce:88:a9:98:31:0e:b4:2a:6b:43:84:09:2d: 37:68:5d:b4:40:d3:1b:c7:e3:0f:62:c9:5a:ed:da: 88:46:61:98:53:27:b0:05:68:03:11:00:67:e2:95: bd:3f:bb:b3:92:8f:d2:11:38:4d:af:57:3f:4d:57: 85:ab:83:8c:b5:a3:a2:c3:7f:c8:f0:20:0a:6a:d8: d9:5a:38:e2:30:6e:23:c9:f7:9c:6e:99:e4:76:9b: 78:bf:44:01:e4:80:19:6d:c2:bd:86:fd:d1:db:c0: f4:3c:b5:8e:2d:aa:4a:f4:53:7c:ba:93:db:e5:66: 7a:b9:29:1b:f2:ef:e4:46:f7:14:f8:4a:d3:83:46: 9d:e0:6e:e7:f0:f3:0e:02:11:5b:c1:94:47:2c:50: d4:35:cf:79:c5:08:74:82:d2:ec:46:0b:1a:5a:a1: a1:f2:46:e0:3e:d3:1b:28:f6:fe:75:65:9d:8e:99: b9:77:40:58:d6:92:2d:26:5e:9f:75:7a:56:f5:20: 88:8c:8e:43:10:bd:06:10:96:2d:8d:2f:75:7d:bb: 37:a8:02:fc:76:da:eb:4d:e3:75:cf:cc:60:a9:dd: 80:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:E9:15:9C:74:4B:5B:CE:0D:2D:24:25:51:79:BF:1E:9E:9C:7D:62 X509v3 Authority Key Identifier: keyid:04:A0:27:5F:5B:2B:5C:18:0E:7E:0D:12:96:EE:D6:0B:C0:CF:63:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKAnX1srXBgOfg0Slu7WC8DPY0c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C563/11B6336417C111E981080F6CC4F9AE02/BKAnX1srXBgOfg0Slu7WC8DPY0c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c6:39:9b:5a:18:b4:f0:d9:ee:e4:cc:89:ab:75:83:d9:75:5e: 48:f4:98:a5:74:7e:d5:a7:92:87:34:74:72:77:e2:3f:07:c3: 96:27:90:5c:73:e5:04:4a:a5:4a:1e:c8:90:5c:7b:f5:d0:cd: 57:58:3a:1c:0c:6b:47:86:18:bf:eb:ed:4b:e1:ac:fc:ed:41: cf:46:82:82:2e:d3:9a:61:e7:da:bf:4b:0d:28:09:e1:9c:20: 8b:35:87:93:5d:90:08:03:4c:a0:e2:b6:a2:d5:4d:d2:0c:fb: 3c:aa:c0:2a:19:49:5e:e9:89:23:46:c0:bb:70:4d:0a:2a:49: 78:ca:4c:57:79:1d:59:3b:59:53:b0:c0:b4:be:55:ca:2b:01: ed:91:04:e0:9f:e3:60:da:ce:c1:a6:22:9a:1e:68:dc:6a:16: 73:94:7a:de:7b:1c:72:a2:16:b9:7d:07:8d:b7:3b:9e:92:57: e7:08:6b:cf:cc:b9:85:a7:c0:34:43:31:50:ef:7c:16:89:bf: 9b:a4:65:c9:5d:39:d9:31:88:91:b5:7d:97:46:25:2f:3d:c5: 83:37:ce:3f:64:1e:c4:10:e2:d6:52:fa:be:57:bd:f8:ce:c7: 63:27:7b:9a:13:7f:11:a6:9b:70:8c:97:03:6c:5b:5d:ee:94: 01:09:af:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEPswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM1NjMxMTAvBgNVBAUTKDA0QTAyNzVGNUIyQjVDMTgwRTdFMEQxMjk2RUVENjBC QzBDRjYzNDcwHhcNMjUwNDI0MTcxODQ0WhcNMjUwNTAxMTcxODQ0WjAYMRYwFAYD VQQDEw02ODBhNzI3NS05NTgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy/e/u56v86Hk73pvjUpAiWekvlIOx5kUix5wA1Uep86IqZgxDrQqa0OECS03 aF20QNMbx+MPYsla7dqIRmGYUyewBWgDEQBn4pW9P7uzko/SEThNr1c/TVeFq4OM taOiw3/I8CAKatjZWjjiMG4jyfecbpnkdpt4v0QB5IAZbcK9hv3R28D0PLWOLapK 9FN8upPb5WZ6uSkb8u/kRvcU+ErTg0ad4G7n8PMOAhFbwZRHLFDUNc95xQh0gtLs RgsaWqGh8kbgPtMbKPb+dWWdjpm5d0BY1pItJl6fdXpW9SCIjI5DEL0GEJYtjS91 fbs3qAL8dtrrTeN1z8xgqd2AcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJnpFZx0 S1vODS0kJVF5vx6enH1iMB8GA1UdIwQYMBaAFASgJ19bK1wYDn4NEpbu1gvAz2NH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzU2My8xMUI2MzM2NDE3 QzExMUU5ODEwODBGNkNDNEY5QUUwMi9CS0FuWDFzclhCZ09mZzBTbHU3V0M4RFBZ MGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JLQW5YMXNyWEJnT2ZnMFNsdTdXQzhEUFkwYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzU2My8xMUI2MzM2NDE3QzExMUU5ODEwODBGNkNDNEY5QUUwMi9CS0FuWDFzclhC Z09mZzBTbHU3V0M4RFBZMGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDGOZtaGLTw2e7kzImrdYPZdV5I9JildH7Vp5KHNHRyd+I/B8OWJ5Bc c+UESqVKHsiQXHv10M1XWDocDGtHhhi/6+1L4az87UHPRoKCLtOaYefav0sNKAnh nCCLNYeTXZAIA0yg4rai1U3SDPs8qsAqGUle6YkjRsC7cE0KKkl4ykxXeR1ZO1lT sMC0vlXKKwHtkQTgn+Ng2s7BpiKaHmjcahZzlHreexxyoha5fQeNtzueklfnCGvP zLmFp8A0QzFQ73wWib+bpGXJXTnZMYiRtX2XRiUvPcWDN84/ZB7EEOLWUvq+V734 zsdjJ3uaE38RpptwjJcDbFtd7pQBCa9T -----END CERTIFICATE-----Generated at Sat Apr 26 05:15:13 2025 by rpki-client