$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3526/A13C55CE98B611EE8B490487C4F9AE02/Bf0tUZ1AyyCJN7-KjkY-bYQswH0.mft File: Bf0tUZ1AyyCJN7-KjkY-bYQswH0.mft (raw, json) Hash identifier: QpFR8ikYrm8sbCQiKtFv8TQUGJIJRf/A8U+37AJ3MwA= Subject key identifier: ED:41:D0:21:BE:E4:15:42:55:0B:AF:B6:B3:84:83:7A:75:5C:DA:23 Authority key identifier: 05:FD:2D:51:9D:40:CB:20:89:37:BF:8A:8E:46:3E:6D:84:2C:C0:7D Certificate issuer: /CN=A91A3526/serialNumber=05FD2D519D40CB208937BF8A8E463E6D842CC07D Certificate serial: 0125 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bf0tUZ1AyyCJN7-KjkY-bYQswH0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3526/A13C55CE98B611EE8B490487C4F9AE02/Bf0tUZ1AyyCJN7-KjkY-bYQswH0.mft Manifest number: 011E Signing time: Fri 13 Jun 2025 03:48:02 +0000 Manifest this update: Fri 13 Jun 2025 03:48:01 +0000 Manifest next update: Fri 20 Jun 2025 03:48:01 +0000 Files and hashes: 1: Bf0tUZ1AyyCJN7-KjkY-bYQswH0.crl (hash: LPgWbhebJF76QA561BFoCk/KdIJCQhH659Xx8R1m+WE=) 2: 134D519098B711EE99FD1F09C4F9AE02.roa (hash: vJ2YKh1qvo6z7EsNb01ZnfIC7WfZlHkFbVKbRaXaFP0=) 3: 13E4471298B711EE99FD1F09C4F9AE02.roa (hash: /ZzSx5BufcsBFJm8hzU4SO+vyDuIxcR/d9CCuElSRT0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3526/A13C55CE98B611EE8B490487C4F9AE02/Bf0tUZ1AyyCJN7-KjkY-bYQswH0.crl rsync://rpki.apnic.net/member_repository/A91A3526/A13C55CE98B611EE8B490487C4F9AE02/Bf0tUZ1AyyCJN7-KjkY-bYQswH0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bf0tUZ1AyyCJN7-KjkY-bYQswH0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 03:48:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 293 (0x125) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3526, serialNumber=05FD2D519D40CB208937BF8A8E463E6D842CC07D Validity Not Before: Jun 13 03:48:01 2025 GMT Not After : Jun 20 03:48:01 2025 GMT Subject: CN=684b9f71-f36d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:58:e8:3b:0c:28:87:50:dc:5a:17:8c:cb:80: 7c:ad:b2:c4:a2:7b:99:f6:31:f0:13:bc:a0:95:5c: f1:19:6e:73:14:cf:41:3b:45:55:9b:99:e9:8f:ee: a7:48:f1:6b:ef:51:39:cc:92:49:7d:56:cc:42:29: 57:69:24:9e:ff:5e:3b:4f:4f:3f:76:41:48:aa:d9: f3:6c:a6:f7:e9:e3:a6:60:0b:d2:45:d3:71:10:37: b0:17:17:45:c9:2e:3f:ea:9a:41:a7:f5:61:fa:b0: f1:63:4e:e3:a5:d4:82:73:c8:4e:68:94:27:d8:28: d4:45:c9:41:da:5f:ba:f5:c4:9d:19:26:18:e5:3a: 38:24:43:c6:6a:dd:ef:89:11:d2:8f:22:00:68:1d: 4a:e8:90:d4:7e:ce:da:44:ad:15:59:7f:4b:b8:7a: 8e:57:07:05:5e:39:32:08:22:25:65:52:eb:ca:74: 36:f3:be:65:59:4d:9f:c0:4f:b7:c4:61:ac:59:63: 6d:a0:b1:3b:ec:9f:37:55:11:4f:ae:e6:7d:b5:3a: 0e:d3:ab:17:bd:c4:28:40:f9:3d:d2:13:25:73:57: bd:59:c8:50:de:a7:5b:f4:97:1a:e8:ad:b1:3c:3f: d1:71:0f:6c:73:c5:d0:c3:0e:cd:f8:49:4e:75:eb: 63:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:41:D0:21:BE:E4:15:42:55:0B:AF:B6:B3:84:83:7A:75:5C:DA:23 X509v3 Authority Key Identifier: keyid:05:FD:2D:51:9D:40:CB:20:89:37:BF:8A:8E:46:3E:6D:84:2C:C0:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3526/A13C55CE98B611EE8B490487C4F9AE02/Bf0tUZ1AyyCJN7-KjkY-bYQswH0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bf0tUZ1AyyCJN7-KjkY-bYQswH0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3526/A13C55CE98B611EE8B490487C4F9AE02/Bf0tUZ1AyyCJN7-KjkY-bYQswH0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:5e:d1:8d:aa:76:14:1a:13:01:7e:78:92:88:10:64:3f:55: 54:66:e2:d6:ed:c6:79:d2:7a:49:96:a5:7e:a5:31:6a:13:ed: f9:01:3f:a2:d9:f2:8f:48:7b:b3:3b:b5:ae:5f:31:0c:fd:24: 8a:d3:ea:62:75:a6:8b:73:05:59:db:8f:62:22:5f:c2:54:45: d2:94:09:f0:4a:3e:9e:af:bb:b1:07:ee:40:f0:d9:48:87:1f: b6:34:9b:f8:a2:f0:1b:c2:68:81:6c:50:ed:8f:11:27:46:a0: 98:08:85:ad:84:4a:b9:60:d0:32:bc:68:f8:9a:d4:10:f7:29: fd:6c:6b:ff:29:d5:c4:ef:ff:80:86:21:df:9f:34:37:37:3c: cf:9e:ef:68:0f:a5:bd:fd:d9:ef:1e:d7:ee:92:2a:93:4e:dc: f5:e3:4d:5d:f9:22:83:38:2a:d8:3d:ae:ba:27:04:00:46:f8: c6:ff:fd:b0:67:df:a7:57:76:b7:54:05:37:96:7f:4e:06:8b: 3c:b6:27:97:79:d3:a2:26:28:fc:f5:f3:0d:ab:85:22:32:86: 6e:b1:b2:bb:27:b9:6f:e3:fa:9b:b3:b0:44:44:f9:c4:45:98: b2:80:e6:13:6a:44:2a:72:6d:90:4b:00:ce:6a:59:e9:8d:4d: 4f:6c:6d:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM1MjYxMTAvBgNVBAUTKDA1RkQyRDUxOUQ0MENCMjA4OTM3QkY4QThFNDYzRTZE ODQyQ0MwN0QwHhcNMjUwNjEzMDM0ODAxWhcNMjUwNjIwMDM0ODAxWjAYMRYwFAYD VQQDEw02ODRiOWY3MS1mMzZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5ljoOwwoh1DcWheMy4B8rbLEonuZ9jHwE7yglVzxGW5zFM9BO0VVm5npj+6n SPFr71E5zJJJfVbMQilXaSSe/147T08/dkFIqtnzbKb36eOmYAvSRdNxEDewFxdF yS4/6ppBp/Vh+rDxY07jpdSCc8hOaJQn2CjURclB2l+69cSdGSYY5To4JEPGat3v iRHSjyIAaB1K6JDUfs7aRK0VWX9LuHqOVwcFXjkyCCIlZVLrynQ2875lWU2fwE+3 xGGsWWNtoLE77J83VRFPruZ9tToO06sXvcQoQPk90hMlc1e9WchQ3qdb9Jca6K2x PD/RcQ9sc8XQww7N+ElOdetjtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO1B0CG+ 5BVCVQuvtrOEg3p1XNojMB8GA1UdIwQYMBaAFAX9LVGdQMsgiTe/io5GPm2ELMB9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzUyNi9BMTNDNTVDRTk4 QjYxMUVFOEI0OTA0ODdDNEY5QUUwMi9CZjB0VVoxQXl5Q0pONy1LamtZLWJZUXN3 SDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JmMHRVWjFBeXlDSk43LUtqa1ktYllRc3dIMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzUyNi9BMTNDNTVDRTk4QjYxMUVFOEI0OTA0ODdDNEY5QUUwMi9CZjB0VVoxQXl5 Q0pONy1LamtZLWJZUXN3SDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgXtGNqnYUGhMBfniSiBBkP1VUZuLW7cZ50npJlqV+pTFqE+35AT+i 2fKPSHuzO7WuXzEM/SSK0+pidaaLcwVZ249iIl/CVEXSlAnwSj6er7uxB+5A8NlI hx+2NJv4ovAbwmiBbFDtjxEnRqCYCIWthEq5YNAyvGj4mtQQ9yn9bGv/KdXE7/+A hiHfnzQ3NzzPnu9oD6W9/dnvHtfukiqTTtz1401d+SKDOCrYPa66JwQARvjG//2w Z9+nV3a3VAU3ln9OBos8tieXedOiJij89fMNq4UiMoZusbK7J7lv4/qbs7BERPnE RZiygOYTakQqcm2QSwDOalnpjU1PbG3N -----END CERTIFICATE-----Generated at Sat Jun 14 19:30:12 2025 by rpki-client