$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8CD2/043C6AF4D8E511EB80685D5FC4F9AE02/bjPVE5klw9tNCFk3zmms03vqeU0.mft File: bjPVE5klw9tNCFk3zmms03vqeU0.mft (raw, json) Hash identifier: uzJdI0g3tPVZwdfKD2Zppp+F8GNlWDE3XcvffwPATeA= Subject key identifier: EF:01:51:AE:E2:BE:4D:7F:7F:F3:71:95:5F:D9:09:C0:77:41:0B:7D Authority key identifier: 6E:33:D5:13:99:25:C3:DB:4D:08:59:37:CE:69:AC:D3:7B:EA:79:4D Certificate issuer: /CN=A91A8CD2/serialNumber=6E33D5139925C3DB4D085937CE69ACD37BEA794D Certificate serial: 058F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bjPVE5klw9tNCFk3zmms03vqeU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8CD2/043C6AF4D8E511EB80685D5FC4F9AE02/bjPVE5klw9tNCFk3zmms03vqeU0.mft Manifest number: 058B Signing time: Sat 14 Jun 2025 22:57:50 +0000 Manifest this update: Sat 14 Jun 2025 22:57:49 +0000 Manifest next update: Sat 21 Jun 2025 22:57:49 +0000 Files and hashes: 1: bjPVE5klw9tNCFk3zmms03vqeU0.crl (hash: zCQoQjGArmmE+V4/Q86dqJqZUywdsFpFU17APgCWPTU=) 2: 5D10DEF0D8E811EB8ACD3C66C4F9AE02.roa (hash: l/rvxQeqO+VdRHgLRLz7RrPQYKHzDkdt1MLwmoA9TZg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8CD2/043C6AF4D8E511EB80685D5FC4F9AE02/bjPVE5klw9tNCFk3zmms03vqeU0.crl rsync://rpki.apnic.net/member_repository/A91A8CD2/043C6AF4D8E511EB80685D5FC4F9AE02/bjPVE5klw9tNCFk3zmms03vqeU0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bjPVE5klw9tNCFk3zmms03vqeU0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 22:57:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1423 (0x58f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8CD2, serialNumber=6E33D5139925C3DB4D085937CE69ACD37BEA794D Validity Not Before: Jun 14 22:57:49 2025 GMT Not After : Jun 21 22:57:49 2025 GMT Subject: CN=684dfe6e-245d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:8f:7f:37:f9:74:f6:53:cc:e9:28:4a:03:b2: 33:82:fa:c2:79:25:fa:f7:32:af:da:01:3a:49:ff: 8a:e2:32:d9:53:9d:82:65:05:90:c9:ac:46:60:ce: 6c:cf:73:da:07:12:8a:42:f3:33:ef:37:ed:eb:85: 7e:7b:0c:5a:48:4f:cd:46:f6:18:3e:26:a2:4b:96: 7b:c8:ab:af:88:d3:48:be:b7:21:52:2c:a5:ae:c7: d6:56:0d:bc:a5:df:0f:35:2b:b3:a2:27:0d:1d:4e: 87:8f:fc:8a:a6:30:03:62:50:b5:d8:35:8d:19:b3: 2b:90:72:da:7c:ad:0c:3a:b5:16:50:c9:1c:00:24: 19:41:6e:91:75:d0:44:0a:56:a6:54:92:90:e1:5b: 0f:a0:61:c9:95:44:f5:19:d6:16:ae:c8:78:e2:4a: 8e:15:7d:06:c5:ad:68:6f:a4:0e:c5:7b:79:b9:65: 46:70:38:6c:79:aa:06:3a:39:75:df:84:08:84:fc: 30:0e:8a:6e:f7:78:ad:c8:9e:d9:80:83:89:9f:90: 07:0a:12:a7:cc:1d:7a:d4:63:08:3c:64:9c:b0:f8: 2c:3c:83:32:92:4f:0d:de:37:39:82:02:9e:4e:2d: 6d:cf:b7:6c:07:dc:b8:f3:8d:43:1a:85:5f:e9:41: 7e:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:01:51:AE:E2:BE:4D:7F:7F:F3:71:95:5F:D9:09:C0:77:41:0B:7D X509v3 Authority Key Identifier: keyid:6E:33:D5:13:99:25:C3:DB:4D:08:59:37:CE:69:AC:D3:7B:EA:79:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8CD2/043C6AF4D8E511EB80685D5FC4F9AE02/bjPVE5klw9tNCFk3zmms03vqeU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bjPVE5klw9tNCFk3zmms03vqeU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8CD2/043C6AF4D8E511EB80685D5FC4F9AE02/bjPVE5klw9tNCFk3zmms03vqeU0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:b4:0c:bd:0e:fe:ae:7b:24:26:4e:25:c0:b9:c6:3a:c0:95: a4:41:6d:dc:73:be:17:a8:2f:ec:08:c7:7a:61:19:64:e3:05: c9:2b:54:b0:72:b3:03:72:15:be:31:07:ad:7f:b4:7b:15:70: 99:49:75:c3:e0:3d:8a:2e:4e:14:b0:a2:59:a7:4a:5b:13:78: 32:33:de:c0:5e:44:ed:a0:2b:5b:6b:94:5e:dd:8e:5c:2e:13: 0c:80:d2:92:ed:1e:f3:82:b3:41:db:ab:ea:2f:c3:bc:52:b4: 80:eb:d5:3f:a5:4a:2c:8c:1d:ef:b9:6c:b3:7d:ee:9c:d1:ea: a2:ae:0c:69:e9:d9:69:5b:02:24:36:f0:58:68:1c:f2:56:5c: 2f:b6:01:ca:4d:c6:9a:b7:c7:3d:e7:02:4b:7d:8a:7e:55:cb: 90:5a:89:5c:65:2a:f5:0b:d7:9d:e8:bb:fb:6b:ed:4c:b3:fd: 1b:4f:6a:63:c2:f8:21:2f:8e:97:f1:c5:b2:55:04:84:45:ef: 68:9c:1b:3a:f5:21:4e:25:66:5f:24:48:05:29:3e:c7:3e:36: 9b:74:a6:cd:2a:d9:fb:1d:da:8a:99:45:74:2e:a0:2d:57:2f: 6f:c3:d1:8c:0c:8d:cc:bf:01:75:44:d8:dc:a5:bb:5e:57:de: d5:58:62:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBY8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThDRDIxMTAvBgNVBAUTKDZFMzNENTEzOTkyNUMzREI0RDA4NTkzN0NFNjlBQ0Qz N0JFQTc5NEQwHhcNMjUwNjE0MjI1NzQ5WhcNMjUwNjIxMjI1NzQ5WjAYMRYwFAYD VQQDEw02ODRkZmU2ZS0yNDVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArY9/N/l09lPM6ShKA7IzgvrCeSX69zKv2gE6Sf+K4jLZU52CZQWQyaxGYM5s z3PaBxKKQvMz7zft64V+ewxaSE/NRvYYPiaiS5Z7yKuviNNIvrchUiylrsfWVg28 pd8PNSuzoicNHU6Hj/yKpjADYlC12DWNGbMrkHLafK0MOrUWUMkcACQZQW6RddBE ClamVJKQ4VsPoGHJlUT1GdYWrsh44kqOFX0Gxa1ob6QOxXt5uWVGcDhseaoGOjl1 34QIhPwwDopu93ityJ7ZgIOJn5AHChKnzB161GMIPGScsPgsPIMykk8N3jc5ggKe Ti1tz7dsB9y4841DGoVf6UF+swIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO8BUa7i vk1/f/NxlV/ZCcB3QQt9MB8GA1UdIwQYMBaAFG4z1ROZJcPbTQhZN85prNN76nlN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOENEMi8wNDNDNkFGNEQ4 RTUxMUVCODA2ODVENUZDNEY5QUUwMi9ialBWRTVrbHc5dE5DRmszem1tczAzdnFl VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JqUFZFNWtsdzl0TkNGazN6bW1zMDN2cWVVMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OENEMi8wNDNDNkFGNEQ4RTUxMUVCODA2ODVENUZDNEY5QUUwMi9ialBWRTVrbHc5 dE5DRmszem1tczAzdnFlVTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9tAy9Dv6ueyQmTiXAucY6wJWkQW3cc74XqC/sCMd6YRlk4wXJK1Sw crMDchW+MQetf7R7FXCZSXXD4D2KLk4UsKJZp0pbE3gyM97AXkTtoCtba5Re3Y5c LhMMgNKS7R7zgrNB26vqL8O8UrSA69U/pUosjB3vuWyzfe6c0eqirgxp6dlpWwIk NvBYaBzyVlwvtgHKTcaat8c95wJLfYp+VcuQWolcZSr1C9ed6Lv7a+1Ms/0bT2pj wvghL46X8cWyVQSERe9onBs69SFOJWZfJEgFKT7HPjabdKbNKtn7HdqKmUV0LqAt Vy9vw9GMDI3MvwF1RNjcpbteV97VWGLl -----END CERTIFICATE-----Generated at Sun Jun 15 05:02:50 2025 by rpki-client