$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft File: bzPCWtM2F4RBLEKweYYz0Dslvso.mft (raw, json) Hash identifier: sZqIj1yF/xryFpdV8ylxjAGQYOsvCg9nKg2tRvgLDL4= Subject key identifier: FB:EB:36:E8:EB:8C:68:D6:D5:3C:4A:97:90:90:86:34:1B:EE:D7:3D Authority key identifier: 6F:33:C2:5A:D3:36:17:84:41:2C:42:B0:79:86:33:D0:3B:25:BE:CA Certificate issuer: /CN=A91AB027/serialNumber=6F33C25AD3361784412C42B0798633D03B25BECA Certificate serial: 0F3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bzPCWtM2F4RBLEKweYYz0Dslvso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft Manifest number: 0F32 Signing time: Thu 12 Jun 2025 17:31:02 +0000 Manifest this update: Thu 12 Jun 2025 17:31:01 +0000 Manifest next update: Thu 19 Jun 2025 17:31:01 +0000 Files and hashes: 1: bzPCWtM2F4RBLEKweYYz0Dslvso.crl (hash: Tujr+A4+/ciaxShP7tB1IAgtWaY4QsJ+JOz6l4C4PBE=) 2: 62C1F5587ACD11E9AC0A867BC4F9AE02.roa (hash: zJtFuv9ERKF2VcP0kXnp4PcKZFEJbjxQnX3bWZEEZas=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.crl rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bzPCWtM2F4RBLEKweYYz0Dslvso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 17:31:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3899 (0xf3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB027, serialNumber=6F33C25AD3361784412C42B0798633D03B25BECA Validity Not Before: Jun 12 17:31:01 2025 GMT Not After : Jun 19 17:31:01 2025 GMT Subject: CN=684b0ed5-979e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:32:32:7a:14:c7:75:29:de:cb:75:c9:61:31: ac:48:a9:e1:50:c8:95:70:7a:c7:40:74:10:9a:59: b2:97:a7:81:93:8d:0d:8e:0a:37:fa:f7:a6:be:1b: 9f:87:e6:1a:be:28:ff:30:2e:45:1f:ce:18:cc:03: d2:70:e0:c6:60:58:65:89:9b:29:f5:b6:eb:98:05: 11:ab:4c:1f:61:0c:c9:ef:42:16:58:3d:9d:ff:e1: 1c:41:6e:d7:8e:ee:2c:ee:89:75:72:1c:8c:cf:2e: 8d:47:fa:62:98:0a:b4:67:4e:c8:9d:e4:b9:02:0a: 5f:b3:ea:80:95:99:a2:c8:16:5c:89:06:f6:1c:b1: c9:d5:74:eb:5e:f0:d9:0f:34:e4:ff:7f:78:6b:22: 7a:fb:f9:1f:67:ce:44:b7:ce:07:1f:34:ce:7a:51: 47:5b:c6:b2:1f:31:17:8f:32:79:39:6a:15:4d:1d: 18:f6:04:81:45:b4:e1:a0:ec:c3:2d:44:cf:cb:69: a4:5e:2b:ac:68:62:fd:73:32:3e:7f:86:dd:ea:1e: 30:67:c8:37:c7:5c:37:02:b6:99:4e:84:69:46:07: 80:3d:8a:2b:ee:7a:bb:6e:8c:45:33:33:b4:f5:e4: c1:49:8e:b4:c5:b4:ff:6a:b8:5b:a9:04:8c:f9:b5: 85:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:EB:36:E8:EB:8C:68:D6:D5:3C:4A:97:90:90:86:34:1B:EE:D7:3D X509v3 Authority Key Identifier: keyid:6F:33:C2:5A:D3:36:17:84:41:2C:42:B0:79:86:33:D0:3B:25:BE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bzPCWtM2F4RBLEKweYYz0Dslvso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:c0:57:a4:96:d0:24:9d:99:7c:a2:d5:e0:e9:e9:b9:94:b3: d6:73:61:cd:03:01:9d:04:b2:8b:9e:49:8f:5d:e4:9f:28:79: 8e:54:b1:0f:4b:53:63:03:c5:40:8f:6d:ad:f8:09:91:74:f5: c6:21:d1:40:47:2c:46:a5:9e:2c:1d:4d:56:a2:fc:50:d0:3f: 18:9d:ef:06:2f:b2:58:c6:6f:3c:ba:b8:cb:76:33:c7:f5:7a: 53:27:24:30:b2:13:f7:34:7c:92:65:9f:c6:1b:4d:f1:b2:fc: 04:ed:55:8e:94:67:8b:ac:23:c7:bc:9b:56:ff:a6:df:54:b6: 3c:10:98:3b:45:57:24:3e:70:73:80:35:c4:1e:7a:35:8f:ba: 11:ae:94:97:8c:8d:f8:b3:4f:46:39:f4:11:b8:11:e0:59:2b: a7:cb:ad:a0:96:18:91:9f:ac:35:b5:e2:9d:0d:5f:50:8a:2e: fb:a4:6a:91:b8:69:b0:7f:30:4d:45:7b:57:f1:76:7f:f6:15: 79:05:fb:ad:11:60:46:53:8b:48:50:34:11:86:a3:eb:61:63: a2:71:cf:d9:d1:db:cb:e7:2c:c1:fd:72:cd:74:51:e5:ac:59: dc:b1:a6:ff:e3:50:7f:f9:b0:80:17:14:fb:79:f2:92:e3:1b: 6a:40:7e:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDzswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIwMjcxMTAvBgNVBAUTKDZGMzNDMjVBRDMzNjE3ODQ0MTJDNDJCMDc5ODYzM0Qw M0IyNUJFQ0EwHhcNMjUwNjEyMTczMTAxWhcNMjUwNjE5MTczMTAxWjAYMRYwFAYD VQQDEw02ODRiMGVkNS05NzllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2zIyehTHdSney3XJYTGsSKnhUMiVcHrHQHQQmlmyl6eBk40Njgo3+vemvhuf h+Yavij/MC5FH84YzAPScODGYFhliZsp9bbrmAURq0wfYQzJ70IWWD2d/+EcQW7X ju4s7ol1chyMzy6NR/pimAq0Z07IneS5Agpfs+qAlZmiyBZciQb2HLHJ1XTrXvDZ DzTk/394ayJ6+/kfZ85Et84HHzTOelFHW8ayHzEXjzJ5OWoVTR0Y9gSBRbThoOzD LUTPy2mkXiusaGL9czI+f4bd6h4wZ8g3x1w3AraZToRpRgeAPYor7nq7boxFMzO0 9eTBSY60xbT/arhbqQSM+bWF4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPvrNujr jGjW1TxKl5CQhjQb7tc9MB8GA1UdIwQYMBaAFG8zwlrTNheEQSxCsHmGM9A7Jb7K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjAyNy82OEY3NTkxMDcz NDYxMUU5QUQ1NjFCNDdDNEY5QUUwMi9ielBDV3RNMkY0UkJMRUt3ZVlZejBEc2x2 c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J6UENXdE0yRjRSQkxFS3dlWVl6MERzbHZzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjAyNy82OEY3NTkxMDczNDYxMUU5QUQ1NjFCNDdDNEY5QUUwMi9ielBDV3RNMkY0 UkJMRUt3ZVlZejBEc2x2c28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALwFekltAknZl8otXg6em5lLPWc2HNAwGdBLKLnkmPXeSfKHmOVLEP S1NjA8VAj22t+AmRdPXGIdFARyxGpZ4sHU1WovxQ0D8Yne8GL7JYxm88urjLdjPH 9XpTJyQwshP3NHySZZ/GG03xsvwE7VWOlGeLrCPHvJtW/6bfVLY8EJg7RVckPnBz gDXEHno1j7oRrpSXjI34s09GOfQRuBHgWSuny62glhiRn6w1teKdDV9Qii77pGqR uGmwfzBNRXtX8XZ/9hV5BfutEWBGU4tIUDQRhqPrYWOicc/Z0dvL5yzB/XLNdFHl rFncsab/41B/+bCAFxT7efKS4xtqQH4L -----END CERTIFICATE-----Generated at Sat Jun 14 18:41:15 2025 by rpki-client