$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft File: bzPCWtM2F4RBLEKweYYz0Dslvso.mft (raw, json) Hash identifier: NDvkC1k3Rm3oDj/E86v+QfDKPzJpXW022b32yamKQDk= Subject key identifier: 51:A3:39:A0:6C:72:AC:6B:8E:DA:0C:41:34:F4:FC:15:48:8F:B6:C7 Authority key identifier: 6F:33:C2:5A:D3:36:17:84:41:2C:42:B0:79:86:33:D0:3B:25:BE:CA Certificate issuer: /CN=A91AB027/serialNumber=6F33C25AD3361784412C42B0798633D03B25BECA Certificate serial: 0F21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bzPCWtM2F4RBLEKweYYz0Dslvso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft Manifest number: 0F19 Signing time: Sat 26 Apr 2025 17:32:31 +0000 Manifest this update: Sat 26 Apr 2025 17:32:30 +0000 Manifest next update: Sat 03 May 2025 17:32:30 +0000 Files and hashes: 1: bzPCWtM2F4RBLEKweYYz0Dslvso.crl (hash: MTG3xqcmZDtzCg5USK5nMhXOiUSES73wzX5oOvO5Lsw=) 2: 62C1F5587ACD11E9AC0A867BC4F9AE02.roa (hash: nPLVWy54o20K9NCgnKMQdW3UHlJN80xYDJGM9u1xe5s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.crl rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bzPCWtM2F4RBLEKweYYz0Dslvso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 17:32:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3873 (0xf21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB027, serialNumber=6F33C25AD3361784412C42B0798633D03B25BECA Validity Not Before: Apr 26 17:32:30 2025 GMT Not After : May 3 17:32:30 2025 GMT Subject: CN=680d18af-9af9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:73:fb:c4:37:66:3a:b6:fa:32:53:58:ec:1b: 7d:49:32:a2:85:cb:22:bd:bc:c8:14:33:22:de:e1: ed:72:a8:0f:12:27:09:44:18:42:17:49:77:d2:54: 35:e5:37:37:77:7b:e0:45:21:49:61:2b:36:5d:53: 8d:71:58:98:85:b4:a3:1c:b5:ed:91:6d:a5:3b:43: 39:e8:7a:59:62:c3:4e:7c:5d:0a:92:fa:29:45:f6: 72:78:45:04:e9:e7:e7:c5:67:39:f0:c4:57:1d:56: 92:85:85:69:14:d6:0b:3c:45:60:8a:97:70:45:e3: c7:33:5e:bf:f0:cb:c7:fa:33:21:94:4c:02:6a:bc: bc:92:65:fa:2d:1d:d6:d9:71:44:6f:5a:f2:39:e9: e0:a6:a5:f7:03:98:f2:09:36:da:ac:2a:15:d0:19: ed:eb:8f:39:24:eb:e3:a4:66:54:84:f8:69:a8:7f: f3:bd:87:05:7a:20:d7:67:24:24:49:38:66:18:bd: ca:fb:26:af:02:a2:d0:bf:12:4e:34:f0:86:28:1c: c9:4a:0f:63:a7:6f:84:ac:0a:d9:3c:e6:28:12:45: 0c:49:42:fe:eb:a3:dc:0c:3f:e7:82:d4:f8:bb:bc: 45:e2:b1:c0:20:e2:c4:14:26:dd:78:30:ae:a7:ba: 1e:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:A3:39:A0:6C:72:AC:6B:8E:DA:0C:41:34:F4:FC:15:48:8F:B6:C7 X509v3 Authority Key Identifier: keyid:6F:33:C2:5A:D3:36:17:84:41:2C:42:B0:79:86:33:D0:3B:25:BE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bzPCWtM2F4RBLEKweYYz0Dslvso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB027/68F75910734611E9AD561B47C4F9AE02/bzPCWtM2F4RBLEKweYYz0Dslvso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:25:9b:e1:8d:d3:c5:03:0e:e8:58:52:0a:2d:7b:84:93:bf: 1e:bc:fa:5a:e9:f8:2a:23:6e:0c:26:55:ce:e3:cc:0b:dd:af: 77:77:f9:4f:12:4b:aa:dd:1e:e8:a9:af:0a:85:bb:b5:18:0d: cf:f0:77:96:7c:9d:81:39:ef:62:1a:c0:80:8b:2e:3a:3c:04: 1a:16:56:3e:ca:67:a5:52:4c:f1:82:52:83:8b:0c:3c:02:d2: f3:9b:59:b5:f5:b9:a1:a9:36:8d:1f:d4:21:d6:03:3b:8b:7d: b0:47:dc:94:d5:55:f9:f1:e2:d5:9f:30:9d:c2:9a:df:36:da: 15:b6:d3:b8:91:1b:ab:a1:58:40:06:88:8b:27:aa:5c:b4:76: e8:25:e9:db:68:10:48:b4:e3:5a:d1:a8:4a:c5:b2:de:86:ca: 5d:e2:20:67:25:2c:c4:2e:93:aa:c9:97:00:f2:39:ae:3b:93: b2:a3:8b:11:a7:37:05:cc:03:f4:f5:70:f4:13:2c:70:da:63: c5:a8:e2:45:80:78:5a:97:53:55:f8:7e:aa:41:d9:b7:0e:4f: ce:f2:91:98:05:ea:e1:1a:22:d8:07:b5:05:4b:d0:d7:9b:67: bc:5b:4f:c9:03:cc:67:74:df:50:8d:d6:70:8e:88:3b:fc:24: 9d:87:0c:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDyEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIwMjcxMTAvBgNVBAUTKDZGMzNDMjVBRDMzNjE3ODQ0MTJDNDJCMDc5ODYzM0Qw M0IyNUJFQ0EwHhcNMjUwNDI2MTczMjMwWhcNMjUwNTAzMTczMjMwWjAYMRYwFAYD VQQDEw02ODBkMThhZi05YWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2HP7xDdmOrb6MlNY7Bt9STKihcsivbzIFDMi3uHtcqgPEicJRBhCF0l30lQ1 5Tc3d3vgRSFJYSs2XVONcViYhbSjHLXtkW2lO0M56HpZYsNOfF0KkvopRfZyeEUE 6efnxWc58MRXHVaShYVpFNYLPEVgipdwRePHM16/8MvH+jMhlEwCary8kmX6LR3W 2XFEb1ryOengpqX3A5jyCTbarCoV0Bnt6485JOvjpGZUhPhpqH/zvYcFeiDXZyQk SThmGL3K+yavAqLQvxJONPCGKBzJSg9jp2+ErArZPOYoEkUMSUL+66PcDD/ngtT4 u7xF4rHAIOLEFCbdeDCup7oeGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFGjOaBs cqxrjtoMQTT0/BVIj7bHMB8GA1UdIwQYMBaAFG8zwlrTNheEQSxCsHmGM9A7Jb7K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjAyNy82OEY3NTkxMDcz NDYxMUU5QUQ1NjFCNDdDNEY5QUUwMi9ielBDV3RNMkY0UkJMRUt3ZVlZejBEc2x2 c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J6UENXdE0yRjRSQkxFS3dlWVl6MERzbHZzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjAyNy82OEY3NTkxMDczNDYxMUU5QUQ1NjFCNDdDNEY5QUUwMi9ielBDV3RNMkY0 UkJMRUt3ZVlZejBEc2x2c28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPJZvhjdPFAw7oWFIKLXuEk78evPpa6fgqI24MJlXO48wL3a93d/lP Ekuq3R7oqa8Khbu1GA3P8HeWfJ2BOe9iGsCAiy46PAQaFlY+ymelUkzxglKDiww8 AtLzm1m19bmhqTaNH9Qh1gM7i32wR9yU1VX58eLVnzCdwprfNtoVttO4kRuroVhA BoiLJ6pctHboJenbaBBItONa0ahKxbLehspd4iBnJSzELpOqyZcA8jmuO5Oyo4sR pzcFzAP09XD0Eyxw2mPFqOJFgHhal1NV+H6qQdm3Dk/O8pGYBerhGiLYB7UFS9DX m2e8W0/JA8xndN9QjdZwjog7/CSdhwy2 -----END CERTIFICATE-----Generated at Sun Apr 27 14:17:50 2025 by rpki-client