$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4873/56A5B2AE38E711EF844B4F65C4F9AE02/bdB1wHDNGUBcCU1NPUvaFjQM7vw.mft File: bdB1wHDNGUBcCU1NPUvaFjQM7vw.mft (raw, json) Hash identifier: 85SHdDCLKWURl6KqOOJZULfL3PNY7uh71WLTD5OdCQA= Subject key identifier: 34:BD:EE:F7:D7:3A:AE:49:F3:9F:AD:72:62:43:B9:0A:51:07:7C:16 Authority key identifier: 6D:D0:75:C0:70:CD:19:40:5C:09:4D:4D:3D:4B:DA:16:34:0C:EE:FC Certificate issuer: /CN=A91B4873/serialNumber=6DD075C070CD19405C094D4D3D4BDA16340CEEFC Certificate serial: B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bdB1wHDNGUBcCU1NPUvaFjQM7vw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4873/56A5B2AE38E711EF844B4F65C4F9AE02/bdB1wHDNGUBcCU1NPUvaFjQM7vw.mft Manifest number: B0 Signing time: Fri 13 Jun 2025 04:56:54 +0000 Manifest this update: Fri 13 Jun 2025 04:56:53 +0000 Manifest next update: Fri 20 Jun 2025 04:56:53 +0000 Files and hashes: 1: bdB1wHDNGUBcCU1NPUvaFjQM7vw.crl (hash: +JcJdWxzV/mucqjleaacjZuzPrjHKtytV/msJVapjOk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4873/56A5B2AE38E711EF844B4F65C4F9AE02/bdB1wHDNGUBcCU1NPUvaFjQM7vw.crl rsync://rpki.apnic.net/member_repository/A91B4873/56A5B2AE38E711EF844B4F65C4F9AE02/bdB1wHDNGUBcCU1NPUvaFjQM7vw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bdB1wHDNGUBcCU1NPUvaFjQM7vw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 04:56:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 176 (0xb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4873, serialNumber=6DD075C070CD19405C094D4D3D4BDA16340CEEFC Validity Not Before: Jun 13 04:56:53 2025 GMT Not After : Jun 20 04:56:53 2025 GMT Subject: CN=684baf95-9397 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:a7:b0:3e:ca:c7:dd:0c:d9:90:68:9a:61:ce: d3:fc:2f:37:14:47:27:d6:4f:a3:fd:1f:ca:ce:aa: c7:1a:a0:72:ab:bd:54:84:68:9c:b7:59:7d:52:a5: d9:e4:58:75:c5:ce:73:62:f9:08:b9:fc:3b:ba:a4: ef:fb:61:74:a5:03:f4:ba:85:b1:7a:f8:94:9b:28: b8:eb:d2:45:13:ee:64:ea:98:5c:ae:92:64:55:59: ea:9c:f4:84:a9:0e:4a:bc:dd:18:ae:74:1e:f8:55: 2b:8b:0b:b8:86:ca:68:23:00:94:4f:90:f8:f2:d5: 58:e0:2c:55:c3:fe:0a:31:2d:94:93:86:10:35:da: 51:2c:86:50:c0:58:9b:dc:40:ad:6f:db:c0:04:64: 94:43:9d:d8:98:5b:1c:4a:31:74:61:35:18:69:7d: 1a:c3:5c:87:1b:ff:eb:60:b1:34:1b:96:4c:16:d0: f7:2f:93:bd:1e:bb:0e:b6:19:2b:e3:1c:7c:bc:03: 5b:4d:4b:02:40:ea:4c:7b:3d:1d:b1:b2:ac:b9:50: e9:ee:7d:45:12:63:78:7e:56:2f:fe:0e:80:5e:9c: fe:dc:78:89:f8:f6:1d:00:79:12:fa:d7:e5:b7:55: ca:59:a0:95:fa:29:87:f9:35:f1:48:35:0f:43:63: 61:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:BD:EE:F7:D7:3A:AE:49:F3:9F:AD:72:62:43:B9:0A:51:07:7C:16 X509v3 Authority Key Identifier: keyid:6D:D0:75:C0:70:CD:19:40:5C:09:4D:4D:3D:4B:DA:16:34:0C:EE:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4873/56A5B2AE38E711EF844B4F65C4F9AE02/bdB1wHDNGUBcCU1NPUvaFjQM7vw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bdB1wHDNGUBcCU1NPUvaFjQM7vw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4873/56A5B2AE38E711EF844B4F65C4F9AE02/bdB1wHDNGUBcCU1NPUvaFjQM7vw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:fa:47:8e:ca:00:09:46:f5:68:88:15:a7:65:63:d3:51:c7: db:d7:0f:7f:e7:43:1c:94:0c:13:88:31:3d:fb:72:08:db:fc: ab:5f:92:d0:bd:ef:46:b7:be:52:03:cc:67:28:d0:a2:49:95: b0:46:60:75:04:fc:54:bc:90:ba:a9:ee:4e:ae:21:34:a6:3d: 63:a4:bc:fc:22:46:ed:fd:b2:32:a1:14:3a:47:d6:cd:d1:1c: e4:09:c5:74:4f:84:d0:75:75:d0:9c:05:9b:2e:ec:40:2e:1b: d6:5b:52:fd:38:70:67:b3:f6:44:f3:54:07:7a:1b:c5:ce:ee: 6c:4b:d4:6e:af:50:b2:7c:3f:fb:ab:f3:59:26:2a:53:02:7d: ee:d2:35:ef:47:b1:84:3a:7f:3a:34:b7:c9:ec:3b:e0:63:49: 6c:2d:c7:ec:97:81:53:4f:c1:0f:73:0b:bd:b6:c5:c8:a4:9b: 46:25:82:4a:7e:ec:0d:16:2f:a8:51:6c:22:52:73:42:ab:d2: 8d:15:ce:0f:16:37:e0:1d:c2:16:70:97:98:ed:5e:6c:db:ff: 5c:d1:ce:55:09:db:d2:36:49:e0:8e:1f:72:9b:6f:93:e7:5d: 1d:f2:73:d5:0f:7a:5d:62:3f:ee:ab:15:71:21:f5:9d:b3:35: f8:69:4c:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ4NzMxMTAvBgNVBAUTKDZERDA3NUMwNzBDRDE5NDA1QzA5NEQ0RDNENEJEQTE2 MzQwQ0VFRkMwHhcNMjUwNjEzMDQ1NjUzWhcNMjUwNjIwMDQ1NjUzWjAYMRYwFAYD VQQDEw02ODRiYWY5NS05Mzk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmqewPsrH3QzZkGiaYc7T/C83FEcn1k+j/R/KzqrHGqByq71UhGict1l9UqXZ 5Fh1xc5zYvkIufw7uqTv+2F0pQP0uoWxeviUmyi469JFE+5k6phcrpJkVVnqnPSE qQ5KvN0YrnQe+FUriwu4hspoIwCUT5D48tVY4CxVw/4KMS2Uk4YQNdpRLIZQwFib 3ECtb9vABGSUQ53YmFscSjF0YTUYaX0aw1yHG//rYLE0G5ZMFtD3L5O9HrsOthkr 4xx8vANbTUsCQOpMez0dsbKsuVDp7n1FEmN4flYv/g6AXpz+3HiJ+PYdAHkS+tfl t1XKWaCV+imH+TXxSDUPQ2NhwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDS97vfX Oq5J85+tcmJDuQpRB3wWMB8GA1UdIwQYMBaAFG3QdcBwzRlAXAlNTT1L2hY0DO78 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDg3My81NkE1QjJBRTM4 RTcxMUVGODQ0QjRGNjVDNEY5QUUwMi9iZEIxd0hETkdVQmNDVTFOUFV2YUZqUU03 dncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JkQjF3SEROR1VCY0NVMU5QVXZhRmpRTTd2dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDg3My81NkE1QjJBRTM4RTcxMUVGODQ0QjRGNjVDNEY5QUUwMi9iZEIxd0hETkdV QmNDVTFOUFV2YUZqUU03dncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCG+keOygAJRvVoiBWnZWPTUcfb1w9/50MclAwTiDE9+3II2/yrX5LQ ve9Gt75SA8xnKNCiSZWwRmB1BPxUvJC6qe5OriE0pj1jpLz8Ikbt/bIyoRQ6R9bN 0RzkCcV0T4TQdXXQnAWbLuxALhvWW1L9OHBns/ZE81QHehvFzu5sS9Rur1CyfD/7 q/NZJipTAn3u0jXvR7GEOn86NLfJ7DvgY0lsLcfsl4FTT8EPcwu9tsXIpJtGJYJK fuwNFi+oUWwiUnNCq9KNFc4PFjfgHcIWcJeY7V5s2/9c0c5VCdvSNkngjh9ym2+T 510d8nPVD3pdYj/uqxVxIfWdszX4aUzy -----END CERTIFICATE-----Generated at Sat Jun 14 19:35:13 2025 by rpki-client