$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4873/56A5B2AE38E711EF844B4F65C4F9AE02/bdB1wHDNGUBcCU1NPUvaFjQM7vw.mft File: bdB1wHDNGUBcCU1NPUvaFjQM7vw.mft (raw, json) Hash identifier: h1UiA/aupnq2hgYxMtR9gDfPoDAJ0PfrP07NCy2QEzo= Subject key identifier: 4E:3D:5F:84:0B:A7:CA:CD:DA:4D:6E:B2:7D:7F:DD:8F:02:D9:5A:E9 Authority key identifier: 6D:D0:75:C0:70:CD:19:40:5C:09:4D:4D:3D:4B:DA:16:34:0C:EE:FC Certificate issuer: /CN=A91B4873/serialNumber=6DD075C070CD19405C094D4D3D4BDA16340CEEFC Certificate serial: 98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bdB1wHDNGUBcCU1NPUvaFjQM7vw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4873/56A5B2AE38E711EF844B4F65C4F9AE02/bdB1wHDNGUBcCU1NPUvaFjQM7vw.mft Manifest number: 98 Signing time: Fri 25 Apr 2025 05:18:46 +0000 Manifest this update: Fri 25 Apr 2025 05:18:46 +0000 Manifest next update: Fri 02 May 2025 05:18:46 +0000 Files and hashes: 1: bdB1wHDNGUBcCU1NPUvaFjQM7vw.crl (hash: OXfqhe4814AD21bB+m7qAJ+pG1O0Ofcb40L/RJfVh6M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4873/56A5B2AE38E711EF844B4F65C4F9AE02/bdB1wHDNGUBcCU1NPUvaFjQM7vw.crl rsync://rpki.apnic.net/member_repository/A91B4873/56A5B2AE38E711EF844B4F65C4F9AE02/bdB1wHDNGUBcCU1NPUvaFjQM7vw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bdB1wHDNGUBcCU1NPUvaFjQM7vw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:18:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 152 (0x98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4873, serialNumber=6DD075C070CD19405C094D4D3D4BDA16340CEEFC Validity Not Before: Apr 25 05:18:46 2025 GMT Not After : May 2 05:18:46 2025 GMT Subject: CN=680b1b36-af08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:b1:1e:17:65:a6:3b:91:ca:12:35:73:c2:60: f3:92:80:d2:83:89:16:b9:f4:7e:5f:48:50:d0:46: 5d:94:38:7f:61:5b:db:f1:a5:f1:34:61:c4:6d:d2: 8d:3a:33:dd:f5:0d:d9:07:a1:82:e4:ec:88:7f:8c: 2d:6d:a5:d7:7a:d9:3b:68:ce:a6:67:71:c2:13:12: e0:af:bd:df:95:ab:d6:bf:2a:1b:49:b9:2b:b4:80: ec:f5:8b:70:8d:90:11:c0:9d:98:90:67:ab:0c:9f: b2:6c:c1:ac:7c:4c:92:5e:32:4f:e3:cd:c0:eb:b2: 86:05:60:c1:94:d2:46:de:56:b2:82:99:80:99:dd: 07:62:f6:78:3c:6f:ab:f6:71:1c:f9:4f:05:15:0d: c6:fc:68:c2:c9:bb:71:25:2c:31:90:3d:ea:a0:50: e3:65:b2:69:fc:50:27:80:94:7d:6f:5b:d7:a0:68: 22:be:78:09:9b:bf:91:6c:95:55:f2:07:c9:2b:bb: c2:1e:80:04:a2:ff:31:92:03:74:89:6b:2c:0a:a3: 3b:90:18:1a:1b:75:7e:28:52:42:06:07:9c:e9:42: 04:a6:e8:81:ec:8f:08:e4:b2:51:bb:7a:b9:7f:cc: 2b:2c:e7:38:7c:02:34:39:28:dc:5f:bf:37:b6:02: 01:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:3D:5F:84:0B:A7:CA:CD:DA:4D:6E:B2:7D:7F:DD:8F:02:D9:5A:E9 X509v3 Authority Key Identifier: keyid:6D:D0:75:C0:70:CD:19:40:5C:09:4D:4D:3D:4B:DA:16:34:0C:EE:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4873/56A5B2AE38E711EF844B4F65C4F9AE02/bdB1wHDNGUBcCU1NPUvaFjQM7vw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bdB1wHDNGUBcCU1NPUvaFjQM7vw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4873/56A5B2AE38E711EF844B4F65C4F9AE02/bdB1wHDNGUBcCU1NPUvaFjQM7vw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:96:a6:0f:67:5b:2c:e0:43:b4:c6:da:fb:f5:41:44:a4:5d: 08:33:36:db:a9:49:84:06:03:23:41:0d:ad:eb:8d:7f:ee:ed: 06:75:6a:bf:fd:2c:4a:8c:ad:61:47:ac:9b:ca:3c:de:b3:80: 33:e6:a2:07:37:38:43:89:d2:ce:86:8e:6d:75:1d:46:76:9a: 83:19:7a:3c:f3:fa:e5:14:10:4c:8d:9d:f2:9b:c8:81:4a:58: ca:9e:c1:67:7e:eb:80:90:ee:a7:28:ab:7a:c5:a5:56:0e:59: df:de:5f:56:d2:72:a6:df:b3:0d:50:1a:f1:4e:8f:1d:4a:83: 6b:94:7b:69:25:cd:f9:3d:52:04:bb:c4:da:ef:cd:dd:63:78: 8c:6a:8f:03:43:e1:6a:c6:0d:c5:be:22:93:19:3a:a3:f1:f4: 96:30:a3:9e:78:d8:8d:b8:88:3c:a0:5e:9e:a0:52:ae:8f:f7: af:76:78:40:2b:9d:08:d9:e8:5b:8a:4b:9f:40:c0:9d:31:97: 8c:19:9b:0c:8e:cc:44:d4:0c:ae:33:56:ca:06:58:05:62:ed: 4c:10:88:7c:fb:44:50:82:f4:53:6b:4d:c4:b1:79:69:9c:83: d1:10:67:9b:d9:c8:ee:11:04:eb:41:94:fb:c8:36:6f:da:ac: 79:be:40:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ4NzMxMTAvBgNVBAUTKDZERDA3NUMwNzBDRDE5NDA1QzA5NEQ0RDNENEJEQTE2 MzQwQ0VFRkMwHhcNMjUwNDI1MDUxODQ2WhcNMjUwNTAyMDUxODQ2WjAYMRYwFAYD VQQDEw02ODBiMWIzNi1hZjA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5LEeF2WmO5HKEjVzwmDzkoDSg4kWufR+X0hQ0EZdlDh/YVvb8aXxNGHEbdKN OjPd9Q3ZB6GC5OyIf4wtbaXXetk7aM6mZ3HCExLgr73flavWvyobSbkrtIDs9Ytw jZARwJ2YkGerDJ+ybMGsfEySXjJP483A67KGBWDBlNJG3laygpmAmd0HYvZ4PG+r 9nEc+U8FFQ3G/GjCybtxJSwxkD3qoFDjZbJp/FAngJR9b1vXoGgivngJm7+RbJVV 8gfJK7vCHoAEov8xkgN0iWssCqM7kBgaG3V+KFJCBgec6UIEpuiB7I8I5LJRu3q5 f8wrLOc4fAI0OSjcX783tgIB9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE49X4QL p8rN2k1usn1/3Y8C2VrpMB8GA1UdIwQYMBaAFG3QdcBwzRlAXAlNTT1L2hY0DO78 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDg3My81NkE1QjJBRTM4 RTcxMUVGODQ0QjRGNjVDNEY5QUUwMi9iZEIxd0hETkdVQmNDVTFOUFV2YUZqUU03 dncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JkQjF3SEROR1VCY0NVMU5QVXZhRmpRTTd2dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDg3My81NkE1QjJBRTM4RTcxMUVGODQ0QjRGNjVDNEY5QUUwMi9iZEIxd0hETkdV QmNDVTFOUFV2YUZqUU03dncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/lqYPZ1ss4EO0xtr79UFEpF0IMzbbqUmEBgMjQQ2t641/7u0GdWq/ /SxKjK1hR6ybyjzes4Az5qIHNzhDidLOho5tdR1GdpqDGXo88/rlFBBMjZ3ym8iB SljKnsFnfuuAkO6nKKt6xaVWDlnf3l9W0nKm37MNUBrxTo8dSoNrlHtpJc35PVIE u8Ta783dY3iMao8DQ+Fqxg3FviKTGTqj8fSWMKOeeNiNuIg8oF6eoFKuj/evdnhA K50I2ehbikufQMCdMZeMGZsMjsxE1AyuM1bKBlgFYu1MEIh8+0RQgvRTa03EsXlp nIPREGeb2cjuEQTrQZT7yDZv2qx5vkAD -----END CERTIFICATE-----Generated at Sat Apr 26 04:04:53 2025 by rpki-client