$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4AA0/1041E5EAE2C311EAB818D17FC4F9AE02/BM9X8qf_ynLAdGioxtXyRRf_Rrk.mft File: BM9X8qf_ynLAdGioxtXyRRf_Rrk.mft (raw, json) Hash identifier: vSlNNUCrBwsPBMrrk661Jkk6k/58ep6I2ifQLAKj1Dk= Subject key identifier: 17:1C:78:1E:A7:47:B5:A6:27:B5:81:E5:9A:F4:57:03:35:F4:F7:51 Authority key identifier: 04:CF:57:F2:A7:FF:CA:72:C0:74:68:A8:C6:D5:F2:45:17:FF:46:B9 Certificate issuer: /CN=A91B4AA0/serialNumber=04CF57F2A7FFCA72C07468A8C6D5F24517FF46B9 Certificate serial: 0814 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BM9X8qf_ynLAdGioxtXyRRf_Rrk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4AA0/1041E5EAE2C311EAB818D17FC4F9AE02/BM9X8qf_ynLAdGioxtXyRRf_Rrk.mft Manifest number: 0809 Signing time: Thu 12 Jun 2025 20:38:16 +0000 Manifest this update: Thu 12 Jun 2025 20:38:15 +0000 Manifest next update: Thu 19 Jun 2025 20:38:15 +0000 Files and hashes: 1: BM9X8qf_ynLAdGioxtXyRRf_Rrk.crl (hash: sAF6bxxiEvZ/UVpIWFPhCFwJ/ex6MPZeWpR9T5awIZg=) 2: 02F863F6C09211EC8950E57AC4F9AE02.roa (hash: YNUo90dPfw7aNa6aT24Mb69b4ZpufKscErkIIX/bwoA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4AA0/1041E5EAE2C311EAB818D17FC4F9AE02/BM9X8qf_ynLAdGioxtXyRRf_Rrk.crl rsync://rpki.apnic.net/member_repository/A91B4AA0/1041E5EAE2C311EAB818D17FC4F9AE02/BM9X8qf_ynLAdGioxtXyRRf_Rrk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BM9X8qf_ynLAdGioxtXyRRf_Rrk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 20:38:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2068 (0x814) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4AA0, serialNumber=04CF57F2A7FFCA72C07468A8C6D5F24517FF46B9 Validity Not Before: Jun 12 20:38:15 2025 GMT Not After : Jun 19 20:38:15 2025 GMT Subject: CN=684b3ab8-15d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:0e:78:94:8c:f7:5f:81:f8:d4:1a:f0:1d:95: ab:e9:fa:48:34:59:d3:a3:35:f2:21:4a:d4:99:f9: 72:81:4d:11:f2:08:1e:0c:a3:dc:e2:97:57:82:9c: 8c:98:55:32:98:69:44:98:c2:e3:68:d3:ff:26:10: 94:14:61:80:26:a8:4a:23:7e:e5:fc:cc:ed:f5:08: 54:07:42:3c:9e:88:a0:21:c2:4a:86:70:e5:5b:9e: a4:da:ef:fa:2a:d6:4b:ee:35:1b:06:e4:2e:7e:a2: 3d:0c:6b:df:02:ed:60:90:9b:ca:40:8a:6e:d1:00: dc:b8:3b:8d:7b:b7:cc:4b:6e:da:f0:15:59:d6:b2: 6e:df:c7:2a:85:fa:48:1e:1b:6b:d6:d8:44:c8:4c: 31:ac:49:25:0e:ab:ad:07:f9:bc:3d:9c:63:80:ab: 1d:40:f8:09:e4:08:1c:42:00:d9:d3:20:4f:e5:88: ae:8e:c9:5d:57:4a:c3:8c:d6:59:37:8f:73:f3:72: 40:0e:47:97:b7:c6:19:7c:96:90:05:51:bb:45:28: 92:09:67:0c:47:a6:15:1f:f3:d2:a4:81:69:0e:cb: cb:83:15:3c:4c:eb:4b:31:0e:a8:dd:25:ad:3c:ab: 28:8d:d4:c5:e0:24:1d:1f:83:e5:bc:c3:86:d6:b6: a4:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:1C:78:1E:A7:47:B5:A6:27:B5:81:E5:9A:F4:57:03:35:F4:F7:51 X509v3 Authority Key Identifier: keyid:04:CF:57:F2:A7:FF:CA:72:C0:74:68:A8:C6:D5:F2:45:17:FF:46:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4AA0/1041E5EAE2C311EAB818D17FC4F9AE02/BM9X8qf_ynLAdGioxtXyRRf_Rrk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BM9X8qf_ynLAdGioxtXyRRf_Rrk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4AA0/1041E5EAE2C311EAB818D17FC4F9AE02/BM9X8qf_ynLAdGioxtXyRRf_Rrk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:8d:9b:63:17:ad:cf:a7:e5:3b:e5:07:67:d9:aa:c1:8b:59: ee:af:fe:b0:00:2a:5a:41:df:33:ae:ae:81:c8:4e:ac:64:66: c0:59:07:fb:09:13:fe:68:4c:07:13:61:d3:dc:e0:8a:00:a1: 84:4c:98:4e:1f:df:36:40:36:8b:96:0d:6d:4d:ee:22:e7:1a: d9:99:bc:8a:ef:56:f6:91:2f:20:55:24:2f:6d:6a:54:71:11: 55:45:be:fb:cd:73:5c:70:cb:2b:0d:bc:7a:2d:59:b8:2a:b9: ed:89:ce:8d:6e:d1:fe:e0:4b:84:5a:11:a9:3c:d7:b4:40:be: 8f:25:94:5a:c6:f6:c4:11:09:e1:ea:ef:2f:2f:6d:77:be:9d: 4a:2b:3b:bb:0b:b8:ad:49:3e:36:0c:da:67:ef:6f:e0:51:a5: ba:2e:89:20:7f:7b:b5:a1:01:3c:cf:83:82:e4:78:de:97:5d: 4b:54:9d:ad:e0:d2:7f:0b:87:29:62:a1:66:e8:1e:4b:8b:9f: c9:b6:f6:26:ad:6d:04:f0:6a:b1:89:25:a6:ec:a3:d8:ab:d0: 90:b0:46:6d:fb:52:48:50:27:ba:44:8e:e5:e6:7f:e7:68:24: 43:8f:39:fa:5e:01:26:71:17:ff:47:90:0d:9b:35:fc:5f:63: 3a:81:ba:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCBQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjRBQTAxMTAvBgNVBAUTKDA0Q0Y1N0YyQTdGRkNBNzJDMDc0NjhBOEM2RDVGMjQ1 MTdGRjQ2QjkwHhcNMjUwNjEyMjAzODE1WhcNMjUwNjE5MjAzODE1WjAYMRYwFAYD VQQDEw02ODRiM2FiOC0xNWQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArg54lIz3X4H41BrwHZWr6fpINFnTozXyIUrUmflygU0R8ggeDKPc4pdXgpyM mFUymGlEmMLjaNP/JhCUFGGAJqhKI37l/Mzt9QhUB0I8noigIcJKhnDlW56k2u/6 KtZL7jUbBuQufqI9DGvfAu1gkJvKQIpu0QDcuDuNe7fMS27a8BVZ1rJu38cqhfpI Hhtr1thEyEwxrEklDqutB/m8PZxjgKsdQPgJ5AgcQgDZ0yBP5YiujsldV0rDjNZZ N49z83JADkeXt8YZfJaQBVG7RSiSCWcMR6YVH/PSpIFpDsvLgxU8TOtLMQ6o3SWt PKsojdTF4CQdH4PlvMOG1rakOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBcceB6n R7WmJ7WB5Zr0VwM19PdRMB8GA1UdIwQYMBaAFATPV/Kn/8pywHRoqMbV8kUX/0a5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNEFBMC8xMDQxRTVFQUUy QzMxMUVBQjgxOEQxN0ZDNEY5QUUwMi9CTTlYOHFmX3luTEFkR2lveHRYeVJSZl9S cmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JNOVg4cWZfeW5MQWRHaW94dFh5UlJmX1Jyay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NEFBMC8xMDQxRTVFQUUyQzMxMUVBQjgxOEQxN0ZDNEY5QUUwMi9CTTlYOHFmX3lu TEFkR2lveHRYeVJSZl9ScmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGjZtjF63Pp+U75Qdn2arBi1nur/6wACpaQd8zrq6ByE6sZGbAWQf7 CRP+aEwHE2HT3OCKAKGETJhOH982QDaLlg1tTe4i5xrZmbyK71b2kS8gVSQvbWpU cRFVRb77zXNccMsrDbx6LVm4Krntic6NbtH+4EuEWhGpPNe0QL6PJZRaxvbEEQnh 6u8vL213vp1KKzu7C7itST42DNpn72/gUaW6Lokgf3u1oQE8z4OC5Hjel11LVJ2t 4NJ/C4cpYqFm6B5Li5/JtvYmrW0E8GqxiSWm7KPYq9CQsEZt+1JIUCe6RI7l5n/n aCRDjzn6XgEmcRf/R5ANmzX8X2M6gbow -----END CERTIFICATE-----Generated at Sat Jun 14 18:49:24 2025 by rpki-client