$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.mft File: BAiuYP82i4xPzZMY6lKlnIcolJw.mft (raw, json) Hash identifier: uqkuwR4/S879c6P27gDUCjvo34zXuJ/utHblOXHOr3Q= Subject key identifier: 33:6C:50:62:CC:6D:BF:CE:A4:56:79:81:D9:19:5D:B2:8F:25:70:63 Authority key identifier: 04:08:AE:60:FF:36:8B:8C:4F:CD:93:18:EA:52:A5:9C:87:28:94:9C Certificate issuer: /CN=A91BA0AE/serialNumber=0408AE60FF368B8C4FCD9318EA52A59C8728949C Certificate serial: 084F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BAiuYP82i4xPzZMY6lKlnIcolJw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.mft Manifest number: 0A0C Signing time: Thu 24 Apr 2025 20:36:58 +0000 Manifest this update: Thu 24 Apr 2025 20:36:58 +0000 Manifest next update: Thu 01 May 2025 20:36:58 +0000 Files and hashes: 1: BAiuYP82i4xPzZMY6lKlnIcolJw.crl (hash: svsSS4zDBZNKEdd5BdyuOVs/1CS6z7E/SAGS2ZfcQks=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.crl rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BAiuYP82i4xPzZMY6lKlnIcolJw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:36:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2127 (0x84f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA0AE, serialNumber=0408AE60FF368B8C4FCD9318EA52A59C8728949C Validity Not Before: Apr 24 20:36:58 2025 GMT Not After : May 1 20:36:58 2025 GMT Subject: CN=680aa0ea-0279 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:56:de:7c:27:ad:08:11:d4:52:b4:9f:c0:de: ea:aa:e7:cb:a4:f8:07:5a:a2:7e:01:49:d9:89:c6: 18:36:b8:06:61:27:8b:ed:ab:c7:90:48:1e:c2:44: 88:50:85:57:aa:a4:33:38:95:5f:dc:20:5e:2e:ba: b6:d3:0d:7e:7f:86:e4:e2:3c:d4:61:96:1a:2d:49: 7d:db:70:29:35:4d:9e:ed:2c:30:e8:1d:7c:ed:5b: 24:94:77:8b:b6:d9:9d:3f:bf:6b:6e:d6:78:b6:d4: d1:54:89:28:dd:fe:de:3c:e3:28:55:79:ba:47:e7: ad:a5:7f:ed:c9:fa:bb:47:fb:e1:30:5d:97:33:e2: 3b:77:2e:9a:80:de:ac:5d:e4:c4:a4:96:05:cc:aa: 11:5f:df:2b:5f:f7:2b:e3:b1:a3:32:21:7c:70:01: 84:f7:9b:cf:f3:a2:cb:41:f2:16:10:ad:fa:e7:bb: 11:99:09:e3:5c:c7:a7:04:8b:d5:81:2c:eb:c4:f8: 79:eb:60:3c:45:cf:1b:ba:95:5a:1a:6f:32:16:54: 9d:5b:1d:cb:d5:9d:a6:5d:f9:8c:52:e9:f8:4e:ca: 5a:4f:f6:d8:0d:03:c8:87:8f:7e:ee:3f:fd:72:e8: 8f:21:4f:71:c3:e5:15:5f:15:9c:8c:de:66:5f:49: a9:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:6C:50:62:CC:6D:BF:CE:A4:56:79:81:D9:19:5D:B2:8F:25:70:63 X509v3 Authority Key Identifier: keyid:04:08:AE:60:FF:36:8B:8C:4F:CD:93:18:EA:52:A5:9C:87:28:94:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BAiuYP82i4xPzZMY6lKlnIcolJw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d0:22:bc:ca:bb:86:a7:e2:ab:3a:ef:96:53:95:30:81:dc:8a: d2:1e:b6:b7:b2:2c:ea:22:6f:5f:4a:26:5d:f7:ad:38:e7:71: a2:4b:fa:62:bf:54:64:e3:37:fc:84:3c:43:e6:41:c5:5c:16: c5:dd:6f:78:02:6d:6a:79:a4:45:cc:4e:10:03:58:e4:6f:3c: bb:72:36:b1:ef:94:3e:09:d8:ad:d4:f9:1b:e5:2d:4c:1b:a7: c0:15:1f:26:67:64:01:f0:b1:06:7c:c0:4e:e5:55:95:d4:73: c1:0c:46:04:c4:09:4f:45:bc:d5:e6:60:b0:d0:e9:74:bd:a2: a8:db:da:18:0d:72:b6:82:9a:93:1b:aa:3c:82:93:1a:e8:23: 00:9b:6f:21:d0:06:1b:66:88:e3:b1:77:d8:a9:c1:f6:66:dc: e4:cc:f0:5d:b4:83:e5:f4:59:23:63:db:3d:6d:fc:79:d7:9f: 20:b1:c3:c8:c2:96:d1:c8:fd:b9:76:81:5c:f4:07:bc:9c:7e: 14:de:44:ae:b8:aa:93:21:16:86:07:91:d0:b2:6b:4f:4f:95: 9c:13:77:c2:9a:bf:a3:f6:9f:a5:4b:2d:b8:0e:33:74:bd:4d: f3:2f:44:db:9d:6a:c2:99:13:93:0c:90:1a:5c:1a:fb:a9:c6: ea:fc:b7:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCE8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkEwQUUxMTAvBgNVBAUTKDA0MDhBRTYwRkYzNjhCOEM0RkNEOTMxOEVBNTJBNTlD ODcyODk0OUMwHhcNMjUwNDI0MjAzNjU4WhcNMjUwNTAxMjAzNjU4WjAYMRYwFAYD VQQDEw02ODBhYTBlYS0wMjc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAulbefCetCBHUUrSfwN7qqufLpPgHWqJ+AUnZicYYNrgGYSeL7avHkEgewkSI UIVXqqQzOJVf3CBeLrq20w1+f4bk4jzUYZYaLUl923ApNU2e7Sww6B187VsklHeL ttmdP79rbtZ4ttTRVIko3f7ePOMoVXm6R+etpX/tyfq7R/vhMF2XM+I7dy6agN6s XeTEpJYFzKoRX98rX/cr47GjMiF8cAGE95vP86LLQfIWEK3657sRmQnjXMenBIvV gSzrxPh562A8Rc8bupVaGm8yFlSdWx3L1Z2mXfmMUun4TspaT/bYDQPIh49+7j/9 cuiPIU9xw+UVXxWcjN5mX0mp1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDNsUGLM bb/OpFZ5gdkZXbKPJXBjMB8GA1UdIwQYMBaAFAQIrmD/NouMT82TGOpSpZyHKJSc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTBBRS8zN0VCMEM2NkM5 NjQxMUVBQTEwNkU4NTlDNEY5QUUwMi9CQWl1WVA4Mmk0eFB6Wk1ZNmxLbG5JY29s SncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JBaXVZUDgyaTR4UHpaTVk2bEtsbkljb2xKdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTBBRS8zN0VCMEM2NkM5NjQxMUVBQTEwNkU4NTlDNEY5QUUwMi9CQWl1WVA4Mmk0 eFB6Wk1ZNmxLbG5JY29sSncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDQIrzKu4an4qs675ZTlTCB3IrSHra3sizqIm9fSiZd960453GiS/pi v1Rk4zf8hDxD5kHFXBbF3W94Am1qeaRFzE4QA1jkbzy7cjax75Q+Cdit1Pkb5S1M G6fAFR8mZ2QB8LEGfMBO5VWV1HPBDEYExAlPRbzV5mCw0Ol0vaKo29oYDXK2gpqT G6o8gpMa6CMAm28h0AYbZojjsXfYqcH2ZtzkzPBdtIPl9FkjY9s9bfx5158gscPI wpbRyP25doFc9Ae8nH4U3kSuuKqTIRaGB5HQsmtPT5WcE3fCmr+j9p+lSy24DjN0 vU3zL0TbnWrCmROTDJAaXBr7qcbq/Lcq -----END CERTIFICATE-----Generated at Sat Apr 26 13:03:26 2025 by rpki-client