$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.mft File: Bg9-d8AKy-CGjcC4_KI9Sl8H13o.mft (raw, json) Hash identifier: YgupXVRIRLDKOXyPC9V3k8yWPMZzLg7cFdIGwL/3FPE= Subject key identifier: C2:47:B4:33:24:06:F0:AB:79:F1:D5:4B:87:53:E0:39:07:1A:E8:2B Authority key identifier: 06:0F:7E:77:C0:0A:CB:E0:86:8D:C0:B8:FC:A2:3D:4A:5F:07:D7:7A Certificate issuer: /CN=A91BBA80/serialNumber=060F7E77C00ACBE0868DC0B8FCA23D4A5F07D77A Certificate serial: 0C98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.mft Manifest number: 0C64 Signing time: Thu 24 Apr 2025 18:25:20 +0000 Manifest this update: Thu 24 Apr 2025 18:25:20 +0000 Manifest next update: Thu 01 May 2025 18:25:20 +0000 Files and hashes: 1: Bg9-d8AKy-CGjcC4_KI9Sl8H13o.crl (hash: O6LqK5y+unHOPcApiPFvEyr6796nzQivCpT6AZKxVeo=) 2: 21A9C2D4221211EF9624DB0CC4F9AE02.roa (hash: QL/NLzdNbP6VC/RbcjFAhO7P1ptgQDlD2OI4FmLsmtY=) 3: 12561046368911EEA0CB766BC4F9AE02.roa (hash: /GknOelDIGsOfVA5prSm5KZ1UJQ7GqbrCT0cnToz+2g=) 4: 2FC3DE84B15B11EB8CCCD624C4F9AE02.roa (hash: 0OHkdOYwWuHEae6hLLfEVYlgXJ3hl5nkCEg2iieXkpI=) 5: 22E63812221211EF9624DB0CC4F9AE02.roa (hash: MDORN4dVK/WKX8D1PrktvMyAAOKMRM6BT7nSAEts5I4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.crl rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:25:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3224 (0xc98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBA80, serialNumber=060F7E77C00ACBE0868DC0B8FCA23D4A5F07D77A Validity Not Before: Apr 24 18:25:20 2025 GMT Not After : May 1 18:25:20 2025 GMT Subject: CN=680a8210-3605 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:43:49:91:a7:6c:c5:82:8f:85:8e:18:83:f3: 1c:80:8a:85:31:15:56:be:e9:5b:3f:1b:85:bc:28: f9:bf:02:8b:cd:61:13:e7:b5:17:ce:9d:f5:f3:bb: 1e:a8:00:be:80:25:cb:e4:7d:4a:d1:83:da:97:fb: ab:da:4f:59:16:ca:78:ef:2b:e2:21:8e:70:5e:3c: b3:29:c9:5e:27:72:1e:a0:d5:a3:23:85:76:62:4f: 27:41:94:a1:4a:1b:56:e9:a0:51:7a:33:f1:f9:4e: c8:eb:1a:9c:ad:bb:37:e7:0a:c3:97:8b:02:86:4e: 5b:d7:e5:ba:c3:a7:59:5d:2c:71:b7:ce:5a:68:8d: 54:6a:ff:aa:b5:ce:df:bf:d9:5c:e9:12:77:c7:96: f4:88:35:86:1f:48:e0:b8:7e:36:3a:6d:8c:8e:c2: f5:4c:98:01:c6:94:c4:85:88:32:8c:37:2c:6f:8a: 69:a7:08:96:42:a3:19:c9:3d:d7:7b:59:d8:c9:f6: 73:69:30:0e:4a:45:98:83:8d:03:90:ff:27:06:dc: b6:0b:94:81:bb:4c:ab:2f:ae:21:8d:11:be:01:0e: 88:dc:8a:96:7d:e5:b9:ea:16:5f:71:7e:36:1b:3f: 2f:db:de:27:ae:3b:6a:17:69:2e:fa:a6:a0:0c:a8: 40:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:47:B4:33:24:06:F0:AB:79:F1:D5:4B:87:53:E0:39:07:1A:E8:2B X509v3 Authority Key Identifier: keyid:06:0F:7E:77:C0:0A:CB:E0:86:8D:C0:B8:FC:A2:3D:4A:5F:07:D7:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:d6:14:17:d3:8a:16:d2:49:66:04:4d:d3:6d:44:39:8d:2d: 87:0c:0b:0f:b3:60:7e:4a:ea:54:1e:f0:fb:29:4e:82:56:a1: 6e:6f:65:47:ef:99:4b:67:9b:ef:df:c0:3f:58:fb:a1:e1:f7: 96:90:ff:00:f9:b2:21:5f:ba:9f:43:cb:33:04:1c:3b:66:88: ac:3a:aa:f0:8d:58:24:95:ab:9a:d9:d2:d6:31:24:05:79:05: 9a:3c:c6:0d:c4:4f:83:00:4d:ca:0f:01:a4:23:e5:fc:a6:88: 55:b1:e8:69:9b:4a:6d:0a:af:07:1d:1b:ca:0f:4f:16:5a:d5: 9f:f1:b6:40:49:e1:de:48:4e:f9:25:89:0a:6c:8d:50:c7:be: 34:ec:b4:c5:3f:a3:a3:8c:e3:9d:6b:e9:a0:35:b4:3d:d9:1a: 66:76:56:12:2e:02:97:c1:64:65:55:43:91:03:5a:78:44:a5: 43:6e:4b:9e:98:6a:c6:7a:09:fb:c1:9b:87:f4:06:48:3b:b4: 06:82:8a:aa:9d:49:e1:1c:79:81:26:ea:a3:d3:54:a6:ef:95: 6f:96:93:9f:12:75:2f:d5:e5:f9:29:12:d4:39:2e:49:d6:be: 19:18:d6:74:fe:16:c1:12:29:a0:f1:e9:b5:fa:3a:c3:b4:3c: 12:01:10:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkJBODAxMTAvBgNVBAUTKDA2MEY3RTc3QzAwQUNCRTA4NjhEQzBCOEZDQTIzRDRB NUYwN0Q3N0EwHhcNMjUwNDI0MTgyNTIwWhcNMjUwNTAxMTgyNTIwWjAYMRYwFAYD VQQDEw02ODBhODIxMC0zNjA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1UNJkadsxYKPhY4Yg/McgIqFMRVWvulbPxuFvCj5vwKLzWET57UXzp3187se qAC+gCXL5H1K0YPal/ur2k9ZFsp47yviIY5wXjyzKcleJ3IeoNWjI4V2Yk8nQZSh ShtW6aBRejPx+U7I6xqcrbs35wrDl4sChk5b1+W6w6dZXSxxt85aaI1Uav+qtc7f v9lc6RJ3x5b0iDWGH0jguH42Om2MjsL1TJgBxpTEhYgyjDcsb4pppwiWQqMZyT3X e1nYyfZzaTAOSkWYg40DkP8nBty2C5SBu0yrL64hjRG+AQ6I3IqWfeW56hZfcX42 Gz8v294nrjtqF2ku+qagDKhAvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMJHtDMk BvCrefHVS4dT4DkHGugrMB8GA1UdIwQYMBaAFAYPfnfACsvgho3AuPyiPUpfB9d6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQkE4MC9COThFODFENjA1 QjkxMUVBODIwODk5NkVDNEY5QUUwMi9CZzktZDhBS3ktQ0dqY0M0X0tJOVNsOEgx M28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JnOS1kOEFLeS1DR2pjQzRfS0k5U2w4SDEzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QkE4MC9COThFODFENjA1QjkxMUVBODIwODk5NkVDNEY5QUUwMi9CZzktZDhBS3kt Q0dqY0M0X0tJOVNsOEgxM28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAi1hQX04oW0klmBE3TbUQ5jS2HDAsPs2B+SupUHvD7KU6CVqFub2VH 75lLZ5vv38A/WPuh4feWkP8A+bIhX7qfQ8szBBw7ZoisOqrwjVgklaua2dLWMSQF eQWaPMYNxE+DAE3KDwGkI+X8pohVsehpm0ptCq8HHRvKD08WWtWf8bZASeHeSE75 JYkKbI1Qx7407LTFP6OjjOOda+mgNbQ92RpmdlYSLgKXwWRlVUORA1p4RKVDbkue mGrGegn7wZuH9AZIO7QGgoqqnUnhHHmBJuqj01Sm75VvlpOfEnUv1eX5KRLUOS5J 1r4ZGNZ0/hbBEimg8em1+jrDtDwSARAY -----END CERTIFICATE-----Generated at Sat Apr 26 04:26:32 2025 by rpki-client