$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft File: bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft (raw, json) Hash identifier: TjOFu4sSl+pF3WrZC6CUJBeblBmKCEfBHFK1DfpRapI= Subject key identifier: 7E:AD:9C:83:BC:94:E9:79:E7:AC:97:FB:62:55:49:C3:E1:EB:49:47 Authority key identifier: 6C:19:46:97:81:6F:9B:13:0B:A5:3C:F4:BE:E6:76:01:59:4E:8C:B1 Certificate issuer: /CN=A91CCAF1/serialNumber=6C194697816F9B130BA53CF4BEE67601594E8CB1 Certificate serial: 7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft Manifest number: 7D Signing time: Fri 13 Jun 2025 05:36:37 +0000 Manifest this update: Fri 13 Jun 2025 05:36:36 +0000 Manifest next update: Fri 20 Jun 2025 05:36:36 +0000 Files and hashes: 1: bBlGl4FvmxMLpTz0vuZ2AVlOjLE.crl (hash: C8FMOG8/wPYVsj2eBG3aW1vZClibbiVbbpjSBOoIIeg=) 2: BF71D9D0F26811EFBC446868C4F9AE02.roa (hash: 7+qKEqRnu4TPJKKakjwpNT1iFIHMXPBmy/g9UJm3iJo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.crl rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 05:36:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 126 (0x7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CCAF1, serialNumber=6C194697816F9B130BA53CF4BEE67601594E8CB1 Validity Not Before: Jun 13 05:36:36 2025 GMT Not After : Jun 20 05:36:36 2025 GMT Subject: CN=684bb8e4-64f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:0a:ae:15:5e:e6:0a:56:29:ac:f2:65:cf:0f: 28:ef:94:1b:3b:4c:71:37:99:3b:2f:da:cf:ca:3c: 23:1c:0f:72:19:4d:5b:03:5e:28:25:d4:3b:f6:29: cb:dd:d5:8a:6d:8d:f5:7d:56:8a:88:e6:93:1a:67: 3a:1d:27:07:d6:f3:d6:6c:17:ea:f3:29:dc:d5:14: 7a:77:78:d8:76:fa:36:e4:50:cf:65:ee:2e:05:3b: 1a:b1:d0:26:cf:0e:5b:b0:89:08:80:5b:f1:5e:d9: ed:6f:ab:78:ea:6d:dd:b6:36:a0:1e:ec:71:a5:c7: 06:fe:9e:e7:fe:18:77:f2:de:c8:b1:ca:83:32:25: 9a:6d:88:0a:c6:25:27:66:b7:9d:c9:46:eb:77:21: 36:03:04:91:9b:36:52:3d:31:82:f3:2a:45:12:9f: 75:cb:a5:39:2f:bf:56:9a:24:7b:50:86:f4:fb:7a: b4:8a:91:82:b3:d0:fe:ac:fd:0e:13:66:b1:6d:c4: d8:f7:4e:37:ff:c5:70:34:e3:8d:13:70:20:d2:03: db:5d:a4:9d:5d:2b:d7:26:f7:ea:7b:1c:78:dc:d7: c2:92:03:20:e1:b2:8b:c9:55:95:47:23:ef:09:3d: 90:07:93:d4:a0:2b:ef:9f:cf:b3:83:bb:47:76:ca: a0:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:AD:9C:83:BC:94:E9:79:E7:AC:97:FB:62:55:49:C3:E1:EB:49:47 X509v3 Authority Key Identifier: keyid:6C:19:46:97:81:6F:9B:13:0B:A5:3C:F4:BE:E6:76:01:59:4E:8C:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:79:aa:17:a6:bd:24:70:a3:f4:c5:fc:06:d5:42:c5:90:3f: 96:6b:4a:7b:ea:f6:1a:08:59:bd:23:84:ea:0c:73:e7:b6:b5: 36:4f:1a:fd:03:20:7b:78:5d:72:da:1c:c2:09:fb:01:09:17: 68:4b:98:58:93:ef:2d:1b:b0:34:7e:4f:4b:b4:bb:c6:f9:cd: 72:f5:99:e0:79:2a:15:da:c0:d1:47:7a:5d:d7:aa:5d:62:0d: 01:04:1c:9e:79:f1:01:ad:18:06:43:6c:db:33:45:a9:8a:c0: 9f:2e:84:ee:ad:b4:c3:da:46:6a:c8:ec:a3:1d:27:65:1d:b2: c6:bf:a1:b9:07:83:ef:a9:64:18:c1:8a:ff:16:f1:cd:75:c4: 89:82:66:72:8a:3d:d2:b6:ed:37:2a:7e:4f:3b:54:15:28:e7: ae:4c:f1:d9:5c:72:86:58:b9:60:57:55:64:66:6b:73:0b:a3: 08:59:7e:4f:1d:f4:fa:c4:bc:13:50:16:72:64:03:35:da:ce: 92:92:14:cb:26:b6:b0:4f:d3:a7:0f:2d:5a:95:49:8e:89:58: ee:05:96:d9:23:fb:00:36:ca:85:db:61:ed:e1:e2:f6:9f:f5: 24:88:9c:e9:4a:c9:25:c9:7b:99:62:4f:29:6f:be:66:7e:42: e2:10:94:83 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD Q0FGMTExMC8GA1UEBRMoNkMxOTQ2OTc4MTZGOUIxMzBCQTUzQ0Y0QkVFNjc2MDE1 OTRFOENCMTAeFw0yNTA2MTMwNTM2MzZaFw0yNTA2MjAwNTM2MzZaMBgxFjAUBgNV BAMTDTY4NGJiOGU0LTY0ZjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDSCq4VXuYKVims8mXPDyjvlBs7THE3mTsv2s/KPCMcD3IZTVsDXigl1Dv2Kcvd 1YptjfV9VoqI5pMaZzodJwfW89ZsF+rzKdzVFHp3eNh2+jbkUM9l7i4FOxqx0CbP DluwiQiAW/Fe2e1vq3jqbd22NqAe7HGlxwb+nuf+GHfy3sixyoMyJZptiArGJSdm t53JRut3ITYDBJGbNlI9MYLzKkUSn3XLpTkvv1aaJHtQhvT7erSKkYKz0P6s/Q4T ZrFtxNj3Tjf/xXA0440TcCDSA9tdpJ1dK9cm9+p7HHjc18KSAyDhsovJVZVHI+8J PZAHk9SgK++fz7ODu0d2yqD3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUfq2cg7yU 6XnnrJf7YlVJw+HrSUcwHwYDVR0jBBgwFoAUbBlGl4FvmxMLpTz0vuZ2AVlOjLEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNDQUYxLzA5QzBEMzY2OEFB RDExRUZCRUY5MTY2QUM0RjlBRTAyL2JCbEdsNEZ2bXhNTHBUejB2dVoyQVZsT2pM RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYkJsR2w0RnZteE1McFR6MHZ1WjJBVmxPakxFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUND QUYxLzA5QzBEMzY2OEFBRDExRUZCRUY5MTY2QUM0RjlBRTAyL2JCbEdsNEZ2bXhN THBUejB2dVoyQVZsT2pMRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI55qhemvSRwo/TF/AbVQsWQP5ZrSnvq9hoIWb0jhOoMc+e2tTZPGv0D IHt4XXLaHMIJ+wEJF2hLmFiT7y0bsDR+T0u0u8b5zXL1meB5KhXawNFHel3Xql1i DQEEHJ558QGtGAZDbNszRamKwJ8uhO6ttMPaRmrI7KMdJ2Udssa/obkHg++pZBjB iv8W8c11xImCZnKKPdK27Tcqfk87VBUo565M8dlccoZYuWBXVWRma3MLowhZfk8d 9PrEvBNQFnJkAzXazpKSFMsmtrBP06cPLVqVSY6JWO4Fltkj+wA2yoXbYe3h4vaf 9SSInOlKySXJe5liTylvvmZ+QuIQlIM= -----END CERTIFICATE-----Generated at Sun Jun 15 04:49:44 2025 by rpki-client