$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft File: bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft (raw, json) Hash identifier: +jUCuua1k/lxERylYGylqNa0BkvUmIKNhHHxn8JK/xc= Subject key identifier: DB:E1:35:EF:8C:82:E1:11:67:11:9E:B2:19:98:A4:4F:9A:34:29:99 Authority key identifier: 6C:19:46:97:81:6F:9B:13:0B:A5:3C:F4:BE:E6:76:01:59:4E:8C:B1 Certificate issuer: /CN=A91CCAF1/serialNumber=6C194697816F9B130BA53CF4BEE67601594E8CB1 Certificate serial: 66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft Manifest number: 65 Signing time: Fri 25 Apr 2025 05:58:59 +0000 Manifest this update: Fri 25 Apr 2025 05:58:58 +0000 Manifest next update: Fri 02 May 2025 05:58:58 +0000 Files and hashes: 1: bBlGl4FvmxMLpTz0vuZ2AVlOjLE.crl (hash: Hpzs0ILmGOkOU2iw4wVEP3svTp6y2VDL+sKy5+AeEB0=) 2: BF71D9D0F26811EFBC446868C4F9AE02.roa (hash: 7+qKEqRnu4TPJKKakjwpNT1iFIHMXPBmy/g9UJm3iJo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.crl rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:58:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 102 (0x66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CCAF1, serialNumber=6C194697816F9B130BA53CF4BEE67601594E8CB1 Validity Not Before: Apr 25 05:58:58 2025 GMT Not After : May 2 05:58:58 2025 GMT Subject: CN=680b24a2-0aa8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:cd:14:cd:0e:2b:a8:2d:8d:92:af:3b:51:74: 4f:9a:eb:5c:9c:b5:aa:28:bf:b8:ad:13:06:60:ba: 7b:10:b9:7b:48:4a:7d:e3:5b:0f:68:4f:75:2f:58: f0:ca:99:3d:19:d2:d9:3d:62:3d:e3:26:d8:7d:a3: 89:5f:4a:d6:41:c6:31:db:58:0b:a9:a1:ff:84:15: a4:16:24:5f:8c:b4:2a:8f:26:88:1c:c4:75:fd:4b: b8:80:19:e1:05:09:4a:dd:69:ba:db:4b:13:b5:b3: 85:20:b8:06:d8:a7:f8:28:6f:3e:26:86:91:43:33: f7:f4:57:cc:40:14:89:00:05:c6:6a:5b:fc:a7:85: e9:23:55:a3:1a:c9:04:68:a8:4f:8f:8d:82:3d:a7: a4:d9:99:c6:9a:d7:ef:02:0e:b0:7d:36:85:b1:14: 9f:b2:04:af:f5:47:2b:45:c5:78:62:8e:b2:8e:7c: 92:81:ac:9b:db:2c:fa:f8:27:9f:be:ce:0a:2c:7c: 29:90:d0:6f:84:c5:0f:58:5c:c8:7c:36:36:62:5c: 80:76:1b:f0:22:9d:b9:d8:cb:11:4a:f1:cd:98:24: 39:b6:d8:7b:dd:9b:99:da:e9:d3:d5:a7:be:a9:a3: d1:0d:fe:47:76:12:51:a6:f1:d6:37:1b:70:6e:b0: b3:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:E1:35:EF:8C:82:E1:11:67:11:9E:B2:19:98:A4:4F:9A:34:29:99 X509v3 Authority Key Identifier: keyid:6C:19:46:97:81:6F:9B:13:0B:A5:3C:F4:BE:E6:76:01:59:4E:8C:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:5a:50:4d:be:53:93:af:2b:3c:90:82:da:52:94:63:6c:0a: 48:37:35:f3:d9:1f:2f:67:1f:b7:32:23:8f:d8:6a:17:11:1f: 56:07:a4:7b:72:2e:c1:99:93:b2:e9:39:c0:2d:3a:fc:36:bf: 79:e0:9a:6e:b4:f5:11:f0:d5:1b:71:f2:6b:20:01:c8:e2:0f: 4c:13:10:56:10:f2:35:2b:e0:b0:26:81:17:f9:2c:71:53:b9: e9:23:15:d7:60:d1:41:36:2a:18:d4:80:b1:d9:e7:93:58:2a: dc:a0:b5:f9:92:0c:39:f8:88:2b:a0:1c:5e:f9:b2:71:fd:6d: f3:22:c4:42:cb:22:ce:17:2d:ce:00:b6:fb:ab:d3:d8:db:c6: 18:c1:fe:b6:13:65:7f:0b:8e:c6:7d:fe:25:d2:e1:2c:98:e3: 16:91:07:b0:52:38:a5:cc:a7:f3:db:2f:af:55:76:60:11:fd: 7a:06:7d:b9:66:a0:84:84:48:83:20:ee:1b:38:cd:07:21:7e: df:1b:ae:18:72:7d:93:47:c4:0d:cb:2e:9f:b9:2b:20:ad:90: 1f:cf:33:b8:c4:4b:fa:8f:82:70:6d:10:42:8a:48:d6:ea:1f: fb:07:76:ec:88:62:2f:41:16:53:eb:4e:11:a6:23:e9:0e:77: d9:fb:36:fe -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD Q0FGMTExMC8GA1UEBRMoNkMxOTQ2OTc4MTZGOUIxMzBCQTUzQ0Y0QkVFNjc2MDE1 OTRFOENCMTAeFw0yNTA0MjUwNTU4NThaFw0yNTA1MDIwNTU4NThaMBgxFjAUBgNV BAMTDTY4MGIyNGEyLTBhYTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAzRTNDiuoLY2SrztRdE+a61yctaoov7itEwZgunsQuXtISn3jWw9oT3UvWPDK mT0Z0tk9Yj3jJth9o4lfStZBxjHbWAupof+EFaQWJF+MtCqPJogcxHX9S7iAGeEF CUrdabrbSxO1s4UguAbYp/gobz4mhpFDM/f0V8xAFIkABcZqW/ynhekjVaMayQRo qE+PjYI9p6TZmcaa1+8CDrB9NoWxFJ+yBK/1RytFxXhijrKOfJKBrJvbLPr4J5++ zgosfCmQ0G+ExQ9YXMh8NjZiXIB2G/AinbnYyxFK8c2YJDm22Hvdm5na6dPVp76p o9EN/kd2ElGm8dY3G3BusLP9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU2+E174yC 4RFnEZ6yGZikT5o0KZkwHwYDVR0jBBgwFoAUbBlGl4FvmxMLpTz0vuZ2AVlOjLEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNDQUYxLzA5QzBEMzY2OEFB RDExRUZCRUY5MTY2QUM0RjlBRTAyL2JCbEdsNEZ2bXhNTHBUejB2dVoyQVZsT2pM RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYkJsR2w0RnZteE1McFR6MHZ1WjJBVmxPakxFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUND QUYxLzA5QzBEMzY2OEFBRDExRUZCRUY5MTY2QUM0RjlBRTAyL2JCbEdsNEZ2bXhN THBUejB2dVoyQVZsT2pMRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADBaUE2+U5OvKzyQgtpSlGNsCkg3NfPZHy9nH7cyI4/YahcRH1YHpHty LsGZk7LpOcAtOvw2v3ngmm609RHw1Rtx8msgAcjiD0wTEFYQ8jUr4LAmgRf5LHFT uekjFddg0UE2KhjUgLHZ55NYKtygtfmSDDn4iCugHF75snH9bfMixELLIs4XLc4A tvur09jbxhjB/rYTZX8LjsZ9/iXS4SyY4xaRB7BSOKXMp/PbL69VdmAR/XoGfblm oISESIMg7hs4zQchft8brhhyfZNHxA3LLp+5KyCtkB/PM7jES/qPgnBtEEKKSNbq H/sHduyIYi9BFlPrThGmI+kOd9n7Nv4= -----END CERTIFICATE-----Generated at Sat Apr 26 17:42:57 2025 by rpki-client