$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEBCC/2AE8981A272711EF9143E622C4F9AE02/bath0S4_GW9RaThyPIAnWZxddVI.mft File: bath0S4_GW9RaThyPIAnWZxddVI.mft (raw, json) Hash identifier: RD5KSTG+UeY6QRjo8irASSu+eceDtDYqrTk4wxruHvs= Subject key identifier: C5:0B:8C:F6:39:3D:2F:BA:FC:31:D1:5E:DC:D2:24:A6:3F:C6:B5:B8 Authority key identifier: 6D:AB:61:D1:2E:3F:19:6F:51:69:38:72:3C:80:27:59:9C:5D:75:52 Certificate issuer: /CN=A91CEBCC/serialNumber=6DAB61D12E3F196F516938723C8027599C5D7552 Certificate serial: C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bath0S4_GW9RaThyPIAnWZxddVI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEBCC/2AE8981A272711EF9143E622C4F9AE02/bath0S4_GW9RaThyPIAnWZxddVI.mft Manifest number: C1 Signing time: Thu 19 Jun 2025 05:11:22 +0000 Manifest this update: Thu 19 Jun 2025 05:11:21 +0000 Manifest next update: Thu 26 Jun 2025 05:11:21 +0000 Files and hashes: 1: bath0S4_GW9RaThyPIAnWZxddVI.crl (hash: StA2uQEpJkVFiKvkMvibL0QWYm1Mg98a1iDZN6JbaiA=) 2: F2022074272711EF91A40124C4F9AE02.roa (hash: xhUsDiNlcxZBUBnV9JFR4AclyG5SZwCFLfalTWcGiyI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEBCC/2AE8981A272711EF9143E622C4F9AE02/bath0S4_GW9RaThyPIAnWZxddVI.crl rsync://rpki.apnic.net/member_repository/A91CEBCC/2AE8981A272711EF9143E622C4F9AE02/bath0S4_GW9RaThyPIAnWZxddVI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bath0S4_GW9RaThyPIAnWZxddVI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 05:11:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 195 (0xc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEBCC, serialNumber=6DAB61D12E3F196F516938723C8027599C5D7552 Validity Not Before: Jun 19 05:11:21 2025 GMT Not After : Jun 26 05:11:21 2025 GMT Subject: CN=68539bfa-82db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:bc:24:e0:17:e9:06:fe:53:11:7e:fc:40:f8: 39:94:50:7a:7c:df:4c:6c:c0:32:b9:e9:94:e3:f1: e6:57:46:97:af:e2:5a:92:2a:c2:a5:3d:17:ae:29: 4d:ea:1b:5b:38:00:65:d4:35:17:f3:83:a2:9f:3a: 7a:62:25:12:c0:49:07:cb:0b:e4:5d:9b:0d:ce:6b: a0:92:2a:58:08:34:ca:f2:57:73:29:04:09:29:cc: ad:a7:3b:35:f3:1b:6e:69:c1:ca:c8:4e:23:17:7c: c1:2b:d7:53:53:d2:3f:8d:ec:a1:5b:27:30:da:17: a1:ec:f3:c4:e7:bc:38:b5:1c:51:e5:70:9f:35:72: fd:87:cb:8b:05:b0:13:26:ef:e5:df:ba:bb:1e:3c: bb:66:78:b3:e2:5d:4f:78:00:d9:75:da:a4:0d:ab: e8:eb:8f:56:c3:3c:45:4b:1b:30:d9:ac:ad:fc:48: a3:8f:45:85:47:8c:79:f2:22:85:a2:fa:c5:2d:f3: b2:3e:5b:00:f9:bf:87:d7:96:6a:45:f0:51:99:8c: e6:42:53:f5:61:8a:18:ff:65:cd:54:5e:3e:8c:a6: 1e:b2:6f:a9:00:7d:73:69:7f:45:52:e5:ac:bd:c4: aa:f3:a9:2c:a6:fc:cd:6f:0c:1d:0a:4b:67:bf:74: c8:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:0B:8C:F6:39:3D:2F:BA:FC:31:D1:5E:DC:D2:24:A6:3F:C6:B5:B8 X509v3 Authority Key Identifier: keyid:6D:AB:61:D1:2E:3F:19:6F:51:69:38:72:3C:80:27:59:9C:5D:75:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEBCC/2AE8981A272711EF9143E622C4F9AE02/bath0S4_GW9RaThyPIAnWZxddVI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bath0S4_GW9RaThyPIAnWZxddVI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEBCC/2AE8981A272711EF9143E622C4F9AE02/bath0S4_GW9RaThyPIAnWZxddVI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:b8:38:74:4d:4d:e8:dd:0a:29:ce:1d:40:39:14:6d:9f:a9: 72:4c:6e:84:14:77:d6:5a:4d:35:bc:19:1e:ec:1b:4a:63:bd: 30:7c:b3:89:40:01:c3:74:fc:c5:6e:e4:e3:97:54:f0:a8:fc: 77:d0:0d:4d:0c:52:41:22:31:e9:e7:15:71:10:0c:69:30:ee: 8e:c2:a8:8e:3d:1b:75:0b:34:8b:99:0a:17:b8:00:74:45:d6: 3f:29:83:6f:b3:9b:7e:3a:1d:08:c2:15:b2:4f:2e:80:61:bd: c2:68:2b:e3:6a:d2:8d:12:d5:60:82:96:01:59:62:68:60:8a: 75:ef:c5:f0:e9:63:04:d7:60:50:bc:67:f8:07:d1:ae:a5:8f: 78:99:c5:41:6c:f4:6d:c8:bb:94:e2:1d:03:86:a8:99:cf:67: 99:e7:f1:ef:39:08:52:f8:a1:35:e4:b7:9a:5b:fd:af:03:98: 75:24:62:2a:e2:bd:52:79:89:45:7d:a4:2c:7c:77:10:82:9a: 73:c1:15:e3:c7:6d:11:44:af:9a:b1:20:68:1b:56:84:0e:c3: 80:84:32:2c:8b:08:ce:fe:71:ee:d4:b9:79:5f:9b:a2:08:83: c2:86:8e:f0:74:45:7a:b6:6f:b8:87:23:f9:ca:2f:ef:7b:13: a2:3e:07:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VCQ0MxMTAvBgNVBAUTKDZEQUI2MUQxMkUzRjE5NkY1MTY5Mzg3MjNDODAyNzU5 OUM1RDc1NTIwHhcNMjUwNjE5MDUxMTIxWhcNMjUwNjI2MDUxMTIxWjAYMRYwFAYD VQQDEw02ODUzOWJmYS04MmRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyrwk4BfpBv5TEX78QPg5lFB6fN9MbMAyuemU4/HmV0aXr+JakirCpT0XrilN 6htbOABl1DUX84Oinzp6YiUSwEkHywvkXZsNzmugkipYCDTK8ldzKQQJKcytpzs1 8xtuacHKyE4jF3zBK9dTU9I/jeyhWycw2heh7PPE57w4tRxR5XCfNXL9h8uLBbAT Ju/l37q7Hjy7Zniz4l1PeADZddqkDavo649WwzxFSxsw2ayt/Eijj0WFR4x58iKF ovrFLfOyPlsA+b+H15ZqRfBRmYzmQlP1YYoY/2XNVF4+jKYesm+pAH1zaX9FUuWs vcSq86kspvzNbwwdCktnv3TIwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMULjPY5 PS+6/DHRXtzSJKY/xrW4MB8GA1UdIwQYMBaAFG2rYdEuPxlvUWk4cjyAJ1mcXXVS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUJDQy8yQUU4OTgxQTI3 MjcxMUVGOTE0M0U2MjJDNEY5QUUwMi9iYXRoMFM0X0dXOVJhVGh5UElBbldaeGRk VkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JhdGgwUzRfR1c5UmFUaHlQSUFuV1p4ZGRWSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUJDQy8yQUU4OTgxQTI3MjcxMUVGOTE0M0U2MjJDNEY5QUUwMi9iYXRoMFM0X0dX OVJhVGh5UElBbldaeGRkVkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFuDh0TU3o3Qopzh1AORRtn6lyTG6EFHfWWk01vBke7BtKY70wfLOJ QAHDdPzFbuTjl1TwqPx30A1NDFJBIjHp5xVxEAxpMO6OwqiOPRt1CzSLmQoXuAB0 RdY/KYNvs5t+Oh0IwhWyTy6AYb3CaCvjatKNEtVggpYBWWJoYIp178Xw6WME12BQ vGf4B9GupY94mcVBbPRtyLuU4h0DhqiZz2eZ5/HvOQhS+KE15LeaW/2vA5h1JGIq 4r1SeYlFfaQsfHcQgppzwRXjx20RRK+asSBoG1aEDsOAhDIsiwjO/nHu1Ll5X5ui CIPCho7wdEV6tm+4hyP5yi/vexOiPgdC -----END CERTIFICATE-----Generated at Thu Jun 19 22:39:21 2025 by rpki-client