$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft File: BUM8OuqKSXAsmoLuyV0WtVA86mA.mft (raw, json) Hash identifier: JlrVvP6Lq/bJLsOjgy2uRj+kJMKqetixwt8oQz2uy9E= Subject key identifier: AD:FA:65:0D:36:5A:EA:49:FE:9F:49:81:D8:33:AE:D7:52:0B:73:C2 Authority key identifier: 05:43:3C:3A:EA:8A:49:70:2C:9A:82:EE:C9:5D:16:B5:50:3C:EA:60 Certificate issuer: /CN=A91CFFA0/serialNumber=05433C3AEA8A49702C9A82EEC95D16B5503CEA60 Certificate serial: 0D5C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BUM8OuqKSXAsmoLuyV0WtVA86mA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft Manifest number: 0D3A Signing time: Wed 18 Jun 2025 17:57:44 +0000 Manifest this update: Wed 18 Jun 2025 17:57:43 +0000 Manifest next update: Wed 25 Jun 2025 17:57:43 +0000 Files and hashes: 1: BUM8OuqKSXAsmoLuyV0WtVA86mA.crl (hash: 04+d11HwrQIYP78ZYHsGvGGu85aiel48PgXc9kLHRoM=) 2: 83ECD7C40CCA11ED97820077C4F9AE02.roa (hash: tsWCAJh3hDUuF0jt3mDhnNo48pJ1cTxWnbkE+ZQXBxw=) 3: 0E3F36D8C43D11EBAB31777FC4F9AE02.roa (hash: BThAKf2icEZsZqpXgnFl9VpqvpRKYGs7e0515Blb0yw=) 4: 1F4E1CC014D311EA81309110C4F9AE02.roa (hash: zPumQuSa3V5Do5kU4HAy8QEzfyGrDVZPMvaKh+jhJxk=) 5: E6F0F39214CE11EA9E740182C4F9AE02.roa (hash: zpETj3vTU+4JGJFNH2bJangxDJpoV//my0UXRjaLeMk=) 6: 4CD3C8DC14D011EA93366A85C4F9AE02.roa (hash: JwI9xru2SKVmPRR5P37ZWy6F3njGvB5RFaYgtRHbNFY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.crl rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BUM8OuqKSXAsmoLuyV0WtVA86mA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 17:57:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3420 (0xd5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFA0, serialNumber=05433C3AEA8A49702C9A82EEC95D16B5503CEA60 Validity Not Before: Jun 18 17:57:43 2025 GMT Not After : Jun 25 17:57:43 2025 GMT Subject: CN=6852fe17-5607 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:23:62:2b:9a:3c:00:ad:7b:f0:dc:d7:d2:2c: 6e:49:95:0e:13:05:c1:26:7e:0d:10:f1:42:a0:77: 76:40:4a:7f:d1:01:3e:a7:72:7a:8f:df:d0:10:62: 01:74:ce:bf:56:bc:a0:40:09:62:71:3c:cc:1b:80: 9c:be:72:04:39:a2:b4:55:f7:e8:ae:ca:1f:f7:50: c8:e1:2a:76:28:57:7c:68:d8:6a:15:a6:88:37:0a: 75:d1:f8:f1:c5:cd:3c:77:e8:c3:6e:92:66:e6:33: d2:01:69:62:ff:62:fe:4d:34:46:7a:b6:59:13:a8: 76:ec:63:26:14:54:3d:8c:2e:b4:c2:9b:44:5e:20: 13:4f:b7:41:1e:c1:c6:c6:0d:72:0a:4b:ab:ec:43: 06:23:08:70:4a:7b:a8:b7:4a:e0:26:2d:ab:31:d9: 0c:74:94:c8:a4:53:16:d2:fb:67:fc:a9:97:d2:dc: a1:6f:98:d2:6e:12:9e:a0:f0:91:02:c4:bc:a0:bf: 50:da:23:82:59:30:ad:41:ac:e1:a9:fc:ec:6f:d6: 26:98:51:ea:5c:ed:bb:91:4e:11:c2:35:e6:64:9f: 5f:32:69:b0:ef:c8:6d:25:64:5c:d7:19:16:32:14: 7a:30:6b:c4:89:06:55:4b:1d:91:14:f7:bc:12:e7: b1:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:FA:65:0D:36:5A:EA:49:FE:9F:49:81:D8:33:AE:D7:52:0B:73:C2 X509v3 Authority Key Identifier: keyid:05:43:3C:3A:EA:8A:49:70:2C:9A:82:EE:C9:5D:16:B5:50:3C:EA:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BUM8OuqKSXAsmoLuyV0WtVA86mA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:11:40:dc:15:5a:00:d4:9d:9d:db:02:41:de:7c:c3:23:38: 1b:f3:ea:e7:9c:be:3d:b8:4f:4e:92:65:37:aa:e4:05:7e:be: bc:89:44:5d:7b:82:06:98:e5:06:df:a7:47:ea:76:8f:5b:56: b4:95:80:65:23:8e:38:61:ab:5d:db:0f:06:38:3c:f6:11:28: 10:a6:14:a0:bb:17:c7:7d:ab:d8:a8:36:ac:3d:0f:14:7b:e9: cf:fe:7e:86:44:8d:a5:13:1f:90:ce:ff:b6:e9:62:5e:eb:11: 7a:eb:e0:f3:a3:1c:2c:a1:75:d7:ff:ed:a9:24:8b:78:eb:94: 02:8a:28:df:fd:0a:c8:61:7a:19:90:20:98:e6:2c:71:eb:89: 77:3c:b3:8f:4e:9f:46:25:59:cb:cc:1a:f9:7d:c8:60:cd:31: 83:9f:05:f5:47:2e:08:ae:24:45:cf:d6:31:10:90:f5:4e:1e: 3c:8d:77:db:d8:db:d6:74:c8:c5:26:4a:62:47:e2:80:e9:3f: 2d:2d:4c:fc:8e:ec:83:04:47:7e:f0:d5:1a:60:8d:6e:48:9e: 92:79:2f:f9:76:e8:50:2f:2f:ca:58:01:52:3c:b0:b5:18:a2: 57:37:00:30:ad:5d:72:c2:3f:91:08:8e:38:9f:9f:01:23:a8: 3f:5e:f9:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGQTAxMTAvBgNVBAUTKDA1NDMzQzNBRUE4QTQ5NzAyQzlBODJFRUM5NUQxNkI1 NTAzQ0VBNjAwHhcNMjUwNjE4MTc1NzQzWhcNMjUwNjI1MTc1NzQzWjAYMRYwFAYD VQQDEw02ODUyZmUxNy01NjA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0yNiK5o8AK178NzX0ixuSZUOEwXBJn4NEPFCoHd2QEp/0QE+p3J6j9/QEGIB dM6/VrygQAlicTzMG4CcvnIEOaK0Vfforsof91DI4Sp2KFd8aNhqFaaINwp10fjx xc08d+jDbpJm5jPSAWli/2L+TTRGerZZE6h27GMmFFQ9jC60wptEXiATT7dBHsHG xg1yCkur7EMGIwhwSnuot0rgJi2rMdkMdJTIpFMW0vtn/KmX0tyhb5jSbhKeoPCR AsS8oL9Q2iOCWTCtQazhqfzsb9YmmFHqXO27kU4RwjXmZJ9fMmmw78htJWRc1xkW MhR6MGvEiQZVSx2RFPe8EuexzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK36ZQ02 WupJ/p9JgdgzrtdSC3PCMB8GA1UdIwQYMBaAFAVDPDrqiklwLJqC7sldFrVQPOpg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZBMC8xNTBCRjY5MEQ4 Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9CVU04T3VxS1NYQXNtb0x1eVYwV3RWQTg2 bUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JVTThPdXFLU1hBc21vTHV5VjBXdFZBODZtQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkZBMC8xNTBCRjY5MEQ4Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9CVU04T3VxS1NY QXNtb0x1eVYwV3RWQTg2bUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHEUDcFVoA1J2d2wJB3nzDIzgb8+rnnL49uE9OkmU3quQFfr68iURd e4IGmOUG36dH6naPW1a0lYBlI444Yatd2w8GODz2ESgQphSguxfHfavYqDasPQ8U e+nP/n6GRI2lEx+Qzv+26WJe6xF66+DzoxwsoXXX/+2pJIt465QCiijf/QrIYXoZ kCCY5ixx64l3PLOPTp9GJVnLzBr5fchgzTGDnwX1Ry4IriRFz9YxEJD1Th48jXfb 2NvWdMjFJkpiR+KA6T8tLUz8juyDBEd+8NUaYI1uSJ6SeS/5duhQLy/KWAFSPLC1 GKJXNwAwrV1ywj+RCI44n58BI6g/XvlQ -----END CERTIFICATE-----Generated at Fri Jun 20 01:19:26 2025 by rpki-client