$ rpki-client -vvf rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.mft File: BIqpjz7FSpBg5bwwBZ1cQiDXwvc.mft (raw, json) Hash identifier: Y1pS+W7yUf0Te0Ulk2XeGBAQIyItK0IXHBJGQ/KE8vY= Subject key identifier: 77:F0:5A:86:54:2F:95:7C:C1:63:F9:21:76:D0:C8:B1:04:EB:1B:70 Authority key identifier: 04:8A:A9:8F:3E:C5:4A:90:60:E5:BC:30:05:9D:5C:42:20:D7:C2:F7 Certificate issuer: /CN=A91D425A/serialNumber=048AA98F3EC54A9060E5BC30059D5C4220D7C2F7 Certificate serial: 0B02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.mft Manifest number: 0AFB Signing time: Thu 24 Apr 2025 19:11:50 +0000 Manifest this update: Thu 24 Apr 2025 19:11:49 +0000 Manifest next update: Thu 01 May 2025 19:11:49 +0000 Files and hashes: 1: BIqpjz7FSpBg5bwwBZ1cQiDXwvc.crl (hash: rgm62uyj5SIMullnDDRFQdd0YFLSFXw7gW5wqhxPhRE=) 2: 494B4070419C11EAAE836772C4F9AE02.roa (hash: Y3JTz6x7Gh76YU/+03lkuBO3MY94CeW1sP7iPG9gZfk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.crl rsync://rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2818 (0xb02) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D425A, serialNumber=048AA98F3EC54A9060E5BC30059D5C4220D7C2F7 Validity Not Before: Apr 24 19:11:49 2025 GMT Not After : May 1 19:11:49 2025 GMT Subject: CN=680a8cf6-a13c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:6c:f6:42:58:17:b7:95:d6:36:c5:35:dc:9a: f3:27:de:e3:19:92:1d:e5:31:ac:d1:79:04:64:d9: 1a:a6:ab:53:77:3f:b6:20:80:6f:d3:81:ce:b4:aa: a8:aa:18:ba:9b:63:21:46:ac:41:c8:72:e2:fc:b3: 20:d9:96:fb:29:d6:18:83:ac:38:7b:c4:dc:45:c6: e7:43:fb:45:93:d6:d3:f8:93:57:2f:e0:6f:a7:fb: 70:b8:b1:6b:ec:d8:64:f2:3d:76:82:80:db:01:e2: f3:19:f3:bd:7e:0e:03:de:a4:9c:da:07:50:b0:42: 65:af:f3:ff:9a:f3:6d:ec:35:85:e3:97:0b:50:8d: 6c:ca:1b:7c:49:d7:75:dd:39:00:15:4d:d0:bb:f1: a8:4a:8d:cf:8a:60:b7:f8:d4:cd:ff:90:87:c8:01: f2:c9:c5:ab:48:a2:57:c3:5a:e1:cb:0b:83:83:89: 47:d8:70:f6:70:b5:71:05:c7:cb:0d:84:92:4f:6d: 05:32:95:a0:37:ed:e7:0a:71:0d:bc:74:14:ae:6d: 8c:f9:30:a2:02:ae:4f:0b:d3:d3:83:4a:4a:f0:39: e9:98:35:b5:70:53:95:8a:3b:4b:9a:44:d0:82:29: d7:6d:22:3c:80:51:aa:84:31:96:6e:25:e5:16:4a: aa:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:F0:5A:86:54:2F:95:7C:C1:63:F9:21:76:D0:C8:B1:04:EB:1B:70 X509v3 Authority Key Identifier: keyid:04:8A:A9:8F:3E:C5:4A:90:60:E5:BC:30:05:9D:5C:42:20:D7:C2:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:7a:8c:ea:7e:c2:d4:0d:cc:1f:91:6b:37:db:05:b1:1e:1f: 29:3b:c2:d7:f0:2e:ee:c7:e7:cd:40:82:3d:33:c2:59:8b:92: 45:53:a3:f9:52:cc:5b:15:a5:54:00:06:b3:7f:00:fe:59:72: 88:34:91:32:66:4b:fc:07:4d:98:1e:95:01:ff:06:e8:0a:e9: 88:1a:f3:5f:39:3d:d4:33:7d:ea:21:7b:6e:1d:83:5a:78:c3: 55:15:4a:f4:52:ca:aa:a4:a5:58:ca:38:13:db:7b:db:60:c0: 4b:bf:b0:52:82:d1:f3:58:3f:7e:7b:71:46:dc:53:0c:be:50: c9:35:de:8c:b7:d3:ae:ba:2e:dc:10:ca:ac:da:b5:a2:eb:31: f0:c8:ba:e2:04:da:93:70:04:c2:46:b4:4f:6c:d7:53:7a:d7: be:0e:8d:6b:2a:55:d5:64:d6:bb:1f:ab:b1:42:2d:17:43:f7: 97:41:c3:da:f2:1f:20:2d:6c:02:d8:f6:31:06:bf:cd:ba:be: f8:cc:3b:48:cb:9d:df:b0:c8:99:1d:db:86:02:32:14:15:92: 2f:49:c1:8d:59:de:14:7d:7a:ee:59:df:31:9d:d9:9c:09:4f: 08:18:d3:49:62:ea:af:8d:ab:26:7b:93:e6:7c:37:ed:fe:a1: a4:f4:b3:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCwIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQyNUExMTAvBgNVBAUTKDA0OEFBOThGM0VDNTRBOTA2MEU1QkMzMDA1OUQ1QzQy MjBEN0MyRjcwHhcNMjUwNDI0MTkxMTQ5WhcNMjUwNTAxMTkxMTQ5WjAYMRYwFAYD VQQDEw02ODBhOGNmNi1hMTNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAomz2QlgXt5XWNsU13JrzJ97jGZId5TGs0XkEZNkapqtTdz+2IIBv04HOtKqo qhi6m2MhRqxByHLi/LMg2Zb7KdYYg6w4e8TcRcbnQ/tFk9bT+JNXL+Bvp/twuLFr 7Nhk8j12goDbAeLzGfO9fg4D3qSc2gdQsEJlr/P/mvNt7DWF45cLUI1syht8Sdd1 3TkAFU3Qu/GoSo3PimC3+NTN/5CHyAHyycWrSKJXw1rhywuDg4lH2HD2cLVxBcfL DYSST20FMpWgN+3nCnENvHQUrm2M+TCiAq5PC9PTg0pK8DnpmDW1cFOVijtLmkTQ ginXbSI8gFGqhDGWbiXlFkqqXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHfwWoZU L5V8wWP5IXbQyLEE6xtwMB8GA1UdIwQYMBaAFASKqY8+xUqQYOW8MAWdXEIg18L3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDI1QS8wMjRDMjRGODQx NkMxMUVBODNDM0VGNUFDNEY5QUUwMi9CSXFwano3RlNwQmc1Ynd3QloxY1FpRFh3 dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JJcXBqejdGU3BCZzVid3dCWjFjUWlEWHd2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDI1QS8wMjRDMjRGODQxNkMxMUVBODNDM0VGNUFDNEY5QUUwMi9CSXFwano3RlNw Qmc1Ynd3QloxY1FpRFh3dmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoeozqfsLUDcwfkWs32wWxHh8pO8LX8C7ux+fNQII9M8JZi5JFU6P5 UsxbFaVUAAazfwD+WXKINJEyZkv8B02YHpUB/wboCumIGvNfOT3UM33qIXtuHYNa eMNVFUr0UsqqpKVYyjgT23vbYMBLv7BSgtHzWD9+e3FG3FMMvlDJNd6Mt9Ouui7c EMqs2rWi6zHwyLriBNqTcATCRrRPbNdTete+Do1rKlXVZNa7H6uxQi0XQ/eXQcPa 8h8gLWwC2PYxBr/Nur74zDtIy53fsMiZHduGAjIUFZIvScGNWd4UfXruWd8xndmc CU8IGNNJYuqvjasme5PmfDft/qGk9LNH -----END CERTIFICATE-----Generated at Sat Apr 26 12:23:50 2025 by rpki-client