$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA5FD/8BDAFEF4528611EE89B00D87C4F9AE02/B2DK71ty3-WwS3ba3_q4Z8MKmMc.mft File: B2DK71ty3-WwS3ba3_q4Z8MKmMc.mft (raw, json) Hash identifier: bY9cF2gPRuBxGe+boPNu69Co5osuGxFbXL1Q5zcAkDo= Subject key identifier: D7:44:0D:11:D4:F9:20:4B:95:B7:A0:AE:70:61:DD:39:6D:4F:B8:FA Authority key identifier: 07:60:CA:EF:5B:72:DF:E5:B0:4B:76:DA:DF:FA:B8:67:C3:0A:98:C7 Certificate issuer: /CN=A91DA5FD/serialNumber=0760CAEF5B72DFE5B04B76DADFFAB867C30A98C7 Certificate serial: 014F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B2DK71ty3-WwS3ba3_q4Z8MKmMc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA5FD/8BDAFEF4528611EE89B00D87C4F9AE02/B2DK71ty3-WwS3ba3_q4Z8MKmMc.mft Manifest number: 014B Signing time: Sun 15 Jun 2025 03:26:16 +0000 Manifest this update: Sun 15 Jun 2025 03:26:15 +0000 Manifest next update: Sun 22 Jun 2025 03:26:15 +0000 Files and hashes: 1: B2DK71ty3-WwS3ba3_q4Z8MKmMc.crl (hash: Xe1Dtq+jUU5w2BnC7cWUzsdOTgbVg0Fc6l+PpFmHggw=) 2: 76817340537011EEB43BD523C4F9AE02.roa (hash: jAD/7lg+++i+O4y1RlntCcfLaxTpo5Pzuq6OqBjjXF4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA5FD/8BDAFEF4528611EE89B00D87C4F9AE02/B2DK71ty3-WwS3ba3_q4Z8MKmMc.crl rsync://rpki.apnic.net/member_repository/A91DA5FD/8BDAFEF4528611EE89B00D87C4F9AE02/B2DK71ty3-WwS3ba3_q4Z8MKmMc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B2DK71ty3-WwS3ba3_q4Z8MKmMc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 335 (0x14f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA5FD, serialNumber=0760CAEF5B72DFE5B04B76DADFFAB867C30A98C7 Validity Not Before: Jun 15 03:26:15 2025 GMT Not After : Jun 22 03:26:15 2025 GMT Subject: CN=684e3d57-96ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:fe:3f:be:67:42:82:77:24:ff:ef:0a:5d:70: 8b:9d:ec:04:c0:45:e5:24:ad:8b:2a:c5:a4:b7:0e: 84:8d:fe:a2:39:8b:64:a9:2d:9f:64:6b:b2:c3:f4: d1:b1:b3:29:c7:71:15:17:ff:0e:c7:02:4b:48:68: 7e:a2:40:ea:c4:a9:22:c5:00:7a:79:38:96:e7:5f: d5:86:cc:40:8a:7c:1a:e1:43:de:38:13:c1:33:77: 8d:b8:05:08:1f:eb:ab:51:d4:7a:c2:b2:e1:d1:b9: a5:26:23:fb:2c:3a:79:c5:dc:70:12:e6:82:6f:34: fc:2d:17:1f:7e:6f:29:c4:bc:e1:bd:01:a1:3c:16: 39:95:2e:94:c4:ff:22:96:ed:42:d5:c3:c7:2d:bc: 0a:95:be:1c:9e:cd:96:36:9c:f5:50:92:e9:f7:90: 0c:14:95:07:03:2d:96:73:76:65:f9:a8:f1:86:ec: d1:34:3b:25:df:b3:55:40:c8:da:53:07:86:ca:1a: 5b:a7:96:35:b0:14:85:0c:4d:66:5c:ba:0c:e9:be: 8d:ea:3c:5c:53:5a:b5:f0:5f:e9:50:63:b1:ac:80: 3a:17:28:c4:0b:df:48:44:84:5a:f4:93:1f:d1:c7: 57:ee:ef:8f:21:e8:07:f8:3b:bf:7d:65:50:1f:25: 79:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:44:0D:11:D4:F9:20:4B:95:B7:A0:AE:70:61:DD:39:6D:4F:B8:FA X509v3 Authority Key Identifier: keyid:07:60:CA:EF:5B:72:DF:E5:B0:4B:76:DA:DF:FA:B8:67:C3:0A:98:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA5FD/8BDAFEF4528611EE89B00D87C4F9AE02/B2DK71ty3-WwS3ba3_q4Z8MKmMc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B2DK71ty3-WwS3ba3_q4Z8MKmMc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA5FD/8BDAFEF4528611EE89B00D87C4F9AE02/B2DK71ty3-WwS3ba3_q4Z8MKmMc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:83:75:25:ac:66:1e:d1:98:56:75:be:6b:65:f2:32:1b:16: 9f:97:dd:32:5d:cb:0e:d6:ea:01:90:c5:1c:3e:b7:89:31:15: ef:d4:a4:d2:83:66:ab:dd:fc:44:a8:14:1e:b0:f2:3c:ef:c7: a6:1c:06:11:eb:dc:d5:f6:0b:af:c2:94:a3:fc:53:67:cd:44: 0d:57:79:3d:4d:f5:a6:3e:e6:47:ce:e0:33:af:cd:d9:ad:34: 67:c2:cc:2c:dc:ac:b7:00:99:f5:eb:89:a3:3b:b3:6f:67:24: cf:f4:ff:48:6d:c4:6c:92:c0:98:33:7c:de:03:b7:6f:26:dc: e7:b4:76:f5:a7:7a:c7:db:59:b7:63:98:58:91:c7:77:55:d3: bc:f2:7d:bb:3d:0f:99:ff:31:62:8e:46:86:1a:8f:28:50:c5: 3a:fd:e6:e0:f7:99:c8:ed:da:db:62:eb:5f:c3:0c:f0:cf:fc: f9:7b:95:8b:d0:86:f0:4c:a8:1e:ad:e4:93:4c:b5:43:a6:92: c5:87:b5:a4:01:dd:a8:8e:7e:de:bc:e3:15:91:14:8e:27:f2: b5:54:7e:c4:f1:4e:eb:72:ed:bd:8e:c8:07:ac:43:68:f6:91: 9d:a2:1b:58:1e:87:52:68:a3:01:7f:fc:18:b1:d6:3a:ce:0b: 92:b0:cb:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAU8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REE1RkQxMTAvBgNVBAUTKDA3NjBDQUVGNUI3MkRGRTVCMDRCNzZEQURGRkFCODY3 QzMwQTk4QzcwHhcNMjUwNjE1MDMyNjE1WhcNMjUwNjIyMDMyNjE1WjAYMRYwFAYD VQQDEw02ODRlM2Q1Ny05NmVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzv4/vmdCgnck/+8KXXCLnewEwEXlJK2LKsWktw6Ejf6iOYtkqS2fZGuyw/TR sbMpx3EVF/8OxwJLSGh+okDqxKkixQB6eTiW51/VhsxAinwa4UPeOBPBM3eNuAUI H+urUdR6wrLh0bmlJiP7LDp5xdxwEuaCbzT8LRcffm8pxLzhvQGhPBY5lS6UxP8i lu1C1cPHLbwKlb4cns2WNpz1UJLp95AMFJUHAy2Wc3Zl+ajxhuzRNDsl37NVQMja UweGyhpbp5Y1sBSFDE1mXLoM6b6N6jxcU1q18F/pUGOxrIA6FyjEC99IRIRa9JMf 0cdX7u+PIegH+Du/fWVQHyV5SQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNdEDRHU +SBLlbegrnBh3TltT7j6MB8GA1UdIwQYMBaAFAdgyu9bct/lsEt22t/6uGfDCpjH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTVGRC84QkRBRkVGNDUy ODYxMUVFODlCMDBEODdDNEY5QUUwMi9CMkRLNzF0eTMtV3dTM2JhM19xNFo4TUtt TWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0IyREs3MXR5My1Xd1MzYmEzX3E0WjhNS21NYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTVGRC84QkRBRkVGNDUyODYxMUVFODlCMDBEODdDNEY5QUUwMi9CMkRLNzF0eTMt V3dTM2JhM19xNFo4TUttTWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKg3UlrGYe0ZhWdb5rZfIyGxafl90yXcsO1uoBkMUcPreJMRXv1KTS g2ar3fxEqBQesPI878emHAYR69zV9guvwpSj/FNnzUQNV3k9TfWmPuZHzuAzr83Z rTRnwsws3Ky3AJn164mjO7NvZyTP9P9IbcRsksCYM3zeA7dvJtzntHb1p3rH21m3 Y5hYkcd3VdO88n27PQ+Z/zFijkaGGo8oUMU6/ebg95nI7drbYutfwwzwz/z5e5WL 0IbwTKgereSTTLVDppLFh7WkAd2ojn7evOMVkRSOJ/K1VH7E8U7rcu29jsgHrENo 9pGdohtYHodSaKMBf/wYsdY6zguSsMtR -----END CERTIFICATE-----Generated at Sun Jun 15 05:06:10 2025 by rpki-client