$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0CE8/900D2646066A11E8B9BAF682C4F9AE02/BsYn2cMSx7R9HDpTtEdVoQpoSHw.mft File: BsYn2cMSx7R9HDpTtEdVoQpoSHw.mft (raw, json) Hash identifier: ZjMY1xR+Zk2MX8NeMGCkqMdiacUH7bjrQmuH5Wiz5to= Subject key identifier: E9:64:93:CE:A8:51:26:EA:BA:43:47:11:AD:68:05:DA:2A:3A:63:7B Authority key identifier: 06:C6:27:D9:C3:12:C7:B4:7D:1C:3A:53:B4:47:55:A1:0A:68:48:7C Certificate issuer: /CN=A91E0CE8/serialNumber=06C627D9C312C7B47D1C3A53B44755A10A68487C Certificate serial: 169A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BsYn2cMSx7R9HDpTtEdVoQpoSHw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0CE8/900D2646066A11E8B9BAF682C4F9AE02/BsYn2cMSx7R9HDpTtEdVoQpoSHw.mft Manifest number: 1681 Signing time: Sat 14 Jun 2025 16:39:06 +0000 Manifest this update: Sat 14 Jun 2025 16:39:06 +0000 Manifest next update: Sat 21 Jun 2025 16:39:06 +0000 Files and hashes: 1: BsYn2cMSx7R9HDpTtEdVoQpoSHw.crl (hash: DzoSEseKllykg7EBi4UnHo2+WiXquuxqTL5lwA5bo/s=) 2: 091435C84FA911EFB86F4D40C4F9AE02.roa (hash: e5jgIESXFxNT6NU+78fDrpwylXFQS920y6o/aeQL2pY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0CE8/900D2646066A11E8B9BAF682C4F9AE02/BsYn2cMSx7R9HDpTtEdVoQpoSHw.crl rsync://rpki.apnic.net/member_repository/A91E0CE8/900D2646066A11E8B9BAF682C4F9AE02/BsYn2cMSx7R9HDpTtEdVoQpoSHw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BsYn2cMSx7R9HDpTtEdVoQpoSHw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 16:39:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5786 (0x169a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0CE8, serialNumber=06C627D9C312C7B47D1C3A53B44755A10A68487C Validity Not Before: Jun 14 16:39:06 2025 GMT Not After : Jun 21 16:39:06 2025 GMT Subject: CN=684da5aa-772b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ca:18:53:f9:d9:57:55:b2:a5:36:07:6d:5d: 12:93:6e:68:da:4d:20:03:01:cb:09:16:c0:66:50: 1b:73:c6:26:4b:54:98:d5:93:6a:a9:64:8c:d4:ad: 01:1c:33:94:b9:39:55:71:e1:40:ec:5f:62:de:4b: 8e:0c:2c:65:b7:1c:09:b6:44:4a:a3:fd:be:42:93: 73:78:2b:e8:49:2d:cd:27:98:ba:2d:ba:42:71:ce: 97:f2:18:1e:9d:9a:bd:62:b5:ea:48:32:dd:c4:a3: 97:b1:52:25:eb:5b:d2:cb:af:f5:1f:52:00:5e:89: 9e:0e:dc:4f:72:90:3b:68:3f:6b:78:26:93:5f:ef: e6:32:f6:0f:85:29:6c:96:87:71:8a:9d:70:75:7f: 6c:7c:d5:85:39:ec:bf:2e:86:71:e9:e4:e1:3d:0f: 16:60:c9:60:90:78:a8:9e:bf:17:3f:39:1d:58:1d: 7d:ce:75:ca:ca:70:b3:83:e8:4c:44:8a:79:83:6f: 3e:05:8e:20:af:75:50:2f:f4:75:7f:7b:94:3d:92: c8:a0:cd:a8:6d:d5:9f:0d:6f:13:a9:b7:87:ae:a1: 00:26:5b:0a:47:51:5e:ff:c6:c8:f2:1e:09:51:a2: 1a:93:2c:db:22:44:76:22:ab:77:5d:a8:bf:dc:9a: 45:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:64:93:CE:A8:51:26:EA:BA:43:47:11:AD:68:05:DA:2A:3A:63:7B X509v3 Authority Key Identifier: keyid:06:C6:27:D9:C3:12:C7:B4:7D:1C:3A:53:B4:47:55:A1:0A:68:48:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0CE8/900D2646066A11E8B9BAF682C4F9AE02/BsYn2cMSx7R9HDpTtEdVoQpoSHw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BsYn2cMSx7R9HDpTtEdVoQpoSHw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0CE8/900D2646066A11E8B9BAF682C4F9AE02/BsYn2cMSx7R9HDpTtEdVoQpoSHw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:8b:25:c5:f9:4d:2f:3a:39:a3:41:4b:4d:86:9b:04:45:f8: 3f:73:6b:a6:64:c2:a7:7b:51:11:e7:23:b6:3e:65:21:a0:46: 9b:85:0e:31:2d:19:fc:53:60:a0:14:51:60:b7:c1:cf:9b:6a: 15:47:4e:f4:2e:71:18:11:d9:ea:73:79:ea:13:af:88:3d:e5: b5:84:0e:22:18:cc:24:d3:64:1d:94:3a:5d:ee:29:fe:43:4f: 3e:5f:0c:46:8c:d6:17:68:b2:6a:1c:4e:b9:50:6f:8c:c1:30: 3d:15:6e:f2:ab:34:17:cd:58:04:1d:76:a5:11:ee:7c:eb:b2: 89:d4:8a:b5:3d:f2:97:42:50:f3:ab:6a:48:11:19:14:45:a3: 31:61:aa:8d:8c:c3:37:81:38:47:f8:5e:b3:b2:cc:7e:50:83: df:ff:ac:b3:2d:49:9a:82:c0:ae:21:32:48:be:3f:fd:ae:05: 5f:73:df:1d:69:f0:5e:cd:a9:66:79:51:c6:19:01:62:b5:1a: f9:f4:7c:27:06:58:1b:d0:7e:bb:71:1c:8d:87:72:29:c8:77: 3a:7a:69:9d:ce:cb:3b:0a:90:fb:bd:0f:61:f5:3a:d3:1e:69: c0:b7:8b:20:37:f1:fe:f9:71:d2:77:0e:a0:41:7c:5c:b1:67: 30:de:e9:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFpowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBDRTgxMTAvBgNVBAUTKDA2QzYyN0Q5QzMxMkM3QjQ3RDFDM0E1M0I0NDc1NUEx MEE2ODQ4N0MwHhcNMjUwNjE0MTYzOTA2WhcNMjUwNjIxMTYzOTA2WjAYMRYwFAYD VQQDEw02ODRkYTVhYS03NzJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA08oYU/nZV1WypTYHbV0Sk25o2k0gAwHLCRbAZlAbc8YmS1SY1ZNqqWSM1K0B HDOUuTlVceFA7F9i3kuODCxltxwJtkRKo/2+QpNzeCvoSS3NJ5i6LbpCcc6X8hge nZq9YrXqSDLdxKOXsVIl61vSy6/1H1IAXomeDtxPcpA7aD9reCaTX+/mMvYPhSls lodxip1wdX9sfNWFOey/LoZx6eThPQ8WYMlgkHionr8XPzkdWB19znXKynCzg+hM RIp5g28+BY4gr3VQL/R1f3uUPZLIoM2obdWfDW8TqbeHrqEAJlsKR1Fe/8bI8h4J UaIakyzbIkR2Iqt3Xai/3JpFWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOlkk86o USbqukNHEa1oBdoqOmN7MB8GA1UdIwQYMBaAFAbGJ9nDEse0fRw6U7RHVaEKaEh8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMENFOC85MDBEMjY0NjA2 NkExMUU4QjlCQUY2ODJDNEY5QUUwMi9Cc1luMmNNU3g3UjlIRHBUdEVkVm9RcG9T SHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JzWW4yY01TeDdSOUhEcFR0RWRWb1Fwb1NIdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MENFOC85MDBEMjY0NjA2NkExMUU4QjlCQUY2ODJDNEY5QUUwMi9Cc1luMmNNU3g3 UjlIRHBUdEVkVm9RcG9TSHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByiyXF+U0vOjmjQUtNhpsERfg/c2umZMKne1ER5yO2PmUhoEabhQ4x LRn8U2CgFFFgt8HPm2oVR070LnEYEdnqc3nqE6+IPeW1hA4iGMwk02QdlDpd7in+ Q08+XwxGjNYXaLJqHE65UG+MwTA9FW7yqzQXzVgEHXalEe5867KJ1Iq1PfKXQlDz q2pIERkURaMxYaqNjMM3gThH+F6zssx+UIPf/6yzLUmagsCuITJIvj/9rgVfc98d afBezalmeVHGGQFitRr59HwnBlgb0H67cRyNh3IpyHc6emmdzss7CpD7vQ9h9TrT HmnAt4sgN/H++XHSdw6gQXxcsWcw3ulp -----END CERTIFICATE-----Generated at Sat Jun 14 19:29:31 2025 by rpki-client