$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft File: BNhIIeE7gDAzVMS-NDMdURHyvKY.mft (raw, json) Hash identifier: OGj3LSjPwCjBtfLLNXExo2jAMCzXOBDMLSGZJgkpDbg= Subject key identifier: C7:18:C8:31:8E:E2:F3:5B:CC:6B:B5:37:63:20:DA:39:0D:F9:F3:7D Authority key identifier: 04:D8:48:21:E1:3B:80:30:33:54:C4:BE:34:33:1D:51:11:F2:BC:A6 Certificate issuer: /CN=A91F0721/serialNumber=04D84821E13B80303354C4BE34331D5111F2BCA6 Certificate serial: 019D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BNhIIeE7gDAzVMS-NDMdURHyvKY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft Manifest number: 019A Signing time: Fri 25 Apr 2025 02:32:12 +0000 Manifest this update: Fri 25 Apr 2025 02:32:11 +0000 Manifest next update: Fri 02 May 2025 02:32:11 +0000 Files and hashes: 1: BNhIIeE7gDAzVMS-NDMdURHyvKY.crl (hash: QMCvCpPi27AmG4m+5FZt/7jiDcfBM4wgzL9RcsJ8CXY=) 2: 7659B89AADCC11ED84051211C4F9AE02.roa (hash: S0QCets6nYQwhXbRnwnSRy3OBYGEXLOm6h5sFxoClJ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.crl rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BNhIIeE7gDAzVMS-NDMdURHyvKY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:32:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 413 (0x19d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0721, serialNumber=04D84821E13B80303354C4BE34331D5111F2BCA6 Validity Not Before: Apr 25 02:32:11 2025 GMT Not After : May 2 02:32:11 2025 GMT Subject: CN=680af42b-33a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:8f:d0:99:57:27:0a:c0:9a:f5:12:ec:1b:e6: 8d:ab:16:2f:13:8a:13:40:01:9d:74:54:68:88:de: 14:6b:fd:ca:01:b6:99:7a:c3:f9:1a:5b:65:d8:c2: 3f:fb:8f:ad:72:5b:c2:81:ec:10:e2:93:72:94:aa: f4:25:77:86:a5:86:ea:0e:b8:78:a9:a3:3e:e3:2c: d6:6c:ce:cf:b4:23:f2:91:35:28:eb:cc:5d:59:c5: 3e:aa:21:0e:65:a2:ab:a2:1c:78:77:5b:bf:37:ba: 1a:89:38:62:32:41:da:ca:1e:48:c3:cb:66:44:04: 44:ff:36:4e:98:2b:f8:44:4f:ed:22:9b:06:0b:ff: 30:83:40:40:5a:63:86:c0:5b:5b:e6:98:11:75:6c: f8:2d:27:73:31:06:43:50:49:91:37:f5:94:cb:89: 91:7a:05:ec:ae:1f:92:e4:b2:a3:56:d1:0d:a2:f5: 33:3e:26:71:c9:63:d5:ae:9b:85:78:4b:41:01:68: 13:b3:1a:d6:f3:46:59:f9:c0:93:3d:9c:8f:ef:b9: 30:c7:22:56:bd:29:7b:e1:9e:25:5f:87:65:9b:89: f7:47:0a:ab:e8:85:58:70:0a:3e:fd:12:27:a7:41: ce:c0:3a:10:66:29:07:2c:07:91:38:c2:72:28:77: 43:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:18:C8:31:8E:E2:F3:5B:CC:6B:B5:37:63:20:DA:39:0D:F9:F3:7D X509v3 Authority Key Identifier: keyid:04:D8:48:21:E1:3B:80:30:33:54:C4:BE:34:33:1D:51:11:F2:BC:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BNhIIeE7gDAzVMS-NDMdURHyvKY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:a3:bc:c8:d9:ff:f6:86:71:91:0b:06:89:dc:e3:14:29:2f: fe:93:2b:ea:13:7f:8e:4f:13:bf:71:30:74:1c:ca:31:70:2b: b5:2d:78:3b:94:d6:86:52:19:ef:69:32:35:8c:23:45:0e:9b: e7:6b:91:8e:b9:44:00:73:bb:21:5c:99:e7:be:0f:4b:ac:3d: 27:ff:6e:76:4e:49:10:6f:bf:63:4f:bf:23:e7:56:7a:17:4f: cc:95:2f:d2:87:a5:f7:14:a5:09:90:94:0c:5d:cc:17:c8:25: ed:d0:a0:f1:77:46:f1:32:d2:85:9b:e6:d3:70:c1:09:ca:1e: 77:b9:8c:ff:b7:fe:f9:d2:38:df:78:d9:87:63:e8:0b:b7:bd: ea:e5:72:6b:6b:df:22:63:3a:37:17:a8:29:b2:fa:dd:67:07: f3:3d:58:fa:b0:5e:70:9e:1e:69:9d:71:5e:2c:ed:ac:b3:45: 2d:c9:7b:25:b6:df:ff:3c:03:36:8c:42:64:9f:9f:17:a3:8e: d8:de:f3:61:3c:d6:6a:ec:ff:48:9f:17:f9:1c:7c:92:25:69: 2b:53:d1:44:ec:96:33:59:96:7e:fb:cd:d1:c1:1e:ed:db:32: dc:61:43:f4:43:1a:27:b5:72:79:3e:e4:f1:25:22:78:cf:ce: 2a:35:66:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjA3MjExMTAvBgNVBAUTKDA0RDg0ODIxRTEzQjgwMzAzMzU0QzRCRTM0MzMxRDUx MTFGMkJDQTYwHhcNMjUwNDI1MDIzMjExWhcNMjUwNTAyMDIzMjExWjAYMRYwFAYD VQQDEw02ODBhZjQyYi0zM2E2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz4/QmVcnCsCa9RLsG+aNqxYvE4oTQAGddFRoiN4Ua/3KAbaZesP5Gltl2MI/ +4+tclvCgewQ4pNylKr0JXeGpYbqDrh4qaM+4yzWbM7PtCPykTUo68xdWcU+qiEO ZaKrohx4d1u/N7oaiThiMkHayh5Iw8tmRARE/zZOmCv4RE/tIpsGC/8wg0BAWmOG wFtb5pgRdWz4LSdzMQZDUEmRN/WUy4mRegXsrh+S5LKjVtENovUzPiZxyWPVrpuF eEtBAWgTsxrW80ZZ+cCTPZyP77kwxyJWvSl74Z4lX4dlm4n3Rwqr6IVYcAo+/RIn p0HOwDoQZikHLAeROMJyKHdDcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMcYyDGO 4vNbzGu1N2Mg2jkN+fN9MB8GA1UdIwQYMBaAFATYSCHhO4AwM1TEvjQzHVER8rym MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMDcyMS9DOTEyN0IzRUFE QzgxMUVEOTIxNjIyMEVDNEY5QUUwMi9CTmhJSWVFN2dEQXpWTVMtTkRNZFVSSHl2 S1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JOaElJZUU3Z0RBelZNUy1ORE1kVVJIeXZLWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MDcyMS9DOTEyN0IzRUFEQzgxMUVEOTIxNjIyMEVDNEY5QUUwMi9CTmhJSWVFN2dE QXpWTVMtTkRNZFVSSHl2S1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAo7zI2f/2hnGRCwaJ3OMUKS/+kyvqE3+OTxO/cTB0HMoxcCu1LXg7 lNaGUhnvaTI1jCNFDpvna5GOuUQAc7shXJnnvg9LrD0n/252TkkQb79jT78j51Z6 F0/MlS/Sh6X3FKUJkJQMXcwXyCXt0KDxd0bxMtKFm+bTcMEJyh53uYz/t/750jjf eNmHY+gLt73q5XJra98iYzo3F6gpsvrdZwfzPVj6sF5wnh5pnXFeLO2ss0UtyXsl tt//PAM2jEJkn58Xo47Y3vNhPNZq7P9Inxf5HHySJWkrU9FE7JYzWZZ++83RwR7t 2zLcYUP0QxontXJ5PuTxJSJ4z84qNWZ4 -----END CERTIFICATE-----Generated at Sat Apr 26 14:55:02 2025 by rpki-client