$ rpki-client -vvf rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft File: BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft (raw, json) Hash identifier: GzgztQjWMP4SeDPz/89ivae54xyk4mkeTTdUdyFnuNM= Subject key identifier: 75:2C:7F:F6:24:8F:AF:D3:E8:B2:2D:70:F6:EE:D3:53:62:7D:92:BA Authority key identifier: 06:66:6A:EC:D7:8C:0A:5E:D1:37:90:A5:E9:AA:40:C3:49:0F:BC:F1 Certificate issuer: /CN=A91F63DC/serialNumber=06666AECD78C0A5ED13790A5E9AA40C3490FBCF1 Certificate serial: 0124 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BmZq7NeMCl7RN5Cl6apAw0kPvPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft Manifest number: 0122 Signing time: Fri 25 Apr 2025 03:46:27 +0000 Manifest this update: Fri 25 Apr 2025 03:46:26 +0000 Manifest next update: Fri 02 May 2025 03:46:26 +0000 Files and hashes: 1: BmZq7NeMCl7RN5Cl6apAw0kPvPE.crl (hash: 1WQbzAqtyV+Ah0NC3gxgfq7mXkEJ1kvPPKWQdDGGAkc=) 2: 9FFF0E74665511EEB872BE4DC4F9AE02.roa (hash: HsI9s/avf/WsE7yy/2Fnz0a9pkM1ZrwF3kHF8jU1yp8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.crl rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BmZq7NeMCl7RN5Cl6apAw0kPvPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:46:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 292 (0x124) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F63DC, serialNumber=06666AECD78C0A5ED13790A5E9AA40C3490FBCF1 Validity Not Before: Apr 25 03:46:26 2025 GMT Not After : May 2 03:46:26 2025 GMT Subject: CN=680b0593-7ee7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:77:2b:39:14:04:c2:7f:0b:38:81:f1:3a:49: c0:5f:eb:f1:aa:12:6f:29:a6:64:ac:11:a5:63:4e: b7:ad:f1:a9:b5:70:bc:96:34:d9:d8:58:64:5e:0c: 9a:40:74:9a:f1:af:4e:24:91:fa:94:1d:51:5d:b7: c1:24:d4:39:0c:b9:4c:68:c4:08:36:c2:6c:bf:5b: a7:4b:90:b2:92:ed:8b:19:02:0e:34:9d:c1:e3:d2: f6:5b:72:2b:fd:e1:0e:e8:7e:2f:0a:5f:4a:e2:b4: 60:71:f9:36:66:7e:b0:fc:a9:b9:be:4f:2b:0e:33: 78:4c:b2:f1:45:62:11:b8:03:c2:cf:9b:71:98:a9: 98:fc:92:e3:1f:07:1a:f1:8e:ac:98:86:7a:83:a0: 35:72:32:f3:9d:4a:f1:66:17:88:d3:d2:40:5f:3b: b8:24:82:5f:9f:48:1d:d7:7e:8b:0b:ab:36:f2:e8: 93:bf:47:03:1d:20:2c:29:db:81:1e:a2:e2:27:4a: 36:9b:94:6f:70:9b:eb:f5:c7:cc:6c:68:87:28:13: 61:52:9a:24:c7:a3:26:54:de:08:fa:03:ed:b4:dd: 10:3a:35:ca:33:1b:22:6d:c8:d3:03:4c:dc:54:ce: ea:fc:3f:ae:c9:bf:1c:72:dd:6d:b0:7c:66:66:83: 45:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:2C:7F:F6:24:8F:AF:D3:E8:B2:2D:70:F6:EE:D3:53:62:7D:92:BA X509v3 Authority Key Identifier: keyid:06:66:6A:EC:D7:8C:0A:5E:D1:37:90:A5:E9:AA:40:C3:49:0F:BC:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BmZq7NeMCl7RN5Cl6apAw0kPvPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:2f:d2:d6:d4:43:71:90:c8:43:99:67:b1:0e:3d:eb:ee:2a: ea:42:b5:a5:7e:c2:15:29:f5:74:cc:29:73:89:8a:85:8d:97: 01:9e:2e:dd:45:20:80:05:67:50:38:8e:e6:1f:e9:b7:f4:85: 4c:2e:30:50:8e:31:d4:bc:5c:90:36:2b:ab:c3:e9:25:76:07: 3b:a1:bd:11:78:9b:e7:74:9b:a8:8e:fc:c8:3d:27:f2:f4:2f: a3:49:98:46:7b:44:07:ff:09:ce:64:0c:64:ca:80:10:a5:89: ec:52:87:48:e8:74:d4:7c:b4:68:7d:1a:19:a0:47:70:11:d9: b2:cd:5d:e8:4b:c1:4c:82:3d:f2:3c:c3:d0:f9:06:a5:d4:6a: e3:a9:ea:fb:23:b1:0a:8b:da:41:c3:de:bf:dd:b4:9b:78:d5: 43:88:1e:24:08:9f:b7:4f:28:e7:25:90:01:25:95:e4:38:c9: dc:15:22:b4:19:3b:a9:38:89:43:4c:76:27:76:ae:51:78:56: 81:7c:b1:aa:33:48:67:08:3f:40:1d:ea:f6:a3:ca:11:36:f6: 31:23:5d:f0:56:07:c5:14:2f:cb:df:33:20:d2:87:c4:54:19: 5c:dd:56:83:61:63:2f:59:d0:6b:44:a2:35:21:78:d1:8d:3a: 46:1e:57:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYzREMxMTAvBgNVBAUTKDA2NjY2QUVDRDc4QzBBNUVEMTM3OTBBNUU5QUE0MEMz NDkwRkJDRjEwHhcNMjUwNDI1MDM0NjI2WhcNMjUwNTAyMDM0NjI2WjAYMRYwFAYD VQQDEw02ODBiMDU5My03ZWU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr3crORQEwn8LOIHxOknAX+vxqhJvKaZkrBGlY063rfGptXC8ljTZ2FhkXgya QHSa8a9OJJH6lB1RXbfBJNQ5DLlMaMQINsJsv1unS5Cyku2LGQIONJ3B49L2W3Ir /eEO6H4vCl9K4rRgcfk2Zn6w/Km5vk8rDjN4TLLxRWIRuAPCz5txmKmY/JLjHwca 8Y6smIZ6g6A1cjLznUrxZheI09JAXzu4JIJfn0gd136LC6s28uiTv0cDHSAsKduB HqLiJ0o2m5RvcJvr9cfMbGiHKBNhUpokx6MmVN4I+gPttN0QOjXKMxsibcjTA0zc VM7q/D+uyb8cct1tsHxmZoNFYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHUsf/Yk j6/T6LItcPbu01NifZK6MB8GA1UdIwQYMBaAFAZmauzXjApe0TeQpemqQMNJD7zx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjNEQy8wNDMxNTJFMjY2 NTMxMUVFOUM2OEVFMkJDNEY5QUUwMi9CbVpxN05lTUNsN1JONUNsNmFwQXcwa1B2 UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JtWnE3TmVNQ2w3Uk41Q2w2YXBBdzBrUHZQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjNEQy8wNDMxNTJFMjY2NTMxMUVFOUM2OEVFMkJDNEY5QUUwMi9CbVpxN05lTUNs N1JONUNsNmFwQXcwa1B2UEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVL9LW1ENxkMhDmWexDj3r7irqQrWlfsIVKfV0zClziYqFjZcBni7d RSCABWdQOI7mH+m39IVMLjBQjjHUvFyQNiurw+kldgc7ob0ReJvndJuojvzIPSfy 9C+jSZhGe0QH/wnOZAxkyoAQpYnsUodI6HTUfLRofRoZoEdwEdmyzV3oS8FMgj3y PMPQ+Qal1Grjqer7I7EKi9pBw96/3bSbeNVDiB4kCJ+3TyjnJZABJZXkOMncFSK0 GTupOIlDTHYndq5ReFaBfLGqM0hnCD9AHer2o8oRNvYxI13wVgfFFC/L3zMg0ofE VBlc3VaDYWMvWdBrRKI1IXjRjTpGHlcE -----END CERTIFICATE-----Generated at Sat Apr 26 04:18:26 2025 by rpki-client