$ rpki-client -vvf rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft File: BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft (raw, json) Hash identifier: cQC3xYO1+VbTaaGaKeZ1u39ikPzVBRnPrRewJlVYvtc= Subject key identifier: DC:B1:E6:BB:77:60:AF:71:C4:AA:8F:E7:18:CE:01:37:8F:D2:9F:36 Authority key identifier: 06:66:6A:EC:D7:8C:0A:5E:D1:37:90:A5:E9:AA:40:C3:49:0F:BC:F1 Certificate issuer: /CN=A91F63DC/serialNumber=06666AECD78C0A5ED13790A5E9AA40C3490FBCF1 Certificate serial: 013C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BmZq7NeMCl7RN5Cl6apAw0kPvPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft Manifest number: 013A Signing time: Fri 13 Jun 2025 03:21:46 +0000 Manifest this update: Fri 13 Jun 2025 03:21:45 +0000 Manifest next update: Fri 20 Jun 2025 03:21:45 +0000 Files and hashes: 1: BmZq7NeMCl7RN5Cl6apAw0kPvPE.crl (hash: DL24W1FoHHWIPFZB9pxIfLYTZoaw/tzu6ksAHqVuqtM=) 2: 9FFF0E74665511EEB872BE4DC4F9AE02.roa (hash: HsI9s/avf/WsE7yy/2Fnz0a9pkM1ZrwF3kHF8jU1yp8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.crl rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BmZq7NeMCl7RN5Cl6apAw0kPvPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 03:21:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 316 (0x13c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F63DC, serialNumber=06666AECD78C0A5ED13790A5E9AA40C3490FBCF1 Validity Not Before: Jun 13 03:21:45 2025 GMT Not After : Jun 20 03:21:45 2025 GMT Subject: CN=684b9949-cd98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:47:b6:b8:a5:44:fe:c4:1d:32:6b:14:e2:64: 1f:76:3a:34:9b:53:56:d2:ad:7b:8d:59:0b:06:51: 27:fe:22:a2:12:5a:61:c1:20:dc:ea:2b:fa:4a:18: f5:66:71:ef:a4:5c:98:9b:60:72:6c:db:d6:58:21: d3:a2:89:7c:50:2e:b8:a0:0a:ac:fa:1b:ee:ce:cd: 43:b2:24:79:cd:04:70:ee:33:2d:3c:d3:b6:4c:3c: b0:ac:1e:6b:c3:94:aa:2b:d0:72:65:07:f4:cf:25: 86:f7:1c:8d:01:f2:83:40:04:2e:ac:3c:78:86:1e: 8e:ea:13:4c:25:3b:52:6f:68:f9:eb:15:2a:0a:3a: 74:04:31:b2:42:d0:63:33:e5:84:99:d3:7c:8c:60: c7:79:e5:2d:4b:a4:0b:59:eb:11:bf:b2:61:7d:e4: f4:a8:f9:f5:ed:a6:f9:62:25:fb:e9:63:75:22:d1: ea:53:8d:dd:bd:2a:74:59:2b:53:60:ab:e2:49:97: 90:d9:15:04:37:3d:a6:8a:1b:ce:06:0b:cd:b0:07: 49:64:7a:8f:46:04:e4:f2:9c:c7:ed:b2:b9:28:b2: bf:05:41:ac:f4:cd:46:92:dc:ed:8f:17:6e:a4:0d: bb:20:da:9c:0c:9d:81:3c:e3:ec:a6:34:3b:ff:78: 9f:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:B1:E6:BB:77:60:AF:71:C4:AA:8F:E7:18:CE:01:37:8F:D2:9F:36 X509v3 Authority Key Identifier: keyid:06:66:6A:EC:D7:8C:0A:5E:D1:37:90:A5:E9:AA:40:C3:49:0F:BC:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BmZq7NeMCl7RN5Cl6apAw0kPvPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:a9:0c:85:12:46:26:aa:7a:bb:6b:20:ac:77:f1:09:76:73: 3b:d2:23:37:63:49:6e:92:f2:a6:8b:6b:d5:6a:f8:65:ac:77: dd:d7:cc:ae:d8:59:be:97:36:99:00:e6:78:94:41:4b:a8:85: 85:40:a5:c8:a8:f2:24:26:f0:06:1b:ed:8c:ae:fc:b7:b4:6b: 24:01:a0:07:d6:d8:cb:58:3e:ca:f8:e5:fb:ac:53:90:5c:b2: dd:89:e6:5b:70:c1:c2:2b:6c:50:fb:5c:b2:8d:9e:f6:0d:b4: fa:bc:d5:1c:8f:14:07:3d:64:2e:0e:3b:f6:c7:5a:bb:eb:6d: 26:68:20:c6:a7:8c:cc:99:d5:4b:cc:fa:4c:05:de:9f:e7:d8: 3b:e1:c2:ec:1b:dc:45:2f:13:ca:74:fa:96:e3:96:f6:fe:a5: ad:d1:39:c7:25:63:6e:bc:69:ce:83:07:60:69:4f:b8:c1:27: af:8b:e1:56:c5:1c:09:f3:e1:c1:e7:61:27:84:1b:1c:bb:10: a8:cb:9e:4b:f8:07:f7:68:84:73:91:af:11:fb:e8:f9:ef:fd: 32:0b:c8:92:68:6f:55:4d:69:63:62:69:ba:60:ac:e8:e7:1a: db:d4:9d:80:74:c4:1f:b7:65:85:e3:1d:af:2c:9c:6d:3c:7e: 72:24:05:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYzREMxMTAvBgNVBAUTKDA2NjY2QUVDRDc4QzBBNUVEMTM3OTBBNUU5QUE0MEMz NDkwRkJDRjEwHhcNMjUwNjEzMDMyMTQ1WhcNMjUwNjIwMDMyMTQ1WjAYMRYwFAYD VQQDEw02ODRiOTk0OS1jZDk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArUe2uKVE/sQdMmsU4mQfdjo0m1NW0q17jVkLBlEn/iKiElphwSDc6iv6Shj1 ZnHvpFyYm2BybNvWWCHTool8UC64oAqs+hvuzs1DsiR5zQRw7jMtPNO2TDywrB5r w5SqK9ByZQf0zyWG9xyNAfKDQAQurDx4hh6O6hNMJTtSb2j56xUqCjp0BDGyQtBj M+WEmdN8jGDHeeUtS6QLWesRv7JhfeT0qPn17ab5YiX76WN1ItHqU43dvSp0WStT YKviSZeQ2RUENz2mihvOBgvNsAdJZHqPRgTk8pzH7bK5KLK/BUGs9M1Gktztjxdu pA27INqcDJ2BPOPspjQ7/3ifmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNyx5rt3 YK9xxKqP5xjOATeP0p82MB8GA1UdIwQYMBaAFAZmauzXjApe0TeQpemqQMNJD7zx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjNEQy8wNDMxNTJFMjY2 NTMxMUVFOUM2OEVFMkJDNEY5QUUwMi9CbVpxN05lTUNsN1JONUNsNmFwQXcwa1B2 UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JtWnE3TmVNQ2w3Uk41Q2w2YXBBdzBrUHZQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjNEQy8wNDMxNTJFMjY2NTMxMUVFOUM2OEVFMkJDNEY5QUUwMi9CbVpxN05lTUNs N1JONUNsNmFwQXcwa1B2UEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCvqQyFEkYmqnq7ayCsd/EJdnM70iM3Y0lukvKmi2vVavhlrHfd18yu 2Fm+lzaZAOZ4lEFLqIWFQKXIqPIkJvAGG+2Mrvy3tGskAaAH1tjLWD7K+OX7rFOQ XLLdieZbcMHCK2xQ+1yyjZ72DbT6vNUcjxQHPWQuDjv2x1q7620maCDGp4zMmdVL zPpMBd6f59g74cLsG9xFLxPKdPqW45b2/qWt0TnHJWNuvGnOgwdgaU+4wSevi+FW xRwJ8+HB52EnhBscuxCoy55L+Af3aIRzka8R++j57/0yC8iSaG9VTWljYmm6YKzo 5xrb1J2AdMQft2WF4x2vLJxtPH5yJAWU -----END CERTIFICATE-----Generated at Sun Jun 15 04:55:26 2025 by rpki-client