$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft File: BZ5vA652dqnQ8J1fbL25CGGFWlc.mft (raw, json) Hash identifier: Quk1gfx6b3wbberfgA+0e1A699yRf8KkX8+2EC6TGjw= Subject key identifier: 6A:BA:0C:C0:AE:D4:7E:37:FD:1F:F8:02:65:9A:A7:80:C0:53:09:66 Authority key identifier: 05:9E:6F:03:AE:76:76:A9:D0:F0:9D:5F:6C:BD:B9:08:61:85:5A:57 Certificate issuer: /CN=A91FF74B/serialNumber=059E6F03AE7676A9D0F09D5F6CBDB90861855A57 Certificate serial: 06B6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BZ5vA652dqnQ8J1fbL25CGGFWlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft Manifest number: 069B Signing time: Thu 24 Apr 2025 21:38:49 +0000 Manifest this update: Thu 24 Apr 2025 21:38:48 +0000 Manifest next update: Thu 01 May 2025 21:38:48 +0000 Files and hashes: 1: BZ5vA652dqnQ8J1fbL25CGGFWlc.crl (hash: ERtYkL5UsLpi/otV3Vrf5u1ftqTpm4eM/I6viyPjNNw=) 2: 7E0AB01C782C11EBB0B71971C4F9AE02.roa (hash: e2DubgyDCDlnH7LvAeB6EbSHpB7UMinUEO9uGUWVJec=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.crl rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BZ5vA652dqnQ8J1fbL25CGGFWlc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:38:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1718 (0x6b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF74B, serialNumber=059E6F03AE7676A9D0F09D5F6CBDB90861855A57 Validity Not Before: Apr 24 21:38:48 2025 GMT Not After : May 1 21:38:48 2025 GMT Subject: CN=680aaf68-193d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ae:58:1f:6f:0a:50:cb:d8:f2:4a:f2:ad:f1: 75:e4:b0:2d:3f:8a:46:5a:42:1c:35:f9:54:e9:02: 0c:b8:19:75:2e:4d:fe:79:99:87:f8:e5:44:64:1f: f8:ac:73:55:d0:6a:a6:39:25:3b:01:e3:01:e8:1d: c7:55:91:90:7f:73:13:3f:30:a8:bc:a6:63:66:ea: cc:2f:6a:7a:4b:4a:88:77:8f:e5:c8:77:e8:1c:34: d2:ec:77:0c:30:9e:f1:bc:83:b6:d4:d2:f7:d0:58: 8e:fd:f3:d5:a5:c8:14:87:f9:67:12:52:5f:d9:c6: 80:bf:ef:24:32:d6:8b:6d:31:3e:b6:9b:bb:e5:99: 5e:62:04:a3:1c:f7:ae:af:9c:b8:d1:16:5e:64:70: 0b:df:2e:77:60:0c:89:46:23:b2:b7:c3:c7:2c:87: 00:56:f8:ff:77:06:63:04:03:11:a6:c7:ef:2b:7c: 10:b1:8c:3b:ac:2c:92:7a:a5:c0:ff:bf:3c:c9:c4: e8:b5:75:1c:f5:22:c1:ed:ed:3f:32:a4:33:49:d5: 45:4b:41:80:b3:7a:8c:a5:e0:c5:e3:5b:43:52:d0: 3b:3f:cf:89:09:0e:53:a5:0f:10:ca:d2:9f:07:12: 48:2e:ed:18:0d:65:6b:8c:ef:13:5c:60:d3:e2:cb: 56:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:BA:0C:C0:AE:D4:7E:37:FD:1F:F8:02:65:9A:A7:80:C0:53:09:66 X509v3 Authority Key Identifier: keyid:05:9E:6F:03:AE:76:76:A9:D0:F0:9D:5F:6C:BD:B9:08:61:85:5A:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BZ5vA652dqnQ8J1fbL25CGGFWlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:2c:dc:df:ab:8c:cb:c1:21:a2:c2:80:02:7f:30:86:15:83: 7e:a9:57:93:2f:6b:b1:d0:68:a5:53:63:b8:42:1c:3d:f6:6e: c0:2b:21:7e:d4:8d:28:4d:a1:29:e3:72:fb:ee:3f:0a:13:3e: 37:16:31:90:80:76:65:66:fc:63:4e:07:41:d1:2b:61:ff:e7: 20:fd:98:83:5e:9f:18:1b:4a:2a:bd:db:e0:7c:2f:1f:49:b0: 6e:83:df:e9:0a:fc:78:6d:39:45:d2:a3:ac:a9:f3:64:54:68: f4:a6:2d:09:cf:5c:df:da:46:cf:9b:a0:b4:e1:35:53:83:c0: b0:9b:71:65:8a:c3:ff:98:db:3e:4e:9b:e1:54:1e:e7:18:33: 20:d9:55:b2:e5:f6:64:22:4b:25:2b:6a:47:43:18:7b:4d:a5: 63:27:5a:3a:80:8a:d0:0c:83:62:96:ef:56:19:1e:d1:3b:24: 1d:0b:e5:cc:d4:e1:b7:62:4e:e9:40:e2:4b:ea:cf:86:1d:63: 5a:f7:57:df:c6:fe:ed:ec:32:d6:06:99:71:f4:d6:39:5a:b8: 2a:6a:b6:9d:62:9d:e0:0f:c5:d5:1e:ca:df:0b:71:c3:8e:a2: 9e:f3:aa:58:8e:27:f6:8b:e5:48:72:03:a9:8d:fd:16:fb:6d: dd:c2:2a:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY3NEIxMTAvBgNVBAUTKDA1OUU2RjAzQUU3Njc2QTlEMEYwOUQ1RjZDQkRCOTA4 NjE4NTVBNTcwHhcNMjUwNDI0MjEzODQ4WhcNMjUwNTAxMjEzODQ4WjAYMRYwFAYD VQQDEw02ODBhYWY2OC0xOTNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuq5YH28KUMvY8kryrfF15LAtP4pGWkIcNflU6QIMuBl1Lk3+eZmH+OVEZB/4 rHNV0GqmOSU7AeMB6B3HVZGQf3MTPzCovKZjZurML2p6S0qId4/lyHfoHDTS7HcM MJ7xvIO21NL30FiO/fPVpcgUh/lnElJf2caAv+8kMtaLbTE+tpu75ZleYgSjHPeu r5y40RZeZHAL3y53YAyJRiOyt8PHLIcAVvj/dwZjBAMRpsfvK3wQsYw7rCySeqXA /788ycTotXUc9SLB7e0/MqQzSdVFS0GAs3qMpeDF41tDUtA7P8+JCQ5TpQ8QytKf BxJILu0YDWVrjO8TXGDT4stWkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGq6DMCu 1H43/R/4AmWap4DAUwlmMB8GA1UdIwQYMBaAFAWebwOudnap0PCdX2y9uQhhhVpX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjc0Qi82MUEzMzg0QTc4 MkMxMUVCQUMwNEY2NzJDNEY5QUUwMi9CWjV2QTY1MmRxblE4SjFmYkwyNUNHR0ZX bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JaNXZBNjUyZHFuUThKMWZiTDI1Q0dHRldsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Rjc0Qi82MUEzMzg0QTc4MkMxMUVCQUMwNEY2NzJDNEY5QUUwMi9CWjV2QTY1MmRx blE4SjFmYkwyNUNHR0ZXbGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6LNzfq4zLwSGiwoACfzCGFYN+qVeTL2ux0GilU2O4Qhw99m7AKyF+ 1I0oTaEp43L77j8KEz43FjGQgHZlZvxjTgdB0Sth/+cg/ZiDXp8YG0oqvdvgfC8f SbBug9/pCvx4bTlF0qOsqfNkVGj0pi0Jz1zf2kbPm6C04TVTg8Cwm3FlisP/mNs+ TpvhVB7nGDMg2VWy5fZkIkslK2pHQxh7TaVjJ1o6gIrQDINilu9WGR7ROyQdC+XM 1OG3Yk7pQOJL6s+GHWNa91ffxv7t7DLWBplx9NY5WrgqaradYp3gD8XVHsrfC3HD jqKe86pYjif2i+VIcgOpjf0W+23dwirj -----END CERTIFICATE-----Generated at Sat Apr 26 15:08:58 2025 by rpki-client