$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft File: BZ5vA652dqnQ8J1fbL25CGGFWlc.mft (raw, json) Hash identifier: l1M8GeQ6g9bzXTglV9HWr0ZWoVVCULol4r0GUyUbu6s= Subject key identifier: EC:75:63:B8:9C:5F:90:95:E9:DA:70:C2:F4:AF:A1:52:8A:B0:D5:29 Authority key identifier: 05:9E:6F:03:AE:76:76:A9:D0:F0:9D:5F:6C:BD:B9:08:61:85:5A:57 Certificate issuer: /CN=A91FF74B/serialNumber=059E6F03AE7676A9D0F09D5F6CBDB90861855A57 Certificate serial: 06D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BZ5vA652dqnQ8J1fbL25CGGFWlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft Manifest number: 06B8 Signing time: Wed 18 Jun 2025 21:35:47 +0000 Manifest this update: Wed 18 Jun 2025 21:35:46 +0000 Manifest next update: Wed 25 Jun 2025 21:35:46 +0000 Files and hashes: 1: BZ5vA652dqnQ8J1fbL25CGGFWlc.crl (hash: wCHJhfA79VEEB1yMhTeXjtDSHNgOYR7GghMFjYXcP94=) 2: 7E0AB01C782C11EBB0B71971C4F9AE02.roa (hash: k3Hyvnta3NTSihzOI6GhNOzxp4Li4ZxAgK0C//8NE4o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.crl rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BZ5vA652dqnQ8J1fbL25CGGFWlc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 21:35:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1748 (0x6d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF74B, serialNumber=059E6F03AE7676A9D0F09D5F6CBDB90861855A57 Validity Not Before: Jun 18 21:35:46 2025 GMT Not After : Jun 25 21:35:46 2025 GMT Subject: CN=68533133-e567 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:27:a8:44:f1:17:ee:4e:9a:fd:fb:24:4a:eb: 7a:b3:8b:13:03:0d:a3:a3:3b:8b:b5:2e:df:59:ca: 42:09:1b:4c:ce:0c:fe:e3:74:85:f2:62:10:e5:38: e3:04:ca:5a:d7:09:b8:c2:b6:bc:85:67:66:f4:02: da:61:43:b8:38:58:b3:3d:c0:ec:46:15:ab:77:80: d1:40:fc:39:1f:78:b5:d6:4d:c8:d2:73:14:e8:cf: ab:10:d8:5b:f6:f6:9d:72:e0:fb:1a:cb:9f:f2:b3: ea:e5:f9:2e:e5:51:33:c5:df:30:85:01:64:e3:c3: 0a:d1:97:86:e6:43:12:f9:9d:72:5e:f9:9e:78:c2: a1:87:00:af:a5:ba:75:50:bc:4d:70:af:89:61:bc: 2c:0a:f9:92:80:a2:01:cb:2d:b1:38:e9:9a:8c:fa: c1:f8:62:6a:69:d4:52:29:12:9d:e4:ab:1c:d6:ed: de:87:6f:1f:1a:01:49:d4:05:c0:e2:1b:f9:5e:11: 39:ad:55:ae:5f:e5:1f:07:7f:a9:7e:11:3c:47:9e: c1:2c:4a:60:d0:6b:ea:95:82:23:75:98:99:d6:c3: 57:fd:d6:4d:72:05:ee:0f:71:c6:19:66:cb:2e:f4: 93:c7:3a:b6:d7:c9:8c:a1:55:25:95:4e:94:38:7a: 6c:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:75:63:B8:9C:5F:90:95:E9:DA:70:C2:F4:AF:A1:52:8A:B0:D5:29 X509v3 Authority Key Identifier: keyid:05:9E:6F:03:AE:76:76:A9:D0:F0:9D:5F:6C:BD:B9:08:61:85:5A:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BZ5vA652dqnQ8J1fbL25CGGFWlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF74B/61A3384A782C11EBAC04F672C4F9AE02/BZ5vA652dqnQ8J1fbL25CGGFWlc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:3d:be:a4:6c:09:bf:93:38:6e:ae:8c:8d:5b:ab:1d:df:a7: 95:38:ba:c8:b1:d8:fe:8e:bf:10:e2:a8:59:4f:53:86:88:b0: c0:5c:b4:15:61:ff:6a:0e:3b:ac:b8:90:3c:7d:3e:d7:31:e4: 4c:fe:03:5e:d6:ae:4f:b9:84:b1:a3:5b:3f:90:46:c4:d4:96: 14:61:e4:95:02:86:b5:ff:e0:ba:df:ca:b3:e6:35:8c:13:42: 4d:f2:57:cb:84:fd:30:a0:d7:69:4d:dc:ce:bb:57:1c:a5:77: 25:2b:ed:29:52:cf:69:7e:d6:23:2b:10:54:8a:b7:62:f7:a0: 5f:ec:ae:44:e8:6c:04:d8:4a:9e:9d:90:16:8a:46:52:4b:66: e5:3e:eb:6c:f9:c3:9a:de:5d:38:11:d4:7c:a4:79:13:82:0b: 9d:cf:94:31:d1:16:ba:ed:75:b3:d7:83:a1:d5:56:f3:0c:cc: 1c:08:aa:1b:ba:d2:bb:5d:f6:e0:36:0d:6b:cf:b5:71:b0:d4: fb:b1:bd:92:67:02:aa:ce:17:25:fe:c9:fa:52:70:23:cf:3b: 1b:6b:57:e1:23:21:4b:b3:53:b1:3c:42:0b:fd:ed:80:33:97: 1d:b2:51:9e:e8:7b:78:de:6a:1b:d7:89:1b:7d:cf:ee:2b:bc: 3f:d7:ba:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY3NEIxMTAvBgNVBAUTKDA1OUU2RjAzQUU3Njc2QTlEMEYwOUQ1RjZDQkRCOTA4 NjE4NTVBNTcwHhcNMjUwNjE4MjEzNTQ2WhcNMjUwNjI1MjEzNTQ2WjAYMRYwFAYD VQQDEw02ODUzMzEzMy1lNTY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvyeoRPEX7k6a/fskSut6s4sTAw2jozuLtS7fWcpCCRtMzgz+43SF8mIQ5Tjj BMpa1wm4wra8hWdm9ALaYUO4OFizPcDsRhWrd4DRQPw5H3i11k3I0nMU6M+rENhb 9vadcuD7Gsuf8rPq5fku5VEzxd8whQFk48MK0ZeG5kMS+Z1yXvmeeMKhhwCvpbp1 ULxNcK+JYbwsCvmSgKIByy2xOOmajPrB+GJqadRSKRKd5Ksc1u3eh28fGgFJ1AXA 4hv5XhE5rVWuX+UfB3+pfhE8R57BLEpg0GvqlYIjdZiZ1sNX/dZNcgXuD3HGGWbL LvSTxzq218mMoVUllU6UOHpsCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOx1Y7ic X5CV6dpwwvSvoVKKsNUpMB8GA1UdIwQYMBaAFAWebwOudnap0PCdX2y9uQhhhVpX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjc0Qi82MUEzMzg0QTc4 MkMxMUVCQUMwNEY2NzJDNEY5QUUwMi9CWjV2QTY1MmRxblE4SjFmYkwyNUNHR0ZX bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JaNXZBNjUyZHFuUThKMWZiTDI1Q0dHRldsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Rjc0Qi82MUEzMzg0QTc4MkMxMUVCQUMwNEY2NzJDNEY5QUUwMi9CWjV2QTY1MmRx blE4SjFmYkwyNUNHR0ZXbGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMPb6kbAm/kzhuroyNW6sd36eVOLrIsdj+jr8Q4qhZT1OGiLDAXLQV Yf9qDjusuJA8fT7XMeRM/gNe1q5PuYSxo1s/kEbE1JYUYeSVAoa1/+C638qz5jWM E0JN8lfLhP0woNdpTdzOu1ccpXclK+0pUs9pftYjKxBUirdi96Bf7K5E6GwE2Eqe nZAWikZSS2blPuts+cOa3l04EdR8pHkTggudz5Qx0Ra67XWz14Oh1VbzDMwcCKob utK7XfbgNg1rz7VxsNT7sb2SZwKqzhcl/sn6UnAjzzsba1fhIyFLs1OxPEIL/e2A M5cdslGe6Ht43mob14kbfc/uK7w/17pt -----END CERTIFICATE-----Generated at Fri Jun 20 08:33:39 2025 by rpki-client