$ rpki-client -vvf rpki.apnic.net/member_repository/A912978E/D5AE7FAC53CA11EE8049935EC4F9AE02/bfCTVmC1JNKoCAZDaLCvxWU4ppo.mft File: bfCTVmC1JNKoCAZDaLCvxWU4ppo.mft (raw, json) Hash identifier: Abi7ZuxNO8d+aLMyoGalVYjrlU8p8FVnFRdE7jROV5s= Subject key identifier: 75:AF:CE:A5:9C:31:51:BE:3C:DE:62:BE:31:03:83:D4:13:E1:DD:03 Authority key identifier: 6D:F0:93:56:60:B5:24:D2:A8:08:06:43:68:B0:AF:C5:65:38:A6:9A Certificate issuer: /CN=A912978E/serialNumber=6DF0935660B524D2A808064368B0AFC56538A69A Certificate serial: 0159 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bfCTVmC1JNKoCAZDaLCvxWU4ppo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912978E/D5AE7FAC53CA11EE8049935EC4F9AE02/bfCTVmC1JNKoCAZDaLCvxWU4ppo.mft Manifest number: 0154 Signing time: Tue 01 Jul 2025 04:38:35 +0000 Manifest this update: Tue 01 Jul 2025 04:38:34 +0000 Manifest next update: Tue 08 Jul 2025 04:38:34 +0000 Files and hashes: 1: bfCTVmC1JNKoCAZDaLCvxWU4ppo.crl (hash: fGUZTb0BSPn0EcP44qd7QbaQxRf0b96qKxBuXlPlJ1c=) 2: 59923F2CA72011EEA63ABF4AC4F9AE02.roa (hash: jVn5ZxyveGa/F3Z17pqMoq5Bfa+WnZz2iNW6T6RgwPs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912978E/D5AE7FAC53CA11EE8049935EC4F9AE02/bfCTVmC1JNKoCAZDaLCvxWU4ppo.crl rsync://rpki.apnic.net/member_repository/A912978E/D5AE7FAC53CA11EE8049935EC4F9AE02/bfCTVmC1JNKoCAZDaLCvxWU4ppo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bfCTVmC1JNKoCAZDaLCvxWU4ppo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 04:38:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 345 (0x159) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912978E, serialNumber=6DF0935660B524D2A808064368B0AFC56538A69A Validity Not Before: Jul 1 04:38:34 2025 GMT Not After : Jul 8 04:38:34 2025 GMT Subject: CN=6863664a-ae32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:39:32:f6:bc:d6:10:cc:d1:22:76:cc:40:00: 98:6a:26:d1:7e:16:e0:29:46:ab:ac:0b:39:9e:2a: 1b:73:be:47:7c:44:14:ac:5a:29:dc:d4:a4:72:8d: 5b:f5:0a:09:1d:9e:14:cd:80:72:65:df:12:31:19: 0b:93:1b:ce:70:be:21:a0:96:1c:b8:54:ca:18:b4: 04:43:a8:e6:40:08:6d:89:a4:92:79:ba:51:f7:59: a6:c4:ce:43:e0:44:38:ca:72:40:8e:0d:b4:96:b0: e8:1d:ed:16:fc:f9:20:e3:b6:61:f3:7b:17:87:32: b6:28:32:77:6a:6f:e5:fe:0c:f6:10:b8:9c:1c:a5: 75:d3:9b:b0:18:1d:d1:f3:9e:cf:5f:d3:dd:7a:04: 15:a9:dd:05:81:0a:77:4f:ca:eb:df:76:f6:c7:79: 6f:00:26:bb:2d:41:e4:f7:c1:fd:27:90:f3:e4:1f: 90:78:38:fa:4f:65:79:e2:8b:99:61:83:9d:88:09: 60:1b:fc:2c:c4:57:0f:c7:31:0d:11:53:25:c3:ef: 56:62:28:57:97:06:bf:61:11:27:9b:25:0d:ff:df: e9:58:ce:2c:6e:fb:71:50:e3:e2:0d:ad:88:65:dc: ab:56:ce:07:fd:fe:dd:9b:04:09:61:d7:99:47:11: a6:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:AF:CE:A5:9C:31:51:BE:3C:DE:62:BE:31:03:83:D4:13:E1:DD:03 X509v3 Authority Key Identifier: keyid:6D:F0:93:56:60:B5:24:D2:A8:08:06:43:68:B0:AF:C5:65:38:A6:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912978E/D5AE7FAC53CA11EE8049935EC4F9AE02/bfCTVmC1JNKoCAZDaLCvxWU4ppo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bfCTVmC1JNKoCAZDaLCvxWU4ppo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912978E/D5AE7FAC53CA11EE8049935EC4F9AE02/bfCTVmC1JNKoCAZDaLCvxWU4ppo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:ac:4a:cb:93:65:26:0c:34:49:92:5e:cc:51:7e:c3:61:9d: ee:3f:c4:f7:36:df:ec:c9:b0:1a:78:31:c5:28:c0:8b:8f:78: fa:30:d3:ee:4e:7d:a0:c1:b0:ad:1a:ad:13:84:aa:ad:57:17: 38:ad:fa:0f:a0:4e:d8:29:2d:96:05:00:f8:b9:bf:f3:f5:d8: e2:9a:27:48:06:d4:a1:d0:ac:32:77:ca:aa:72:52:6c:e7:dc: 4f:7e:da:e9:54:c0:1a:45:9a:af:e0:2c:ba:a2:cd:73:fb:e5: 07:dd:52:92:9b:6d:0b:76:60:0b:3f:92:f6:93:f7:51:a3:7b: f3:c5:7d:73:51:f4:b6:af:ae:8a:a5:6a:72:a8:ce:da:5d:d9: 4a:3a:ff:ac:6d:13:f8:c7:f9:a9:64:ac:b5:71:30:90:6d:bb: 45:d9:36:66:03:9a:d2:e9:61:df:89:6d:62:25:f3:a5:17:7e: 2b:bc:2a:ae:52:6d:83:db:45:e4:85:84:80:c9:7a:09:a3:4b: 29:d0:a6:2b:ae:d5:10:e5:b9:aa:20:9c:b0:df:8f:cb:99:e0: 90:c6:0f:00:9e:85:2f:21:de:64:7b:5d:f2:21:09:fc:c6:c9: 93:da:82:41:ed:18:8d:ea:1b:44:85:a8:08:08:e5:3a:66:e0: 92:e5:40:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk3OEUxMTAvBgNVBAUTKDZERjA5MzU2NjBCNTI0RDJBODA4MDY0MzY4QjBBRkM1 NjUzOEE2OUEwHhcNMjUwNzAxMDQzODM0WhcNMjUwNzA4MDQzODM0WjAYMRYwFAYD VQQDEw02ODYzNjY0YS1hZTMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvzky9rzWEMzRInbMQACYaibRfhbgKUarrAs5niobc75HfEQUrFop3NSkco1b 9QoJHZ4UzYByZd8SMRkLkxvOcL4hoJYcuFTKGLQEQ6jmQAhtiaSSebpR91mmxM5D 4EQ4ynJAjg20lrDoHe0W/Pkg47Zh83sXhzK2KDJ3am/l/gz2ELicHKV105uwGB3R 857PX9PdegQVqd0FgQp3T8rr33b2x3lvACa7LUHk98H9J5Dz5B+QeDj6T2V54ouZ YYOdiAlgG/wsxFcPxzENEVMlw+9WYihXlwa/YREnmyUN/9/pWM4sbvtxUOPiDa2I ZdyrVs4H/f7dmwQJYdeZRxGmpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHWvzqWc MVG+PN5ivjEDg9QT4d0DMB8GA1UdIwQYMBaAFG3wk1ZgtSTSqAgGQ2iwr8VlOKaa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTc4RS9ENUFFN0ZBQzUz Q0ExMUVFODA0OTkzNUVDNEY5QUUwMi9iZkNUVm1DMUpOS29DQVpEYUxDdnhXVTRw cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JmQ1RWbUMxSk5Lb0NBWkRhTEN2eFdVNHBwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OTc4RS9ENUFFN0ZBQzUzQ0ExMUVFODA0OTkzNUVDNEY5QUUwMi9iZkNUVm1DMUpO S29DQVpEYUxDdnhXVTRwcG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBerErLk2UmDDRJkl7MUX7DYZ3uP8T3Nt/sybAaeDHFKMCLj3j6MNPu Tn2gwbCtGq0ThKqtVxc4rfoPoE7YKS2WBQD4ub/z9djimidIBtSh0Kwyd8qqclJs 59xPftrpVMAaRZqv4Cy6os1z++UH3VKSm20LdmALP5L2k/dRo3vzxX1zUfS2r66K pWpyqM7aXdlKOv+sbRP4x/mpZKy1cTCQbbtF2TZmA5rS6WHfiW1iJfOlF34rvCqu Um2D20XkhYSAyXoJo0sp0KYrrtUQ5bmqIJyw34/LmeCQxg8AnoUvId5ke13yIQn8 xsmT2oJB7RiN6htEhagICOU6ZuCS5UAD -----END CERTIFICATE-----Generated at Wed Jul 2 15:07:39 2025 by rpki-client