$ rpki-client -vvf rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft File: BN7ay9uvpcHBT5KBe5b39QMQCig.mft (raw, json) Hash identifier: +UlaB3VNpz66ZgYCR7E22jO8XFF36IlC8i/KaymAgZo= Subject key identifier: E7:95:3C:9F:F3:6E:69:0B:70:12:26:BF:EE:8B:2E:F4:45:03:B0:DC Authority key identifier: 04:DE:DA:CB:DB:AF:A5:C1:C1:4F:92:81:7B:96:F7:F5:03:10:0A:28 Certificate issuer: /CN=A912DD36/serialNumber=04DEDACBDBAFA5C1C14F92817B96F7F503100A28 Certificate serial: B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft Manifest number: B1 Signing time: Tue 13 May 2025 05:13:50 +0000 Manifest this update: Tue 13 May 2025 05:13:50 +0000 Manifest next update: Tue 20 May 2025 05:13:50 +0000 Files and hashes: 1: BN7ay9uvpcHBT5KBe5b39QMQCig.crl (hash: YG4n8uyih/o5whzXt3LLziQu98pV/Uh4N4wOXOUQ+HM=) 2: 09EC8E16662211EFB6FA446CC4F9AE02.roa (hash: urnxskxc6j+If6xUlVvxOJwYlSVOMo9w2F7g3T2GGgM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.crl rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 05:13:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 180 (0xb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DD36, serialNumber=04DEDACBDBAFA5C1C14F92817B96F7F503100A28 Validity Not Before: May 13 05:13:50 2025 GMT Not After : May 20 05:13:50 2025 GMT Subject: CN=6822d50e-c695 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:d3:ba:27:ea:ca:de:f8:e1:db:3b:9d:96:96: 26:ca:54:ec:e3:b8:dc:79:7a:11:af:e9:a0:e3:a2: 98:68:e1:0b:a9:bc:0c:c6:63:07:a4:9a:3b:42:7f: d4:a4:57:97:82:3b:98:fa:ba:06:48:a8:34:fb:ae: 89:6e:ed:85:70:bc:f5:a4:85:73:9a:99:70:ec:85: e1:07:09:eb:37:7d:c0:fc:0e:c9:86:91:46:8d:1e: e1:f1:90:ce:1d:4f:b4:90:18:cb:85:79:43:49:0f: be:97:32:b2:af:cc:ab:79:03:7e:ba:07:dc:84:12: 37:e8:54:f5:cc:99:00:a2:35:3e:c7:82:c3:b9:30: 99:72:42:5d:b0:78:80:4b:be:14:aa:46:f5:36:95: a0:51:09:2f:31:63:7a:62:88:aa:6b:95:f0:dd:94: a6:44:77:60:f6:cc:01:a8:16:5c:e6:1c:2d:8c:99: d8:bd:5a:96:50:59:5a:f6:6c:7e:bf:b4:fd:23:ed: d8:7c:c8:59:69:b1:9d:46:31:e6:44:fc:34:0a:80: e1:12:f4:7f:ba:4a:20:19:ee:6c:a9:a1:71:6a:d4: 4a:21:7b:b4:5e:3b:3f:2f:83:c9:df:6a:06:f1:a5: f5:35:91:fa:6e:36:5a:c2:e2:16:7b:ae:0b:8c:bf: df:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:95:3C:9F:F3:6E:69:0B:70:12:26:BF:EE:8B:2E:F4:45:03:B0:DC X509v3 Authority Key Identifier: keyid:04:DE:DA:CB:DB:AF:A5:C1:C1:4F:92:81:7B:96:F7:F5:03:10:0A:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:dd:51:65:30:da:5c:4c:cb:e5:42:4e:65:6a:15:48:48:c9: 17:47:e8:b4:d1:71:b7:f5:83:e9:15:a4:98:6a:02:0b:82:d8: ac:48:d7:e7:2f:7d:54:f6:b1:1e:ad:d4:9c:d7:6f:fc:08:41: 29:5d:7e:f6:de:9e:6a:a6:c4:9c:bf:71:a4:7d:a3:4c:ab:fc: 92:21:81:1c:35:2a:9e:69:08:ee:52:1e:44:34:82:38:c4:d5: 62:8b:28:69:da:90:12:4a:5c:72:88:ee:8f:4b:23:a4:31:84: a8:0f:9e:9c:c5:93:6b:19:59:1c:0c:e8:52:a2:02:7c:75:e4: 65:56:02:e0:12:26:52:da:33:d9:23:3c:42:ab:fe:f6:30:d5: af:8a:08:f9:1c:c6:ed:42:4b:6e:f3:49:d0:48:cc:d2:22:41: af:39:d2:f2:22:a7:18:bb:05:23:71:0a:f8:9d:12:c0:91:a5: 82:e0:06:93:f3:53:2b:94:ed:c0:8a:f1:87:f6:8b:67:d7:4d: ac:ff:3b:b0:08:8d:9f:b9:2e:4c:76:c6:dc:60:7e:61:d1:f0: 61:4f:bd:10:87:0d:8f:d1:e6:5d:d1:83:38:cf:b7:24:fc:f3: 91:2c:25:8e:88:b4:39:2d:ee:69:31:b0:1b:4f:25:4d:a7:43: be:66:b1:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkREMzYxMTAvBgNVBAUTKDA0REVEQUNCREJBRkE1QzFDMTRGOTI4MTdCOTZGN0Y1 MDMxMDBBMjgwHhcNMjUwNTEzMDUxMzUwWhcNMjUwNTIwMDUxMzUwWjAYMRYwFAYD VQQDEw02ODIyZDUwZS1jNjk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA49O6J+rK3vjh2zudlpYmylTs47jceXoRr+mg46KYaOELqbwMxmMHpJo7Qn/U pFeXgjuY+roGSKg0+66Jbu2FcLz1pIVzmplw7IXhBwnrN33A/A7JhpFGjR7h8ZDO HU+0kBjLhXlDSQ++lzKyr8yreQN+ugfchBI36FT1zJkAojU+x4LDuTCZckJdsHiA S74Uqkb1NpWgUQkvMWN6Yoiqa5Xw3ZSmRHdg9swBqBZc5hwtjJnYvVqWUFla9mx+ v7T9I+3YfMhZabGdRjHmRPw0CoDhEvR/ukogGe5sqaFxatRKIXu0Xjs/L4PJ32oG 8aX1NZH6bjZawuIWe64LjL/f/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOeVPJ/z bmkLcBImv+6LLvRFA7DcMB8GA1UdIwQYMBaAFATe2svbr6XBwU+SgXuW9/UDEAoo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREQzNi83RjQwMjNGMjI1 MzIxMUVGQkM5MzIxMUFDNEY5QUUwMi9CTjdheTl1dnBjSEJUNUtCZTViMzlRTVFD aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JON2F5OXV2cGNIQlQ1S0JlNWIzOVFNUUNpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REQzNi83RjQwMjNGMjI1MzIxMUVGQkM5MzIxMUFDNEY5QUUwMi9CTjdheTl1dnBj SEJUNUtCZTViMzlRTVFDaWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBw3VFlMNpcTMvlQk5lahVISMkXR+i00XG39YPpFaSYagILgtisSNfn L31U9rEerdSc12/8CEEpXX723p5qpsScv3GkfaNMq/ySIYEcNSqeaQjuUh5ENII4 xNViiyhp2pASSlxyiO6PSyOkMYSoD56cxZNrGVkcDOhSogJ8deRlVgLgEiZS2jPZ IzxCq/72MNWvigj5HMbtQktu80nQSMzSIkGvOdLyIqcYuwUjcQr4nRLAkaWC4AaT 81MrlO3AivGH9otn102s/zuwCI2fuS5MdsbcYH5h0fBhT70Qhw2P0eZd0YM4z7ck /PORLCWOiLQ5Le5pMbAbTyVNp0O+ZrGS -----END CERTIFICATE-----Generated at Wed May 14 20:38:17 2025 by rpki-client