$ rpki-client -vvf rpki.apnic.net/member_repository/A913A81E/91C9559C34FA11EB98941E7BC4F9AE02/bcDHAorrOzsmYx9pJXBQC2DtJxk.mft File: bcDHAorrOzsmYx9pJXBQC2DtJxk.mft (raw, json) Hash identifier: 1QnJ+JmVkGjs2n54k+SGK6bvDkxqPqged4ulncfcUs0= Subject key identifier: 7B:11:FE:B9:24:14:07:53:11:04:B3:C1:EE:89:7A:AB:0A:35:2D:AD Authority key identifier: 6D:C0:C7:02:8A:EB:3B:3B:26:63:1F:69:25:70:50:0B:60:ED:27:19 Certificate issuer: /CN=A913A81E/serialNumber=6DC0C7028AEB3B3B26631F692570500B60ED2719 Certificate serial: 0743 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bcDHAorrOzsmYx9pJXBQC2DtJxk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A81E/91C9559C34FA11EB98941E7BC4F9AE02/bcDHAorrOzsmYx9pJXBQC2DtJxk.mft Manifest number: 073C Signing time: Wed 02 Jul 2025 22:02:19 +0000 Manifest this update: Wed 02 Jul 2025 22:02:19 +0000 Manifest next update: Wed 09 Jul 2025 22:02:19 +0000 Files and hashes: 1: bcDHAorrOzsmYx9pJXBQC2DtJxk.crl (hash: Ea8TOA0kD5+2xsusd9CNcr6VVTYl5YwuaqEvYaDtI28=) 2: C562A08C34FC11EB9AA0EE7DC4F9AE02.roa (hash: epMIDVwgcHlg7RNyZoeV3XtGz9YSFqDh2xemQgN/qvE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A81E/91C9559C34FA11EB98941E7BC4F9AE02/bcDHAorrOzsmYx9pJXBQC2DtJxk.crl rsync://rpki.apnic.net/member_repository/A913A81E/91C9559C34FA11EB98941E7BC4F9AE02/bcDHAorrOzsmYx9pJXBQC2DtJxk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bcDHAorrOzsmYx9pJXBQC2DtJxk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 22:02:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1859 (0x743) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A81E, serialNumber=6DC0C7028AEB3B3B26631F692570500B60ED2719 Validity Not Before: Jul 2 22:02:19 2025 GMT Not After : Jul 9 22:02:19 2025 GMT Subject: CN=6865ac6b-1464 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:1f:1b:82:22:79:35:5d:11:36:af:73:97:1d: 16:f8:4e:a7:29:0e:5b:c9:c2:3d:56:3f:05:56:0f: d9:24:58:ea:e8:1e:33:6b:a7:29:d9:af:db:d1:e8: 23:91:5c:a5:c5:aa:2b:4f:cf:24:46:90:f2:59:3d: 39:44:57:ec:36:3a:7c:7e:4d:ca:43:a3:c8:af:d7: 4c:9b:55:8b:1e:eb:12:fb:17:6e:02:44:f8:70:5a: 1e:92:8d:64:50:32:64:25:61:56:98:68:1b:b4:bd: 4a:ac:6c:a1:eb:5c:8a:6c:d6:f5:f5:4d:f9:60:fe: ea:1d:d6:94:63:52:90:6a:29:41:e8:b5:99:ab:aa: da:91:63:3e:0f:ec:c0:01:d8:bb:8f:02:41:4f:31: ea:52:21:4b:61:8f:d0:d8:f4:5d:38:29:63:5f:2f: 3c:47:76:c7:60:16:97:28:56:c7:50:eb:24:2a:3a: eb:30:55:1f:84:2f:a5:f1:e8:17:b2:2d:84:d2:72: 4b:bf:c3:b6:ae:ec:76:32:c8:b9:29:40:1b:66:ba: 7f:ca:4b:e5:2a:ff:8d:d2:12:31:95:05:e9:14:c6: c2:27:2f:43:ec:80:55:18:42:8d:9b:4e:da:ff:cd: cf:73:1e:95:1f:f5:5f:b3:43:fe:20:d6:97:a5:7d: 10:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:11:FE:B9:24:14:07:53:11:04:B3:C1:EE:89:7A:AB:0A:35:2D:AD X509v3 Authority Key Identifier: keyid:6D:C0:C7:02:8A:EB:3B:3B:26:63:1F:69:25:70:50:0B:60:ED:27:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A81E/91C9559C34FA11EB98941E7BC4F9AE02/bcDHAorrOzsmYx9pJXBQC2DtJxk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bcDHAorrOzsmYx9pJXBQC2DtJxk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A81E/91C9559C34FA11EB98941E7BC4F9AE02/bcDHAorrOzsmYx9pJXBQC2DtJxk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:05:a8:85:3b:0a:19:c1:10:0f:0e:f6:79:1c:ac:eb:fa:e7: 1b:b4:69:7d:cd:ae:31:27:18:9d:c7:c1:e1:cf:8b:31:99:bf: 47:fa:36:53:be:fb:12:c4:4c:0f:ee:a9:4a:66:9e:f8:02:af: 70:e5:45:59:e7:84:ca:4c:b5:0f:40:80:1c:02:96:e7:df:53: de:c9:02:f9:37:bd:47:83:24:90:8b:69:fe:fb:83:c7:58:30: e8:27:74:bc:4b:b4:af:60:40:d8:7e:29:ff:3d:e4:50:3b:82: 8e:9e:6e:d7:c7:b0:a1:4e:12:96:ad:5b:4f:d7:54:a8:82:e8: 52:94:ac:a0:07:41:8d:5d:24:2d:20:66:ca:90:8a:83:83:49: 98:10:8f:f9:7c:b2:90:73:c1:0b:a2:b3:c7:a3:ad:83:2f:f9: fc:1a:3d:5a:90:3c:9a:59:cd:cd:16:17:d1:3d:01:72:53:80: 03:09:a5:42:76:0b:39:cb:db:94:fa:1d:a4:58:2f:99:a3:05: 56:99:43:a6:a0:3c:81:3f:b4:65:4b:fb:47:19:52:e3:39:96: d0:fa:d1:8a:52:0b:04:e9:7e:b8:98:72:08:25:d8:77:88:7c: 3b:52:a4:30:fd:b1:46:c6:1b:29:d5:60:2f:4c:23:87:d9:68: 3d:9b:18:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB0MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E4MUUxMTAvBgNVBAUTKDZEQzBDNzAyOEFFQjNCM0IyNjYzMUY2OTI1NzA1MDBC NjBFRDI3MTkwHhcNMjUwNzAyMjIwMjE5WhcNMjUwNzA5MjIwMjE5WjAYMRYwFAYD VQQDEw02ODY1YWM2Yi0xNDY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsh8bgiJ5NV0RNq9zlx0W+E6nKQ5bycI9Vj8FVg/ZJFjq6B4za6cp2a/b0egj kVylxaorT88kRpDyWT05RFfsNjp8fk3KQ6PIr9dMm1WLHusS+xduAkT4cFoeko1k UDJkJWFWmGgbtL1KrGyh61yKbNb19U35YP7qHdaUY1KQailB6LWZq6rakWM+D+zA Adi7jwJBTzHqUiFLYY/Q2PRdOCljXy88R3bHYBaXKFbHUOskKjrrMFUfhC+l8egX si2E0nJLv8O2rux2Msi5KUAbZrp/ykvlKv+N0hIxlQXpFMbCJy9D7IBVGEKNm07a /83Pcx6VH/Vfs0P+INaXpX0QrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHsR/rkk FAdTEQSzwe6JeqsKNS2tMB8GA1UdIwQYMBaAFG3AxwKK6zs7JmMfaSVwUAtg7ScZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTgxRS85MUM5NTU5QzM0 RkExMUVCOTg5NDFFN0JDNEY5QUUwMi9iY0RIQW9yck96c21ZeDlwSlhCUUMyRHRK eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JjREhBb3JyT3pzbVl4OXBKWEJRQzJEdEp4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTgxRS85MUM5NTU5QzM0RkExMUVCOTg5NDFFN0JDNEY5QUUwMi9iY0RIQW9yck96 c21ZeDlwSlhCUUMyRHRKeGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYBaiFOwoZwRAPDvZ5HKzr+ucbtGl9za4xJxidx8Hhz4sxmb9H+jZT vvsSxEwP7qlKZp74Aq9w5UVZ54TKTLUPQIAcApbn31PeyQL5N71HgySQi2n++4PH WDDoJ3S8S7SvYEDYfin/PeRQO4KOnm7Xx7ChThKWrVtP11SoguhSlKygB0GNXSQt IGbKkIqDg0mYEI/5fLKQc8ELorPHo62DL/n8Gj1akDyaWc3NFhfRPQFyU4ADCaVC dgs5y9uU+h2kWC+ZowVWmUOmoDyBP7RlS/tHGVLjOZbQ+tGKUgsE6X64mHIIJdh3 iHw7UqQw/bFGxhsp1WAvTCOH2Wg9mxhJ -----END CERTIFICATE-----Generated at Thu Jul 3 10:14:27 2025 by rpki-client