$ rpki-client -vvf rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft File: bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft (raw, json) Hash identifier: D054CaodGFsXlbAl9vLzWzJX143rSV4u6gI7ytkYw+M= Subject key identifier: 4E:8F:DB:DD:51:EC:4B:08:79:1B:07:C1:C0:E3:AF:D6:D8:66:10:78 Authority key identifier: 6E:14:8A:0D:08:57:80:38:6A:81:7D:CD:8D:64:69:54:11:C7:68:38 Certificate issuer: /CN=A913EA16/serialNumber=6E148A0D085780386A817DCD8D64695411C76838 Certificate serial: 0414 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhSKDQhXgDhqgX3NjWRpVBHHaDg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft Manifest number: 040D Signing time: Tue 01 Jul 2025 00:58:36 +0000 Manifest this update: Tue 01 Jul 2025 00:58:36 +0000 Manifest next update: Tue 08 Jul 2025 00:58:36 +0000 Files and hashes: 1: bhSKDQhXgDhqgX3NjWRpVBHHaDg.crl (hash: 9lv4VWPjRGY63XhizxKVKVbZpQgNnECcv3KrYl1D3Os=) 2: 8B729608B62F11EFB2DE315FC4F9AE02.roa (hash: ERP6Y5/dUFxszjFDuuFfjwGYbKhjm1R8qrQOrEiUTKw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.crl rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhSKDQhXgDhqgX3NjWRpVBHHaDg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 00:58:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1044 (0x414) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913EA16, serialNumber=6E148A0D085780386A817DCD8D64695411C76838 Validity Not Before: Jul 1 00:58:36 2025 GMT Not After : Jul 8 00:58:36 2025 GMT Subject: CN=686332bc-c468 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:b5:8e:a3:70:c5:ff:c3:f3:23:be:72:2c:f7: ee:7f:ec:ed:50:7c:d0:29:ba:03:d8:1a:a4:00:f4: 6a:63:92:3e:66:ea:d9:01:f4:94:db:f4:b1:59:9c: 84:43:f3:d9:c0:b9:f0:a8:4c:cc:2e:4a:74:db:48: 68:53:7b:cf:4b:fb:7d:7b:2d:ba:61:53:d0:2d:98: 98:f5:1d:15:6c:03:32:1a:c5:a2:fb:de:ed:c4:9a: 00:32:e7:a6:d5:f0:06:51:7b:fd:55:60:fb:4f:f8: 95:75:9b:c9:bc:f2:83:80:1b:4c:ec:b4:fe:ac:02: 55:51:62:10:b7:c8:13:94:94:c6:ca:1a:ed:cc:00: 60:18:a2:a7:23:34:3a:7e:18:66:a2:7d:23:80:6b: 24:a4:44:5a:d3:b9:de:ec:bf:d7:5e:7c:da:3d:9f: f7:ae:69:1e:ed:a0:91:19:83:1f:55:39:62:c4:f3: 4f:72:70:6a:c7:76:25:32:a9:01:af:3d:03:fa:2d: f7:34:30:06:7f:9c:9e:ae:d6:b1:12:f6:2b:14:e5: 2f:79:b5:4c:a0:e5:3d:08:b3:9c:c4:65:ec:3d:42: e3:e3:d7:79:64:27:0f:d9:2d:89:d3:c7:bd:92:f0: 1b:2e:d7:be:d5:ff:f2:bb:f3:43:75:b0:79:c0:5c: 7d:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:8F:DB:DD:51:EC:4B:08:79:1B:07:C1:C0:E3:AF:D6:D8:66:10:78 X509v3 Authority Key Identifier: keyid:6E:14:8A:0D:08:57:80:38:6A:81:7D:CD:8D:64:69:54:11:C7:68:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhSKDQhXgDhqgX3NjWRpVBHHaDg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:72:fe:c3:93:a1:23:0f:fc:cc:7f:22:8d:56:94:68:18:b4: 60:59:84:e7:23:56:c5:43:bc:ca:ff:21:04:59:be:bc:03:50: c6:9d:58:12:01:6c:f6:d8:d6:cf:d1:0f:b0:be:05:78:c9:51: f7:d2:63:fe:94:7b:a7:32:31:6e:b5:95:0d:a0:fc:86:d5:40: 7c:3b:80:8b:97:50:91:92:52:e7:53:09:87:29:f5:7c:ed:c7: 22:1c:d7:65:7c:21:1e:64:b1:34:63:c2:8b:08:87:31:42:a0: d6:cc:f1:a0:0a:0b:b0:25:8a:07:46:68:44:47:38:66:6b:8e: 37:4d:5b:39:4e:fa:fc:da:31:44:e7:fe:be:89:ec:6a:e7:15: 78:ab:4c:3b:21:87:39:79:f8:91:9e:43:9e:af:fa:7f:12:08: 59:4d:7b:a5:cb:bd:0d:2c:3e:e4:4c:cf:06:07:83:c5:3e:09: 8e:4b:97:82:da:ed:97:a0:a1:ad:b6:27:5f:8e:da:22:67:fe: 9f:75:60:ed:bc:97:10:d8:f3:09:82:77:df:99:83:c0:ad:b1: 69:77:06:69:41:e7:a3:cd:ae:5e:ca:be:6f:f4:f7:e0:88:84: f3:0e:f5:66:e8:7f:09:e0:ea:a5:5d:13:a1:9b:d7:25:b2:9e: 17:5b:c1:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0VBMTYxMTAvBgNVBAUTKDZFMTQ4QTBEMDg1NzgwMzg2QTgxN0RDRDhENjQ2OTU0 MTFDNzY4MzgwHhcNMjUwNzAxMDA1ODM2WhcNMjUwNzA4MDA1ODM2WjAYMRYwFAYD VQQDEw02ODYzMzJiYy1jNDY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxrWOo3DF/8PzI75yLPfuf+ztUHzQKboD2BqkAPRqY5I+ZurZAfSU2/SxWZyE Q/PZwLnwqEzMLkp020hoU3vPS/t9ey26YVPQLZiY9R0VbAMyGsWi+97txJoAMuem 1fAGUXv9VWD7T/iVdZvJvPKDgBtM7LT+rAJVUWIQt8gTlJTGyhrtzABgGKKnIzQ6 fhhmon0jgGskpERa07ne7L/XXnzaPZ/3rmke7aCRGYMfVTlixPNPcnBqx3YlMqkB rz0D+i33NDAGf5yertaxEvYrFOUvebVMoOU9CLOcxGXsPULj49d5ZCcP2S2J08e9 kvAbLte+1f/yu/NDdbB5wFx9PwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE6P291R 7EsIeRsHwcDjr9bYZhB4MB8GA1UdIwQYMBaAFG4Uig0IV4A4aoF9zY1kaVQRx2g4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRUExNi80NTJGN0FFRTc3 N0IxMUVDODZGQzEwNURDNEY5QUUwMi9iaFNLRFFoWGdEaHFnWDNOaldScFZCSEhh RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JoU0tEUWhYZ0RocWdYM05qV1JwVkJISGFEZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RUExNi80NTJGN0FFRTc3N0IxMUVDODZGQzEwNURDNEY5QUUwMi9iaFNLRFFoWGdE aHFnWDNOaldScFZCSEhhRGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQcv7Dk6EjD/zMfyKNVpRoGLRgWYTnI1bFQ7zK/yEEWb68A1DGnVgS AWz22NbP0Q+wvgV4yVH30mP+lHunMjFutZUNoPyG1UB8O4CLl1CRklLnUwmHKfV8 7cciHNdlfCEeZLE0Y8KLCIcxQqDWzPGgCguwJYoHRmhERzhma443TVs5Tvr82jFE 5/6+iexq5xV4q0w7IYc5efiRnkOer/p/EghZTXuly70NLD7kTM8GB4PFPgmOS5eC 2u2XoKGttidfjtoiZ/6fdWDtvJcQ2PMJgnffmYPArbFpdwZpQeejza5eyr5v9Pfg iITzDvVm6H8J4OqlXROhm9clsp4XW8Eg -----END CERTIFICATE-----Generated at Wed Jul 2 00:38:55 2025 by rpki-client