$ rpki-client -vvf rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft File: bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft (raw, json) Hash identifier: nWBB9YG4gs9I2AEfZie9sWDV4FcCMBYcb2r1L5Pj7Uc= Subject key identifier: E7:47:2B:8A:95:12:40:52:70:11:BA:1B:6F:C7:00:27:DC:D3:FE:E2 Authority key identifier: 6E:14:8A:0D:08:57:80:38:6A:81:7D:CD:8D:64:69:54:11:C7:68:38 Certificate issuer: /CN=A913EA16/serialNumber=6E148A0D085780386A817DCD8D64695411C76838 Certificate serial: 03FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhSKDQhXgDhqgX3NjWRpVBHHaDg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft Manifest number: 03F4 Signing time: Sun 11 May 2025 00:04:26 +0000 Manifest this update: Sun 11 May 2025 00:04:25 +0000 Manifest next update: Sun 18 May 2025 00:04:25 +0000 Files and hashes: 1: bhSKDQhXgDhqgX3NjWRpVBHHaDg.crl (hash: jeWlPEr5ExVttYP763LcK+e6RXg2h+MR29FYgK9dg0s=) 2: 8B729608B62F11EFB2DE315FC4F9AE02.roa (hash: ERP6Y5/dUFxszjFDuuFfjwGYbKhjm1R8qrQOrEiUTKw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.crl rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhSKDQhXgDhqgX3NjWRpVBHHaDg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 00:04:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1019 (0x3fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913EA16, serialNumber=6E148A0D085780386A817DCD8D64695411C76838 Validity Not Before: May 11 00:04:25 2025 GMT Not After : May 18 00:04:25 2025 GMT Subject: CN=681fe98a-c504 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:f1:7d:c6:19:2c:51:1e:85:46:4d:f5:f9:9d: a0:bc:a0:17:1c:2e:8a:1f:cd:ea:f9:e4:16:6a:b7: 46:b0:43:10:e2:dd:73:ae:7f:4f:35:e1:f6:39:6d: 8e:11:79:86:52:00:a1:40:80:13:64:20:93:33:27: d9:1c:c1:31:84:20:f7:77:b0:8a:fd:9d:68:56:7a: 2f:18:20:df:cd:ed:06:f4:bd:56:21:93:aa:01:12: 34:28:7d:af:2f:35:8c:da:b9:4f:b5:71:f7:8b:b1: fe:cf:df:22:79:53:63:81:52:46:03:8f:b4:ca:a3: ef:a4:e5:ce:37:c4:a7:88:b3:b2:17:88:a6:d3:c3: d9:87:78:a5:35:0d:9a:5e:8c:8a:35:43:a7:db:41: 61:ce:47:d1:63:20:09:60:65:0e:7d:4a:07:85:a3: 8f:30:13:36:d3:57:85:83:11:b5:dd:f1:aa:60:cf: 9d:ae:02:88:d1:6d:db:b3:5e:08:a5:08:35:2f:cb: 35:08:bc:3e:a2:e0:36:b0:98:3b:7b:aa:70:c5:19: 38:e5:8a:f1:51:ac:62:47:30:c8:80:25:8c:cb:72: 46:ba:aa:d1:44:ec:ff:7b:9a:cb:c9:c2:39:04:d6: b9:67:8c:78:f9:fd:f1:0c:bc:00:b0:9d:4d:92:7e: 79:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:47:2B:8A:95:12:40:52:70:11:BA:1B:6F:C7:00:27:DC:D3:FE:E2 X509v3 Authority Key Identifier: keyid:6E:14:8A:0D:08:57:80:38:6A:81:7D:CD:8D:64:69:54:11:C7:68:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bhSKDQhXgDhqgX3NjWRpVBHHaDg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913EA16/452F7AEE777B11EC86FC105DC4F9AE02/bhSKDQhXgDhqgX3NjWRpVBHHaDg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:da:51:78:ba:21:95:1f:e3:4a:2b:d9:09:77:36:0b:34:b6: 9e:da:4a:76:86:79:38:36:65:16:c2:6d:5e:22:24:32:f2:dc: 92:26:c2:cb:78:7f:ae:c3:21:6e:51:3f:61:39:a4:9b:ce:a1: e3:2f:a7:c2:91:88:1e:c3:2b:9d:ff:df:14:6b:eb:80:63:47: d2:be:c5:0e:4a:c0:b2:ad:96:02:de:e7:4f:5d:e5:e9:5a:6f: ea:87:87:ab:11:81:11:b1:57:09:0a:43:e3:38:39:df:6c:c6: d1:5b:23:3b:d1:b7:a6:2e:22:42:6b:7a:b5:e1:07:bb:44:cd: 28:f5:4c:c2:cc:ed:bf:35:42:ca:4f:63:6e:4d:6e:3d:bb:24: 9a:a9:fb:a6:2f:03:21:a9:f2:30:94:b3:ea:9c:bf:a3:54:72: 5e:44:ec:e1:05:9d:e1:f4:2c:de:89:cb:24:e6:67:67:2a:19: 04:d5:46:a7:66:37:50:74:67:c3:b6:31:65:d2:76:9e:eb:24: 71:56:55:d5:bf:30:9a:93:4a:8c:57:5f:93:49:18:d1:b6:ad: 93:04:30:71:1f:4d:4c:29:c1:30:f4:63:45:ff:9a:5d:2b:0e: 97:e4:f0:bb:e3:71:c9:e2:84:22:e7:e1:fd:9b:f5:90:0f:9b: 8a:7d:4e:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0VBMTYxMTAvBgNVBAUTKDZFMTQ4QTBEMDg1NzgwMzg2QTgxN0RDRDhENjQ2OTU0 MTFDNzY4MzgwHhcNMjUwNTExMDAwNDI1WhcNMjUwNTE4MDAwNDI1WjAYMRYwFAYD VQQDEw02ODFmZTk4YS1jNTA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9fF9xhksUR6FRk31+Z2gvKAXHC6KH83q+eQWardGsEMQ4t1zrn9PNeH2OW2O EXmGUgChQIATZCCTMyfZHMExhCD3d7CK/Z1oVnovGCDfze0G9L1WIZOqARI0KH2v LzWM2rlPtXH3i7H+z98ieVNjgVJGA4+0yqPvpOXON8SniLOyF4im08PZh3ilNQ2a XoyKNUOn20FhzkfRYyAJYGUOfUoHhaOPMBM201eFgxG13fGqYM+drgKI0W3bs14I pQg1L8s1CLw+ouA2sJg7e6pwxRk45YrxUaxiRzDIgCWMy3JGuqrRROz/e5rLycI5 BNa5Z4x4+f3xDLwAsJ1Nkn55wQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOdHK4qV EkBScBG6G2/HACfc0/7iMB8GA1UdIwQYMBaAFG4Uig0IV4A4aoF9zY1kaVQRx2g4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRUExNi80NTJGN0FFRTc3 N0IxMUVDODZGQzEwNURDNEY5QUUwMi9iaFNLRFFoWGdEaHFnWDNOaldScFZCSEhh RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JoU0tEUWhYZ0RocWdYM05qV1JwVkJISGFEZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RUExNi80NTJGN0FFRTc3N0IxMUVDODZGQzEwNURDNEY5QUUwMi9iaFNLRFFoWGdE aHFnWDNOaldScFZCSEhhRGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAL2lF4uiGVH+NKK9kJdzYLNLae2kp2hnk4NmUWwm1eIiQy8tySJsLL eH+uwyFuUT9hOaSbzqHjL6fCkYgewyud/98Ua+uAY0fSvsUOSsCyrZYC3udPXeXp Wm/qh4erEYERsVcJCkPjODnfbMbRWyM70bemLiJCa3q14Qe7RM0o9UzCzO2/NULK T2NuTW49uySaqfumLwMhqfIwlLPqnL+jVHJeROzhBZ3h9Czeicsk5mdnKhkE1Uan ZjdQdGfDtjFl0nae6yRxVlXVvzCak0qMV1+TSRjRtq2TBDBxH01MKcEw9GNF/5pd Kw6X5PC743HJ4oQi5+H9m/WQD5uKfU4M -----END CERTIFICATE-----Generated at Sun May 11 09:05:18 2025 by rpki-client