$ rpki-client -vvf rpki.apnic.net/member_repository/A914AA58/0FDCA6FEAA7611EC8F7D5639C4F9AE02/bjpCzSsjnaPmWO-5fq0VsObt2qE.mft File: bjpCzSsjnaPmWO-5fq0VsObt2qE.mft (raw, json) Hash identifier: U2huu2wQebq+qLOpiumYVE+RpBvswzHDWoqMJTOYiy0= Subject key identifier: 8D:C6:88:3B:93:E9:42:40:8C:65:EA:98:6C:FC:0E:E8:14:E3:82:BA Authority key identifier: 6E:3A:42:CD:2B:23:9D:A3:E6:58:EF:B9:7E:AD:15:B0:E6:ED:DA:A1 Certificate issuer: /CN=A914AA58/serialNumber=6E3A42CD2B239DA3E658EFB97EAD15B0E6EDDAA1 Certificate serial: 0370 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bjpCzSsjnaPmWO-5fq0VsObt2qE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914AA58/0FDCA6FEAA7611EC8F7D5639C4F9AE02/bjpCzSsjnaPmWO-5fq0VsObt2qE.mft Manifest number: 036C Signing time: Thu 15 May 2025 00:57:08 +0000 Manifest this update: Thu 15 May 2025 00:57:08 +0000 Manifest next update: Thu 22 May 2025 00:57:08 +0000 Files and hashes: 1: bjpCzSsjnaPmWO-5fq0VsObt2qE.crl (hash: znAtZnBotPY5CrsIUQsZOKKJ49ihFmDifmeVDvAl15U=) 2: CC2E531EAA7811ECB6791A3EC4F9AE02.roa (hash: Mqskw9Y8RqndiVtB/sczxL2ZoSm43CtM51EkD9hWUXg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914AA58/0FDCA6FEAA7611EC8F7D5639C4F9AE02/bjpCzSsjnaPmWO-5fq0VsObt2qE.crl rsync://rpki.apnic.net/member_repository/A914AA58/0FDCA6FEAA7611EC8F7D5639C4F9AE02/bjpCzSsjnaPmWO-5fq0VsObt2qE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bjpCzSsjnaPmWO-5fq0VsObt2qE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 00:57:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 880 (0x370) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914AA58, serialNumber=6E3A42CD2B239DA3E658EFB97EAD15B0E6EDDAA1 Validity Not Before: May 15 00:57:08 2025 GMT Not After : May 22 00:57:08 2025 GMT Subject: CN=68253be4-166d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:c5:8b:9e:99:88:4a:b6:44:ff:7c:a7:6f:35: 0e:79:ca:ed:5f:d3:f7:c8:13:c1:42:0d:cf:93:36: a5:19:37:26:6e:0c:9b:5d:d7:36:99:26:9d:30:d0: e6:b6:4b:d6:c7:d7:9a:b7:10:68:dd:c5:f0:72:e3: ba:7f:18:7d:5a:3b:f8:60:b0:98:a7:78:f2:5d:51: 6e:e4:de:23:91:11:2b:da:68:40:d2:4f:60:0e:31: b5:e6:a3:d0:2f:8a:3f:80:ec:43:4e:7c:30:5c:c9: db:33:1f:87:26:e4:16:20:5f:51:98:e6:2e:19:b5: 64:d6:d9:15:c8:d4:3d:a0:a8:2e:21:ff:57:54:77: c4:1e:14:04:a6:56:08:ec:2f:2a:55:ec:4f:2d:11: 53:8f:29:a9:8b:15:03:0d:2a:cf:e6:3c:5e:13:9b: f4:f6:9f:84:87:52:ca:38:a7:da:ec:72:81:be:08: 01:10:66:e2:36:b7:f4:8d:5f:ed:0e:9d:bd:2d:dc: 54:04:ae:ca:e3:43:84:19:7a:7e:65:7a:f0:c9:be: e0:3c:35:ec:49:1e:ff:45:c8:27:5b:d0:e7:ad:7f: 21:d3:8f:59:9c:eb:76:b2:3e:03:fc:45:64:24:96: 9e:6b:d7:86:a8:ca:25:7b:ce:a6:11:7f:4a:8e:f9: 0e:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:C6:88:3B:93:E9:42:40:8C:65:EA:98:6C:FC:0E:E8:14:E3:82:BA X509v3 Authority Key Identifier: keyid:6E:3A:42:CD:2B:23:9D:A3:E6:58:EF:B9:7E:AD:15:B0:E6:ED:DA:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914AA58/0FDCA6FEAA7611EC8F7D5639C4F9AE02/bjpCzSsjnaPmWO-5fq0VsObt2qE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bjpCzSsjnaPmWO-5fq0VsObt2qE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914AA58/0FDCA6FEAA7611EC8F7D5639C4F9AE02/bjpCzSsjnaPmWO-5fq0VsObt2qE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:fc:ce:77:0a:ea:16:bd:e1:49:ec:de:4b:45:ae:8a:91:37: a4:fe:39:25:01:1d:96:88:23:4e:ea:8e:18:6e:3c:1b:f4:7d: a0:c4:37:fe:19:e9:eb:29:d9:f8:bc:23:bd:9d:b1:2a:33:31: 5b:48:ec:8f:f6:99:bf:7c:5c:00:87:0c:03:6e:de:b6:da:c8: 3c:8f:df:ae:6d:9b:0d:ef:08:8d:b7:5f:a6:32:d5:bd:1c:ca: 69:11:c5:96:69:e3:1f:0b:2e:f0:d8:ea:12:00:99:5d:f5:9d: 59:13:fa:7c:66:6c:5b:53:f8:3e:6c:d7:ce:45:db:3f:c0:6f: ea:b9:9b:6a:c6:ab:45:6f:8a:7c:8e:d9:e6:38:a5:b3:01:87: 3e:75:25:0a:ec:2f:8f:64:30:2b:ed:aa:e7:cc:12:a4:2c:04: 2c:b8:1f:b5:84:2e:65:4b:eb:48:50:2f:53:9e:2b:12:41:0e: 04:7b:04:6e:3e:a5:b3:d0:62:0a:23:f6:a5:cd:77:da:8e:e9: 99:a9:4c:36:94:27:45:09:c3:e7:cf:88:03:58:a9:4a:3c:37: db:cc:65:0d:db:0d:c6:58:46:df:9a:43:db:ed:0b:ee:10:3e: b4:8d:e4:67:3e:85:7f:5b:cc:04:4a:4e:c1:2e:78:29:41:be: 68:ae:ac:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA3AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEFBNTgxMTAvBgNVBAUTKDZFM0E0MkNEMkIyMzlEQTNFNjU4RUZCOTdFQUQxNUIw RTZFRERBQTEwHhcNMjUwNTE1MDA1NzA4WhcNMjUwNTIyMDA1NzA4WjAYMRYwFAYD VQQDEw02ODI1M2JlNC0xNjZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA48WLnpmISrZE/3ynbzUOecrtX9P3yBPBQg3PkzalGTcmbgybXdc2mSadMNDm tkvWx9eatxBo3cXwcuO6fxh9Wjv4YLCYp3jyXVFu5N4jkREr2mhA0k9gDjG15qPQ L4o/gOxDTnwwXMnbMx+HJuQWIF9RmOYuGbVk1tkVyNQ9oKguIf9XVHfEHhQEplYI 7C8qVexPLRFTjympixUDDSrP5jxeE5v09p+Eh1LKOKfa7HKBvggBEGbiNrf0jV/t Dp29LdxUBK7K40OEGXp+ZXrwyb7gPDXsSR7/RcgnW9DnrX8h049ZnOt2sj4D/EVk JJaea9eGqMole86mEX9KjvkOBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI3GiDuT 6UJAjGXqmGz8DugU44K6MB8GA1UdIwQYMBaAFG46Qs0rI52j5ljvuX6tFbDm7dqh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QUE1OC8wRkRDQTZGRUFB NzYxMUVDOEY3RDU2MzlDNEY5QUUwMi9ianBDelNzam5hUG1XTy01ZnEwVnNPYnQy cUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JqcEN6U3NqbmFQbVdPLTVmcTBWc09idDJxRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QUE1OC8wRkRDQTZGRUFBNzYxMUVDOEY3RDU2MzlDNEY5QUUwMi9ianBDelNzam5h UG1XTy01ZnEwVnNPYnQycUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCl/M53CuoWveFJ7N5LRa6KkTek/jklAR2WiCNO6o4Ybjwb9H2gxDf+ GenrKdn4vCO9nbEqMzFbSOyP9pm/fFwAhwwDbt622sg8j9+ubZsN7wiNt1+mMtW9 HMppEcWWaeMfCy7w2OoSAJld9Z1ZE/p8ZmxbU/g+bNfORds/wG/quZtqxqtFb4p8 jtnmOKWzAYc+dSUK7C+PZDAr7arnzBKkLAQsuB+1hC5lS+tIUC9TnisSQQ4EewRu PqWz0GIKI/alzXfajumZqUw2lCdFCcPnz4gDWKlKPDfbzGUN2w3GWEbfmkPb7Qvu ED60jeRnPoV/W8wESk7BLngpQb5orqyd -----END CERTIFICATE-----Generated at Thu May 15 12:43:38 2025 by rpki-client