$ rpki-client -vvf rpki.apnic.net/member_repository/A914AA58/0FDCA6FEAA7611EC8F7D5639C4F9AE02/bjpCzSsjnaPmWO-5fq0VsObt2qE.mft File: bjpCzSsjnaPmWO-5fq0VsObt2qE.mft (raw, json) Hash identifier: ggWWJJFvPTnANuTyyHi+WGf3cZ2egZkEPBjPb9Qz4iE= Subject key identifier: 51:0C:D9:D9:F5:44:5C:BD:5E:9C:F5:89:5B:40:CC:8D:5C:BD:A0:66 Authority key identifier: 6E:3A:42:CD:2B:23:9D:A3:E6:58:EF:B9:7E:AD:15:B0:E6:ED:DA:A1 Certificate issuer: /CN=A914AA58/serialNumber=6E3A42CD2B239DA3E658EFB97EAD15B0E6EDDAA1 Certificate serial: 0388 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bjpCzSsjnaPmWO-5fq0VsObt2qE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914AA58/0FDCA6FEAA7611EC8F7D5639C4F9AE02/bjpCzSsjnaPmWO-5fq0VsObt2qE.mft Manifest number: 0384 Signing time: Thu 03 Jul 2025 01:13:01 +0000 Manifest this update: Thu 03 Jul 2025 01:13:01 +0000 Manifest next update: Thu 10 Jul 2025 01:13:01 +0000 Files and hashes: 1: bjpCzSsjnaPmWO-5fq0VsObt2qE.crl (hash: ebRynX2TKVitKvkCt4/4NQklVd0Gxgy/Hq66gfEq3Yo=) 2: CC2E531EAA7811ECB6791A3EC4F9AE02.roa (hash: Mqskw9Y8RqndiVtB/sczxL2ZoSm43CtM51EkD9hWUXg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914AA58/0FDCA6FEAA7611EC8F7D5639C4F9AE02/bjpCzSsjnaPmWO-5fq0VsObt2qE.crl rsync://rpki.apnic.net/member_repository/A914AA58/0FDCA6FEAA7611EC8F7D5639C4F9AE02/bjpCzSsjnaPmWO-5fq0VsObt2qE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bjpCzSsjnaPmWO-5fq0VsObt2qE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 01:13:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 904 (0x388) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914AA58, serialNumber=6E3A42CD2B239DA3E658EFB97EAD15B0E6EDDAA1 Validity Not Before: Jul 3 01:13:01 2025 GMT Not After : Jul 10 01:13:01 2025 GMT Subject: CN=6865d91d-b5bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:10:71:2d:b0:0b:a7:b9:f7:f9:ce:38:00:fb: 9f:90:4c:5e:88:e0:c5:aa:42:1d:56:f6:7f:af:ef: 30:b6:fe:eb:42:9e:68:3e:ea:3a:6d:01:8c:52:d1: 9d:65:d6:bc:42:51:a3:64:ef:e4:fa:24:a4:1a:35: 94:32:16:5c:86:ee:a0:51:a4:d2:0d:39:11:e7:6c: 40:12:61:96:d4:4e:f5:6b:b7:9d:a1:a4:fe:68:69: 68:78:b7:8a:18:d8:9c:0a:7d:0c:c1:8e:72:b8:df: 54:01:78:34:2e:1b:c8:46:a0:ed:af:3c:0c:3d:5d: 20:d7:87:58:23:40:86:e3:a1:dd:0d:74:43:52:93: 24:27:80:36:65:79:7b:34:56:80:a5:8e:71:91:37: cf:ce:d1:07:ef:68:fd:5a:7e:7d:cb:e4:87:8e:84: e7:4b:62:03:88:e9:8a:3d:44:57:ec:6a:aa:b0:9f: a6:fd:4b:cc:c6:8e:37:1f:46:b5:ed:35:5f:6e:92: c6:a3:f0:2f:d5:1f:6d:6f:01:66:1d:1a:58:b0:9d: c9:0a:20:3a:94:45:dc:32:f7:07:b1:9f:82:49:d8: 3a:f6:a9:d4:50:3b:1c:21:ab:a5:35:cf:6e:f4:34: ad:5a:c9:7c:b3:a2:ac:e5:15:ca:5e:70:8a:41:8d: e7:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:0C:D9:D9:F5:44:5C:BD:5E:9C:F5:89:5B:40:CC:8D:5C:BD:A0:66 X509v3 Authority Key Identifier: keyid:6E:3A:42:CD:2B:23:9D:A3:E6:58:EF:B9:7E:AD:15:B0:E6:ED:DA:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914AA58/0FDCA6FEAA7611EC8F7D5639C4F9AE02/bjpCzSsjnaPmWO-5fq0VsObt2qE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bjpCzSsjnaPmWO-5fq0VsObt2qE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914AA58/0FDCA6FEAA7611EC8F7D5639C4F9AE02/bjpCzSsjnaPmWO-5fq0VsObt2qE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:bb:9a:92:8d:6d:7b:53:09:ce:d4:4f:a5:73:2d:5c:b0:75: 8f:c4:5f:be:00:2d:d1:9b:34:c2:a7:28:f4:fb:34:26:7e:bf: 41:57:c5:3e:63:de:77:f7:45:7e:89:ee:90:1f:00:43:97:f1: a5:83:7b:4f:2f:63:0a:7a:5d:30:85:30:a8:e5:bc:b0:60:b0: 4e:66:ee:9d:00:51:43:2c:f4:cd:ab:00:15:b0:46:7c:1c:43: 28:d9:7d:19:32:a0:3d:33:07:6d:d3:fa:5c:6c:47:2f:bf:f1: 8f:6f:d5:30:8d:ad:b7:b6:16:c8:a5:68:d7:b2:7b:c2:00:dd: cd:e6:bf:6a:de:9c:61:2e:8f:4c:97:c3:80:98:71:86:4a:bc: af:cd:ae:80:2a:d9:30:0d:79:84:6d:26:25:f3:99:02:70:37: ff:63:9c:f6:b5:f3:8b:da:87:78:5d:f0:6b:83:c5:2f:40:56: ba:52:2b:50:44:21:f3:d5:4c:58:a5:e8:05:0d:10:49:c9:2d: bf:44:4b:84:84:d3:4b:06:99:35:67:fe:80:cd:f1:07:21:ff: 89:e5:80:b4:d2:72:bc:18:83:83:06:b0:b9:e2:5d:aa:77:d5: 7f:3f:8e:2d:3e:b3:18:9d:68:56:ab:0e:4d:79:b1:7f:5c:74: 30:01:ba:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA4gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEFBNTgxMTAvBgNVBAUTKDZFM0E0MkNEMkIyMzlEQTNFNjU4RUZCOTdFQUQxNUIw RTZFRERBQTEwHhcNMjUwNzAzMDExMzAxWhcNMjUwNzEwMDExMzAxWjAYMRYwFAYD VQQDEw02ODY1ZDkxZC1iNWJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtBBxLbALp7n3+c44APufkExeiODFqkIdVvZ/r+8wtv7rQp5oPuo6bQGMUtGd Zda8QlGjZO/k+iSkGjWUMhZchu6gUaTSDTkR52xAEmGW1E71a7edoaT+aGloeLeK GNicCn0MwY5yuN9UAXg0LhvIRqDtrzwMPV0g14dYI0CG46HdDXRDUpMkJ4A2ZXl7 NFaApY5xkTfPztEH72j9Wn59y+SHjoTnS2IDiOmKPURX7GqqsJ+m/UvMxo43H0a1 7TVfbpLGo/Av1R9tbwFmHRpYsJ3JCiA6lEXcMvcHsZ+CSdg69qnUUDscIaulNc9u 9DStWsl8s6Ks5RXKXnCKQY3nBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFEM2dn1 RFy9Xpz1iVtAzI1cvaBmMB8GA1UdIwQYMBaAFG46Qs0rI52j5ljvuX6tFbDm7dqh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QUE1OC8wRkRDQTZGRUFB NzYxMUVDOEY3RDU2MzlDNEY5QUUwMi9ianBDelNzam5hUG1XTy01ZnEwVnNPYnQy cUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JqcEN6U3NqbmFQbVdPLTVmcTBWc09idDJxRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QUE1OC8wRkRDQTZGRUFBNzYxMUVDOEY3RDU2MzlDNEY5QUUwMi9ianBDelNzam5h UG1XTy01ZnEwVnNPYnQycUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCau5qSjW17UwnO1E+lcy1csHWPxF++AC3RmzTCpyj0+zQmfr9BV8U+ Y95390V+ie6QHwBDl/Glg3tPL2MKel0whTCo5bywYLBOZu6dAFFDLPTNqwAVsEZ8 HEMo2X0ZMqA9Mwdt0/pcbEcvv/GPb9Uwja23thbIpWjXsnvCAN3N5r9q3pxhLo9M l8OAmHGGSryvza6AKtkwDXmEbSYl85kCcDf/Y5z2tfOL2od4XfBrg8UvQFa6UitQ RCHz1UxYpegFDRBJyS2/REuEhNNLBpk1Z/6AzfEHIf+J5YC00nK8GIODBrC54l2q d9V/P44tPrMYnWhWqw5NebF/XHQwAbor -----END CERTIFICATE-----Generated at Thu Jul 3 17:23:46 2025 by rpki-client