$ rpki-client -vvf rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.mft File: BdJLO4oiJ7b-6S3NJdVL8F7oaMo.mft (raw, json) Hash identifier: PZxjJubProZ3NZyh9A6XraKtKwVrNXDX2QwHYvdyaMk= Subject key identifier: EA:38:0F:F9:EC:E5:CA:E9:21:9F:33:F8:F2:00:F5:C2:5E:81:2B:71 Authority key identifier: 05:D2:4B:3B:8A:22:27:B6:FE:E9:2D:CD:25:D5:4B:F0:5E:E8:68:CA Certificate issuer: /CN=A9157724/serialNumber=05D24B3B8A2227B6FEE92DCD25D54BF05EE868CA Certificate serial: 0117 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.mft Manifest number: 0112 Signing time: Sun 11 May 2025 03:50:14 +0000 Manifest this update: Sun 11 May 2025 03:50:14 +0000 Manifest next update: Sun 18 May 2025 03:50:14 +0000 Files and hashes: 1: BdJLO4oiJ7b-6S3NJdVL8F7oaMo.crl (hash: kjj220FrRux8o2MkLJqN9RVufUYRUs+w9iIsdtFmRfY=) 2: 6063C75CB6E411EE94471D14C4F9AE02.roa (hash: HDfP4LwrloNXU1nzvfFcUeha0pVa0Ubh8d+qNote20c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.crl rsync://rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 279 (0x117) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157724, serialNumber=05D24B3B8A2227B6FEE92DCD25D54BF05EE868CA Validity Not Before: May 11 03:50:14 2025 GMT Not After : May 18 03:50:14 2025 GMT Subject: CN=68201e76-7a2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:78:1b:6d:63:56:7e:7f:cc:f0:ad:f2:81:fe: fb:be:73:01:32:a2:83:c4:54:f6:bb:3b:ee:b0:05: 1e:51:00:8e:0f:6c:ba:2c:33:8a:13:d4:ae:78:b4: 4d:6c:38:e9:c1:fb:57:38:2b:7e:06:6b:fb:25:d1: 31:6f:76:b4:60:42:44:da:12:84:ab:b0:35:1e:d2: ed:ec:3a:96:80:a8:15:d1:04:8e:ef:db:0b:ec:27: f5:8a:b6:f7:aa:50:27:8a:bc:ca:d4:55:57:e0:bc: 6f:0d:35:05:a3:62:f3:48:e4:3c:83:06:7b:b7:ee: 6e:1a:78:3a:af:f3:4d:d0:99:28:d6:6f:6a:3a:40: d8:48:1b:90:25:c8:aa:69:74:e7:08:4b:51:55:94: 39:11:14:8b:ec:cc:0f:62:0b:91:71:8f:74:ec:2b: 42:7d:21:38:32:15:52:a6:6e:28:76:ae:04:96:1a: f3:4d:80:89:a9:b2:12:e0:58:b2:57:78:e3:19:91: 72:47:99:e7:bd:77:2c:4f:c0:7f:af:e1:ed:54:0f: 66:f2:a1:af:10:a5:70:7d:fe:96:e3:4b:98:15:8e: c4:55:5f:49:61:ed:f3:5f:e1:20:01:ea:28:a3:8a: ca:94:85:62:3d:2c:cf:c2:a2:a1:94:4e:4a:78:29: 72:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:38:0F:F9:EC:E5:CA:E9:21:9F:33:F8:F2:00:F5:C2:5E:81:2B:71 X509v3 Authority Key Identifier: keyid:05:D2:4B:3B:8A:22:27:B6:FE:E9:2D:CD:25:D5:4B:F0:5E:E8:68:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:7e:5f:33:67:58:94:8d:ed:10:c6:6f:73:d8:f2:19:94:fb: 98:80:7c:81:56:9e:1b:ec:25:8c:42:9f:41:ea:a7:93:33:96: 86:59:a3:7b:b4:5d:49:17:f7:c5:aa:fe:32:89:ce:74:d4:cb: 96:07:a3:6f:92:00:f5:f6:d9:79:92:72:d1:2e:22:e6:2f:10: 7a:a7:64:78:e7:d3:ec:f2:56:f8:a9:9b:99:d6:fa:89:77:7b: 62:fd:a8:a9:65:0a:36:a7:79:b7:6b:f9:98:68:0c:80:59:9f: ae:a9:10:f9:fd:38:0d:4c:9f:f9:92:1b:14:40:d4:81:3c:11: 4a:52:8c:87:bb:93:24:b2:cb:ba:81:b5:91:9e:ef:dc:74:c6: 1d:4a:48:f4:1b:d2:34:84:e6:d6:09:3a:e9:25:83:0c:09:e3: 4b:03:9a:85:cb:e0:ee:08:71:ca:e9:36:58:44:73:55:3a:10: be:99:ac:fa:93:60:50:5a:e5:81:46:d2:62:ac:9d:45:48:4f: de:af:9a:0c:b7:52:a1:37:5a:5a:c5:5e:dc:8e:26:03:a6:e6: c8:a9:5d:be:7a:4a:df:3c:83:7b:24:dc:f4:44:e3:c7:8a:4c: c3:8b:20:16:63:a4:8d:5f:d5:fe:a5:b5:fe:38:e3:92:c9:b2: 1e:e9:ce:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc3MjQxMTAvBgNVBAUTKDA1RDI0QjNCOEEyMjI3QjZGRUU5MkRDRDI1RDU0QkYw NUVFODY4Q0EwHhcNMjUwNTExMDM1MDE0WhcNMjUwNTE4MDM1MDE0WjAYMRYwFAYD VQQDEw02ODIwMWU3Ni03YTJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1HgbbWNWfn/M8K3ygf77vnMBMqKDxFT2uzvusAUeUQCOD2y6LDOKE9SueLRN bDjpwftXOCt+Bmv7JdExb3a0YEJE2hKEq7A1HtLt7DqWgKgV0QSO79sL7Cf1irb3 qlAnirzK1FVX4LxvDTUFo2LzSOQ8gwZ7t+5uGng6r/NN0Jko1m9qOkDYSBuQJciq aXTnCEtRVZQ5ERSL7MwPYguRcY907CtCfSE4MhVSpm4odq4ElhrzTYCJqbIS4Fiy V3jjGZFyR5nnvXcsT8B/r+HtVA9m8qGvEKVwff6W40uYFY7EVV9JYe3zX+EgAeoo o4rKlIViPSzPwqKhlE5KeClyIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOo4D/ns 5crpIZ8z+PIA9cJegStxMB8GA1UdIwQYMBaAFAXSSzuKIie2/uktzSXVS/Be6GjK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzcyNC9ENzM5ODcyODk1 ODcxMUVFQUQzQkIyNjJDNEY5QUUwMi9CZEpMTzRvaUo3Yi02UzNOSmRWTDhGN29h TW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JkSkxPNG9pSjdiLTZTM05KZFZMOEY3b2FNby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzcyNC9ENzM5ODcyODk1ODcxMUVFQUQzQkIyNjJDNEY5QUUwMi9CZEpMTzRvaUo3 Yi02UzNOSmRWTDhGN29hTW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1fl8zZ1iUje0Qxm9z2PIZlPuYgHyBVp4b7CWMQp9B6qeTM5aGWaN7 tF1JF/fFqv4yic501MuWB6NvkgD19tl5knLRLiLmLxB6p2R459Ps8lb4qZuZ1vqJ d3ti/aipZQo2p3m3a/mYaAyAWZ+uqRD5/TgNTJ/5khsUQNSBPBFKUoyHu5Mkssu6 gbWRnu/cdMYdSkj0G9I0hObWCTrpJYMMCeNLA5qFy+DuCHHK6TZYRHNVOhC+maz6 k2BQWuWBRtJirJ1FSE/er5oMt1KhN1paxV7cjiYDpubIqV2+ekrfPIN7JNz0ROPH ikzDiyAWY6SNX9X+pbX+OOOSybIe6c5i -----END CERTIFICATE-----Generated at Sun May 11 15:17:23 2025 by rpki-client