$ rpki-client -vvf rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.mft File: BdJLO4oiJ7b-6S3NJdVL8F7oaMo.mft (raw, json) Hash identifier: FXpWxUzP6F0w3af8+q4f+3KMpydS9G+aWNKjFtZjLAc= Subject key identifier: 01:61:42:AD:A9:0B:B4:FE:73:A1:DD:7D:43:9F:3A:D5:2E:C7:C3:6B Authority key identifier: 05:D2:4B:3B:8A:22:27:B6:FE:E9:2D:CD:25:D5:4B:F0:5E:E8:68:CA Certificate issuer: /CN=A9157724/serialNumber=05D24B3B8A2227B6FEE92DCD25D54BF05EE868CA Certificate serial: 0130 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.mft Manifest number: 012B Signing time: Tue 01 Jul 2025 05:10:23 +0000 Manifest this update: Tue 01 Jul 2025 05:10:23 +0000 Manifest next update: Tue 08 Jul 2025 05:10:23 +0000 Files and hashes: 1: BdJLO4oiJ7b-6S3NJdVL8F7oaMo.crl (hash: T1Muo5fZnUwUOBoi3clsWeVXbp+4hO+h1wgkXXp9/qI=) 2: 6063C75CB6E411EE94471D14C4F9AE02.roa (hash: HDfP4LwrloNXU1nzvfFcUeha0pVa0Ubh8d+qNote20c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.crl rsync://rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 05:10:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 304 (0x130) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157724, serialNumber=05D24B3B8A2227B6FEE92DCD25D54BF05EE868CA Validity Not Before: Jul 1 05:10:23 2025 GMT Not After : Jul 8 05:10:23 2025 GMT Subject: CN=68636dbf-ec39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:16:94:63:b4:e2:31:bd:75:65:74:3b:b3:15: ce:4c:bb:49:f8:7c:d0:18:0b:b7:c1:d5:d2:ac:b8: c3:33:9f:9f:af:0a:a6:b5:5f:dc:3e:7f:86:93:85: 6c:8d:cb:0f:eb:a8:c6:4a:8d:8c:cf:aa:bc:c2:9e: 2d:53:9d:0d:23:95:6b:d2:51:f6:45:6c:6a:cf:74: 40:f1:64:a7:27:54:e9:d9:cb:31:f0:f9:53:0d:86: 0d:eb:a1:14:c1:41:8c:0d:6b:93:53:30:66:2b:5c: 0a:8b:c7:ff:d7:1d:f4:ed:8f:c6:80:2b:d2:73:91: b4:39:fe:cb:29:79:73:ad:93:b4:14:58:ff:49:d3: 71:db:c4:a9:dd:b4:2e:ec:03:06:3f:2b:e8:4c:98: 7b:c9:d0:0e:39:9e:01:58:dd:9c:18:8c:fa:1b:52: 3f:39:aa:84:13:1e:52:9a:d6:80:05:32:26:8d:4e: ca:ef:57:6b:be:63:e7:24:a1:5e:97:f8:06:83:f9: 7e:12:3d:ea:82:9d:df:45:ed:d2:47:8f:33:1b:0c: 74:64:e5:b5:df:b4:a2:af:41:ee:83:e1:97:ff:cd: c0:5b:19:e8:21:4e:b2:76:41:15:f2:db:30:2e:ac: 80:1d:16:20:92:3f:80:f6:68:49:d2:52:ee:bd:10: 18:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:61:42:AD:A9:0B:B4:FE:73:A1:DD:7D:43:9F:3A:D5:2E:C7:C3:6B X509v3 Authority Key Identifier: keyid:05:D2:4B:3B:8A:22:27:B6:FE:E9:2D:CD:25:D5:4B:F0:5E:E8:68:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157724/D7398728958711EEAD3BB262C4F9AE02/BdJLO4oiJ7b-6S3NJdVL8F7oaMo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:85:f5:3b:1c:ef:08:06:5c:80:12:22:82:8c:07:48:ed:f3: 58:34:1c:01:be:06:88:8f:fd:4b:33:a5:76:47:0d:08:4d:54: 8a:df:f0:55:77:d4:09:01:3c:27:56:3b:3a:c9:2e:23:ab:1f: 09:2b:ce:6a:3f:8d:d0:95:fe:0a:7d:72:b1:b9:e9:d2:59:c0: 40:4b:97:0b:e0:7b:24:af:1b:3d:94:63:79:2f:11:b2:7d:33: b8:61:2b:f3:b7:5d:b5:1e:ae:15:85:c3:7a:4c:f5:fc:73:59: 67:0e:c6:25:ba:d3:94:53:e3:2f:c5:2e:a0:fd:f6:2b:fc:f0: 7a:c4:6a:65:7a:7f:8e:17:d2:b3:40:2d:0e:5d:6a:03:d5:61: e7:4b:5a:6c:49:28:1d:e8:6f:62:36:fd:fe:83:4e:b8:6d:cb: 59:06:56:d8:03:c4:ea:b7:c1:27:4e:e6:ca:29:f6:38:18:25: cb:52:96:8b:8a:9a:07:3e:05:8b:5e:46:ca:9b:bb:25:60:b9: ab:0e:14:01:ba:64:e1:67:c0:f5:dc:85:0a:03:32:a9:14:a9: ae:25:8b:6e:8e:bb:eb:84:71:91:6d:b8:a6:8d:40:f8:2f:be: a3:3c:ea:16:80:db:cb:ac:91:e4:3d:09:28:6e:01:64:cc:8f: 3f:40:fa:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc3MjQxMTAvBgNVBAUTKDA1RDI0QjNCOEEyMjI3QjZGRUU5MkRDRDI1RDU0QkYw NUVFODY4Q0EwHhcNMjUwNzAxMDUxMDIzWhcNMjUwNzA4MDUxMDIzWjAYMRYwFAYD VQQDEw02ODYzNmRiZi1lYzM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvxaUY7TiMb11ZXQ7sxXOTLtJ+HzQGAu3wdXSrLjDM5+frwqmtV/cPn+Gk4Vs jcsP66jGSo2Mz6q8wp4tU50NI5Vr0lH2RWxqz3RA8WSnJ1Tp2csx8PlTDYYN66EU wUGMDWuTUzBmK1wKi8f/1x307Y/GgCvSc5G0Of7LKXlzrZO0FFj/SdNx28Sp3bQu 7AMGPyvoTJh7ydAOOZ4BWN2cGIz6G1I/OaqEEx5SmtaABTImjU7K71drvmPnJKFe l/gGg/l+Ej3qgp3fRe3SR48zGwx0ZOW137Sir0Hug+GX/83AWxnoIU6ydkEV8tsw LqyAHRYgkj+A9mhJ0lLuvRAYywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAFhQq2p C7T+c6HdfUOfOtUux8NrMB8GA1UdIwQYMBaAFAXSSzuKIie2/uktzSXVS/Be6GjK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzcyNC9ENzM5ODcyODk1 ODcxMUVFQUQzQkIyNjJDNEY5QUUwMi9CZEpMTzRvaUo3Yi02UzNOSmRWTDhGN29h TW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JkSkxPNG9pSjdiLTZTM05KZFZMOEY3b2FNby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzcyNC9ENzM5ODcyODk1ODcxMUVFQUQzQkIyNjJDNEY5QUUwMi9CZEpMTzRvaUo3 Yi02UzNOSmRWTDhGN29hTW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC8hfU7HO8IBlyAEiKCjAdI7fNYNBwBvgaIj/1LM6V2Rw0ITVSK3/BV d9QJATwnVjs6yS4jqx8JK85qP43Qlf4KfXKxuenSWcBAS5cL4Hskrxs9lGN5LxGy fTO4YSvzt121Hq4VhcN6TPX8c1lnDsYlutOUU+MvxS6g/fYr/PB6xGplen+OF9Kz QC0OXWoD1WHnS1psSSgd6G9iNv3+g064bctZBlbYA8Tqt8EnTubKKfY4GCXLUpaL ipoHPgWLXkbKm7slYLmrDhQBumThZ8D13IUKAzKpFKmuJYtujrvrhHGRbbimjUD4 L76jPOoWgNvLrJHkPQkobgFkzI8/QPrx -----END CERTIFICATE-----Generated at Tue Jul 1 14:58:15 2025 by rpki-client