$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft File: bifP0YnuRkQx1LkBO8wHWKgCZOY.mft (raw, json) Hash identifier: ZyBUqUepNXsJbMmerGZTGmn1uERMrEJakyEF6SFD5PM= Subject key identifier: E1:68:D1:4F:3A:2E:8F:FE:60:B2:0E:DD:DA:D7:C4:45:6F:6E:E2:22 Authority key identifier: 6E:27:CF:D1:89:EE:46:44:31:D4:B9:01:3B:CC:07:58:A8:02:64:E6 Certificate issuer: /CN=A9157D13/serialNumber=6E27CFD189EE464431D4B9013BCC0758A80264E6 Certificate serial: 18C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft Manifest number: 18B0 Signing time: Sat 28 Jun 2025 16:21:43 +0000 Manifest this update: Sat 28 Jun 2025 16:21:43 +0000 Manifest next update: Sat 05 Jul 2025 16:21:43 +0000 Files and hashes: 1: bifP0YnuRkQx1LkBO8wHWKgCZOY.crl (hash: YzxsLpbbZravDvFjv5iVoRlnBWQpzZBoRlMcYPFf2I8=) 2: 33E73FAAE50B11EF838B6642C4F9AE02.roa (hash: hGExMUb+w4JyWjME6Pb9a+xtMzWk7NBawSO3YXbXwM4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.crl rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 16:21:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6342 (0x18c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157D13, serialNumber=6E27CFD189EE464431D4B9013BCC0758A80264E6 Validity Not Before: Jun 28 16:21:43 2025 GMT Not After : Jul 5 16:21:43 2025 GMT Subject: CN=68601697-591b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:89:64:4c:02:8a:1b:ea:33:c8:fb:0a:c5:e1: 0e:94:76:3f:a4:8b:ee:09:f8:9c:a0:06:51:81:1f: b5:6a:fd:23:59:e9:a1:1b:bd:bf:7f:49:d2:65:36: b2:61:ec:66:47:a1:17:9c:1a:e8:39:df:90:99:b7: 2b:91:f3:d7:64:f3:bf:22:49:45:59:ea:a4:a9:3d: 6f:91:f4:e6:ef:86:64:f4:25:57:51:87:35:22:2e: f3:c9:7b:21:35:33:94:db:a5:78:2d:40:f8:3a:cb: d6:10:3d:31:58:06:ab:5a:b0:c5:c1:cb:ae:f4:d2: 64:c5:65:9e:db:04:51:b6:a3:a5:06:66:a7:4e:db: fc:c8:3c:ee:aa:4d:54:1e:71:d6:dc:8b:d5:f6:0e: cc:ee:a8:7b:4a:07:4c:fc:1c:ea:51:a7:cd:1b:97: 8c:66:72:b0:9e:9b:ee:aa:44:7f:84:c1:84:32:1e: e9:1b:4f:a1:b3:bd:af:86:2e:d1:36:11:ba:7f:36: 9c:69:40:7f:2a:77:f0:0c:56:ce:a0:f2:34:01:58: 76:69:36:39:70:f6:45:9d:92:f8:ae:8a:79:b8:ec: 77:12:e4:c4:46:5f:9e:10:87:cb:93:b9:fd:cd:8e: 73:af:b0:67:d1:46:f2:a5:9a:a0:a3:7c:2c:26:bc: f0:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:68:D1:4F:3A:2E:8F:FE:60:B2:0E:DD:DA:D7:C4:45:6F:6E:E2:22 X509v3 Authority Key Identifier: keyid:6E:27:CF:D1:89:EE:46:44:31:D4:B9:01:3B:CC:07:58:A8:02:64:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:10:0d:6e:e0:91:c8:a5:e4:42:cb:10:ea:3b:ea:87:66:9c: b0:49:ca:e3:33:dc:22:64:62:92:3c:bf:be:2c:00:2a:09:e5: 24:f0:e5:09:8f:e9:4a:14:77:f1:2a:27:45:28:26:f9:c7:0c: 8b:c5:98:80:02:98:5d:15:53:cc:68:79:33:b2:44:78:34:b7: af:19:2d:72:39:ce:c2:67:bf:e0:fa:d4:94:6e:b9:ab:0d:d0: 1c:66:2b:9c:0a:91:7c:23:f0:17:89:81:40:e9:97:1f:c0:87: 51:b0:f0:68:32:19:64:95:b0:38:19:01:3d:59:1b:38:34:a7: 95:df:84:80:3f:fe:8f:39:30:37:60:fa:82:de:4d:4e:da:7b: c1:8c:95:0b:31:60:f0:7f:6d:b0:c9:df:88:69:f7:5e:b7:15: 6a:b0:23:92:03:3e:5c:ff:9f:ea:92:1b:ab:64:cc:6d:6e:bd: 7f:b0:68:39:6f:10:52:01:be:9c:26:81:11:c0:8c:ab:3b:c4: 4c:d0:04:40:bb:bc:03:bc:26:d5:31:f1:d2:c9:fa:35:94:49: 58:42:f1:64:75:d8:52:ac:08:86:6b:ad:80:a6:a1:04:15:6f: 69:30:7e:77:02:9a:5d:4c:d1:26:ad:1d:d3:23:53:d6:c4:18: e6:50:c2:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEMTMxMTAvBgNVBAUTKDZFMjdDRkQxODlFRTQ2NDQzMUQ0QjkwMTNCQ0MwNzU4 QTgwMjY0RTYwHhcNMjUwNjI4MTYyMTQzWhcNMjUwNzA1MTYyMTQzWjAYMRYwFAYD VQQDEw02ODYwMTY5Ny01OTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmIlkTAKKG+ozyPsKxeEOlHY/pIvuCficoAZRgR+1av0jWemhG72/f0nSZTay YexmR6EXnBroOd+QmbcrkfPXZPO/IklFWeqkqT1vkfTm74Zk9CVXUYc1Ii7zyXsh NTOU26V4LUD4OsvWED0xWAarWrDFwcuu9NJkxWWe2wRRtqOlBmanTtv8yDzuqk1U HnHW3IvV9g7M7qh7SgdM/BzqUafNG5eMZnKwnpvuqkR/hMGEMh7pG0+hs72vhi7R NhG6fzacaUB/KnfwDFbOoPI0AVh2aTY5cPZFnZL4rop5uOx3EuTERl+eEIfLk7n9 zY5zr7Bn0UbypZqgo3wsJrzw5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOFo0U86 Lo/+YLIO3drXxEVvbuIiMB8GA1UdIwQYMBaAFG4nz9GJ7kZEMdS5ATvMB1ioAmTm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0QxMy9BQTI1REYxQzk4 RkQxMUU3QTgxNDU1NjBDNEY5QUUwMi9iaWZQMFludVJrUXgxTGtCTzh3SFdLZ0Na T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JpZlAwWW51UmtReDFMa0JPOHdIV0tnQ1pPWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0QxMy9BQTI1REYxQzk4RkQxMUU3QTgxNDU1NjBDNEY5QUUwMi9iaWZQMFludVJr UXgxTGtCTzh3SFdLZ0NaT1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOEA1u4JHIpeRCyxDqO+qHZpywScrjM9wiZGKSPL++LAAqCeUk8OUJ j+lKFHfxKidFKCb5xwyLxZiAAphdFVPMaHkzskR4NLevGS1yOc7CZ7/g+tSUbrmr DdAcZiucCpF8I/AXiYFA6ZcfwIdRsPBoMhlklbA4GQE9WRs4NKeV34SAP/6POTA3 YPqC3k1O2nvBjJULMWDwf22wyd+IafdetxVqsCOSAz5c/5/qkhurZMxtbr1/sGg5 bxBSAb6cJoERwIyrO8RM0ARAu7wDvCbVMfHSyfo1lElYQvFkddhSrAiGa62ApqEE FW9pMH53AppdTNEmrR3TI1PWxBjmUML8 -----END CERTIFICATE-----Generated at Sun Jun 29 16:45:15 2025 by rpki-client