$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft File: bifP0YnuRkQx1LkBO8wHWKgCZOY.mft (raw, json) Hash identifier: fmajhXGXIo7EyGN6l4AkcODv53IhgIRb3ClK8FS85YM= Subject key identifier: D8:C8:26:D5:C3:FC:15:CA:36:E0:0F:61:84:5F:A8:4F:C8:14:AD:99 Authority key identifier: 6E:27:CF:D1:89:EE:46:44:31:D4:B9:01:3B:CC:07:58:A8:02:64:E6 Certificate issuer: /CN=A9157D13/serialNumber=6E27CFD189EE464431D4B9013BCC0758A80264E6 Certificate serial: 18AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft Manifest number: 1896 Signing time: Thu 08 May 2025 16:35:50 +0000 Manifest this update: Thu 08 May 2025 16:35:49 +0000 Manifest next update: Thu 15 May 2025 16:35:49 +0000 Files and hashes: 1: bifP0YnuRkQx1LkBO8wHWKgCZOY.crl (hash: klAWakS0QXfk4EVvQofbU+HXpI53YXRDh8452psH17A=) 2: 33E73FAAE50B11EF838B6642C4F9AE02.roa (hash: hGExMUb+w4JyWjME6Pb9a+xtMzWk7NBawSO3YXbXwM4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.crl rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 15 May 2025 16:35:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6316 (0x18ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157D13, serialNumber=6E27CFD189EE464431D4B9013BCC0758A80264E6 Validity Not Before: May 8 16:35:49 2025 GMT Not After : May 15 16:35:49 2025 GMT Subject: CN=681cdd65-b21f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:09:fd:8a:65:d6:76:c0:87:8f:f0:47:b8:ac: 57:05:74:b9:a1:9c:8a:cb:57:3d:cb:71:d4:6b:00: c3:49:d3:0d:0f:c6:ea:5c:2c:0d:d5:3d:c6:03:e4: f9:07:77:1c:c8:c7:36:db:b0:26:f7:b0:c5:2c:75: 95:3b:b7:c2:bc:c6:f6:77:03:b9:89:60:d0:4e:db: 1a:8a:6c:b6:4c:11:4e:8d:7a:04:59:42:86:95:eb: 40:c0:30:3e:75:76:14:5d:7f:de:4f:40:45:a7:01: 1c:b0:b2:6c:c9:80:97:0e:20:1c:b1:a0:ad:b7:45: af:57:d3:67:60:b9:20:17:0d:09:1c:ae:d7:31:44: bd:66:50:74:eb:86:89:45:d4:d9:3e:9a:24:be:54: 6f:b4:6b:4b:05:d0:22:d4:f9:5b:e5:52:4d:96:4d: c1:c9:9f:ca:c0:ac:b9:7b:15:31:c5:36:23:78:aa: 15:a5:11:aa:e2:ea:ab:cd:f8:0f:1f:5e:bf:8a:2b: d6:2f:8d:6f:3a:ed:7a:ae:8f:f2:f9:96:84:cd:99: bc:bc:f3:6b:05:05:12:6d:d2:cc:a6:2b:03:53:0d: 15:5a:b8:5a:a0:fb:bd:39:a4:3b:e1:a0:ae:b4:cb: 41:77:be:4e:9d:b9:7c:cf:45:4f:29:a7:1f:59:e3: 2f:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:C8:26:D5:C3:FC:15:CA:36:E0:0F:61:84:5F:A8:4F:C8:14:AD:99 X509v3 Authority Key Identifier: keyid:6E:27:CF:D1:89:EE:46:44:31:D4:B9:01:3B:CC:07:58:A8:02:64:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:57:80:ec:10:34:6e:84:98:51:f3:ee:42:82:5f:82:f6:07: 1d:c1:3d:8d:9c:63:6a:70:df:f4:e0:be:c2:e2:c5:44:36:0b: a0:7f:1f:ef:ae:2d:ac:2c:40:44:c9:64:f4:fd:c8:60:77:a0: 14:a8:a6:30:8e:a2:3c:5b:43:f8:75:db:2b:b1:d7:c2:97:16: a2:e7:83:6d:a0:72:82:7f:26:15:54:a8:38:e5:ef:99:e1:5a: a1:03:7e:5f:51:74:10:bc:7a:fb:17:a5:68:8b:41:73:47:f8: ab:60:2f:56:9d:dc:cf:a8:c0:6b:07:2e:dd:c7:6e:cb:13:a3: cb:e3:f4:f5:cc:a5:62:ea:61:55:e9:e5:c4:aa:93:1c:a4:09: e5:a0:19:f7:eb:87:0f:6e:48:10:50:b9:27:d7:9d:e9:d7:14: 57:f7:7c:c9:89:ca:c1:8c:ea:1a:d7:07:b6:98:26:96:f8:1a: 49:f9:80:bb:21:0d:70:07:74:f8:60:ca:1e:3a:5d:71:d5:47: 02:eb:ff:ac:b6:2b:01:1f:a2:6e:7b:af:ed:05:ab:9c:b6:34: e7:d4:72:62:9c:5a:2f:eb:a0:6c:23:70:f8:c4:d2:48:44:7e: 76:78:9c:7d:a5:a1:a9:f3:ce:17:e8:67:ed:fb:07:c7:c4:8a: 71:d9:ca:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEMTMxMTAvBgNVBAUTKDZFMjdDRkQxODlFRTQ2NDQzMUQ0QjkwMTNCQ0MwNzU4 QTgwMjY0RTYwHhcNMjUwNTA4MTYzNTQ5WhcNMjUwNTE1MTYzNTQ5WjAYMRYwFAYD VQQDEw02ODFjZGQ2NS1iMjFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzwn9imXWdsCHj/BHuKxXBXS5oZyKy1c9y3HUawDDSdMND8bqXCwN1T3GA+T5 B3ccyMc227Am97DFLHWVO7fCvMb2dwO5iWDQTtsaimy2TBFOjXoEWUKGletAwDA+ dXYUXX/eT0BFpwEcsLJsyYCXDiAcsaCtt0WvV9NnYLkgFw0JHK7XMUS9ZlB064aJ RdTZPpokvlRvtGtLBdAi1Plb5VJNlk3ByZ/KwKy5exUxxTYjeKoVpRGq4uqrzfgP H16/iivWL41vOu16ro/y+ZaEzZm8vPNrBQUSbdLMpisDUw0VWrhaoPu9OaQ74aCu tMtBd75Onbl8z0VPKacfWeMvRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNjIJtXD /BXKNuAPYYRfqE/IFK2ZMB8GA1UdIwQYMBaAFG4nz9GJ7kZEMdS5ATvMB1ioAmTm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0QxMy9BQTI1REYxQzk4 RkQxMUU3QTgxNDU1NjBDNEY5QUUwMi9iaWZQMFludVJrUXgxTGtCTzh3SFdLZ0Na T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JpZlAwWW51UmtReDFMa0JPOHdIV0tnQ1pPWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0QxMy9BQTI1REYxQzk4RkQxMUU3QTgxNDU1NjBDNEY5QUUwMi9iaWZQMFludVJr UXgxTGtCTzh3SFdLZ0NaT1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsV4DsEDRuhJhR8+5Cgl+C9gcdwT2NnGNqcN/04L7C4sVENgugfx/v ri2sLEBEyWT0/chgd6AUqKYwjqI8W0P4ddsrsdfClxai54NtoHKCfyYVVKg45e+Z 4VqhA35fUXQQvHr7F6Voi0FzR/irYC9WndzPqMBrBy7dx27LE6PL4/T1zKVi6mFV 6eXEqpMcpAnloBn364cPbkgQULkn153p1xRX93zJicrBjOoa1we2mCaW+BpJ+YC7 IQ1wB3T4YMoeOl1x1UcC6/+stisBH6Jue6/tBauctjTn1HJinFov66BsI3D4xNJI RH52eJx9paGp884X6Gft+wfHxIpx2crp -----END CERTIFICATE-----Generated at Sat May 10 03:37:51 2025 by rpki-client