$ rpki-client -vvf rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft File: BQFHuU3J1svowLDxrQwBg6YHfDQ.mft (raw, json) Hash identifier: GmsBhzFNjU65xJYsYKzuxklq4n3c//6dX3E4NjY4W6o= Subject key identifier: 81:F9:AC:A6:9F:9A:36:FA:7D:43:A2:7A:89:2F:90:E7:20:70:CA:C7 Authority key identifier: 05:01:47:B9:4D:C9:D6:CB:E8:C0:B0:F1:AD:0C:01:83:A6:07:7C:34 Certificate issuer: /CN=A91629AA/serialNumber=050147B94DC9D6CBE8C0B0F1AD0C0183A6077C34 Certificate serial: DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQFHuU3J1svowLDxrQwBg6YHfDQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft Manifest number: D8 Signing time: Tue 13 May 2025 04:48:17 +0000 Manifest this update: Tue 13 May 2025 04:48:16 +0000 Manifest next update: Tue 20 May 2025 04:48:16 +0000 Files and hashes: 1: BQFHuU3J1svowLDxrQwBg6YHfDQ.crl (hash: U/P71nJu5tY719jVUptZomTugC2eA2TpvZlaLeOznyE=) 2: 1E347CDCE74A11EE8602742BC4F9AE02.roa (hash: RDRsbI0QCe3WCyYIAxbPkTT+7Ici1TKwxRZtpP0NFiU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.crl rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQFHuU3J1svowLDxrQwBg6YHfDQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 04:48:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 219 (0xdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91629AA, serialNumber=050147B94DC9D6CBE8C0B0F1AD0C0183A6077C34 Validity Not Before: May 13 04:48:16 2025 GMT Not After : May 20 04:48:16 2025 GMT Subject: CN=6822cf10-f5c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:06:cf:b4:32:ec:c5:29:26:76:9f:0a:e9:02: 64:82:bd:83:1a:fb:53:1f:7b:cc:36:6c:1f:08:af: cb:82:2f:c5:c9:7a:54:2d:47:67:0c:37:0d:bf:94: 08:50:6c:6d:45:7b:d3:cb:8f:9c:23:88:08:bb:bf: 2e:e1:0c:02:8b:dd:67:f1:d8:01:f5:30:34:92:ae: 37:35:f1:0a:53:01:f7:29:fd:c4:97:b9:90:e9:94: 2a:7c:52:40:46:8d:0e:74:7c:b7:d4:2d:5e:1b:f4: 1a:77:b5:20:1d:0c:10:96:bd:af:67:2b:57:cb:7d: 14:82:e9:e7:69:c6:8e:c9:ef:04:81:ea:40:00:50: 56:91:89:14:aa:2f:69:48:36:23:84:f1:91:82:ca: a4:b9:6a:72:df:76:de:cd:06:21:ae:2e:bb:b3:d2: 0b:74:9a:b2:44:62:5e:2d:be:4e:b9:76:aa:69:60: 1d:19:a5:e0:14:82:23:98:6e:e4:37:70:db:12:0f: f1:a5:86:de:2f:f8:85:bb:f8:14:bd:d9:5f:9b:25: 28:0f:94:c7:43:70:5e:95:7f:71:4e:ca:83:38:31: 36:12:d9:49:8b:b8:6e:73:66:32:2f:9b:b3:7d:cb: 18:c9:6b:55:8f:2c:f4:f5:3e:e8:68:ff:d3:bb:5a: 08:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:F9:AC:A6:9F:9A:36:FA:7D:43:A2:7A:89:2F:90:E7:20:70:CA:C7 X509v3 Authority Key Identifier: keyid:05:01:47:B9:4D:C9:D6:CB:E8:C0:B0:F1:AD:0C:01:83:A6:07:7C:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQFHuU3J1svowLDxrQwBg6YHfDQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91629AA/5F0693F4E74911EEBC526F29C4F9AE02/BQFHuU3J1svowLDxrQwBg6YHfDQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:73:07:b3:b2:24:8f:e7:02:a5:58:8e:06:e7:d6:ed:9d:1f: cc:92:c3:3a:0e:fc:eb:be:1f:1b:aa:b9:d7:58:8e:f1:d7:d0: e8:97:2e:f1:27:4a:88:53:12:7b:eb:60:55:70:89:5e:5a:63: 48:3d:f7:db:a1:a5:03:51:26:69:2a:70:77:52:bc:ac:41:fb: 1d:31:9f:cd:12:9b:90:24:62:89:cd:c8:b3:90:2f:0b:7b:5c: 1f:75:c7:d8:a4:4d:6d:c4:b3:6a:b3:2b:31:07:3f:99:2e:39: 41:92:5b:92:2e:f4:ac:ab:2a:72:0f:32:c0:ff:b9:b5:95:b3: d3:d9:91:11:e1:af:a0:24:d4:cc:c3:08:a8:df:84:46:30:2e: 26:a1:84:56:e5:74:2f:73:2f:15:93:c9:60:42:ab:f6:fb:a8: c3:a6:81:c6:08:0a:88:a4:e1:cf:d3:57:2b:43:fb:c3:29:ca: c7:71:1e:0a:60:ff:30:6d:7b:03:29:2a:83:9d:58:98:c4:07: 63:49:69:aa:f0:c5:ff:4c:3b:9f:ad:ed:87:c9:2c:9b:9a:2f: 49:a2:ea:3a:fe:f1:0e:ca:1a:58:34:d5:e1:16:ae:ce:f4:59: 29:49:d1:5a:1e:ff:fe:a1:f3:47:4d:65:2d:22:5e:ea:ff:76: b6:78:e0:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI5QUExMTAvBgNVBAUTKDA1MDE0N0I5NERDOUQ2Q0JFOEMwQjBGMUFEMEMwMTgz QTYwNzdDMzQwHhcNMjUwNTEzMDQ0ODE2WhcNMjUwNTIwMDQ0ODE2WjAYMRYwFAYD VQQDEw02ODIyY2YxMC1mNWM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvgbPtDLsxSkmdp8K6QJkgr2DGvtTH3vMNmwfCK/Lgi/FyXpULUdnDDcNv5QI UGxtRXvTy4+cI4gIu78u4QwCi91n8dgB9TA0kq43NfEKUwH3Kf3El7mQ6ZQqfFJA Ro0OdHy31C1eG/Qad7UgHQwQlr2vZytXy30UgunnacaOye8EgepAAFBWkYkUqi9p SDYjhPGRgsqkuWpy33bezQYhri67s9ILdJqyRGJeLb5OuXaqaWAdGaXgFIIjmG7k N3DbEg/xpYbeL/iFu/gUvdlfmyUoD5THQ3BelX9xTsqDODE2EtlJi7huc2YyL5uz fcsYyWtVjyz09T7oaP/Tu1oILwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIH5rKaf mjb6fUOieokvkOcgcMrHMB8GA1UdIwQYMBaAFAUBR7lNydbL6MCw8a0MAYOmB3w0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjlBQS81RjA2OTNGNEU3 NDkxMUVFQkM1MjZGMjlDNEY5QUUwMi9CUUZIdVUzSjFzdm93TER4clF3Qmc2WUhm RFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRRkh1VTNKMXN2b3dMRHhyUXdCZzZZSGZEUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjlBQS81RjA2OTNGNEU3NDkxMUVFQkM1MjZGMjlDNEY5QUUwMi9CUUZIdVUzSjFz dm93TER4clF3Qmc2WUhmRFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAycwezsiSP5wKlWI4G59btnR/MksM6Dvzrvh8bqrnXWI7x19Doly7x J0qIUxJ762BVcIleWmNIPffboaUDUSZpKnB3UrysQfsdMZ/NEpuQJGKJzcizkC8L e1wfdcfYpE1txLNqsysxBz+ZLjlBkluSLvSsqypyDzLA/7m1lbPT2ZER4a+gJNTM wwio34RGMC4moYRW5XQvcy8Vk8lgQqv2+6jDpoHGCAqIpOHP01crQ/vDKcrHcR4K YP8wbXsDKSqDnViYxAdjSWmq8MX/TDufre2HySybmi9Jouo6/vEOyhpYNNXhFq7O 9FkpSdFaHv/+ofNHTWUtIl7q/3a2eODy -----END CERTIFICATE-----Generated at Wed May 14 03:56:47 2025 by rpki-client