$ rpki-client -vvf rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft File: bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft (raw, json) Hash identifier: rmTd+YSirn+JZFe5KnTuXqhKcDbNbd634pjec63ID/Y= Subject key identifier: A6:48:55:EE:D9:B2:9A:30:F2:48:21:AD:71:38:3B:E6:37:33:C9:01 Authority key identifier: 6D:DE:C6:A1:71:29:23:0E:EE:FE:50:8A:F1:19:62:FB:4C:0F:6F:C2 Certificate issuer: /CN=A9167C9C/serialNumber=6DDEC6A17129230EEEFE508AF11962FB4C0F6FC2 Certificate serial: 0594 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bd7GoXEpIw7u_lCK8Rli-0wPb8I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft Manifest number: 058F Signing time: Fri 04 Jul 2025 23:41:18 +0000 Manifest this update: Fri 04 Jul 2025 23:41:17 +0000 Manifest next update: Fri 11 Jul 2025 23:41:17 +0000 Files and hashes: 1: bd7GoXEpIw7u_lCK8Rli-0wPb8I.crl (hash: w/+yCi0etMqwokXGUFpMlGtqiqRauSW9FO6bM/Yo0Mg=) 2: BF811486DC1E11EBB2C72F52C4F9AE02.roa (hash: tkST3vaKxeiP20POIYCSnEB6Q6omsC/qv/TzKr9coAY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.crl rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bd7GoXEpIw7u_lCK8Rli-0wPb8I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1428 (0x594) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167C9C, serialNumber=6DDEC6A17129230EEEFE508AF11962FB4C0F6FC2 Validity Not Before: Jul 4 23:41:17 2025 GMT Not After : Jul 11 23:41:17 2025 GMT Subject: CN=6868669d-3009 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:47:29:7b:56:b0:69:51:57:ff:64:d1:70:17: 31:0f:6e:e8:21:69:62:30:51:fc:1f:58:61:67:7c: fc:af:ab:db:8f:85:c5:a2:44:cd:5b:f6:ce:e4:a4: 0c:53:ec:e5:77:34:09:f7:09:3e:70:0c:26:94:70: 18:97:29:7f:8c:c6:55:35:b4:ac:9d:f2:83:72:30: e8:9c:78:2f:e5:d2:c1:7c:64:2d:fc:28:0a:f4:56: 7a:27:d3:11:12:90:60:68:7d:f2:2a:25:77:07:44: 7e:e7:d9:fa:c0:19:c5:93:8c:e9:c2:cb:c4:30:e2: c4:0d:4f:ce:09:b2:f7:6c:b3:2a:f7:e0:f4:62:ee: 44:32:0b:7f:2a:99:fb:ac:e3:b8:59:0f:bd:2f:48: 23:0c:04:4b:4f:7a:bc:bb:0e:f1:c8:8d:2d:ff:a1: 63:f3:60:e5:31:3f:ae:42:ad:6c:f8:ce:08:0e:7d: e8:d2:73:2b:07:da:27:eb:8c:25:69:a9:ca:7e:d2: 4d:9a:4f:f4:8c:e7:95:0b:d1:49:02:90:2a:ba:cc: 8d:e2:ac:d5:1f:fc:95:50:50:50:da:81:5d:ad:77: ef:57:73:eb:41:a9:8d:9f:44:28:08:fe:dc:e2:ae: b2:1f:2b:6c:77:cb:2f:6f:9e:c5:e5:86:09:2b:ed: 0d:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:48:55:EE:D9:B2:9A:30:F2:48:21:AD:71:38:3B:E6:37:33:C9:01 X509v3 Authority Key Identifier: keyid:6D:DE:C6:A1:71:29:23:0E:EE:FE:50:8A:F1:19:62:FB:4C:0F:6F:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bd7GoXEpIw7u_lCK8Rli-0wPb8I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:e2:90:61:91:33:d7:da:a6:47:fa:6b:dc:8e:14:62:41:65: 59:33:32:31:05:54:09:4e:21:55:1c:ac:05:34:9b:56:c6:1b: ff:0b:9b:a6:5c:89:fa:00:8e:74:42:f8:2b:8c:60:d8:8e:cb: ee:78:c7:99:84:e3:a4:d0:8f:03:71:78:bb:b9:e3:c1:05:e2: 86:09:5a:2f:76:03:bd:b1:a4:25:c3:20:a1:a1:dd:f2:4e:5e: 02:dd:f8:a0:11:a5:48:2f:0e:0c:b8:27:f3:e4:2f:7b:d5:ea: af:21:85:79:50:25:fc:49:97:a2:54:e6:2f:e9:3d:8c:e0:e5: d6:57:75:04:3a:f2:cd:24:2c:a7:ed:5d:21:4f:8f:6e:57:81: 12:6a:b7:61:5d:b0:f0:dd:ed:a8:04:49:8d:47:24:79:ed:70: 77:c1:1f:ed:fb:64:96:e4:2d:a9:41:d2:3c:e4:5c:3a:50:21: 6f:11:5f:b3:7d:a1:29:a4:ee:e8:1f:ac:e9:5c:2e:d9:3c:38: bb:2a:86:97:f3:ab:14:16:6c:13:80:cd:a5:1a:b4:ed:c5:6e: e1:f0:70:d2:cf:e3:c5:6c:20:ee:27:4e:ec:a0:39:38:9d:47: a6:2a:6f:f1:ae:01:08:76:63:43:56:10:8d:d4:8b:73:4c:f2: 2b:ed:53:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDOUMxMTAvBgNVBAUTKDZEREVDNkExNzEyOTIzMEVFRUZFNTA4QUYxMTk2MkZC NEMwRjZGQzIwHhcNMjUwNzA0MjM0MTE3WhcNMjUwNzExMjM0MTE3WjAYMRYwFAYD VQQDEw02ODY4NjY5ZC0zMDA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyUcpe1awaVFX/2TRcBcxD27oIWliMFH8H1hhZ3z8r6vbj4XFokTNW/bO5KQM U+zldzQJ9wk+cAwmlHAYlyl/jMZVNbSsnfKDcjDonHgv5dLBfGQt/CgK9FZ6J9MR EpBgaH3yKiV3B0R+59n6wBnFk4zpwsvEMOLEDU/OCbL3bLMq9+D0Yu5EMgt/Kpn7 rOO4WQ+9L0gjDARLT3q8uw7xyI0t/6Fj82DlMT+uQq1s+M4IDn3o0nMrB9on64wl aanKftJNmk/0jOeVC9FJApAqusyN4qzVH/yVUFBQ2oFdrXfvV3PrQamNn0QoCP7c 4q6yHytsd8svb57F5YYJK+0NMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKZIVe7Z spow8kghrXE4O+Y3M8kBMB8GA1UdIwQYMBaAFG3exqFxKSMO7v5QivEZYvtMD2/C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0M5Qy85QjZDNDI4MERD MUIxMUVCQTYzNTUwNEVDNEY5QUUwMi9iZDdHb1hFcEl3N3VfbENLOFJsaS0wd1Bi OEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JkN0dvWEVwSXc3dV9sQ0s4UmxpLTB3UGI4SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0M5Qy85QjZDNDI4MERDMUIxMUVCQTYzNTUwNEVDNEY5QUUwMi9iZDdHb1hFcEl3 N3VfbENLOFJsaS0wd1BiOEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAx4pBhkTPX2qZH+mvcjhRiQWVZMzIxBVQJTiFVHKwFNJtWxhv/C5um XIn6AI50QvgrjGDYjsvueMeZhOOk0I8DcXi7uePBBeKGCVovdgO9saQlwyChod3y Tl4C3figEaVILw4MuCfz5C971eqvIYV5UCX8SZeiVOYv6T2M4OXWV3UEOvLNJCyn 7V0hT49uV4ESardhXbDw3e2oBEmNRyR57XB3wR/t+2SW5C2pQdI85Fw6UCFvEV+z faEppO7oH6zpXC7ZPDi7KoaX86sUFmwTgM2lGrTtxW7h8HDSz+PFbCDuJ07soDk4 nUemKm/xrgEIdmNDVhCN1ItzTPIr7VPe -----END CERTIFICATE-----Generated at Sat Jul 5 18:50:35 2025 by rpki-client