$ rpki-client -vvf rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft File: bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft (raw, json) Hash identifier: dwobODWuuuZE5NecMaaEBWGTahAdiw/i+A4RO7Ns5RA= Subject key identifier: 34:67:52:0C:9A:B8:D3:C3:59:78:45:D1:E6:3D:06:E4:54:4E:BB:71 Authority key identifier: 6D:DE:C6:A1:71:29:23:0E:EE:FE:50:8A:F1:19:62:FB:4C:0F:6F:C2 Certificate issuer: /CN=A9167C9C/serialNumber=6DDEC6A17129230EEEFE508AF11962FB4C0F6FC2 Certificate serial: 0577 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bd7GoXEpIw7u_lCK8Rli-0wPb8I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft Manifest number: 0573 Signing time: Mon 12 May 2025 23:06:57 +0000 Manifest this update: Mon 12 May 2025 23:06:57 +0000 Manifest next update: Mon 19 May 2025 23:06:57 +0000 Files and hashes: 1: bd7GoXEpIw7u_lCK8Rli-0wPb8I.crl (hash: 9ajEbm2g+DA6IQXBoO1ilm6VoTXw5sBl7Gi1D9DcHgw=) 2: BF811486DC1E11EBB2C72F52C4F9AE02.roa (hash: iBf35JbhfXTByYtXYWLsbRPZqGHn3gi9s/hG2voZLCk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.crl rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bd7GoXEpIw7u_lCK8Rli-0wPb8I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 23:06:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1399 (0x577) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167C9C, serialNumber=6DDEC6A17129230EEEFE508AF11962FB4C0F6FC2 Validity Not Before: May 12 23:06:57 2025 GMT Not After : May 19 23:06:57 2025 GMT Subject: CN=68227f11-6d2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:34:c8:ab:4a:b0:2d:69:a0:73:24:41:9f:50: 85:09:2c:97:1f:ca:02:73:e0:85:65:14:96:c2:cb: 1e:d2:3b:a1:43:08:67:5e:1c:ea:0e:f6:56:04:63: e8:37:a1:8d:06:64:61:4b:ff:f8:a6:99:05:9a:f1: 68:70:23:ea:88:1c:37:42:3e:48:50:15:b2:b9:ec: 3c:e6:ee:a5:d1:3d:1f:e1:26:df:41:75:d9:57:a5: 6e:4f:cb:76:3c:dc:7d:94:df:78:ef:72:21:12:a0: a2:31:9f:15:e1:b7:12:b2:e9:54:41:41:f8:13:c4: 1d:bf:59:d3:87:ce:99:d2:10:84:33:22:db:26:49: 21:eb:10:c2:ea:0f:e7:26:df:c2:ca:6e:17:15:47: 9a:3c:99:3b:fb:18:5c:2f:4c:41:38:82:3c:24:b8: 56:1c:bc:82:76:94:28:b2:9b:73:e9:b4:9a:5c:a8: c1:0b:cc:c2:2f:e7:30:74:36:4d:cc:7b:0c:25:a0: 49:1a:d4:27:7d:c4:5f:a7:df:4e:14:2d:71:71:05: 6e:6c:c1:7f:0a:d6:e1:52:51:0a:2e:61:54:78:6a: 36:41:c4:74:1c:a4:e5:b1:c5:87:8e:f7:7e:87:32: 98:21:f7:12:ff:12:e4:aa:9e:8e:a6:15:db:c8:0e: 21:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:67:52:0C:9A:B8:D3:C3:59:78:45:D1:E6:3D:06:E4:54:4E:BB:71 X509v3 Authority Key Identifier: keyid:6D:DE:C6:A1:71:29:23:0E:EE:FE:50:8A:F1:19:62:FB:4C:0F:6F:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bd7GoXEpIw7u_lCK8Rli-0wPb8I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167C9C/9B6C4280DC1B11EBA635504EC4F9AE02/bd7GoXEpIw7u_lCK8Rli-0wPb8I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:f4:f7:c8:03:16:b8:10:d6:5e:c8:24:94:6b:45:1f:9c:9c: 72:2e:a3:94:13:8c:3f:be:9b:1c:52:73:73:0d:5b:5e:4a:35: fa:b0:a4:c9:12:dc:36:9b:30:00:ff:15:8d:3a:88:31:b1:dd: 7a:f3:b2:40:f0:3a:28:42:ad:c7:35:37:73:cf:e6:a9:f9:f7: 6a:4b:fb:8d:5f:d5:2f:14:3f:c5:87:37:34:8b:83:f4:bb:da: 5e:91:ab:c4:10:c9:e2:7c:cf:f4:b5:82:c6:7a:99:0d:ec:50: 89:c9:61:be:df:95:57:59:da:2c:d5:a2:39:78:40:13:e9:0e: a4:eb:d0:15:6a:e4:0e:9a:5d:5c:99:ed:b9:d5:8d:7b:c8:72: 93:0f:89:1a:61:18:71:a2:5a:99:2f:c4:3f:5d:94:16:64:ed: c2:0e:f9:eb:a6:0f:cd:9e:89:9f:5d:dd:cb:5b:d8:44:92:7f: ad:ca:f5:70:1c:02:2b:15:0c:23:5b:a9:7d:5c:be:dd:2a:f7: 21:7c:c2:4e:6b:10:f1:20:83:15:2a:56:a3:27:5b:a4:d2:ca: ef:6f:bb:09:b3:23:f0:42:eb:69:ed:fe:c5:d5:33:c3:16:93: 6d:6c:c3:7b:c4:a4:d9:cd:49:a4:bf:08:64:dd:55:a8:7c:d6: be:8a:ae:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDOUMxMTAvBgNVBAUTKDZEREVDNkExNzEyOTIzMEVFRUZFNTA4QUYxMTk2MkZC NEMwRjZGQzIwHhcNMjUwNTEyMjMwNjU3WhcNMjUwNTE5MjMwNjU3WjAYMRYwFAYD VQQDEw02ODIyN2YxMS02ZDJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzjTIq0qwLWmgcyRBn1CFCSyXH8oCc+CFZRSWwsse0juhQwhnXhzqDvZWBGPo N6GNBmRhS//4ppkFmvFocCPqiBw3Qj5IUBWyuew85u6l0T0f4SbfQXXZV6VuT8t2 PNx9lN9473IhEqCiMZ8V4bcSsulUQUH4E8Qdv1nTh86Z0hCEMyLbJkkh6xDC6g/n Jt/Cym4XFUeaPJk7+xhcL0xBOII8JLhWHLyCdpQosptz6bSaXKjBC8zCL+cwdDZN zHsMJaBJGtQnfcRfp99OFC1xcQVubMF/CtbhUlEKLmFUeGo2QcR0HKTlscWHjvd+ hzKYIfcS/xLkqp6OphXbyA4hewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDRnUgya uNPDWXhF0eY9BuRUTrtxMB8GA1UdIwQYMBaAFG3exqFxKSMO7v5QivEZYvtMD2/C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0M5Qy85QjZDNDI4MERD MUIxMUVCQTYzNTUwNEVDNEY5QUUwMi9iZDdHb1hFcEl3N3VfbENLOFJsaS0wd1Bi OEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JkN0dvWEVwSXc3dV9sQ0s4UmxpLTB3UGI4SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0M5Qy85QjZDNDI4MERDMUIxMUVCQTYzNTUwNEVDNEY5QUUwMi9iZDdHb1hFcEl3 N3VfbENLOFJsaS0wd1BiOEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAH9PfIAxa4ENZeyCSUa0UfnJxyLqOUE4w/vpscUnNzDVteSjX6sKTJ Etw2mzAA/xWNOogxsd1687JA8DooQq3HNTdzz+ap+fdqS/uNX9UvFD/Fhzc0i4P0 u9pekavEEMnifM/0tYLGepkN7FCJyWG+35VXWdos1aI5eEAT6Q6k69AVauQOml1c me251Y17yHKTD4kaYRhxolqZL8Q/XZQWZO3CDvnrpg/NnomfXd3LW9hEkn+tyvVw HAIrFQwjW6l9XL7dKvchfMJOaxDxIIMVKlajJ1uk0srvb7sJsyPwQutp7f7F1TPD FpNtbMN7xKTZzUmkvwhk3VWofNa+iq6Q -----END CERTIFICATE-----Generated at Wed May 14 14:31:08 2025 by rpki-client