$ rpki-client -vvf rpki.apnic.net/member_repository/A916F536/EAAEDED0898A11ECB6A4F70BC4F9AE02/bailJkp9xvzYjT1M3PSGecJi9w4.mft File: bailJkp9xvzYjT1M3PSGecJi9w4.mft (raw, json) Hash identifier: zJMryeodsZJ4+/hv2AnegN5Gye3n7vv/a0J5LWMaP8E= Subject key identifier: 31:4B:76:D7:DE:F8:4D:E5:30:66:E1:BB:73:E0:A7:DA:54:26:F5:AD Authority key identifier: 6D:A8:A5:26:4A:7D:C6:FC:D8:8D:3D:4C:DC:F4:86:79:C2:62:F7:0E Certificate issuer: /CN=A916F536/serialNumber=6DA8A5264A7DC6FCD88D3D4CDCF48679C262F70E Certificate serial: 03C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bailJkp9xvzYjT1M3PSGecJi9w4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916F536/EAAEDED0898A11ECB6A4F70BC4F9AE02/bailJkp9xvzYjT1M3PSGecJi9w4.mft Manifest number: 03BF Signing time: Tue 13 May 2025 00:27:39 +0000 Manifest this update: Tue 13 May 2025 00:27:38 +0000 Manifest next update: Tue 20 May 2025 00:27:38 +0000 Files and hashes: 1: bailJkp9xvzYjT1M3PSGecJi9w4.crl (hash: m2yWFOqyrupjjK07x+IeLu5f1Vn3JuMg0WpONFN28LA=) 2: 07C387B6898E11EC9543A60FC4F9AE02.roa (hash: Z8nOZSdO25Utl4pPDw4ubtfpNujKkQIc0psO5bVfVdM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916F536/EAAEDED0898A11ECB6A4F70BC4F9AE02/bailJkp9xvzYjT1M3PSGecJi9w4.crl rsync://rpki.apnic.net/member_repository/A916F536/EAAEDED0898A11ECB6A4F70BC4F9AE02/bailJkp9xvzYjT1M3PSGecJi9w4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bailJkp9xvzYjT1M3PSGecJi9w4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 00:27:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 963 (0x3c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916F536, serialNumber=6DA8A5264A7DC6FCD88D3D4CDCF48679C262F70E Validity Not Before: May 13 00:27:38 2025 GMT Not After : May 20 00:27:38 2025 GMT Subject: CN=682291fa-313d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:71:9a:7a:44:81:c6:63:57:10:2b:33:67:9d: c4:9a:b3:37:ba:1c:46:fe:3e:24:2a:07:d0:5a:21: 25:a8:4e:f9:b4:72:f6:45:af:7b:b2:91:10:ef:18: da:a7:fa:88:6d:d8:4b:2a:99:c6:8c:a8:a8:4e:f1: 8a:1d:14:e2:a0:5a:3f:bc:ed:04:77:ca:58:45:ba: dc:48:16:b5:04:4c:d4:ec:06:41:ae:a3:89:f3:ed: 7e:5c:11:33:88:30:84:a1:e8:05:b4:28:db:b8:3d: 80:60:eb:8b:fd:9d:63:9c:43:d8:1c:e4:0b:52:c5: f0:74:6b:18:b3:de:b2:5e:51:76:6f:75:4a:c6:c9: 78:3a:bd:1c:df:e6:01:33:ba:8d:3f:a0:f7:b4:67: 2a:8e:df:a2:13:42:59:32:aa:e1:4e:32:6e:bd:31: c9:85:ea:11:8a:bb:61:9a:a7:2b:18:bb:b2:e6:f0: 17:55:14:fd:08:9a:ee:b4:3a:ab:ac:c5:6e:cd:e1: d5:9a:a4:10:ac:9a:8b:d1:b2:1d:95:be:aa:2e:cc: 47:8e:82:6c:6a:e7:5a:54:1c:24:bd:3d:e8:9f:9c: c2:97:46:97:1d:f2:a1:23:08:e6:cd:be:dd:c6:1d: 39:c6:ff:c2:08:53:62:41:a6:05:36:80:b7:54:1a: 60:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:4B:76:D7:DE:F8:4D:E5:30:66:E1:BB:73:E0:A7:DA:54:26:F5:AD X509v3 Authority Key Identifier: keyid:6D:A8:A5:26:4A:7D:C6:FC:D8:8D:3D:4C:DC:F4:86:79:C2:62:F7:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916F536/EAAEDED0898A11ECB6A4F70BC4F9AE02/bailJkp9xvzYjT1M3PSGecJi9w4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bailJkp9xvzYjT1M3PSGecJi9w4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916F536/EAAEDED0898A11ECB6A4F70BC4F9AE02/bailJkp9xvzYjT1M3PSGecJi9w4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:4d:c1:36:2b:62:04:ea:bb:f4:22:cc:42:1a:8b:9b:0b:85: 39:e4:2e:50:d6:82:6b:62:f4:c8:ab:bc:44:bb:9e:7e:ab:fe: 7f:53:a0:1c:57:e3:ae:7b:98:b8:8d:57:48:c7:20:3a:b8:32: e7:4f:3a:39:c6:c1:51:cb:0e:81:bb:1f:d0:98:d9:97:20:1b: b9:c5:b9:5c:8e:76:51:f4:eb:80:24:76:66:f5:b6:4e:84:a6: 33:df:8d:7f:45:8a:7d:0e:af:21:3f:ae:94:67:1d:e3:07:3c: 47:6f:5b:0e:5c:f6:b4:9b:a5:56:8d:ed:75:c3:fa:b5:03:67: d5:48:ca:24:6c:a0:76:3d:7d:74:13:df:d3:68:75:ac:c5:13: a9:f2:0b:21:f7:8e:b5:0c:3f:e6:fe:5b:05:ca:3a:27:a4:8c: e7:d3:61:d8:49:ac:99:2a:08:75:4b:3f:72:7e:42:5d:ff:a9: 4b:16:99:7f:16:4b:a1:52:cb:3f:8b:6e:e9:25:95:e0:5e:da: 97:5b:86:65:8e:4f:c5:2c:ff:13:7b:33:ba:20:00:32:3d:d7: a8:e2:ec:a1:73:05:af:58:d1:df:33:47:42:08:5b:1f:06:01: 2e:52:16:83:48:91:65:5e:82:0c:d0:9e:1b:24:6f:ec:26:67: 70:06:b3:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA8MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkY1MzYxMTAvBgNVBAUTKDZEQThBNTI2NEE3REM2RkNEODhEM0Q0Q0RDRjQ4Njc5 QzI2MkY3MEUwHhcNMjUwNTEzMDAyNzM4WhcNMjUwNTIwMDAyNzM4WjAYMRYwFAYD VQQDEw02ODIyOTFmYS0zMTNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1nGaekSBxmNXECszZ53EmrM3uhxG/j4kKgfQWiElqE75tHL2Ra97spEQ7xja p/qIbdhLKpnGjKioTvGKHRTioFo/vO0Ed8pYRbrcSBa1BEzU7AZBrqOJ8+1+XBEz iDCEoegFtCjbuD2AYOuL/Z1jnEPYHOQLUsXwdGsYs96yXlF2b3VKxsl4Or0c3+YB M7qNP6D3tGcqjt+iE0JZMqrhTjJuvTHJheoRirthmqcrGLuy5vAXVRT9CJrutDqr rMVuzeHVmqQQrJqL0bIdlb6qLsxHjoJsaudaVBwkvT3on5zCl0aXHfKhIwjmzb7d xh05xv/CCFNiQaYFNoC3VBpg2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDFLdtfe +E3lMGbhu3Pgp9pUJvWtMB8GA1UdIwQYMBaAFG2opSZKfcb82I09TNz0hnnCYvcO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RjUzNi9FQUFFREVEMDg5 OEExMUVDQjZBNEY3MEJDNEY5QUUwMi9iYWlsSmtwOXh2ellqVDFNM1BTR2VjSmk5 dzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JhaWxKa3A5eHZ6WWpUMU0zUFNHZWNKaTl3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RjUzNi9FQUFFREVEMDg5OEExMUVDQjZBNEY3MEJDNEY5QUUwMi9iYWlsSmtwOXh2 ellqVDFNM1BTR2VjSmk5dzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoTcE2K2IE6rv0IsxCGoubC4U55C5Q1oJrYvTIq7xEu55+q/5/U6Ac V+Oue5i4jVdIxyA6uDLnTzo5xsFRyw6Bux/QmNmXIBu5xblcjnZR9OuAJHZm9bZO hKYz341/RYp9Dq8hP66UZx3jBzxHb1sOXPa0m6VWje11w/q1A2fVSMokbKB2PX10 E9/TaHWsxROp8gsh9461DD/m/lsFyjonpIzn02HYSayZKgh1Sz9yfkJd/6lLFpl/ FkuhUss/i27pJZXgXtqXW4Zljk/FLP8TezO6IAAyPdeo4uyhcwWvWNHfM0dCCFsf BgEuUhaDSJFlXoIM0J4bJG/sJmdwBrMe -----END CERTIFICATE-----Generated at Wed May 14 20:59:39 2025 by rpki-client