$ rpki-client -vvf rpki.apnic.net/member_repository/A916F536/EAAEDED0898A11ECB6A4F70BC4F9AE02/bailJkp9xvzYjT1M3PSGecJi9w4.mft File: bailJkp9xvzYjT1M3PSGecJi9w4.mft (raw, json) Hash identifier: Wr7n6GfbArF2lAOxVas4TZlnw8xHUew6dT4sjhJNKxo= Subject key identifier: 27:F9:2C:A4:AB:02:6C:35:9D:1F:90:FF:79:BE:AD:B6:80:DF:9A:4F Authority key identifier: 6D:A8:A5:26:4A:7D:C6:FC:D8:8D:3D:4C:DC:F4:86:79:C2:62:F7:0E Certificate issuer: /CN=A916F536/serialNumber=6DA8A5264A7DC6FCD88D3D4CDCF48679C262F70E Certificate serial: 03DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bailJkp9xvzYjT1M3PSGecJi9w4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916F536/EAAEDED0898A11ECB6A4F70BC4F9AE02/bailJkp9xvzYjT1M3PSGecJi9w4.mft Manifest number: 03D7 Signing time: Tue 01 Jul 2025 01:10:09 +0000 Manifest this update: Tue 01 Jul 2025 01:10:08 +0000 Manifest next update: Tue 08 Jul 2025 01:10:08 +0000 Files and hashes: 1: bailJkp9xvzYjT1M3PSGecJi9w4.crl (hash: 4kVvdnxN5lCVJR432urTYgfCvqWs+UoCcz5HLCu+WQo=) 2: 07C387B6898E11EC9543A60FC4F9AE02.roa (hash: Z8nOZSdO25Utl4pPDw4ubtfpNujKkQIc0psO5bVfVdM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916F536/EAAEDED0898A11ECB6A4F70BC4F9AE02/bailJkp9xvzYjT1M3PSGecJi9w4.crl rsync://rpki.apnic.net/member_repository/A916F536/EAAEDED0898A11ECB6A4F70BC4F9AE02/bailJkp9xvzYjT1M3PSGecJi9w4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bailJkp9xvzYjT1M3PSGecJi9w4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 01:10:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 987 (0x3db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916F536, serialNumber=6DA8A5264A7DC6FCD88D3D4CDCF48679C262F70E Validity Not Before: Jul 1 01:10:08 2025 GMT Not After : Jul 8 01:10:08 2025 GMT Subject: CN=68633570-f78e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:52:e9:39:26:0a:5f:79:84:51:33:3e:59:de: 12:56:55:99:bc:8f:1e:fe:64:f8:70:f7:8d:9a:72: 39:61:7a:05:9b:f5:38:bb:55:d4:75:4f:78:91:1e: 57:ca:1d:8e:f1:06:0f:e1:ca:53:5b:82:b9:ee:06: b2:b7:ab:ad:81:fa:9a:15:a2:a7:a3:d1:65:61:d8: 0f:c7:0a:fb:93:2e:73:6e:46:a6:a9:a5:76:06:c8: 57:71:ec:40:a3:1f:ab:54:ac:1f:7b:5d:87:26:dd: 19:2d:a9:ed:9c:d8:d0:ef:21:24:2c:d0:30:c6:78: 2b:09:62:ff:14:88:cb:91:f3:70:c1:69:a1:f8:85: 44:c4:c9:99:61:53:e5:0b:11:67:e9:b8:06:9e:a8: f2:2e:ab:19:f2:84:b9:b5:50:ed:74:b0:4d:92:eb: ae:eb:4b:b2:03:83:a2:38:de:7f:b4:d5:65:66:35: e0:38:eb:db:5d:cd:c1:47:52:49:2c:97:c5:3b:64: d3:7d:ad:96:b9:d0:1f:35:0d:e9:d3:db:b5:5d:3d: e0:04:59:84:57:03:b5:25:6c:2a:a4:45:ca:0d:49: 6b:0b:66:6c:96:26:45:53:8b:75:4a:2d:b4:03:96: 56:cd:b7:04:c2:83:0a:a6:4b:06:44:89:46:12:b5: d3:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:F9:2C:A4:AB:02:6C:35:9D:1F:90:FF:79:BE:AD:B6:80:DF:9A:4F X509v3 Authority Key Identifier: keyid:6D:A8:A5:26:4A:7D:C6:FC:D8:8D:3D:4C:DC:F4:86:79:C2:62:F7:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916F536/EAAEDED0898A11ECB6A4F70BC4F9AE02/bailJkp9xvzYjT1M3PSGecJi9w4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bailJkp9xvzYjT1M3PSGecJi9w4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916F536/EAAEDED0898A11ECB6A4F70BC4F9AE02/bailJkp9xvzYjT1M3PSGecJi9w4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:a6:1f:0c:e9:d6:2c:ed:aa:e7:f2:18:e6:9d:3e:95:6a:fb: 9b:27:ae:dc:b0:cd:ab:d0:96:bb:04:45:06:ff:68:f5:fc:17: 50:04:e5:a9:23:58:98:25:7c:8d:02:d8:d9:3f:ab:ae:a1:b0: 95:7a:a9:21:de:d5:fe:3f:dc:17:ef:7c:19:a4:39:cd:c1:d4: 88:17:3d:cb:9d:f3:d4:ab:4d:1c:05:9c:cf:a4:d1:27:01:5c: db:9a:fc:7c:1b:8f:36:3c:35:15:1a:a7:f0:b9:b4:03:03:30: 34:1f:8e:99:ab:ac:54:5e:ef:16:19:be:5b:3d:d9:47:b7:bf: 49:14:ab:a9:66:12:8d:5c:85:b5:5d:1d:ab:87:91:e8:58:6e: ca:76:c6:18:4d:63:e7:13:39:f1:b7:9e:45:ff:68:c2:b6:a1: d9:70:85:36:0b:e7:9d:f2:83:b3:44:e0:d8:01:ad:5e:ad:82: aa:e8:16:09:5e:8f:ad:37:8e:ef:33:31:df:6e:3f:87:5a:25: bb:61:4a:33:38:17:4b:b9:f4:b3:4b:36:12:93:f0:1c:7b:ea: 52:0a:e6:8a:0a:0f:24:2a:6d:92:0a:aa:1c:c7:6b:fa:1c:4e: 8a:2e:4f:9e:11:8d:60:c2:54:39:a8:f4:44:62:9d:d5:2e:9b: 87:a1:6b:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkY1MzYxMTAvBgNVBAUTKDZEQThBNTI2NEE3REM2RkNEODhEM0Q0Q0RDRjQ4Njc5 QzI2MkY3MEUwHhcNMjUwNzAxMDExMDA4WhcNMjUwNzA4MDExMDA4WjAYMRYwFAYD VQQDEw02ODYzMzU3MC1mNzhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1VLpOSYKX3mEUTM+Wd4SVlWZvI8e/mT4cPeNmnI5YXoFm/U4u1XUdU94kR5X yh2O8QYP4cpTW4K57gayt6utgfqaFaKno9FlYdgPxwr7ky5zbkamqaV2BshXcexA ox+rVKwfe12HJt0ZLantnNjQ7yEkLNAwxngrCWL/FIjLkfNwwWmh+IVExMmZYVPl CxFn6bgGnqjyLqsZ8oS5tVDtdLBNkuuu60uyA4OiON5/tNVlZjXgOOvbXc3BR1JJ LJfFO2TTfa2WudAfNQ3p09u1XT3gBFmEVwO1JWwqpEXKDUlrC2ZsliZFU4t1Si20 A5ZWzbcEwoMKpksGRIlGErXTDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCf5LKSr Amw1nR+Q/3m+rbaA35pPMB8GA1UdIwQYMBaAFG2opSZKfcb82I09TNz0hnnCYvcO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RjUzNi9FQUFFREVEMDg5 OEExMUVDQjZBNEY3MEJDNEY5QUUwMi9iYWlsSmtwOXh2ellqVDFNM1BTR2VjSmk5 dzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JhaWxKa3A5eHZ6WWpUMU0zUFNHZWNKaTl3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RjUzNi9FQUFFREVEMDg5OEExMUVDQjZBNEY3MEJDNEY5QUUwMi9iYWlsSmtwOXh2 ellqVDFNM1BTR2VjSmk5dzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnph8M6dYs7arn8hjmnT6VavubJ67csM2r0Ja7BEUG/2j1/BdQBOWp I1iYJXyNAtjZP6uuobCVeqkh3tX+P9wX73wZpDnNwdSIFz3LnfPUq00cBZzPpNEn AVzbmvx8G482PDUVGqfwubQDAzA0H46Zq6xUXu8WGb5bPdlHt79JFKupZhKNXIW1 XR2rh5HoWG7KdsYYTWPnEznxt55F/2jCtqHZcIU2C+ed8oOzRODYAa1erYKq6BYJ Xo+tN47vMzHfbj+HWiW7YUozOBdLufSzSzYSk/Ace+pSCuaKCg8kKm2SCqocx2v6 HE6KLk+eEY1gwlQ5qPREYp3VLpuHoWu4 -----END CERTIFICATE-----Generated at Thu Jul 3 02:08:33 2025 by rpki-client