$ rpki-client -vvf rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.mft File: BPDYqTArIrYOMPRlG4KumZ_3TJs.mft (raw, json) Hash identifier: t2+WPkKXGmCEKtFLSILCO7ptJPcInsWl0VHzZQPHozE= Subject key identifier: 22:2A:9A:C5:6B:D8:D6:89:83:0B:1A:74:28:4B:2B:42:FB:E8:69:2A Authority key identifier: 04:F0:D8:A9:30:2B:22:B6:0E:30:F4:65:1B:82:AE:99:9F:F7:4C:9B Certificate issuer: /CN=A9171882/serialNumber=04F0D8A9302B22B60E30F4651B82AE999FF74C9B Certificate serial: D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BPDYqTArIrYOMPRlG4KumZ_3TJs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.mft Manifest number: CF Signing time: Sun 11 May 2025 04:29:07 +0000 Manifest this update: Sun 11 May 2025 04:29:06 +0000 Manifest next update: Sun 18 May 2025 04:29:06 +0000 Files and hashes: 1: BPDYqTArIrYOMPRlG4KumZ_3TJs.crl (hash: jSTLqpKdIi6PLvHKPHLqwOmtEZO0ClXuTRy/Foxpf5Y=) 2: 08D1870EF0B411EE962EE784C4F9AE02.roa (hash: nrFzYe2K6I+fVS0WsJAv1h0mXVgQBFKENnTmsnUT3Jo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.crl rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BPDYqTArIrYOMPRlG4KumZ_3TJs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 04:29:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 209 (0xd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171882, serialNumber=04F0D8A9302B22B60E30F4651B82AE999FF74C9B Validity Not Before: May 11 04:29:06 2025 GMT Not After : May 18 04:29:06 2025 GMT Subject: CN=68202793-d62d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:22:02:51:4c:96:e5:19:d5:0d:dc:93:18:08: d0:06:9b:fc:24:71:5f:2a:96:0b:cd:05:6b:4e:b8: b8:58:77:7e:59:28:6b:bb:a7:55:ac:16:d5:0d:bd: f9:b7:58:49:49:25:2d:75:ae:76:b2:f7:95:3f:3f: a1:24:66:68:f4:40:01:71:e2:b3:fb:27:32:e6:c7: 4e:58:81:3a:93:0d:65:4a:08:09:e6:5e:2e:da:0a: 1b:c5:47:23:82:98:42:c3:89:b6:f0:67:67:48:e7: 88:77:37:06:db:5e:e7:05:97:b1:38:77:1e:b4:2b: 93:0b:a4:cd:61:13:0e:ec:d2:25:94:99:e8:db:11: 7c:a5:ec:17:72:5e:49:b5:01:a5:b0:29:7f:4b:a0: 9e:b2:7d:58:f3:32:f1:a2:f0:e0:96:0a:fa:e6:05: d3:d4:b9:06:52:96:58:98:2f:ba:3f:14:ce:2a:7a: 65:dc:82:b5:4a:77:de:ac:03:30:74:9c:5e:6a:31: eb:d8:b4:4f:fd:fd:63:5c:f1:ca:80:f3:f8:dd:85: 51:63:7e:2e:7c:b3:b4:47:98:95:fe:14:10:a3:3b: 77:70:8f:b1:9b:c3:b5:09:a5:81:40:cf:e6:9a:98: 5b:81:19:e6:42:fb:a6:45:c7:77:cc:5a:f7:ee:f1: 86:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:2A:9A:C5:6B:D8:D6:89:83:0B:1A:74:28:4B:2B:42:FB:E8:69:2A X509v3 Authority Key Identifier: keyid:04:F0:D8:A9:30:2B:22:B6:0E:30:F4:65:1B:82:AE:99:9F:F7:4C:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BPDYqTArIrYOMPRlG4KumZ_3TJs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171882/B238A184F0B311EEA4C72F84C4F9AE02/BPDYqTArIrYOMPRlG4KumZ_3TJs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:fc:ce:60:51:6b:be:cb:a4:5c:f1:1b:16:01:93:08:69:4e: 90:06:dc:02:f1:d6:b5:4c:10:64:a3:5d:87:8c:92:23:53:1a: 73:aa:38:47:e7:dc:bb:bc:42:63:e2:38:19:81:9c:36:d8:07: b5:f7:1a:d4:8b:de:ea:93:fd:a0:b5:b0:b8:f2:a0:e8:4d:20: 06:68:72:5c:77:48:79:95:55:f2:0c:da:63:4c:c1:d0:b5:3a: 60:d8:a6:72:9b:40:d7:69:a0:ee:0b:2c:e9:4c:49:81:9d:c7: 49:de:43:c6:eb:eb:a7:83:3b:97:d5:6a:6e:72:fd:bf:85:4a: c2:27:99:39:01:db:64:f6:4a:6e:a8:b6:79:4b:52:ba:30:16: d5:99:14:4d:eb:68:c7:25:cd:ca:0b:b3:04:cc:5b:d1:f6:17: 65:2f:af:c5:cb:6a:4e:62:66:79:52:93:ab:e3:e3:76:45:61: 31:ef:93:5b:26:81:8f:9d:67:1e:70:69:99:2f:fc:5e:b8:a3: f8:06:e3:75:ca:26:f3:d9:16:c5:f4:4a:9a:72:63:c6:e2:c6: c8:5d:f5:21:63:73:00:31:45:b4:b8:86:55:7f:c5:9b:39:4b: 5f:fe:56:83:ae:8c:38:1e:1f:a8:41:18:c2:c9:ea:f1:07:fa: 85:72:cc:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE4ODIxMTAvBgNVBAUTKDA0RjBEOEE5MzAyQjIyQjYwRTMwRjQ2NTFCODJBRTk5 OUZGNzRDOUIwHhcNMjUwNTExMDQyOTA2WhcNMjUwNTE4MDQyOTA2WjAYMRYwFAYD VQQDEw02ODIwMjc5My1kNjJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArCICUUyW5RnVDdyTGAjQBpv8JHFfKpYLzQVrTri4WHd+WShru6dVrBbVDb35 t1hJSSUtda52sveVPz+hJGZo9EABceKz+ycy5sdOWIE6kw1lSggJ5l4u2gobxUcj gphCw4m28GdnSOeIdzcG217nBZexOHcetCuTC6TNYRMO7NIllJno2xF8pewXcl5J tQGlsCl/S6Cesn1Y8zLxovDglgr65gXT1LkGUpZYmC+6PxTOKnpl3IK1SnferAMw dJxeajHr2LRP/f1jXPHKgPP43YVRY34ufLO0R5iV/hQQozt3cI+xm8O1CaWBQM/m mphbgRnmQvumRcd3zFr37vGGzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCIqmsVr 2NaJgwsadChLK0L76GkqMB8GA1UdIwQYMBaAFATw2KkwKyK2DjD0ZRuCrpmf90yb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTg4Mi9CMjM4QTE4NEYw QjMxMUVFQTRDNzJGODRDNEY5QUUwMi9CUERZcVRBcklyWU9NUFJsRzRLdW1aXzNU SnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JQRFlxVEFySXJZT01QUmxHNEt1bVpfM1RKcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTg4Mi9CMjM4QTE4NEYwQjMxMUVFQTRDNzJGODRDNEY5QUUwMi9CUERZcVRBckly WU9NUFJsRzRLdW1aXzNUSnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBk/M5gUWu+y6Rc8RsWAZMIaU6QBtwC8da1TBBko12HjJIjUxpzqjhH 59y7vEJj4jgZgZw22Ae19xrUi97qk/2gtbC48qDoTSAGaHJcd0h5lVXyDNpjTMHQ tTpg2KZym0DXaaDuCyzpTEmBncdJ3kPG6+ungzuX1Wpucv2/hUrCJ5k5Adtk9kpu qLZ5S1K6MBbVmRRN62jHJc3KC7MEzFvR9hdlL6/Fy2pOYmZ5UpOr4+N2RWEx75Nb JoGPnWcecGmZL/xeuKP4BuN1yibz2RbF9EqacmPG4sbIXfUhY3MAMUW0uIZVf8Wb OUtf/laDrow4Hh+oQRjCyerxB/qFcszd -----END CERTIFICATE-----Generated at Mon May 12 22:13:09 2025 by rpki-client