$ rpki-client -vvf rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft File: bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft (raw, json) Hash identifier: xDO1qc7ttWWZ8/qak1DDpsWaYcDpMq6JjG+1QYijt+A= Subject key identifier: D0:B6:BB:23:2F:6E:00:E7:2A:D7:43:B7:81:63:6A:0D:26:83:31:4D Authority key identifier: 6F:00:24:6A:85:88:84:8C:3A:17:27:52:F3:2A:E4:EA:30:C6:80:A4 Certificate issuer: /CN=A917983D/serialNumber=6F00246A8588848C3A172752F32AE4EA30C680A4 Certificate serial: 02C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwAkaoWIhIw6FydS8yrk6jDGgKQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft Manifest number: 02C1 Signing time: Thu 03 Jul 2025 01:47:28 +0000 Manifest this update: Thu 03 Jul 2025 01:47:27 +0000 Manifest next update: Thu 10 Jul 2025 01:47:27 +0000 Files and hashes: 1: bwAkaoWIhIw6FydS8yrk6jDGgKQ.crl (hash: UEadPtW6HnOSJo+9bXCMm+cMufFYT5eiCS6KAvl7Fzg=) 2: 1F59A248F69E11EC947BBC5EC4F9AE02.roa (hash: IiOrImghzE2Vpf35rEo7vvLgM62zn5Ft6k44BhxCI6k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.crl rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwAkaoWIhIw6FydS8yrk6jDGgKQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 01:47:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 709 (0x2c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917983D, serialNumber=6F00246A8588848C3A172752F32AE4EA30C680A4 Validity Not Before: Jul 3 01:47:27 2025 GMT Not After : Jul 10 01:47:27 2025 GMT Subject: CN=6865e12f-6196 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d3:4b:93:7c:a4:4a:a2:c7:8b:9b:6b:11:28: 81:bb:5b:f6:67:61:b1:a2:d5:81:80:cf:8b:ae:25: 5d:74:a9:db:38:ab:c4:2e:6c:23:50:c5:02:69:3c: 97:c2:66:d6:14:96:0a:1a:af:5f:33:ae:4c:41:97: 7e:13:99:3a:ca:20:99:b4:f1:22:42:46:60:36:0f: ee:c0:0f:7a:b9:a2:4a:12:83:46:a2:3e:e3:a2:d0: 85:4a:3f:5b:db:44:4d:cc:72:d8:fe:d8:d8:3f:1a: 81:e5:3d:92:07:ae:4d:9a:d8:17:16:07:ce:5a:74: 8b:b1:29:96:5f:c9:de:dd:98:f0:b5:54:ea:b9:43: 5c:d4:8a:20:7f:bb:4e:6f:f1:3f:d8:97:7b:32:d7: a5:d6:2a:d7:4b:03:07:68:72:7c:c6:b7:0d:2c:5f: 20:81:e2:8a:c6:6e:83:4f:12:69:b4:76:5e:59:b9: 16:6f:90:7b:02:31:f0:fe:bd:00:0a:cc:8f:0e:90: 5a:f4:5d:d0:96:c6:a0:69:ef:ad:33:ca:a6:a3:0a: 53:81:aa:8f:cf:f1:e6:b8:d2:4c:fa:0b:30:e0:d2: 50:01:b0:05:59:c6:3c:6a:52:76:55:51:8e:bf:24: 70:1d:f9:ad:6a:5c:51:d9:22:91:af:df:74:e4:f6: 5d:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:B6:BB:23:2F:6E:00:E7:2A:D7:43:B7:81:63:6A:0D:26:83:31:4D X509v3 Authority Key Identifier: keyid:6F:00:24:6A:85:88:84:8C:3A:17:27:52:F3:2A:E4:EA:30:C6:80:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwAkaoWIhIw6FydS8yrk6jDGgKQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:69:ff:6c:91:e1:e5:45:d1:ed:e6:2d:b2:69:79:ab:70:54: fc:cd:96:84:e5:65:cb:e5:97:26:50:82:00:8d:f3:41:22:ca: 0d:19:bc:54:bf:57:fd:18:b1:02:10:7e:4d:25:16:02:de:f6: 2b:c3:48:9b:86:e5:1b:a4:53:9c:5b:2e:1c:8e:cb:06:00:fe: 3e:b4:8c:0a:b1:e7:86:61:97:45:6b:43:21:a1:fe:19:ab:6b: 68:4b:59:ee:1f:c0:ec:c4:40:c5:ff:87:43:d5:e3:84:75:58: ca:d2:81:64:44:1c:af:63:77:4d:21:da:a4:e7:4a:6a:b3:53: fc:8c:1f:0b:49:21:9a:aa:6b:a3:20:3c:e3:f4:e8:b4:0e:7d: 3c:bf:d3:20:b7:17:b1:7a:c7:5c:05:dd:cf:a2:42:7d:53:58: fc:cf:cb:14:c2:ea:e2:28:ab:71:e0:9b:40:82:88:83:90:36: 11:ee:c0:a9:3c:3b:36:05:73:7c:cb:4c:b1:dc:ab:99:63:b1: c7:fd:74:08:4d:3b:72:e3:f3:5d:f9:c0:5f:e5:be:1c:31:93: 14:23:d9:fc:52:c5:09:70:cf:24:c2:15:68:a9:41:2a:21:94: 08:70:3c:a1:73:51:cf:08:64:fb:15:ca:4a:92:98:00:9a:2d: 40:f8:05:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAsUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk4M0QxMTAvBgNVBAUTKDZGMDAyNDZBODU4ODg0OEMzQTE3Mjc1MkYzMkFFNEVB MzBDNjgwQTQwHhcNMjUwNzAzMDE0NzI3WhcNMjUwNzEwMDE0NzI3WjAYMRYwFAYD VQQDEw02ODY1ZTEyZi02MTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqdNLk3ykSqLHi5trESiBu1v2Z2GxotWBgM+LriVddKnbOKvELmwjUMUCaTyX wmbWFJYKGq9fM65MQZd+E5k6yiCZtPEiQkZgNg/uwA96uaJKEoNGoj7jotCFSj9b 20RNzHLY/tjYPxqB5T2SB65NmtgXFgfOWnSLsSmWX8ne3ZjwtVTquUNc1Iogf7tO b/E/2Jd7Mtel1irXSwMHaHJ8xrcNLF8ggeKKxm6DTxJptHZeWbkWb5B7AjHw/r0A CsyPDpBa9F3Qlsagae+tM8qmowpTgaqPz/HmuNJM+gsw4NJQAbAFWcY8alJ2VVGO vyRwHfmtalxR2SKRr9905PZdwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNC2uyMv bgDnKtdDt4Fjag0mgzFNMB8GA1UdIwQYMBaAFG8AJGqFiISMOhcnUvMq5OowxoCk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTgzRC80MTYyRjQ0Q0Y2 OUExMUVDQTc4NTNCNTlDNEY5QUUwMi9id0FrYW9XSWhJdzZGeWRTOHlyazZqREdn S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J3QWthb1dJaEl3NkZ5ZFM4eXJrNmpER2dLUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTgzRC80MTYyRjQ0Q0Y2OUExMUVDQTc4NTNCNTlDNEY5QUUwMi9id0FrYW9XSWhJ dzZGeWRTOHlyazZqREdnS1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoaf9skeHlRdHt5i2yaXmrcFT8zZaE5WXL5ZcmUIIAjfNBIsoNGbxU v1f9GLECEH5NJRYC3vYrw0ibhuUbpFOcWy4cjssGAP4+tIwKseeGYZdFa0Mhof4Z q2toS1nuH8DsxEDF/4dD1eOEdVjK0oFkRByvY3dNIdqk50pqs1P8jB8LSSGaqmuj IDzj9Oi0Dn08v9MgtxexesdcBd3PokJ9U1j8z8sUwuriKKtx4JtAgoiDkDYR7sCp PDs2BXN8y0yx3KuZY7HH/XQITTty4/Nd+cBf5b4cMZMUI9n8UsUJcM8kwhVoqUEq IZQIcDyhc1HPCGT7FcpKkpgAmi1A+AVN -----END CERTIFICATE-----Generated at Thu Jul 3 06:09:04 2025 by rpki-client