$ rpki-client -vvf rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft File: bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft (raw, json) Hash identifier: 2QebCRgYJ2fuYMA1Jjy5lUp9VfV40FmBHj2GXI7XF1Y= Subject key identifier: F7:A7:11:33:57:97:C6:D8:BB:DB:CF:FB:51:9B:90:9B:A8:B9:AD:0F Authority key identifier: 6F:00:24:6A:85:88:84:8C:3A:17:27:52:F3:2A:E4:EA:30:C6:80:A4 Certificate issuer: /CN=A917983D/serialNumber=6F00246A8588848C3A172752F32AE4EA30C680A4 Certificate serial: 02AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwAkaoWIhIw6FydS8yrk6jDGgKQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft Manifest number: 02A9 Signing time: Thu 15 May 2025 01:29:15 +0000 Manifest this update: Thu 15 May 2025 01:29:14 +0000 Manifest next update: Thu 22 May 2025 01:29:14 +0000 Files and hashes: 1: bwAkaoWIhIw6FydS8yrk6jDGgKQ.crl (hash: 5VCEOwLAJbd7a1sJbkB9lTixHev5+I5gqHXSb7L7rMM=) 2: 1F59A248F69E11EC947BBC5EC4F9AE02.roa (hash: IiOrImghzE2Vpf35rEo7vvLgM62zn5Ft6k44BhxCI6k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.crl rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwAkaoWIhIw6FydS8yrk6jDGgKQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 01:29:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 685 (0x2ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917983D, serialNumber=6F00246A8588848C3A172752F32AE4EA30C680A4 Validity Not Before: May 15 01:29:14 2025 GMT Not After : May 22 01:29:14 2025 GMT Subject: CN=6825436b-3499 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:4e:5d:90:f8:0d:20:8e:14:de:0f:63:0f:32: 1e:a4:47:90:28:05:6f:d0:71:19:bb:7c:04:9b:c1: 26:23:7f:93:e0:db:a0:18:dc:ad:b7:af:d2:87:e8: ab:7e:34:36:21:43:06:6f:cd:f2:23:f2:93:49:e0: 34:a7:b8:a2:92:25:a1:15:27:7e:74:26:49:dd:3b: da:37:05:f2:ab:c5:a7:ef:82:3f:6c:f9:8b:57:4b: 45:05:a0:67:8e:72:b2:fb:df:5b:ab:e5:62:f5:ad: 2f:0f:3b:20:b5:a0:ba:e0:30:71:c8:40:8b:2c:c8: 08:f0:92:e8:41:a3:d3:ef:e6:52:82:f1:4d:a1:f5: 24:d0:eb:b9:27:9a:89:e1:c8:c1:6b:7c:76:67:50: fe:34:4b:1b:1d:66:86:40:19:92:a6:33:c0:80:13: 90:0f:6a:1e:ca:be:bc:aa:ea:41:f6:1e:ce:46:5f: be:d4:9c:9a:23:dc:ca:27:8a:dc:57:42:05:20:c1: 7b:46:a0:bd:58:1c:56:6b:52:10:98:ec:8e:76:7a: 05:56:a8:49:14:0a:29:92:e0:85:6d:c9:77:32:5c: 25:fd:a4:b1:97:c2:2e:34:db:a8:b5:a8:5b:23:49: a7:da:eb:06:56:5e:3a:ad:0f:bd:c7:76:11:e5:9e: 5d:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:A7:11:33:57:97:C6:D8:BB:DB:CF:FB:51:9B:90:9B:A8:B9:AD:0F X509v3 Authority Key Identifier: keyid:6F:00:24:6A:85:88:84:8C:3A:17:27:52:F3:2A:E4:EA:30:C6:80:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwAkaoWIhIw6FydS8yrk6jDGgKQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917983D/4162F44CF69A11ECA7853B59C4F9AE02/bwAkaoWIhIw6FydS8yrk6jDGgKQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:ee:33:40:90:46:a0:e3:a4:86:a9:bb:6b:36:3c:73:b5:5c: 3e:d2:37:00:79:11:43:3e:5c:37:46:6b:8d:0b:4a:c5:f9:b4: c6:fb:e4:ac:3e:d9:11:90:4e:64:c8:7b:ea:74:88:31:d8:e0: 04:3f:9a:39:3f:58:f1:10:54:20:63:f6:6e:dc:30:ed:70:d3: 98:77:45:a8:63:2f:26:bf:64:33:e5:3b:be:b7:ef:f3:d4:ed: 23:c4:bd:2f:71:9f:c8:00:2c:b7:d3:c8:5f:96:17:d3:92:f4: c7:30:9c:c6:51:0a:3c:52:55:cd:d2:5b:47:83:57:d2:5f:28: 32:5e:12:08:cc:d3:ab:86:2b:c3:90:3b:2d:66:f2:80:56:d9: 71:33:5b:90:ce:cb:13:9c:42:36:1e:c1:03:30:52:8d:c0:07: 6b:f3:df:ef:a1:4d:99:75:1d:93:64:c7:3d:bc:c4:63:21:cc: d1:0a:de:16:91:95:2a:b7:e4:b8:be:75:53:54:fe:ea:64:43: 60:c7:9d:3a:45:c9:dd:cb:ca:bb:a0:94:93:67:a8:c0:c2:3a: bf:75:90:05:ce:8d:c3:ad:4a:55:98:13:3b:2e:e7:96:f2:b5: 2a:b7:81:81:be:a1:57:a2:c9:19:ce:d3:9d:5f:7a:ae:53:95: 23:fe:15:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAq0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk4M0QxMTAvBgNVBAUTKDZGMDAyNDZBODU4ODg0OEMzQTE3Mjc1MkYzMkFFNEVB MzBDNjgwQTQwHhcNMjUwNTE1MDEyOTE0WhcNMjUwNTIyMDEyOTE0WjAYMRYwFAYD VQQDEw02ODI1NDM2Yi0zNDk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvE5dkPgNII4U3g9jDzIepEeQKAVv0HEZu3wEm8EmI3+T4NugGNytt6/Sh+ir fjQ2IUMGb83yI/KTSeA0p7iikiWhFSd+dCZJ3TvaNwXyq8Wn74I/bPmLV0tFBaBn jnKy+99bq+Vi9a0vDzsgtaC64DBxyECLLMgI8JLoQaPT7+ZSgvFNofUk0Ou5J5qJ 4cjBa3x2Z1D+NEsbHWaGQBmSpjPAgBOQD2oeyr68qupB9h7ORl++1JyaI9zKJ4rc V0IFIMF7RqC9WBxWa1IQmOyOdnoFVqhJFAopkuCFbcl3Mlwl/aSxl8IuNNuotahb I0mn2usGVl46rQ+9x3YR5Z5d7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPenETNX l8bYu9vP+1GbkJuoua0PMB8GA1UdIwQYMBaAFG8AJGqFiISMOhcnUvMq5OowxoCk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTgzRC80MTYyRjQ0Q0Y2 OUExMUVDQTc4NTNCNTlDNEY5QUUwMi9id0FrYW9XSWhJdzZGeWRTOHlyazZqREdn S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J3QWthb1dJaEl3NkZ5ZFM4eXJrNmpER2dLUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTgzRC80MTYyRjQ0Q0Y2OUExMUVDQTc4NTNCNTlDNEY5QUUwMi9id0FrYW9XSWhJ dzZGeWRTOHlyazZqREdnS1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAe7jNAkEag46SGqbtrNjxztVw+0jcAeRFDPlw3RmuNC0rF+bTG++Ss PtkRkE5kyHvqdIgx2OAEP5o5P1jxEFQgY/Zu3DDtcNOYd0WoYy8mv2Qz5Tu+t+/z 1O0jxL0vcZ/IACy308hflhfTkvTHMJzGUQo8UlXN0ltHg1fSXygyXhIIzNOrhivD kDstZvKAVtlxM1uQzssTnEI2HsEDMFKNwAdr89/voU2ZdR2TZMc9vMRjIczRCt4W kZUqt+S4vnVTVP7qZENgx506Rcndy8q7oJSTZ6jAwjq/dZAFzo3DrUpVmBM7LueW 8rUqt4GBvqFXoskZztOdX3quU5Uj/hXM -----END CERTIFICATE-----Generated at Thu May 15 09:58:52 2025 by rpki-client