$ rpki-client -vvf rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.mft File: bBH4O5qMvdIVMt3w6mHek4jRPGs.mft (raw, json) Hash identifier: aDIHsP+qcxFz8L+76KNNcGBLySeXHiMgOcNw/XUwvmY= Subject key identifier: 85:12:3A:5F:A8:B8:38:17:CB:F6:3D:4C:99:41:82:79:95:4C:A7:42 Authority key identifier: 6C:11:F8:3B:9A:8C:BD:D2:15:32:DD:F0:EA:61:DE:93:88:D1:3C:6B Certificate issuer: /CN=A917D958/serialNumber=6C11F83B9A8CBDD21532DDF0EA61DE9388D13C6B Certificate serial: 53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBH4O5qMvdIVMt3w6mHek4jRPGs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.mft Manifest number: 53 Signing time: Tue 13 May 2025 06:27:59 +0000 Manifest this update: Tue 13 May 2025 06:27:59 +0000 Manifest next update: Tue 20 May 2025 06:27:59 +0000 Files and hashes: 1: bBH4O5qMvdIVMt3w6mHek4jRPGs.crl (hash: cLrgnjRDruh6X87FpmcU3UinM1I8d5m6LynZyN45kSQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.crl rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBH4O5qMvdIVMt3w6mHek4jRPGs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 06:27:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 83 (0x53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D958, serialNumber=6C11F83B9A8CBDD21532DDF0EA61DE9388D13C6B Validity Not Before: May 13 06:27:59 2025 GMT Not After : May 20 06:27:59 2025 GMT Subject: CN=6822e66f-6f39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ce:db:75:52:98:a1:ed:2e:b2:55:a9:1e:5f: 81:39:a5:b4:29:20:31:ee:2d:22:9b:b1:28:7f:99: 11:26:38:c9:b3:d8:40:bd:db:10:98:a0:04:84:08: 6c:8b:5f:d6:7d:54:ad:53:52:8e:af:b5:70:0b:54: 2d:c5:6e:8d:e5:25:49:0c:5e:03:8a:dd:c7:44:1d: 32:c5:82:6d:67:a6:3c:3e:25:af:aa:d8:87:54:40: c8:ee:50:6a:e7:4b:4d:58:f1:f5:81:88:77:b9:c5: da:37:a8:99:e1:ff:a2:af:f6:1c:4e:34:f7:34:03: 5e:ce:01:a6:29:a2:e0:e8:d9:40:ea:26:ad:26:a5: 2a:bd:35:21:3c:03:0d:08:93:26:05:d3:05:42:6d: b0:bc:ea:68:6d:77:d5:cb:dd:bb:60:f3:78:04:8d: ae:60:48:68:32:74:8e:7b:0f:e1:5c:f4:79:d1:1d: 45:d2:70:b0:ff:66:63:7b:f7:ed:72:a2:18:10:ab: b1:ba:42:35:37:94:b4:a2:b4:f3:18:58:82:d6:a3: b0:f7:e0:04:35:6c:4b:0f:ee:53:c8:3b:6a:bd:1a: f3:ae:15:a8:55:6c:64:0e:db:10:91:ad:28:e9:46: 3c:83:79:56:6b:47:bf:98:3b:be:69:36:c1:b4:01: 6d:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:12:3A:5F:A8:B8:38:17:CB:F6:3D:4C:99:41:82:79:95:4C:A7:42 X509v3 Authority Key Identifier: keyid:6C:11:F8:3B:9A:8C:BD:D2:15:32:DD:F0:EA:61:DE:93:88:D1:3C:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBH4O5qMvdIVMt3w6mHek4jRPGs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D958/6F628388B39B11EF80F6435EC4F9AE02/bBH4O5qMvdIVMt3w6mHek4jRPGs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:d3:23:66:ee:ef:72:cd:88:37:73:6d:cc:62:05:fc:4e:77: 41:6e:4b:80:39:42:1e:21:1e:88:a7:50:e3:f7:b6:9d:6b:39: 12:0c:c2:b9:39:36:a1:de:ce:48:4d:34:aa:17:7a:30:9c:67: d4:a0:1b:40:4d:06:f0:2a:3b:0f:a6:73:dd:a9:26:de:75:c2: 8d:03:50:ea:4c:8c:ab:dd:53:fb:de:80:49:13:f2:2e:cc:5e: 1d:79:51:c5:34:0c:18:d5:bc:a8:6c:6c:fc:65:24:c0:1a:4e: 41:93:50:a4:85:c3:ae:15:50:dd:a8:99:64:d8:af:8f:7f:55: fd:4e:51:f3:0f:45:24:6e:56:ea:41:29:2c:af:f5:9f:a3:c5: af:ed:77:be:43:fa:95:29:5e:fc:69:5c:1d:77:63:9b:fc:99: d0:ab:1f:02:9b:86:0c:be:88:ac:bf:58:4c:f4:01:6a:c0:58: 05:fb:ed:eb:10:da:6a:80:73:7b:e0:5e:0a:87:70:bb:45:7d: 24:e6:79:19:bf:0c:82:ec:b3:53:de:ce:38:4e:5d:fb:15:37: f3:25:d9:20:e2:c4:54:04:28:1a:5a:88:78:ef:ed:b0:5a:54: 79:38:dd:36:9a:9e:f9:6d:3b:56:01:80:a7:b1:a2:e3:89:5c: a2:0c:5b:3b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RDk1ODExMC8GA1UEBRMoNkMxMUY4M0I5QThDQkREMjE1MzJEREYwRUE2MURFOTM4 OEQxM0M2QjAeFw0yNTA1MTMwNjI3NTlaFw0yNTA1MjAwNjI3NTlaMBgxFjAUBgNV BAMTDTY4MjJlNjZmLTZmMzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+ztt1Upih7S6yVakeX4E5pbQpIDHuLSKbsSh/mREmOMmz2EC92xCYoASECGyL X9Z9VK1TUo6vtXALVC3Fbo3lJUkMXgOK3cdEHTLFgm1npjw+Ja+q2IdUQMjuUGrn S01Y8fWBiHe5xdo3qJnh/6Kv9hxONPc0A17OAaYpouDo2UDqJq0mpSq9NSE8Aw0I kyYF0wVCbbC86mhtd9XL3btg83gEja5gSGgydI57D+Fc9HnRHUXScLD/ZmN79+1y ohgQq7G6QjU3lLSitPMYWILWo7D34AQ1bEsP7lPIO2q9GvOuFahVbGQO2xCRrSjp RjyDeVZrR7+YO75pNsG0AW2HAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUhRI6X6i4 OBfL9j1MmUGCeZVMp0IwHwYDVR0jBBgwFoAUbBH4O5qMvdIVMt3w6mHek4jRPGsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdEOTU4LzZGNjI4Mzg4QjM5 QjExRUY4MEY2NDM1RUM0RjlBRTAyL2JCSDRPNXFNdmRJVk10M3c2bUhlazRqUlBH cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYkJINE81cU12ZElWTXQzdzZtSGVrNGpSUEdzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdE OTU4LzZGNjI4Mzg4QjM5QjExRUY4MEY2NDM1RUM0RjlBRTAyL2JCSDRPNXFNdmRJ Vk10M3c2bUhlazRqUlBHcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAF7TI2bu73LNiDdzbcxiBfxOd0FuS4A5Qh4hHoinUOP3tp1rORIMwrk5 NqHezkhNNKoXejCcZ9SgG0BNBvAqOw+mc92pJt51wo0DUOpMjKvdU/vegEkT8i7M Xh15UcU0DBjVvKhsbPxlJMAaTkGTUKSFw64VUN2omWTYr49/Vf1OUfMPRSRuVupB KSyv9Z+jxa/td75D+pUpXvxpXB13Y5v8mdCrHwKbhgy+iKy/WEz0AWrAWAX77esQ 2mqAc3vgXgqHcLtFfSTmeRm/DILss1PezjhOXfsVN/Ml2SDixFQEKBpaiHjv7bBa VHk43TaanvltO1YBgKexouOJXKIMWzs= -----END CERTIFICATE-----Generated at Wed May 14 06:36:07 2025 by rpki-client