$ rpki-client -vvf rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.mft File: bZYGiLbecUGnIYmOngc-FneP7zU.mft (raw, json) Hash identifier: oMTPnNKJdPDFGsny6t6bPqhIsyCI5YC2c+VoYY2WN4o= Subject key identifier: D5:35:56:EB:45:E1:46:D5:DE:13:00:B2:85:89:75:ED:96:F3:B3:B8 Authority key identifier: 6D:96:06:88:B6:DE:71:41:A7:21:89:8E:9E:07:3E:16:77:8F:EF:35 Certificate issuer: /CN=A9197A8F/serialNumber=6D960688B6DE7141A721898E9E073E16778FEF35 Certificate serial: 013B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bZYGiLbecUGnIYmOngc-FneP7zU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.mft Manifest number: 0137 Signing time: Tue 13 May 2025 03:41:58 +0000 Manifest this update: Tue 13 May 2025 03:41:58 +0000 Manifest next update: Tue 20 May 2025 03:41:58 +0000 Files and hashes: 1: bZYGiLbecUGnIYmOngc-FneP7zU.crl (hash: gVDwSr74Gki9FgdzVU3/X50OXHvYLt5Ft5wbZbImSrA=) 2: A663285A59DE11EE85CFCB12C4F9AE02.roa (hash: X/pG7qc3+7qr+qWCl38L4oCPzOU3+0jR+niOHWQizTQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.crl rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bZYGiLbecUGnIYmOngc-FneP7zU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 03:41:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 315 (0x13b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197A8F, serialNumber=6D960688B6DE7141A721898E9E073E16778FEF35 Validity Not Before: May 13 03:41:58 2025 GMT Not After : May 20 03:41:58 2025 GMT Subject: CN=6822bf86-f64e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:79:42:26:87:94:e0:67:1d:8b:ee:79:5a:c5: ec:27:d9:3b:7c:dd:d6:c1:ad:25:e4:14:72:1d:19: 01:a3:3d:2f:2a:2a:c4:cc:69:7a:24:18:31:e6:00: 95:80:d5:f5:35:e4:82:eb:89:22:2b:2d:58:17:51: 54:cd:90:f8:cf:ed:df:ad:27:25:0c:da:83:13:1b: 69:42:50:58:67:5e:2c:1a:61:74:67:ef:9d:20:13: c2:fe:3f:a9:40:37:31:e1:0a:83:92:3b:49:ff:95: c2:ea:d6:1d:fa:90:4e:03:af:c7:5f:c7:a0:18:2a: d0:fc:ac:77:7c:1d:51:31:f7:5c:65:5b:08:a4:ce: 66:ef:b4:a7:74:fa:78:54:05:97:4b:8a:99:55:a6: 8f:25:55:05:7d:20:c5:e5:1e:ff:c9:2c:5e:4a:c8: b0:8b:50:3b:eb:b8:c5:45:c9:18:38:06:50:f8:39: e9:f8:83:8e:46:cf:4f:47:25:19:8f:39:ca:e7:b8: 43:8a:50:c6:bc:98:42:9b:1b:b6:5f:a8:b9:62:c1: ad:2f:ef:21:cc:29:49:30:0a:7f:68:41:78:0c:58: 40:03:ee:5f:d0:40:9c:a6:c1:a2:ef:9c:4b:f2:81: 5d:b4:79:cc:07:60:8f:ac:a5:43:d6:b9:94:de:ae: 77:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:35:56:EB:45:E1:46:D5:DE:13:00:B2:85:89:75:ED:96:F3:B3:B8 X509v3 Authority Key Identifier: keyid:6D:96:06:88:B6:DE:71:41:A7:21:89:8E:9E:07:3E:16:77:8F:EF:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bZYGiLbecUGnIYmOngc-FneP7zU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197A8F/63ACD5F459DB11EEA737FE0AC4F9AE02/bZYGiLbecUGnIYmOngc-FneP7zU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:bf:35:80:1a:58:c6:25:61:32:93:cf:bc:84:b5:7c:f0:3f: 7d:12:7a:41:f0:a1:31:07:6c:f9:22:49:b0:47:ae:6d:a6:4f: fa:50:6a:e9:f4:43:05:fc:d8:5c:c5:20:88:ac:95:db:33:93: 75:c4:9d:c5:1c:7d:a9:ec:e0:cf:ca:e2:c7:84:88:d4:7b:72: a7:0d:a1:61:c2:c7:4f:a2:c7:e7:01:a0:90:7a:f2:0e:68:f7: 0d:a3:c8:61:e2:82:6d:0f:57:b4:e7:d2:11:3c:57:03:45:a1: cb:d2:4f:f9:24:9c:94:74:3e:80:8b:0a:07:1a:ce:f9:1e:b7: 3f:2d:93:ed:d8:24:93:bb:7e:52:56:23:b0:93:b6:36:e4:6f: 2a:df:7b:f9:af:40:8c:8d:c9:47:2f:49:77:26:2f:54:15:e2: ec:fb:60:9d:5c:0e:d1:70:d5:9a:26:26:de:ce:d9:a2:7a:9a: 94:61:eb:5d:7a:9f:e8:21:69:06:06:10:e8:cc:92:83:db:96: 97:73:f6:12:7a:22:44:03:38:d8:90:05:ea:ee:50:95:53:29: 5b:87:6e:3b:85:f0:3b:ec:70:c8:ec:d0:08:d7:d6:0c:0f:61: ca:e6:65:6a:ac:5f:0c:bd:98:d8:01:ee:b7:c3:d5:8f:7a:7b: 78:7f:bc:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdBOEYxMTAvBgNVBAUTKDZEOTYwNjg4QjZERTcxNDFBNzIxODk4RTlFMDczRTE2 Nzc4RkVGMzUwHhcNMjUwNTEzMDM0MTU4WhcNMjUwNTIwMDM0MTU4WjAYMRYwFAYD VQQDEw02ODIyYmY4Ni1mNjRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuXlCJoeU4Gcdi+55WsXsJ9k7fN3Wwa0l5BRyHRkBoz0vKirEzGl6JBgx5gCV gNX1NeSC64kiKy1YF1FUzZD4z+3frSclDNqDExtpQlBYZ14sGmF0Z++dIBPC/j+p QDcx4QqDkjtJ/5XC6tYd+pBOA6/HX8egGCrQ/Kx3fB1RMfdcZVsIpM5m77SndPp4 VAWXS4qZVaaPJVUFfSDF5R7/ySxeSsiwi1A767jFRckYOAZQ+Dnp+IOORs9PRyUZ jznK57hDilDGvJhCmxu2X6i5YsGtL+8hzClJMAp/aEF4DFhAA+5f0ECcpsGi75xL 8oFdtHnMB2CPrKVD1rmU3q53/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNU1VutF 4UbV3hMAsoWJde2W87O4MB8GA1UdIwQYMBaAFG2WBoi23nFBpyGJjp4HPhZ3j+81 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0E4Ri82M0FDRDVGNDU5 REIxMUVFQTczN0ZFMEFDNEY5QUUwMi9iWllHaUxiZWNVR25JWW1PbmdjLUZuZVA3 elUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JaWUdpTGJlY1VHbklZbU9uZ2MtRm5lUDd6VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0E4Ri82M0FDRDVGNDU5REIxMUVFQTczN0ZFMEFDNEY5QUUwMi9iWllHaUxiZWNV R25JWW1PbmdjLUZuZVA3elUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmvzWAGljGJWEyk8+8hLV88D99EnpB8KExB2z5IkmwR65tpk/6UGrp 9EMF/NhcxSCIrJXbM5N1xJ3FHH2p7ODPyuLHhIjUe3KnDaFhwsdPosfnAaCQevIO aPcNo8hh4oJtD1e059IRPFcDRaHL0k/5JJyUdD6AiwoHGs75Hrc/LZPt2CSTu35S ViOwk7Y25G8q33v5r0CMjclHL0l3Ji9UFeLs+2CdXA7RcNWaJibeztmiepqUYetd ep/oIWkGBhDozJKD25aXc/YSeiJEAzjYkAXq7lCVUylbh247hfA77HDI7NAI19YM D2HK5mVqrF8MvZjYAe63w9WPent4f7zM -----END CERTIFICATE-----Generated at Wed May 14 18:50:30 2025 by rpki-client