$ rpki-client -vvf rpki.apnic.net/member_repository/A919DCE3/BD29C992903A11EB940F285DC4F9AE02/BiJAzedW2VtXd-JnqnsGVPg09JM.mft File: BiJAzedW2VtXd-JnqnsGVPg09JM.mft (raw, json) Hash identifier: M0L8XEz+yt1HymmxLw2YTIHZipvMb6NM54rugB3gOoM= Subject key identifier: 78:78:35:86:C0:DA:FF:7E:F9:0D:00:5D:2D:97:BB:D0:98:47:E5:A0 Authority key identifier: 06:22:40:CD:E7:56:D9:5B:57:77:E2:67:AA:7B:06:54:F8:34:F4:93 Certificate issuer: /CN=A919DCE3/serialNumber=062240CDE756D95B5777E267AA7B0654F834F493 Certificate serial: 0652 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BiJAzedW2VtXd-JnqnsGVPg09JM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919DCE3/BD29C992903A11EB940F285DC4F9AE02/BiJAzedW2VtXd-JnqnsGVPg09JM.mft Manifest number: 064D Signing time: Sat 28 Jun 2025 22:10:45 +0000 Manifest this update: Sat 28 Jun 2025 22:10:45 +0000 Manifest next update: Sat 05 Jul 2025 22:10:45 +0000 Files and hashes: 1: BiJAzedW2VtXd-JnqnsGVPg09JM.crl (hash: dSY2zOyL4qDuwhg/grXezoKVdjHWk/0XsrnlK5BXnDk=) 2: E9610376903B11EBB91C8B5DC4F9AE02.roa (hash: 8EJ9t0dHzPuImjiYAPoyaHv+e1oWlijq5dSgwTFlJ+I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919DCE3/BD29C992903A11EB940F285DC4F9AE02/BiJAzedW2VtXd-JnqnsGVPg09JM.crl rsync://rpki.apnic.net/member_repository/A919DCE3/BD29C992903A11EB940F285DC4F9AE02/BiJAzedW2VtXd-JnqnsGVPg09JM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BiJAzedW2VtXd-JnqnsGVPg09JM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 22:10:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1618 (0x652) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919DCE3, serialNumber=062240CDE756D95B5777E267AA7B0654F834F493 Validity Not Before: Jun 28 22:10:45 2025 GMT Not After : Jul 5 22:10:45 2025 GMT Subject: CN=68606865-baa5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:2b:c1:6b:49:bc:27:8c:67:cc:55:a3:ef:a3: 3b:8e:a4:fd:08:66:5d:c0:61:fc:f9:9b:92:aa:00: a3:d7:2d:7b:b1:6f:01:84:c0:7d:3e:18:83:ad:d7: a1:e1:5e:ee:f0:43:d9:3d:3a:52:a1:2d:61:e3:67: 2c:95:b2:65:c4:33:3a:c3:ae:b6:17:22:83:ea:c7: 38:6e:e0:2d:84:6b:e4:c6:ad:0c:a0:09:5c:f1:e3: c9:18:3d:4d:74:4b:35:5c:ac:9f:f0:ad:2f:6c:7c: e8:7a:21:ca:7a:99:52:d7:22:f7:23:0c:10:80:e8: b4:c9:8c:11:4b:44:ed:12:4c:0d:f0:9c:f9:85:49: 26:25:1c:86:91:2f:3e:b9:90:ab:40:92:58:31:8e: 1c:bb:80:01:04:43:51:ed:83:64:d1:92:61:a7:2b: 2b:a2:59:b9:3a:33:86:e4:da:4b:e3:9a:7d:6d:18: 9b:36:6f:02:1c:16:77:24:3e:4f:4d:c5:59:c7:0b: 8b:b5:59:b5:3f:6e:9c:10:24:ea:8f:37:31:c9:9d: 66:12:38:5a:fc:ff:c6:3c:3c:dd:eb:f0:96:53:14: 5b:e8:5b:c0:f2:bb:ca:ad:7d:7b:2f:03:03:84:9e: c3:50:2d:98:ab:8f:83:19:5d:b0:0b:e1:87:e0:43: 0a:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:78:35:86:C0:DA:FF:7E:F9:0D:00:5D:2D:97:BB:D0:98:47:E5:A0 X509v3 Authority Key Identifier: keyid:06:22:40:CD:E7:56:D9:5B:57:77:E2:67:AA:7B:06:54:F8:34:F4:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919DCE3/BD29C992903A11EB940F285DC4F9AE02/BiJAzedW2VtXd-JnqnsGVPg09JM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BiJAzedW2VtXd-JnqnsGVPg09JM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919DCE3/BD29C992903A11EB940F285DC4F9AE02/BiJAzedW2VtXd-JnqnsGVPg09JM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:da:6f:7a:84:e9:e1:fd:30:df:eb:08:68:be:46:2c:77:d6: 31:ea:03:3d:95:3f:f9:f7:9e:5f:bd:3c:f4:a6:71:42:93:69: 9e:9d:d8:36:6f:ea:ed:87:8a:0b:09:45:6f:57:9f:84:0a:46: 33:93:a9:9a:36:5a:5c:75:a5:01:44:c9:1e:69:f4:20:24:37: 2d:1d:94:7f:48:32:fa:9e:69:6a:42:07:bc:59:f9:a8:1e:97: 11:6a:03:b2:98:65:21:d8:55:a8:48:30:dd:eb:2e:a9:18:21: 2f:66:85:17:9d:79:fe:9e:36:25:2d:63:68:9e:9d:06:9d:92: d8:74:18:7b:4b:7b:f8:ef:ed:bd:37:f5:b9:56:eb:c8:1d:18: 0f:2b:d2:60:df:1c:c3:fd:9d:83:77:30:83:c9:fa:ee:5d:ac: b0:0b:7d:4d:c5:c2:7a:db:48:d7:47:7b:2e:ef:3a:3a:01:7b: fc:e7:91:13:ff:ae:75:86:11:46:62:9d:ed:3c:5c:08:31:66: 24:46:86:d1:ef:fd:cd:78:40:d6:01:a2:ce:a3:10:3e:1d:74: 32:f0:44:29:4f:24:bf:d2:84:b4:9c:30:61:a1:4e:da:e2:b9: d8:b5:65:c9:ea:43:34:48:d7:36:42:a8:f6:79:f0:b1:0f:2e: 39:3d:d2:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OURDRTMxMTAvBgNVBAUTKDA2MjI0MENERTc1NkQ5NUI1Nzc3RTI2N0FBN0IwNjU0 RjgzNEY0OTMwHhcNMjUwNjI4MjIxMDQ1WhcNMjUwNzA1MjIxMDQ1WjAYMRYwFAYD VQQDEw02ODYwNjg2NS1iYWE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsyvBa0m8J4xnzFWj76M7jqT9CGZdwGH8+ZuSqgCj1y17sW8BhMB9PhiDrdeh 4V7u8EPZPTpSoS1h42cslbJlxDM6w662FyKD6sc4buAthGvkxq0MoAlc8ePJGD1N dEs1XKyf8K0vbHzoeiHKeplS1yL3IwwQgOi0yYwRS0TtEkwN8Jz5hUkmJRyGkS8+ uZCrQJJYMY4cu4ABBENR7YNk0ZJhpysrolm5OjOG5NpL45p9bRibNm8CHBZ3JD5P TcVZxwuLtVm1P26cECTqjzcxyZ1mEjha/P/GPDzd6/CWUxRb6FvA8rvKrX17LwMD hJ7DUC2Yq4+DGV2wC+GH4EMKoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHh4NYbA 2v9++Q0AXS2Xu9CYR+WgMB8GA1UdIwQYMBaAFAYiQM3nVtlbV3fiZ6p7BlT4NPST MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RENFMy9CRDI5Qzk5Mjkw M0ExMUVCOTQwRjI4NURDNEY5QUUwMi9CaUpBemVkVzJWdFhkLUpucW5zR1ZQZzA5 Sk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JpSkF6ZWRXMlZ0WGQtSm5xbnNHVlBnMDlKTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RENFMy9CRDI5Qzk5MjkwM0ExMUVCOTQwRjI4NURDNEY5QUUwMi9CaUpBemVkVzJW dFhkLUpucW5zR1ZQZzA5Sk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCj2m96hOnh/TDf6whovkYsd9Yx6gM9lT/5955fvTz0pnFCk2mendg2 b+rth4oLCUVvV5+ECkYzk6maNlpcdaUBRMkeafQgJDctHZR/SDL6nmlqQge8Wfmo HpcRagOymGUh2FWoSDDd6y6pGCEvZoUXnXn+njYlLWNonp0GnZLYdBh7S3v47+29 N/W5VuvIHRgPK9Jg3xzD/Z2DdzCDyfruXaywC31NxcJ620jXR3su7zo6AXv855ET /651hhFGYp3tPFwIMWYkRobR7/3NeEDWAaLOoxA+HXQy8EQpTyS/0oS0nDBhoU7a 4rnYtWXJ6kM0SNc2Qqj2efCxDy45PdKD -----END CERTIFICATE-----Generated at Sun Jun 29 17:45:29 2025 by rpki-client