$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8CD2/043C6AF4D8E511EB80685D5FC4F9AE02/bjPVE5klw9tNCFk3zmms03vqeU0.mft File: bjPVE5klw9tNCFk3zmms03vqeU0.mft (raw, json) Hash identifier: zaBuoI0ny23qUJxqxGCBPkYQHRiFe6UISjaLodByKmM= Subject key identifier: 6C:6B:E0:EB:F2:CC:F6:03:17:8B:33:D7:92:72:90:5E:62:EE:24:50 Authority key identifier: 6E:33:D5:13:99:25:C3:DB:4D:08:59:37:CE:69:AC:D3:7B:EA:79:4D Certificate issuer: /CN=A91A8CD2/serialNumber=6E33D5139925C3DB4D085937CE69ACD37BEA794D Certificate serial: 057E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bjPVE5klw9tNCFk3zmms03vqeU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8CD2/043C6AF4D8E511EB80685D5FC4F9AE02/bjPVE5klw9tNCFk3zmms03vqeU0.mft Manifest number: 057A Signing time: Sat 10 May 2025 22:52:35 +0000 Manifest this update: Sat 10 May 2025 22:52:35 +0000 Manifest next update: Sat 17 May 2025 22:52:35 +0000 Files and hashes: 1: bjPVE5klw9tNCFk3zmms03vqeU0.crl (hash: uRLy/ZQg/967jiUwZPAmrcRcpeUE2ZZ9M9eTXxiAY3U=) 2: 5D10DEF0D8E811EB8ACD3C66C4F9AE02.roa (hash: l/rvxQeqO+VdRHgLRLz7RrPQYKHzDkdt1MLwmoA9TZg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8CD2/043C6AF4D8E511EB80685D5FC4F9AE02/bjPVE5klw9tNCFk3zmms03vqeU0.crl rsync://rpki.apnic.net/member_repository/A91A8CD2/043C6AF4D8E511EB80685D5FC4F9AE02/bjPVE5klw9tNCFk3zmms03vqeU0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bjPVE5klw9tNCFk3zmms03vqeU0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 18:24:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1406 (0x57e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8CD2, serialNumber=6E33D5139925C3DB4D085937CE69ACD37BEA794D Validity Not Before: May 10 22:52:35 2025 GMT Not After : May 17 22:52:35 2025 GMT Subject: CN=681fd8b3-c06d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:41:b9:25:da:36:28:b8:a9:84:d6:ee:6c:ce: 67:2f:e2:ca:00:0c:0a:6a:dd:b1:ef:2c:09:f0:e0: 3f:bf:bf:17:f7:bc:73:76:29:43:0d:2e:7c:1f:db: a5:70:80:f9:90:5e:cf:c9:5f:98:45:22:b4:a4:93: a6:00:0a:0e:79:32:ab:77:19:d8:a5:10:6c:c6:4f: 28:12:95:00:3a:77:ab:c1:42:03:a6:5e:5e:02:30: 5d:b4:f9:22:29:52:c1:dc:7e:f9:2a:8f:82:22:02: ce:9a:ba:7e:28:eb:47:cf:94:bb:a4:3a:a6:b3:02: 92:41:03:2e:7d:e6:22:7a:33:42:9e:3f:75:56:cf: 4f:83:c0:70:89:07:49:b5:bd:13:14:b6:5b:a7:a5: f1:26:bf:6d:87:d8:7b:22:57:c8:ed:04:41:6e:da: d6:1d:f1:37:48:e4:cc:2b:7d:ce:58:10:ec:ff:07: 2d:ed:48:93:c8:df:23:68:78:ce:9d:06:37:cf:84: 1d:70:27:e6:7c:f2:ed:69:2d:47:f3:c0:0d:78:0c: 3d:82:92:66:a4:42:cb:a9:2d:18:57:8f:b4:7f:4c: 65:5c:05:11:47:3e:cb:31:d2:f5:f6:ba:fa:ba:0f: 06:95:df:99:da:34:28:31:8f:d3:11:2b:0b:34:df: 48:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:6B:E0:EB:F2:CC:F6:03:17:8B:33:D7:92:72:90:5E:62:EE:24:50 X509v3 Authority Key Identifier: keyid:6E:33:D5:13:99:25:C3:DB:4D:08:59:37:CE:69:AC:D3:7B:EA:79:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8CD2/043C6AF4D8E511EB80685D5FC4F9AE02/bjPVE5klw9tNCFk3zmms03vqeU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bjPVE5klw9tNCFk3zmms03vqeU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8CD2/043C6AF4D8E511EB80685D5FC4F9AE02/bjPVE5klw9tNCFk3zmms03vqeU0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:62:94:67:34:72:d7:d3:03:ce:d7:10:3a:a0:0e:4a:9e:33: 30:71:68:fd:9e:f3:49:62:cc:01:2b:48:d3:de:48:a1:10:cb: d7:87:89:50:c8:02:db:4a:cf:3c:27:91:6f:c0:c3:7f:d7:f3: 9c:28:f3:66:d6:86:15:fa:41:20:91:6c:d1:3b:36:a3:37:59: 88:f0:73:08:8b:44:39:b3:cf:ab:b5:fa:e9:25:bd:b4:47:4b: d5:29:5b:60:4f:c0:e8:63:1c:2c:3a:4e:af:78:c2:c1:1c:db: 45:bc:41:6e:ba:b6:e4:4f:30:3c:1a:d8:30:29:21:d5:15:68: 33:4f:53:0c:d1:53:5f:fc:78:d6:8e:a2:fa:19:4c:dd:53:2b: 85:45:88:56:99:db:45:5c:39:92:11:2f:82:d4:a3:7c:fc:a2: bf:9f:b3:24:00:69:8b:a4:14:2f:99:5e:08:ac:de:bf:94:ee: e0:11:d6:14:4c:1b:81:b7:81:5e:8c:1b:25:a7:f5:76:2d:29: 3c:4f:d0:fa:5b:a5:0f:12:ef:d6:de:6a:62:6a:50:fc:3a:64: 5c:c3:b7:cf:e0:e3:dd:bf:28:0d:62:05:6f:b3:2d:92:3d:91: 75:61:32:2d:a0:0d:a5:c5:0b:40:35:6f:f7:59:9d:77:15:4d: 54:2a:94:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBX4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThDRDIxMTAvBgNVBAUTKDZFMzNENTEzOTkyNUMzREI0RDA4NTkzN0NFNjlBQ0Qz N0JFQTc5NEQwHhcNMjUwNTEwMjI1MjM1WhcNMjUwNTE3MjI1MjM1WjAYMRYwFAYD VQQDEw02ODFmZDhiMy1jMDZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4kG5Jdo2KLiphNbubM5nL+LKAAwKat2x7ywJ8OA/v78X97xzdilDDS58H9ul cID5kF7PyV+YRSK0pJOmAAoOeTKrdxnYpRBsxk8oEpUAOnerwUIDpl5eAjBdtPki KVLB3H75Ko+CIgLOmrp+KOtHz5S7pDqmswKSQQMufeYiejNCnj91Vs9Pg8BwiQdJ tb0TFLZbp6XxJr9th9h7IlfI7QRBbtrWHfE3SOTMK33OWBDs/wct7UiTyN8jaHjO nQY3z4QdcCfmfPLtaS1H88ANeAw9gpJmpELLqS0YV4+0f0xlXAURRz7LMdL19rr6 ug8Gld+Z2jQoMY/TESsLNN9IdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGxr4Ovy zPYDF4sz15JykF5i7iRQMB8GA1UdIwQYMBaAFG4z1ROZJcPbTQhZN85prNN76nlN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOENEMi8wNDNDNkFGNEQ4 RTUxMUVCODA2ODVENUZDNEY5QUUwMi9ialBWRTVrbHc5dE5DRmszem1tczAzdnFl VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JqUFZFNWtsdzl0TkNGazN6bW1zMDN2cWVVMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OENEMi8wNDNDNkFGNEQ4RTUxMUVCODA2ODVENUZDNEY5QUUwMi9ialBWRTVrbHc5 dE5DRmszem1tczAzdnFlVTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3YpRnNHLX0wPO1xA6oA5KnjMwcWj9nvNJYswBK0jT3kihEMvXh4lQ yALbSs88J5FvwMN/1/OcKPNm1oYV+kEgkWzROzajN1mI8HMIi0Q5s8+rtfrpJb20 R0vVKVtgT8DoYxwsOk6veMLBHNtFvEFuurbkTzA8GtgwKSHVFWgzT1MM0VNf/HjW jqL6GUzdUyuFRYhWmdtFXDmSES+C1KN8/KK/n7MkAGmLpBQvmV4IrN6/lO7gEdYU TBuBt4FejBslp/V2LSk8T9D6W6UPEu/W3mpialD8OmRcw7fP4OPdvygNYgVvsy2S PZF1YTItoA2lxQtANW/3WZ13FU1UKpSU -----END CERTIFICATE-----Generated at Sun May 11 02:33:57 2025 by rpki-client