$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8CD2/043C6AF4D8E511EB80685D5FC4F9AE02/bjPVE5klw9tNCFk3zmms03vqeU0.mft File: bjPVE5klw9tNCFk3zmms03vqeU0.mft (raw, json) Hash identifier: nAyHwqudPaVD8vxc0yhwMVEA5XcRo9puYHO8CR4A/rw= Subject key identifier: 50:12:28:38:00:F4:D3:E6:FF:73:35:CB:B8:97:55:8E:97:06:21:A4 Authority key identifier: 6E:33:D5:13:99:25:C3:DB:4D:08:59:37:CE:69:AC:D3:7B:EA:79:4D Certificate issuer: /CN=A91A8CD2/serialNumber=6E33D5139925C3DB4D085937CE69ACD37BEA794D Certificate serial: 059A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bjPVE5klw9tNCFk3zmms03vqeU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8CD2/043C6AF4D8E511EB80685D5FC4F9AE02/bjPVE5klw9tNCFk3zmms03vqeU0.mft Manifest number: 0595 Signing time: Mon 30 Jun 2025 23:35:49 +0000 Manifest this update: Mon 30 Jun 2025 23:35:48 +0000 Manifest next update: Mon 07 Jul 2025 23:35:48 +0000 Files and hashes: 1: bjPVE5klw9tNCFk3zmms03vqeU0.crl (hash: 48plIFYgXVmY/2W1evs+DLNsHVe77WjaF+l/lUMaYWY=) 2: 5D10DEF0D8E811EB8ACD3C66C4F9AE02.roa (hash: /8hy3Bbn1TLOvORzZ60crKTvCR9C6tYBcsWimqCiQa8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8CD2/043C6AF4D8E511EB80685D5FC4F9AE02/bjPVE5klw9tNCFk3zmms03vqeU0.crl rsync://rpki.apnic.net/member_repository/A91A8CD2/043C6AF4D8E511EB80685D5FC4F9AE02/bjPVE5klw9tNCFk3zmms03vqeU0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bjPVE5klw9tNCFk3zmms03vqeU0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 23:35:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1434 (0x59a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8CD2, serialNumber=6E33D5139925C3DB4D085937CE69ACD37BEA794D Validity Not Before: Jun 30 23:35:48 2025 GMT Not After : Jul 7 23:35:48 2025 GMT Subject: CN=68631f54-29bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:83:55:cb:43:be:23:30:08:0c:c3:2c:96:51: 33:63:21:9a:8b:72:31:3e:8b:9e:b2:34:04:d5:2e: 93:f4:6a:95:db:a3:a8:66:12:66:95:0b:e9:4a:df: bc:88:e0:94:eb:80:8e:a5:38:f0:48:53:9c:a2:c3: ce:cc:d5:6b:f9:bf:d2:16:60:fd:7c:96:f1:fe:3c: 49:ba:23:8e:84:4b:98:e9:0a:84:bf:7c:54:30:5b: 4f:1f:ec:0f:a4:0b:96:8b:6d:95:94:15:8e:87:ee: 10:5d:a5:db:64:e4:fc:44:1d:36:db:2b:a3:6b:c5: cc:95:87:2c:d7:27:6e:2c:b4:7a:0b:dd:8e:d4:df: 34:68:52:38:ee:8a:e1:c3:20:fc:7f:36:96:77:ef: 71:3b:76:5f:a9:6b:00:f5:73:30:54:b8:9e:16:e3: d2:40:d9:d7:4e:05:9a:89:f4:c0:88:16:89:99:cd: 59:4b:3a:2d:25:1b:4f:4b:14:b1:bc:26:c3:af:1b: e1:70:10:5e:99:59:da:16:9c:7a:bb:b7:83:2b:a8: 08:a5:69:fb:1e:a6:f1:90:12:6d:37:06:18:90:57: 29:20:2c:20:be:4b:96:6a:80:b9:cf:37:88:96:73: 59:00:ff:59:47:49:ee:1c:90:25:42:f5:2b:21:85: 94:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:12:28:38:00:F4:D3:E6:FF:73:35:CB:B8:97:55:8E:97:06:21:A4 X509v3 Authority Key Identifier: keyid:6E:33:D5:13:99:25:C3:DB:4D:08:59:37:CE:69:AC:D3:7B:EA:79:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8CD2/043C6AF4D8E511EB80685D5FC4F9AE02/bjPVE5klw9tNCFk3zmms03vqeU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bjPVE5klw9tNCFk3zmms03vqeU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8CD2/043C6AF4D8E511EB80685D5FC4F9AE02/bjPVE5klw9tNCFk3zmms03vqeU0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:65:1d:68:a6:cf:66:c0:60:e2:e6:6b:da:90:34:55:de:ce: fc:92:5d:d1:c0:a5:4a:22:33:8d:4b:b1:4d:f6:ed:29:bb:79: a3:e8:83:33:0f:fc:6c:c8:55:3c:f0:8e:79:99:19:c7:5a:6e: 54:29:a4:5b:3e:34:4e:91:88:75:21:2d:07:70:40:af:22:0c: 36:13:b6:72:67:0c:e1:e4:dd:07:b5:17:1a:23:02:79:b5:06: 7e:35:42:61:49:b9:a6:cc:4f:fa:76:49:bc:82:99:58:2b:10: 94:9c:b0:15:13:05:94:67:18:d8:5c:3d:42:32:3b:a2:c4:5d: 02:79:8a:b4:e5:56:6e:81:47:09:52:a1:82:5f:1c:03:86:34: 8e:17:32:aa:ab:66:56:75:78:4d:3f:4d:43:45:8c:69:1e:e1: 93:2b:68:70:be:24:77:3b:68:b5:b5:d6:52:06:c1:1d:2b:7b: 2e:5c:02:0f:33:f5:38:01:94:13:22:96:5f:71:ae:ac:81:c0: e6:79:48:6a:33:28:b5:ce:4b:44:e8:f0:02:0c:05:43:da:fa: 77:fb:3a:12:38:af:30:c5:82:dd:45:4e:8a:a0:0a:79:fc:ec: 6c:be:1f:31:fa:7f:c5:98:fc:a3:4e:cb:b2:ab:1d:67:90:bc: 9d:43:49:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThDRDIxMTAvBgNVBAUTKDZFMzNENTEzOTkyNUMzREI0RDA4NTkzN0NFNjlBQ0Qz N0JFQTc5NEQwHhcNMjUwNjMwMjMzNTQ4WhcNMjUwNzA3MjMzNTQ4WjAYMRYwFAYD VQQDEw02ODYzMWY1NC0yOWJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5oNVy0O+IzAIDMMsllEzYyGai3IxPouesjQE1S6T9GqV26OoZhJmlQvpSt+8 iOCU64COpTjwSFOcosPOzNVr+b/SFmD9fJbx/jxJuiOOhEuY6QqEv3xUMFtPH+wP pAuWi22VlBWOh+4QXaXbZOT8RB022yuja8XMlYcs1yduLLR6C92O1N80aFI47orh wyD8fzaWd+9xO3ZfqWsA9XMwVLieFuPSQNnXTgWaifTAiBaJmc1ZSzotJRtPSxSx vCbDrxvhcBBemVnaFpx6u7eDK6gIpWn7HqbxkBJtNwYYkFcpICwgvkuWaoC5zzeI lnNZAP9ZR0nuHJAlQvUrIYWURQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFASKDgA 9NPm/3M1y7iXVY6XBiGkMB8GA1UdIwQYMBaAFG4z1ROZJcPbTQhZN85prNN76nlN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOENEMi8wNDNDNkFGNEQ4 RTUxMUVCODA2ODVENUZDNEY5QUUwMi9ialBWRTVrbHc5dE5DRmszem1tczAzdnFl VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JqUFZFNWtsdzl0TkNGazN6bW1zMDN2cWVVMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OENEMi8wNDNDNkFGNEQ4RTUxMUVCODA2ODVENUZDNEY5QUUwMi9ialBWRTVrbHc5 dE5DRmszem1tczAzdnFlVTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrZR1ops9mwGDi5mvakDRV3s78kl3RwKVKIjONS7FN9u0pu3mj6IMz D/xsyFU88I55mRnHWm5UKaRbPjROkYh1IS0HcECvIgw2E7ZyZwzh5N0HtRcaIwJ5 tQZ+NUJhSbmmzE/6dkm8gplYKxCUnLAVEwWUZxjYXD1CMjuixF0CeYq05VZugUcJ UqGCXxwDhjSOFzKqq2ZWdXhNP01DRYxpHuGTK2hwviR3O2i1tdZSBsEdK3suXAIP M/U4AZQTIpZfca6sgcDmeUhqMyi1zktE6PACDAVD2vp3+zoSOK8wxYLdRU6KoAp5 /Oxsvh8x+n/FmPyjTsuyqx1nkLydQ0km -----END CERTIFICATE-----Generated at Tue Jul 1 05:13:31 2025 by rpki-client