$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft File: BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft (raw, json) Hash identifier: vpcgkb6xP2O7rLkTWaSGUzyrKQutQr7cXtBJB7JH6ic= Subject key identifier: 00:5C:52:37:5D:67:83:81:D1:96:E9:9E:0E:DB:F5:CA:85:E7:F9:2E Authority key identifier: 05:0D:C0:3B:5D:59:45:A3:3E:AB:95:18:17:F1:67:9B:D9:10:C6:AC Certificate issuer: /CN=A91AB8D7/serialNumber=050DC03B5D5945A33EAB951817F1679BD910C6AC Certificate serial: 01BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft Manifest number: 01B8 Signing time: Tue 13 May 2025 02:26:52 +0000 Manifest this update: Tue 13 May 2025 02:26:51 +0000 Manifest next update: Tue 20 May 2025 02:26:51 +0000 Files and hashes: 1: BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl (hash: xuK5gA8RRoNGxtSfTdQdv9B0bkwO0XbyufziqwPGMgE=) 2: 1ED3BAF898A011ED9D31B05CC4F9AE02.roa (hash: uh86cXyNLUaa3Xl47qiV2uyaXTpPI55uWsM8f80qnzg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 02:26:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 444 (0x1bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB8D7, serialNumber=050DC03B5D5945A33EAB951817F1679BD910C6AC Validity Not Before: May 13 02:26:51 2025 GMT Not After : May 20 02:26:51 2025 GMT Subject: CN=6822adeb-cafc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:bd:29:ac:91:a2:a4:37:53:2b:1e:be:b2:7a: 90:88:d3:0e:de:95:de:c4:28:5b:f5:cd:e6:7f:0e: 24:bf:35:59:6a:df:f0:13:e7:c8:a8:88:91:0f:4a: 95:2c:4a:1f:d4:a9:11:a0:b0:ad:1f:91:34:c9:ea: 2e:e6:be:42:1d:33:60:22:c2:f2:22:a7:97:23:8e: 54:99:83:56:25:06:8a:0a:09:8a:17:89:a8:42:9e: ce:ad:0f:71:d5:f8:86:8d:86:e7:41:99:36:b2:4d: cf:14:e5:61:cb:56:00:ec:32:b3:b0:f9:03:31:70: ff:29:8b:9d:08:cf:23:5a:c6:8e:01:cb:fd:11:2f: bf:ee:c5:55:aa:6f:86:b3:71:df:df:a2:64:9c:36: 23:1c:f2:80:ac:02:c9:bc:5e:2e:c3:db:bf:41:dd: fe:f8:82:da:d3:06:fd:f7:98:8f:23:47:8c:70:9e: f2:c5:9b:48:06:7a:d8:11:5e:46:8e:a9:0b:0e:a8: cf:e6:c6:a4:27:65:ee:45:13:d7:35:82:18:63:b1: c7:4c:61:63:da:77:b8:0c:b1:8a:60:07:46:71:db: 0f:fa:7e:e6:8d:b3:fe:17:e4:35:d2:ac:74:11:ac: 74:0b:64:49:e8:19:30:99:27:f9:fa:ce:f7:94:02: c3:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:5C:52:37:5D:67:83:81:D1:96:E9:9E:0E:DB:F5:CA:85:E7:F9:2E X509v3 Authority Key Identifier: keyid:05:0D:C0:3B:5D:59:45:A3:3E:AB:95:18:17:F1:67:9B:D9:10:C6:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB8D7/B67F301A989D11EDB4E30F5CC4F9AE02/BQ3AO11ZRaM-q5UYF_Fnm9kQxqw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:75:f0:ce:a2:a4:f8:fb:58:a7:4c:49:31:d6:be:f1:ef:69: 73:31:3a:91:38:b1:4b:31:5d:c0:d5:ab:5f:91:18:b6:ac:b3: 00:5b:c5:69:70:31:5e:3e:e5:2c:a1:69:07:2b:24:51:90:d1: bc:96:72:8c:a6:62:41:7c:bb:c9:40:13:e3:b3:81:fd:96:8b: 6e:3d:1b:5d:82:6c:00:5c:0d:a7:04:c1:52:ca:97:31:24:96: 2c:21:05:de:e5:e5:1f:cc:78:df:2c:35:88:bf:8a:53:bb:5c: 44:04:3f:3f:d2:18:b5:15:be:b9:0a:7e:09:9c:23:03:78:1b: 98:43:20:94:9c:4e:82:08:43:03:25:d3:21:bb:66:80:e4:7d: 2e:06:d2:4c:97:cd:32:7c:aa:2c:dc:27:a1:c7:7b:4f:0b:df: 51:83:87:99:4e:59:08:15:57:15:f3:2c:68:35:de:0f:a7:90: 0b:42:66:77:25:b1:a1:e2:39:f6:2b:ce:68:0e:ad:0d:ed:7d: 77:9a:4e:d3:fc:47:5f:03:a0:5f:78:af:4c:5e:a3:de:07:0a: 11:ce:e5:a8:a1:1c:b6:5b:4f:e7:02:da:42:b2:2d:8e:ad:bd: 7b:91:8d:0d:2f:ef:f0:8c:f7:50:50:dd:53:1c:20:44:fd:9c: 2d:57:fb:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI4RDcxMTAvBgNVBAUTKDA1MERDMDNCNUQ1OTQ1QTMzRUFCOTUxODE3RjE2NzlC RDkxMEM2QUMwHhcNMjUwNTEzMDIyNjUxWhcNMjUwNTIwMDIyNjUxWjAYMRYwFAYD VQQDEw02ODIyYWRlYi1jYWZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtb0prJGipDdTKx6+snqQiNMO3pXexChb9c3mfw4kvzVZat/wE+fIqIiRD0qV LEof1KkRoLCtH5E0yeou5r5CHTNgIsLyIqeXI45UmYNWJQaKCgmKF4moQp7OrQ9x 1fiGjYbnQZk2sk3PFOVhy1YA7DKzsPkDMXD/KYudCM8jWsaOAcv9ES+/7sVVqm+G s3Hf36JknDYjHPKArALJvF4uw9u/Qd3++ILa0wb995iPI0eMcJ7yxZtIBnrYEV5G jqkLDqjP5sakJ2XuRRPXNYIYY7HHTGFj2ne4DLGKYAdGcdsP+n7mjbP+F+Q10qx0 Eax0C2RJ6BkwmSf5+s73lALDswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFABcUjdd Z4OB0Zbpng7b9cqF5/kuMB8GA1UdIwQYMBaAFAUNwDtdWUWjPquVGBfxZ5vZEMas MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjhENy9CNjdGMzAxQTk4 OUQxMUVEQjRFMzBGNUNDNEY5QUUwMi9CUTNBTzExWlJhTS1xNVVZRl9Gbm05a1F4 cXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JRM0FPMTFaUmFNLXE1VVlGX0ZubTlrUXhxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjhENy9CNjdGMzAxQTk4OUQxMUVEQjRFMzBGNUNDNEY5QUUwMi9CUTNBTzExWlJh TS1xNVVZRl9Gbm05a1F4cXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZdfDOoqT4+1inTEkx1r7x72lzMTqROLFLMV3A1atfkRi2rLMAW8Vp cDFePuUsoWkHKyRRkNG8lnKMpmJBfLvJQBPjs4H9lotuPRtdgmwAXA2nBMFSypcx JJYsIQXe5eUfzHjfLDWIv4pTu1xEBD8/0hi1Fb65Cn4JnCMDeBuYQyCUnE6CCEMD JdMhu2aA5H0uBtJMl80yfKos3Cehx3tPC99Rg4eZTlkIFVcV8yxoNd4Pp5ALQmZ3 JbGh4jn2K85oDq0N7X13mk7T/EdfA6BfeK9MXqPeBwoRzuWooRy2W0/nAtpCsi2O rb17kY0NL+/wjPdQUN1THCBE/ZwtV/t6 -----END CERTIFICATE-----Generated at Tue May 13 22:52:56 2025 by rpki-client