$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.mft File: BAiuYP82i4xPzZMY6lKlnIcolJw.mft (raw, json) Hash identifier: vhgkuAOBp5dxPeqRKJyIlN2RTgx5zJIeuJk8BOCP29s= Subject key identifier: CB:C7:65:33:D3:68:72:17:5E:14:3A:A5:22:F7:8E:31:50:B5:FD:AC Authority key identifier: 04:08:AE:60:FF:36:8B:8C:4F:CD:93:18:EA:52:A5:9C:87:28:94:9C Certificate issuer: /CN=A91BA0AE/serialNumber=0408AE60FF368B8C4FCD9318EA52A59C8728949C Certificate serial: 0858 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BAiuYP82i4xPzZMY6lKlnIcolJw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.mft Manifest number: 0A1E Signing time: Mon 12 May 2025 20:33:38 +0000 Manifest this update: Mon 12 May 2025 20:33:37 +0000 Manifest next update: Mon 19 May 2025 20:33:37 +0000 Files and hashes: 1: BAiuYP82i4xPzZMY6lKlnIcolJw.crl (hash: WlfDffypo3psOI9XWp2ts6W5UvStti5cFjj0/4LAeNA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.crl rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BAiuYP82i4xPzZMY6lKlnIcolJw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 20:33:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2136 (0x858) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA0AE, serialNumber=0408AE60FF368B8C4FCD9318EA52A59C8728949C Validity Not Before: May 12 20:33:37 2025 GMT Not After : May 19 20:33:37 2025 GMT Subject: CN=68225b22-5cc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:77:73:ed:d7:1f:6a:51:f8:0e:8f:ef:4d:f0: b4:1b:95:a8:3b:1e:61:e1:22:13:9b:de:0f:19:24: bc:2a:43:ee:63:63:76:ac:0e:02:70:6e:2a:f4:ef: ed:4e:86:b0:d0:b8:73:cb:d1:f9:f5:72:25:ea:ac: a0:f6:04:ce:a7:eb:8a:61:2e:5b:db:a0:85:87:72: 73:e4:8b:4f:eb:92:20:ff:ff:a0:39:3e:dd:28:dc: 13:00:56:a1:e3:13:ab:84:9b:b4:d1:bd:3b:64:ea: 06:00:7a:98:e3:60:ff:d8:05:e3:54:c2:1c:ca:bb: e2:6a:a4:5f:14:f1:e8:8c:92:45:de:e7:ed:43:d1: 53:ec:e1:de:e4:f6:e5:fd:68:10:7a:ab:13:a7:f9: c3:c9:fe:49:34:6e:33:60:b9:f4:5f:bb:fe:45:36: a9:08:e7:94:b7:e4:a1:a0:b7:0a:25:2e:5d:c2:d2: cb:b7:cd:7a:e5:c4:9e:8d:05:25:88:5c:79:dd:2a: b2:91:bf:cc:2b:cf:85:2b:30:7b:82:c0:be:2a:00: d3:7e:e9:57:cf:a8:11:4a:8c:4a:c9:c4:89:76:99: b6:a6:35:ea:e7:7d:73:f5:33:b6:e7:4e:9b:ec:f1: 01:a4:21:0f:c5:e4:b5:e4:6a:0d:d0:d7:df:a0:30: 4a:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:C7:65:33:D3:68:72:17:5E:14:3A:A5:22:F7:8E:31:50:B5:FD:AC X509v3 Authority Key Identifier: keyid:04:08:AE:60:FF:36:8B:8C:4F:CD:93:18:EA:52:A5:9C:87:28:94:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BAiuYP82i4xPzZMY6lKlnIcolJw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA0AE/37EB0C66C96411EAA106E859C4F9AE02/BAiuYP82i4xPzZMY6lKlnIcolJw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:df:54:91:ba:06:60:65:af:95:47:9a:8d:c1:7e:56:a3:22: 77:1e:20:9b:94:39:02:46:ce:89:2b:a2:7c:dd:32:ac:f7:04: b4:88:d9:88:a9:e6:46:a2:c4:1a:ce:6c:a5:f0:1a:72:9c:fe: 11:47:cd:7a:86:18:b5:7e:eb:d5:a1:27:fa:b1:aa:16:f9:7b: 4a:7c:5d:bc:49:5f:66:40:16:07:0d:d0:47:b1:e8:45:68:cd: 55:8c:75:ea:cd:84:07:1f:ba:43:47:0e:5a:5b:10:dd:95:3b: 9e:0d:d2:64:cb:7e:f1:78:df:b9:b7:36:4d:18:25:85:c6:8d: f9:f9:80:cb:8f:22:b1:e0:d0:92:0a:ca:2d:a5:f1:44:82:03: 73:1e:1e:83:79:a6:ff:85:d5:a0:eb:dc:c1:28:87:a3:a2:c7: 3f:93:bd:d8:73:fb:ab:35:79:d0:c2:e3:73:53:d2:e0:71:d5: 6a:a5:31:7d:70:a9:30:1a:45:19:b8:ea:3d:24:e7:7a:69:6c: 6d:18:e6:34:20:1a:bf:3a:6e:48:55:16:28:09:22:cf:1c:d9: c7:2b:18:7d:30:6d:c8:93:69:18:9c:d9:2a:5b:cb:9c:4b:16: 01:51:c6:07:a8:5d:83:5d:a7:6d:a9:61:c5:4c:f2:cb:b5:fe: 27:70:94:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCFgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkEwQUUxMTAvBgNVBAUTKDA0MDhBRTYwRkYzNjhCOEM0RkNEOTMxOEVBNTJBNTlD ODcyODk0OUMwHhcNMjUwNTEyMjAzMzM3WhcNMjUwNTE5MjAzMzM3WjAYMRYwFAYD VQQDEw02ODIyNWIyMi01Y2M0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq3dz7dcfalH4Do/vTfC0G5WoOx5h4SITm94PGSS8KkPuY2N2rA4CcG4q9O/t Toaw0Lhzy9H59XIl6qyg9gTOp+uKYS5b26CFh3Jz5ItP65Ig//+gOT7dKNwTAFah 4xOrhJu00b07ZOoGAHqY42D/2AXjVMIcyrviaqRfFPHojJJF3uftQ9FT7OHe5Pbl /WgQeqsTp/nDyf5JNG4zYLn0X7v+RTapCOeUt+ShoLcKJS5dwtLLt8165cSejQUl iFx53Sqykb/MK8+FKzB7gsC+KgDTfulXz6gRSoxKycSJdpm2pjXq531z9TO2506b 7PEBpCEPxeS15GoN0NffoDBKuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMvHZTPT aHIXXhQ6pSL3jjFQtf2sMB8GA1UdIwQYMBaAFAQIrmD/NouMT82TGOpSpZyHKJSc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTBBRS8zN0VCMEM2NkM5 NjQxMUVBQTEwNkU4NTlDNEY5QUUwMi9CQWl1WVA4Mmk0eFB6Wk1ZNmxLbG5JY29s SncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JBaXVZUDgyaTR4UHpaTVk2bEtsbkljb2xKdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTBBRS8zN0VCMEM2NkM5NjQxMUVBQTEwNkU4NTlDNEY5QUUwMi9CQWl1WVA4Mmk0 eFB6Wk1ZNmxLbG5JY29sSncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAx31SRugZgZa+VR5qNwX5WoyJ3HiCblDkCRs6JK6J83TKs9wS0iNmI qeZGosQazmyl8BpynP4RR816hhi1fuvVoSf6saoW+XtKfF28SV9mQBYHDdBHsehF aM1VjHXqzYQHH7pDRw5aWxDdlTueDdJky37xeN+5tzZNGCWFxo35+YDLjyKx4NCS CsotpfFEggNzHh6Deab/hdWg69zBKIejosc/k73Yc/urNXnQwuNzU9LgcdVqpTF9 cKkwGkUZuOo9JOd6aWxtGOY0IBq/Om5IVRYoCSLPHNnHKxh9MG3Ik2kYnNkqW8uc SxYBUcYHqF2DXadtqWHFTPLLtf4ncJQd -----END CERTIFICATE-----Generated at Tue May 13 11:36:28 2025 by rpki-client