$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/BdNlUA2kssABifPGyllQ4AdMfEo.mft File: BdNlUA2kssABifPGyllQ4AdMfEo.mft (raw, json) Hash identifier: XAwXf0aS2KbBcPyyczSk24c68snkptFxQMErX+LKsmo= Subject key identifier: 51:C0:4F:A5:89:B5:1B:51:00:F5:FB:00:2C:C4:AE:C4:DE:56:0E:E9 Authority key identifier: 05:D3:65:50:0D:A4:B2:C0:01:89:F3:C6:CA:59:50:E0:07:4C:7C:4A Certificate issuer: /CN=A91C8EDF/serialNumber=05D365500DA4B2C00189F3C6CA5950E0074C7C4A Certificate serial: 01DB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BdNlUA2kssABifPGyllQ4AdMfEo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/BdNlUA2kssABifPGyllQ4AdMfEo.mft Manifest number: 01CE Signing time: Sat 03 May 2025 02:33:12 +0000 Manifest this update: Sat 03 May 2025 02:33:11 +0000 Manifest next update: Sat 10 May 2025 02:33:11 +0000 Files and hashes: 1: BdNlUA2kssABifPGyllQ4AdMfEo.crl (hash: t9GX53YU/z5TYl2iGsAH3qIy90nb902tngpXyeuhStY=) 2: 999FA66011C711EF80B27457C4F9AE02.roa (hash: O9DoSIXGoRGfPB1leReaXjE3LSp6RO52qLUkhTkRojY=) 3: AD0CC70C122411EF8BEED51AC4F9AE02.roa (hash: sLDSVMLU6jI3BpmMuSVMPzt56rvnKddxBYgL4QmGgG0=) 4: A6524550C4E411EEAFF83C50C4F9AE02.roa (hash: d4lk9eKDk4hQ5jM/CM/7dtQ4pw21vQcp7xDVqjydE4E=) 5: C44A1D987E0511EDBA2BAF7FC4F9AE02.roa (hash: UGxKabSt5VefJdKh3JQwjTM53St2aD5lvYeCqBjnhKg=) 6: 99D4FC3212DC11EFB2470B7FC4F9AE02.roa (hash: E6NCI4JuiZoY4K+zXIld9/zlqD6qc3HulCUWdCEuTgY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/BdNlUA2kssABifPGyllQ4AdMfEo.crl rsync://rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/BdNlUA2kssABifPGyllQ4AdMfEo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BdNlUA2kssABifPGyllQ4AdMfEo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 02:33:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 475 (0x1db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8EDF, serialNumber=05D365500DA4B2C00189F3C6CA5950E0074C7C4A Validity Not Before: May 3 02:33:11 2025 GMT Not After : May 10 02:33:11 2025 GMT Subject: CN=68158067-1788 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:f1:43:d3:00:6e:4f:b9:88:38:93:47:40:d3: 1b:fd:8f:68:2b:32:14:d0:8f:f9:80:82:ce:0e:28: 68:12:a6:33:c7:2f:17:e2:54:06:d8:85:59:60:94: 12:02:c6:d8:a3:ae:2c:f5:90:ea:0f:4b:b4:c6:83: ce:46:02:45:ed:67:25:56:43:9f:ba:6e:e0:33:c6: 96:8a:02:89:a4:8a:a7:87:c9:fc:06:24:ee:66:b5: b2:b5:53:75:46:47:b6:ad:b6:49:c6:fb:3c:46:f0: 38:be:65:e4:29:ce:cb:a5:ed:c9:f7:52:05:ba:9e: ee:fa:84:df:2a:ed:81:84:1a:bb:e3:59:eb:b9:db: 0e:cf:44:44:af:ac:6b:c7:6d:4f:31:e3:fa:7a:a9: 91:d9:ab:a3:bd:a9:29:0b:db:0f:31:03:d5:6f:74: 21:7d:eb:5e:3e:45:37:ef:5f:60:a4:7b:a1:d5:90: 18:16:9b:49:23:9d:40:99:e9:6b:66:a9:d4:99:63: ce:93:cf:9b:50:f5:15:5c:d6:59:02:b5:33:b1:24: bd:e8:8b:16:d2:81:64:15:84:e7:2e:ef:90:c9:b1: 68:b6:a5:31:ff:6e:4c:47:96:31:eb:c3:8d:7e:6e: cd:d2:c7:86:1c:d7:28:4e:27:2f:4a:ba:1c:e6:0b: 51:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:C0:4F:A5:89:B5:1B:51:00:F5:FB:00:2C:C4:AE:C4:DE:56:0E:E9 X509v3 Authority Key Identifier: keyid:05:D3:65:50:0D:A4:B2:C0:01:89:F3:C6:CA:59:50:E0:07:4C:7C:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/BdNlUA2kssABifPGyllQ4AdMfEo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BdNlUA2kssABifPGyllQ4AdMfEo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/BdNlUA2kssABifPGyllQ4AdMfEo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:0d:07:8e:1b:f1:ea:44:89:1d:66:29:ba:e4:ee:39:05:51: 6a:de:01:dc:df:b0:a9:c6:62:f4:b4:58:66:11:3f:e7:e1:a2: de:86:1e:60:8c:b0:b9:e6:27:93:55:64:c6:3f:06:cc:4f:8e: 1f:c1:fa:18:79:9c:99:94:e6:13:84:9e:0a:8b:39:aa:28:1d: 63:2d:0e:cf:82:30:1f:ff:2c:05:60:69:c9:2e:e7:ea:20:25: 56:29:93:39:04:1c:8b:ba:6e:a4:bc:2f:a4:16:a5:0f:f6:79: 1f:54:78:c1:ae:9c:b8:75:84:86:6f:7c:b8:f3:9f:4a:c1:52: 52:94:1f:e8:9c:a7:f0:fa:32:86:63:72:c8:55:43:40:99:e3: 07:96:93:3b:7e:28:ab:c8:a0:4b:8c:21:3a:b6:f5:a8:52:89: cd:3c:9e:8d:a2:fb:15:f9:fb:17:15:31:9c:a8:4c:3b:83:58: dd:40:f9:72:a0:fc:f6:3f:bb:22:48:51:e3:2c:59:34:15:92: f8:1c:a2:94:4a:53:34:25:35:5e:e8:ab:ab:7f:0d:b0:24:da: 7e:1a:60:eb:92:81:00:c1:b2:3b:88:4e:e5:e0:9d:e3:87:2e: b3:87:80:6b:4c:93:e1:32:3c:92:e5:f9:c2:f2:84:d2:30:47: a2:c2:51:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhFREYxMTAvBgNVBAUTKDA1RDM2NTUwMERBNEIyQzAwMTg5RjNDNkNBNTk1MEUw MDc0QzdDNEEwHhcNMjUwNTAzMDIzMzExWhcNMjUwNTEwMDIzMzExWjAYMRYwFAYD VQQDEw02ODE1ODA2Ny0xNzg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9PFD0wBuT7mIOJNHQNMb/Y9oKzIU0I/5gILODihoEqYzxy8X4lQG2IVZYJQS AsbYo64s9ZDqD0u0xoPORgJF7WclVkOfum7gM8aWigKJpIqnh8n8BiTuZrWytVN1 Rke2rbZJxvs8RvA4vmXkKc7Lpe3J91IFup7u+oTfKu2BhBq741nrudsOz0REr6xr x21PMeP6eqmR2aujvakpC9sPMQPVb3QhfetePkU3719gpHuh1ZAYFptJI51Amelr ZqnUmWPOk8+bUPUVXNZZArUzsSS96IsW0oFkFYTnLu+QybFotqUx/25MR5Yx68ON fm7N0seGHNcoTicvSroc5gtRswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFHAT6WJ tRtRAPX7ACzErsTeVg7pMB8GA1UdIwQYMBaAFAXTZVANpLLAAYnzxspZUOAHTHxK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEVERi9FQTY3QTk4QzdD NTcxMUVEQkYyMTM3NjdDNEY5QUUwMi9CZE5sVUEya3NzQUJpZlBHeWxsUTRBZE1m RW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JkTmxVQTJrc3NBQmlmUEd5bGxRNEFkTWZFby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEVERi9FQTY3QTk4QzdDNTcxMUVEQkYyMTM3NjdDNEY5QUUwMi9CZE5sVUEya3Nz QUJpZlBHeWxsUTRBZE1mRW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRDQeOG/HqRIkdZim65O45BVFq3gHc37CpxmL0tFhmET/n4aLehh5g jLC55ieTVWTGPwbMT44fwfoYeZyZlOYThJ4KizmqKB1jLQ7PgjAf/ywFYGnJLufq ICVWKZM5BByLum6kvC+kFqUP9nkfVHjBrpy4dYSGb3y4859KwVJSlB/onKfw+jKG Y3LIVUNAmeMHlpM7fiiryKBLjCE6tvWoUonNPJ6NovsV+fsXFTGcqEw7g1jdQPly oPz2P7siSFHjLFk0FZL4HKKUSlM0JTVe6Kurfw2wJNp+GmDrkoEAwbI7iE7l4J3j hy6zh4BrTJPhMjyS5fnC8oTSMEeiwlH3 -----END CERTIFICATE-----Generated at Sun May 4 17:53:00 2025 by rpki-client