$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/BdNlUA2kssABifPGyllQ4AdMfEo.mft File: BdNlUA2kssABifPGyllQ4AdMfEo.mft (raw, json) Hash identifier: gnqJZNbl4eFMg/+9JLSw5MQMlBjlCH3T/SGq6mYRgs0= Subject key identifier: 68:2C:AA:31:3E:E5:66:E6:56:00:76:29:22:90:EA:E3:2A:A1:20:2D Authority key identifier: 05:D3:65:50:0D:A4:B2:C0:01:89:F3:C6:CA:59:50:E0:07:4C:7C:4A Certificate issuer: /CN=A91C8EDF/serialNumber=05D365500DA4B2C00189F3C6CA5950E0074C7C4A Certificate serial: 01F8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BdNlUA2kssABifPGyllQ4AdMfEo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/BdNlUA2kssABifPGyllQ4AdMfEo.mft Manifest number: 01EB Signing time: Tue 01 Jul 2025 03:07:37 +0000 Manifest this update: Tue 01 Jul 2025 03:07:37 +0000 Manifest next update: Tue 08 Jul 2025 03:07:37 +0000 Files and hashes: 1: BdNlUA2kssABifPGyllQ4AdMfEo.crl (hash: O5iJEFHYfybRf5FjEqPSxPO8VkEMKMwYkCOV7PIN6UQ=) 2: 999FA66011C711EF80B27457C4F9AE02.roa (hash: O9DoSIXGoRGfPB1leReaXjE3LSp6RO52qLUkhTkRojY=) 3: AD0CC70C122411EF8BEED51AC4F9AE02.roa (hash: sLDSVMLU6jI3BpmMuSVMPzt56rvnKddxBYgL4QmGgG0=) 4: A6524550C4E411EEAFF83C50C4F9AE02.roa (hash: d4lk9eKDk4hQ5jM/CM/7dtQ4pw21vQcp7xDVqjydE4E=) 5: C44A1D987E0511EDBA2BAF7FC4F9AE02.roa (hash: UGxKabSt5VefJdKh3JQwjTM53St2aD5lvYeCqBjnhKg=) 6: 99D4FC3212DC11EFB2470B7FC4F9AE02.roa (hash: E6NCI4JuiZoY4K+zXIld9/zlqD6qc3HulCUWdCEuTgY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/BdNlUA2kssABifPGyllQ4AdMfEo.crl rsync://rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/BdNlUA2kssABifPGyllQ4AdMfEo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BdNlUA2kssABifPGyllQ4AdMfEo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 03:07:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 504 (0x1f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8EDF, serialNumber=05D365500DA4B2C00189F3C6CA5950E0074C7C4A Validity Not Before: Jul 1 03:07:37 2025 GMT Not After : Jul 8 03:07:37 2025 GMT Subject: CN=686350f9-9680 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:c2:99:fd:a4:5a:a1:de:6a:11:f1:34:31:3c: 0a:1a:d0:8f:b9:ab:1c:01:3c:83:81:77:88:10:8f: cf:80:96:d5:3c:aa:7c:47:68:1a:82:38:ad:3e:00: e1:87:18:a3:03:78:94:97:bb:c2:52:0c:ee:2c:e2: 58:f4:a1:f6:6a:2e:0c:04:cc:55:51:96:2e:47:72: ae:88:9a:75:7d:64:ba:39:c8:23:3f:ed:b0:af:55: 01:82:0a:13:7e:99:26:00:25:e0:56:2a:d0:19:63: 7b:af:41:f0:b5:eb:8f:0c:75:bb:b4:b5:81:dc:40: 56:07:18:07:19:6c:a7:43:91:e4:7b:db:36:e1:d9: 89:26:41:f9:13:f6:bf:4f:a8:0f:ab:79:66:60:be: 10:cf:10:82:8a:9b:5f:53:25:b9:d5:9c:f9:ea:44: b9:fc:f8:d2:aa:91:43:2d:cc:83:9a:5c:73:12:dd: 82:d0:0a:5c:15:a2:a0:be:2c:09:65:93:ff:4e:bd: aa:7a:b6:8d:c4:b4:28:18:49:0f:27:14:ec:eb:65: 48:2b:c9:bb:aa:df:e1:6a:f6:06:7b:f9:05:3e:4a: ee:1f:e7:53:8e:79:44:36:c1:73:63:31:3f:7e:fa: 53:5d:7d:c2:b4:44:36:c4:cb:a5:c3:3c:f0:d2:35: b7:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:2C:AA:31:3E:E5:66:E6:56:00:76:29:22:90:EA:E3:2A:A1:20:2D X509v3 Authority Key Identifier: keyid:05:D3:65:50:0D:A4:B2:C0:01:89:F3:C6:CA:59:50:E0:07:4C:7C:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/BdNlUA2kssABifPGyllQ4AdMfEo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BdNlUA2kssABifPGyllQ4AdMfEo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8EDF/EA67A98C7C5711EDBF213767C4F9AE02/BdNlUA2kssABifPGyllQ4AdMfEo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:58:08:dd:6e:2f:c2:60:0a:11:80:8e:48:d9:1d:fa:43:b4: 57:a6:af:f5:a8:ec:61:2f:54:c8:35:5d:d3:b3:bc:6b:5a:d9: 18:7f:02:db:5f:1c:a8:c0:24:0b:27:ba:38:c5:1b:75:2e:e4: df:32:c6:75:3f:29:a3:ec:a0:2b:03:5a:59:a7:fe:a4:34:5e: c2:3c:97:a4:48:e8:f6:3f:5e:01:0d:e5:97:9a:68:af:ae:b0: 09:ac:a3:b3:05:4f:93:03:ad:b6:0e:e0:d6:dc:89:e7:e1:bf: 4e:8f:26:03:1b:62:1c:61:b1:0b:ae:7d:6b:4b:d4:71:65:39: a2:9a:1f:c2:98:25:15:88:82:83:a4:47:95:bd:1e:84:61:08: 3f:c9:35:5b:33:02:60:af:76:7f:59:fb:6a:42:4c:2e:36:a1: fe:d2:72:b2:5f:18:e4:60:a6:fa:43:1e:dd:77:5e:ca:88:f1: 86:2d:21:39:d2:44:8c:42:f1:2b:9f:81:ff:30:13:d9:05:66: b4:46:db:b0:9e:88:87:69:12:cd:7c:0f:d5:9d:69:e4:e0:f2: 12:60:55:a8:f6:ef:4a:1f:d2:5e:cf:da:60:ac:9f:1a:d4:36: a9:94:22:39:9d:2f:93:9b:64:3b:a2:ff:5b:2f:da:85:7c:75: d7:53:d9:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhFREYxMTAvBgNVBAUTKDA1RDM2NTUwMERBNEIyQzAwMTg5RjNDNkNBNTk1MEUw MDc0QzdDNEEwHhcNMjUwNzAxMDMwNzM3WhcNMjUwNzA4MDMwNzM3WjAYMRYwFAYD VQQDEw02ODYzNTBmOS05NjgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm8KZ/aRaod5qEfE0MTwKGtCPuascATyDgXeIEI/PgJbVPKp8R2gagjitPgDh hxijA3iUl7vCUgzuLOJY9KH2ai4MBMxVUZYuR3KuiJp1fWS6OcgjP+2wr1UBggoT fpkmACXgVirQGWN7r0HwteuPDHW7tLWB3EBWBxgHGWynQ5Hke9s24dmJJkH5E/a/ T6gPq3lmYL4QzxCCiptfUyW51Zz56kS5/PjSqpFDLcyDmlxzEt2C0ApcFaKgviwJ ZZP/Tr2qeraNxLQoGEkPJxTs62VIK8m7qt/havYGe/kFPkruH+dTjnlENsFzYzE/ fvpTXX3CtEQ2xMulwzzw0jW3CQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGgsqjE+ 5WbmVgB2KSKQ6uMqoSAtMB8GA1UdIwQYMBaAFAXTZVANpLLAAYnzxspZUOAHTHxK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEVERi9FQTY3QTk4QzdD NTcxMUVEQkYyMTM3NjdDNEY5QUUwMi9CZE5sVUEya3NzQUJpZlBHeWxsUTRBZE1m RW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JkTmxVQTJrc3NBQmlmUEd5bGxRNEFkTWZFby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEVERi9FQTY3QTk4QzdDNTcxMUVEQkYyMTM3NjdDNEY5QUUwMi9CZE5sVUEya3Nz QUJpZlBHeWxsUTRBZE1mRW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsWAjdbi/CYAoRgI5I2R36Q7RXpq/1qOxhL1TINV3Ts7xrWtkYfwLb XxyowCQLJ7o4xRt1LuTfMsZ1Pymj7KArA1pZp/6kNF7CPJekSOj2P14BDeWXmmiv rrAJrKOzBU+TA622DuDW3Inn4b9OjyYDG2IcYbELrn1rS9RxZTmimh/CmCUViIKD pEeVvR6EYQg/yTVbMwJgr3Z/WftqQkwuNqH+0nKyXxjkYKb6Qx7dd17KiPGGLSE5 0kSMQvErn4H/MBPZBWa0RtuwnoiHaRLNfA/VnWnk4PISYFWo9u9KH9Jez9pgrJ8a 1DaplCI5nS+Tm2Q7ov9bL9qFfHXXU9nc -----END CERTIFICATE-----Generated at Wed Jul 2 19:16:26 2025 by rpki-client