$ rpki-client -vvf rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft File: bxP1UQCfJIptmHQ2AE6FeVFWkns.mft (raw, json) Hash identifier: /YYeJ+WJ8xHM4Id9ZykGC7WCzfuwldNjsTc53CbyJ3o= Subject key identifier: EF:67:29:3A:EF:18:C1:54:19:DD:CA:11:49:D6:33:3A:FF:96:38:69 Authority key identifier: 6F:13:F5:51:00:9F:24:8A:6D:98:74:36:00:4E:85:79:51:56:92:7B Certificate issuer: /CN=A91CAFC4/serialNumber=6F13F551009F248A6D987436004E85795156927B Certificate serial: 08F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bxP1UQCfJIptmHQ2AE6FeVFWkns.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft Manifest number: 08E3 Signing time: Sat 10 May 2025 20:09:49 +0000 Manifest this update: Sat 10 May 2025 20:09:48 +0000 Manifest next update: Sat 17 May 2025 20:09:48 +0000 Files and hashes: 1: bxP1UQCfJIptmHQ2AE6FeVFWkns.crl (hash: xrCWfBSHcae8oTMrahxh3ZRJvL/mdeunS5jBQP/PTG0=) 2: D2039A56AABC11EEA0370F2CC4F9AE02.roa (hash: V5P8MqryTvl9uPbcl4kRoIx/Fd4WpfSFp93LMG/SR30=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.crl rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bxP1UQCfJIptmHQ2AE6FeVFWkns.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 20:09:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2294 (0x8f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CAFC4, serialNumber=6F13F551009F248A6D987436004E85795156927B Validity Not Before: May 10 20:09:48 2025 GMT Not After : May 17 20:09:48 2025 GMT Subject: CN=681fb28d-02fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:36:5d:65:1d:3f:7a:c6:a4:13:10:33:6e:ac: 3f:32:5a:f3:c5:a7:aa:18:22:30:ca:b5:fa:c4:26: ee:4b:ad:87:d6:b0:3e:8f:58:ca:0c:e7:32:3e:73: b6:8d:b1:c9:82:06:10:f2:1c:32:af:2b:d1:e8:b1: a1:81:35:0a:aa:75:f6:67:89:cf:a6:ce:69:0f:a6: 0a:f8:47:c6:79:26:8a:f3:72:d2:23:9d:e9:df:9a: f7:d6:43:ff:c0:f5:30:ec:40:c6:44:82:d6:26:8c: a0:27:07:b6:d8:fb:fc:49:09:24:aa:2c:7a:e4:93: ec:bc:de:1a:4f:96:0b:2d:94:d5:7f:df:cb:ee:b3: e3:11:f4:92:b8:51:9d:e4:5b:65:e0:82:c7:8e:44: 6a:17:ad:9d:41:10:bc:a0:77:a6:61:35:01:20:00: 95:65:3b:a1:93:da:64:45:4c:15:de:87:d9:db:f4: 01:56:41:37:95:47:ed:94:52:c3:68:34:62:d4:3b: f0:a5:ec:b4:dc:84:62:ad:e2:a2:1e:f9:b2:eb:80: 20:9a:4a:55:e5:48:d5:ff:d1:6d:9e:4c:37:93:77: 5d:3b:f4:d1:35:b1:fd:cc:ff:bf:da:48:a2:5b:bc: ad:f7:b2:52:a4:24:35:42:e8:f8:60:6e:68:c4:ef: 56:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:67:29:3A:EF:18:C1:54:19:DD:CA:11:49:D6:33:3A:FF:96:38:69 X509v3 Authority Key Identifier: keyid:6F:13:F5:51:00:9F:24:8A:6D:98:74:36:00:4E:85:79:51:56:92:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bxP1UQCfJIptmHQ2AE6FeVFWkns.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:9b:27:24:6d:a8:4f:55:9f:c3:66:77:f9:53:e5:5d:15:46: e0:f9:5e:e7:f1:a4:01:57:6d:8c:f2:a5:bd:dc:fb:0d:27:5b: 11:a5:d5:9d:96:21:d5:cb:73:51:22:e7:0e:bd:3c:96:f8:05: b7:e3:5d:8f:51:e1:69:e7:3e:85:a7:99:0f:f1:83:44:c5:2c: a6:07:58:05:9a:00:06:7b:af:3b:be:76:02:da:cb:66:65:d6: 2a:45:3a:0e:ff:49:61:62:d5:bb:1c:b9:c4:1d:2c:8f:06:93: ff:42:aa:4f:87:8e:9c:7e:32:a4:3d:da:3a:16:06:b0:c9:17: 34:ff:0b:10:d4:b1:bd:b7:26:e6:a7:d0:ef:e3:40:a7:5c:a1: 31:94:09:a6:4e:9e:81:cc:2e:7e:53:7d:0e:1d:24:b0:8c:b6: 0a:d7:98:58:4c:c6:6d:53:99:34:57:85:9e:bb:03:68:00:51: 25:8d:6a:3b:f4:e8:55:f8:e1:7d:0c:3d:8b:24:72:97:1f:e6: 90:84:2b:46:d8:bf:0a:6e:2f:ee:cb:b4:2e:ab:34:b3:da:11: 61:4d:cb:42:5a:03:ea:50:50:2d:14:b4:d2:54:7b:c7:c6:f2: 9a:62:fc:3d:c0:29:54:03:a6:72:61:61:ad:15:4d:18:5f:22: c7:b8:ed:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FGQzQxMTAvBgNVBAUTKDZGMTNGNTUxMDA5RjI0OEE2RDk4NzQzNjAwNEU4NTc5 NTE1NjkyN0IwHhcNMjUwNTEwMjAwOTQ4WhcNMjUwNTE3MjAwOTQ4WjAYMRYwFAYD VQQDEw02ODFmYjI4ZC0wMmZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmDZdZR0/esakExAzbqw/MlrzxaeqGCIwyrX6xCbuS62H1rA+j1jKDOcyPnO2 jbHJggYQ8hwyryvR6LGhgTUKqnX2Z4nPps5pD6YK+EfGeSaK83LSI53p35r31kP/ wPUw7EDGRILWJoygJwe22Pv8SQkkqix65JPsvN4aT5YLLZTVf9/L7rPjEfSSuFGd 5Ftl4ILHjkRqF62dQRC8oHemYTUBIACVZTuhk9pkRUwV3ofZ2/QBVkE3lUftlFLD aDRi1Dvwpey03IRireKiHvmy64AgmkpV5UjV/9Ftnkw3k3ddO/TRNbH9zP+/2kii W7yt97JSpCQ1Quj4YG5oxO9WTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO9nKTrv GMFUGd3KEUnWMzr/ljhpMB8GA1UdIwQYMBaAFG8T9VEAnySKbZh0NgBOhXlRVpJ7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUZDNC9CQzYwNjJEQ0FG OEExMUVBODU0MkQ4NUZDNEY5QUUwMi9ieFAxVVFDZkpJcHRtSFEyQUU2RmVWRldr bnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J4UDFVUUNmSklwdG1IUTJBRTZGZVZGV2tucy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QUZDNC9CQzYwNjJEQ0FGOEExMUVBODU0MkQ4NUZDNEY5QUUwMi9ieFAxVVFDZkpJ cHRtSFEyQUU2RmVWRldrbnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAmyckbahPVZ/DZnf5U+VdFUbg+V7n8aQBV22M8qW93PsNJ1sRpdWd liHVy3NRIucOvTyW+AW3412PUeFp5z6Fp5kP8YNExSymB1gFmgAGe687vnYC2stm ZdYqRToO/0lhYtW7HLnEHSyPBpP/QqpPh46cfjKkPdo6FgawyRc0/wsQ1LG9tybm p9Dv40CnXKExlAmmTp6BzC5+U30OHSSwjLYK15hYTMZtU5k0V4WeuwNoAFEljWo7 9OhV+OF9DD2LJHKXH+aQhCtG2L8Kbi/uy7QuqzSz2hFhTctCWgPqUFAtFLTSVHvH xvKaYvw9wClUA6ZyYWGtFU0YXyLHuO0z -----END CERTIFICATE-----Generated at Mon May 12 04:07:18 2025 by rpki-client