$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB063/6C0F9610D6ED11EF9D9BF36AC4F9AE02/bLOCDaWkqEstlAm98H8lRf5tCxE.mft File: bLOCDaWkqEstlAm98H8lRf5tCxE.mft (raw, json) Hash identifier: 4IQ/uswNsl5gEN2yILIA5OBQZ/BxITQp0da6qDBbEPY= Subject key identifier: 69:6D:17:0E:7F:EB:1F:B2:FB:A7:B1:4C:1B:AC:A4:50:A3:7E:2F:E1 Authority key identifier: 6C:B3:82:0D:A5:A4:A8:4B:2D:94:09:BD:F0:7F:25:45:FE:6D:0B:11 Certificate issuer: /CN=A91CB063/serialNumber=6CB3820DA5A4A84B2D9409BDF07F2545FE6D0B11 Certificate serial: 3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLOCDaWkqEstlAm98H8lRf5tCxE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB063/6C0F9610D6ED11EF9D9BF36AC4F9AE02/bLOCDaWkqEstlAm98H8lRf5tCxE.mft Manifest number: 3B Signing time: Sun 11 May 2025 06:16:42 +0000 Manifest this update: Sun 11 May 2025 06:16:42 +0000 Manifest next update: Sun 18 May 2025 06:16:42 +0000 Files and hashes: 1: bLOCDaWkqEstlAm98H8lRf5tCxE.crl (hash: CYa203Lwvq07laAWdWnTf2cQ/wnQUryt4zmx12GwJLQ=) 2: 3D3827F2D6EE11EFB955866CC4F9AE02.roa (hash: 4d4Ou4cSb0acdXH9Bn2waQ4IMkbvtakYfcIPMGQdXao=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB063/6C0F9610D6ED11EF9D9BF36AC4F9AE02/bLOCDaWkqEstlAm98H8lRf5tCxE.crl rsync://rpki.apnic.net/member_repository/A91CB063/6C0F9610D6ED11EF9D9BF36AC4F9AE02/bLOCDaWkqEstlAm98H8lRf5tCxE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLOCDaWkqEstlAm98H8lRf5tCxE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 06:16:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60 (0x3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB063, serialNumber=6CB3820DA5A4A84B2D9409BDF07F2545FE6D0B11 Validity Not Before: May 11 06:16:42 2025 GMT Not After : May 18 06:16:42 2025 GMT Subject: CN=682040ca-f05a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:93:6c:7c:f8:8e:00:2d:fd:39:87:0f:f1:39: c7:ae:d0:66:4d:df:13:6a:92:de:96:bb:6e:24:e4: bb:0c:90:b2:ac:42:da:89:08:fc:13:a6:76:c5:44: ae:6b:33:9b:ff:c0:bc:85:0e:86:9e:f3:7f:41:69: 38:39:7e:17:4d:98:9e:92:fd:cc:b0:72:40:d4:74: 98:62:20:06:3b:0b:a4:b4:87:b6:d8:35:61:48:8a: 35:4b:b5:aa:ee:fd:c4:83:b2:31:4d:2e:b7:1d:94: fe:9d:a4:fc:2d:38:48:11:ee:27:38:c2:4a:c6:b1: 80:21:de:d0:22:2c:33:fd:e3:45:62:1c:43:c9:7b: 8d:8b:a1:ee:7e:64:5d:59:4a:5d:36:f8:03:b4:97: 40:1b:1f:52:86:c7:8c:72:92:2f:cb:15:09:a1:b3: b5:ef:e5:9e:6d:be:07:1b:1c:29:85:10:a2:e4:9f: fc:7f:84:9f:80:ac:46:72:0e:ff:97:3d:70:94:24: 16:dc:ee:9a:fa:f2:0c:92:88:75:54:a3:aa:ff:a1: 0a:77:fa:75:10:2c:0c:4a:7c:12:72:c9:30:cd:cc: c7:51:d7:73:dd:70:f7:f7:1f:bb:05:bf:37:2b:bd: 05:9e:64:a0:43:4d:d1:14:f7:88:44:f2:ec:96:25: 17:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:6D:17:0E:7F:EB:1F:B2:FB:A7:B1:4C:1B:AC:A4:50:A3:7E:2F:E1 X509v3 Authority Key Identifier: keyid:6C:B3:82:0D:A5:A4:A8:4B:2D:94:09:BD:F0:7F:25:45:FE:6D:0B:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB063/6C0F9610D6ED11EF9D9BF36AC4F9AE02/bLOCDaWkqEstlAm98H8lRf5tCxE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLOCDaWkqEstlAm98H8lRf5tCxE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB063/6C0F9610D6ED11EF9D9BF36AC4F9AE02/bLOCDaWkqEstlAm98H8lRf5tCxE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:50:75:02:2d:27:2b:9c:10:7a:9e:a4:6a:5b:56:1b:5e:5d: 56:b9:0b:c9:45:68:8b:dc:3a:5d:b0:e6:3e:e9:e9:e1:bd:80: e4:d1:28:cd:20:8e:0a:49:d3:a0:fc:ee:d7:b1:4b:c1:6b:10: 5d:27:5a:7b:d4:e1:86:f2:8e:be:50:34:35:16:78:12:89:6b: 89:63:95:5c:53:13:dc:27:b3:03:ee:6e:e8:97:34:cf:f5:c2: d8:08:b2:e6:27:19:af:9a:28:8e:e3:b3:fa:d0:7a:de:3e:85: b1:5c:e8:78:71:16:c0:e2:8b:78:57:b6:c2:70:a5:65:68:e6: 64:fc:20:11:fe:ea:7a:2b:31:b7:2d:2e:6d:be:4b:d2:67:43: 53:67:5e:10:ad:df:09:3d:1b:d4:cd:8c:8a:e9:f9:40:b3:2b: d1:6b:27:14:4b:da:94:ff:e7:d0:19:cc:8e:5e:b8:34:d9:de: 34:ee:b3:a5:33:04:d5:ff:e3:25:40:df:b8:cb:af:23:13:70: 30:93:cf:78:db:2d:4c:5f:ca:87:aa:b1:04:f4:66:1a:fe:42: f0:28:7c:64:ac:57:a0:f8:d6:d7:4a:ec:9c:e8:1a:e6:0f:36: 19:4a:b4:43:d9:df:7c:dc:a6:a8:1a:d2:ab:19:65:e7:b0:a0: fc:9d:b0:8d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD QjA2MzExMC8GA1UEBRMoNkNCMzgyMERBNUE0QTg0QjJEOTQwOUJERjA3RjI1NDVG RTZEMEIxMTAeFw0yNTA1MTEwNjE2NDJaFw0yNTA1MTgwNjE2NDJaMBgxFjAUBgNV BAMTDTY4MjA0MGNhLWYwNWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+k2x8+I4ALf05hw/xOceu0GZN3xNqkt6Wu24k5LsMkLKsQtqJCPwTpnbFRK5r M5v/wLyFDoae839BaTg5fhdNmJ6S/cywckDUdJhiIAY7C6S0h7bYNWFIijVLtaru /cSDsjFNLrcdlP6dpPwtOEgR7ic4wkrGsYAh3tAiLDP940ViHEPJe42Loe5+ZF1Z Sl02+AO0l0AbH1KGx4xyki/LFQmhs7Xv5Z5tvgcbHCmFEKLkn/x/hJ+ArEZyDv+X PXCUJBbc7pr68gySiHVUo6r/oQp3+nUQLAxKfBJyyTDNzMdR13PdcPf3H7sFvzcr vQWeZKBDTdEU94hE8uyWJRfjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUaW0XDn/r H7L7p7FMG6ykUKN+L+EwHwYDVR0jBBgwFoAUbLOCDaWkqEstlAm98H8lRf5tCxEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNCMDYzLzZDMEY5NjEwRDZF RDExRUY5RDlCRjM2QUM0RjlBRTAyL2JMT0NEYVdrcUVzdGxBbTk4SDhsUmY1dEN4 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYkxPQ0RhV2txRXN0bEFtOThIOGxSZjV0Q3hFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNC MDYzLzZDMEY5NjEwRDZFRDExRUY5RDlCRjM2QUM0RjlBRTAyL2JMT0NEYVdrcUVz dGxBbTk4SDhsUmY1dEN4RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE1QdQItJyucEHqepGpbVhteXVa5C8lFaIvcOl2w5j7p6eG9gOTRKM0g jgpJ06D87texS8FrEF0nWnvU4Ybyjr5QNDUWeBKJa4ljlVxTE9wnswPubuiXNM/1 wtgIsuYnGa+aKI7js/rQet4+hbFc6HhxFsDii3hXtsJwpWVo5mT8IBH+6norMbct Lm2+S9JnQ1NnXhCt3wk9G9TNjIrp+UCzK9FrJxRL2pT/59AZzI5euDTZ3jTus6Uz BNX/4yVA37jLryMTcDCTz3jbLUxfyoeqsQT0Zhr+QvAofGSsV6D41tdK7JzoGuYP NhlKtEPZ33zcpqga0qsZZeewoPydsI0= -----END CERTIFICATE-----Generated at Mon May 12 22:45:14 2025 by rpki-client