$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft File: bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft (raw, json) Hash identifier: Kt62uzM9/TKhPqOhCHsibrXI7oKBp1qnYCwuWYKoM0Y= Subject key identifier: 9C:6B:CA:7B:35:26:38:BD:49:D9:D6:A8:88:05:EF:53:BE:6D:DC:C2 Authority key identifier: 6C:19:46:97:81:6F:9B:13:0B:A5:3C:F4:BE:E6:76:01:59:4E:8C:B1 Certificate issuer: /CN=A91CCAF1/serialNumber=6C194697816F9B130BA53CF4BEE67601594E8CB1 Certificate serial: 6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft Manifest number: 6E Signing time: Tue 13 May 2025 06:04:26 +0000 Manifest this update: Tue 13 May 2025 06:04:25 +0000 Manifest next update: Tue 20 May 2025 06:04:25 +0000 Files and hashes: 1: bBlGl4FvmxMLpTz0vuZ2AVlOjLE.crl (hash: bT4buF1i+7LGPkDL7I4OANFusPAElSHC1wv47E4ia+Q=) 2: BF71D9D0F26811EFBC446868C4F9AE02.roa (hash: 7+qKEqRnu4TPJKKakjwpNT1iFIHMXPBmy/g9UJm3iJo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.crl rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 06:04:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 111 (0x6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CCAF1, serialNumber=6C194697816F9B130BA53CF4BEE67601594E8CB1 Validity Not Before: May 13 06:04:25 2025 GMT Not After : May 20 06:04:25 2025 GMT Subject: CN=6822e0e9-24a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:af:91:20:e3:39:4b:96:c8:ec:c4:41:a8:43: 9c:01:ea:e6:67:9b:ae:ad:01:80:01:3d:1e:5b:8f: 85:b2:79:bb:04:49:59:3c:3a:e2:c0:47:a7:14:95: 08:f9:22:26:bc:1c:ab:eb:24:50:5a:ab:ad:03:66: 6b:00:12:28:f1:27:6d:59:1e:64:c2:04:5b:a5:07: 82:b9:5b:b7:57:12:94:f0:f9:4c:00:13:1d:a8:64: a3:ca:cb:0d:bd:bf:f3:b8:54:50:aa:c7:b1:f1:1d: 3c:25:6e:9a:30:d1:0f:aa:4d:a2:c1:1f:5a:03:5e: bf:f1:6a:d1:4d:72:8c:94:97:31:48:25:d7:d9:f1: b8:26:02:1c:38:bc:3a:15:cd:f1:06:05:d8:e8:3d: 46:44:69:7c:5c:f2:e7:30:7e:2c:06:40:1f:5a:4d: 60:e1:41:26:1a:32:f3:4a:b7:b6:d2:05:01:53:44: 8b:3e:5e:7f:c9:99:9a:69:e2:dc:b7:08:e8:8e:9e: e7:c8:fc:6b:c6:23:14:78:55:ef:93:0b:d9:13:4d: f0:de:10:8c:95:7a:a9:cb:40:09:44:3a:1a:64:10: ea:05:37:9c:21:b9:fe:3f:06:08:8e:3c:6f:b8:82: 7b:b1:59:bc:bd:f1:fe:06:11:eb:a0:e8:4f:60:d2: f2:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:6B:CA:7B:35:26:38:BD:49:D9:D6:A8:88:05:EF:53:BE:6D:DC:C2 X509v3 Authority Key Identifier: keyid:6C:19:46:97:81:6F:9B:13:0B:A5:3C:F4:BE:E6:76:01:59:4E:8C:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:a1:3f:51:06:27:9b:43:3c:9a:2f:d8:5b:24:9e:7b:12:90: 6a:60:ae:e8:8e:43:a7:7e:8b:8a:d9:62:c0:41:21:40:df:e0: b5:e7:6a:2a:d3:2c:dd:7a:a3:82:d1:22:30:29:07:4a:34:7a: 75:d1:eb:6d:24:6a:d7:c2:b0:1d:7a:69:37:16:5c:ad:4a:79: 1c:e2:6f:6e:c3:99:46:bc:c4:96:21:de:df:52:ac:d4:7a:a8: 8c:c7:a0:5d:cc:f8:f0:ce:0e:ea:3b:c7:fc:d8:40:e5:94:e2: 0c:ba:dd:62:36:f0:73:a1:81:25:6a:6a:34:ac:96:9e:78:4c: c6:0a:1e:7a:99:7e:f9:56:81:a9:a3:8c:30:29:79:24:4f:7e: fa:d0:95:f8:c4:3d:57:5a:a3:a5:ae:fd:0c:66:80:9c:6f:69: 6d:99:95:58:18:e3:76:36:6d:b0:d5:a2:7a:d6:9c:8c:31:3b: 46:f2:5a:3e:49:b8:de:2e:68:b6:01:16:9a:6d:fb:35:19:99: 34:ea:7c:ac:41:d5:bc:5f:d1:37:b3:05:e7:a1:d3:0c:39:df: 90:0f:33:7d:26:f9:5f:a2:a6:f9:07:35:bb:50:61:0f:26:7b: e6:bc:b9:16:30:c4:e3:4d:57:32:a7:bb:8d:a5:82:06:2a:28: 63:fb:3e:71 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD Q0FGMTExMC8GA1UEBRMoNkMxOTQ2OTc4MTZGOUIxMzBCQTUzQ0Y0QkVFNjc2MDE1 OTRFOENCMTAeFw0yNTA1MTMwNjA0MjVaFw0yNTA1MjAwNjA0MjVaMBgxFjAUBgNV BAMTDTY4MjJlMGU5LTI0YTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDlr5Eg4zlLlsjsxEGoQ5wB6uZnm66tAYABPR5bj4WyebsESVk8OuLAR6cUlQj5 Iia8HKvrJFBaq60DZmsAEijxJ21ZHmTCBFulB4K5W7dXEpTw+UwAEx2oZKPKyw29 v/O4VFCqx7HxHTwlbpow0Q+qTaLBH1oDXr/xatFNcoyUlzFIJdfZ8bgmAhw4vDoV zfEGBdjoPUZEaXxc8ucwfiwGQB9aTWDhQSYaMvNKt7bSBQFTRIs+Xn/JmZpp4ty3 COiOnufI/GvGIxR4Ve+TC9kTTfDeEIyVeqnLQAlEOhpkEOoFN5whuf4/BgiOPG+4 gnuxWby98f4GEeug6E9g0vIZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUnGvKezUm OL1J2daoiAXvU75t3MIwHwYDVR0jBBgwFoAUbBlGl4FvmxMLpTz0vuZ2AVlOjLEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNDQUYxLzA5QzBEMzY2OEFB RDExRUZCRUY5MTY2QUM0RjlBRTAyL2JCbEdsNEZ2bXhNTHBUejB2dVoyQVZsT2pM RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYkJsR2w0RnZteE1McFR6MHZ1WjJBVmxPakxFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUND QUYxLzA5QzBEMzY2OEFBRDExRUZCRUY5MTY2QUM0RjlBRTAyL2JCbEdsNEZ2bXhN THBUejB2dVoyQVZsT2pMRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADChP1EGJ5tDPJov2FsknnsSkGpgruiOQ6d+i4rZYsBBIUDf4LXnairT LN16o4LRIjApB0o0enXR620katfCsB16aTcWXK1KeRzib27DmUa8xJYh3t9SrNR6 qIzHoF3M+PDODuo7x/zYQOWU4gy63WI28HOhgSVqajSslp54TMYKHnqZfvlWgamj jDApeSRPfvrQlfjEPVdao6Wu/QxmgJxvaW2ZlVgY43Y2bbDVonrWnIwxO0byWj5J uN4uaLYBFppt+zUZmTTqfKxB1bxf0TezBeeh0ww535APM30m+V+ipvkHNbtQYQ8m e+a8uRYwxONNVzKnu42lggYqKGP7PnE= -----END CERTIFICATE-----Generated at Tue May 13 13:14:12 2025 by rpki-client