$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft File: BUM8OuqKSXAsmoLuyV0WtVA86mA.mft (raw, json) Hash identifier: bkmtI2inU24LTT2vzfZib3mfPvZsAbScNS/U8eaW/do= Subject key identifier: 04:7D:C2:44:55:18:AE:0D:7E:56:7E:44:A5:A0:67:48:D9:B3:63:85 Authority key identifier: 05:43:3C:3A:EA:8A:49:70:2C:9A:82:EE:C9:5D:16:B5:50:3C:EA:60 Certificate issuer: /CN=A91CFFA0/serialNumber=05433C3AEA8A49702C9A82EEC95D16B5503CEA60 Certificate serial: 0D4B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BUM8OuqKSXAsmoLuyV0WtVA86mA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft Manifest number: 0D29 Signing time: Wed 14 May 2025 18:09:49 +0000 Manifest this update: Wed 14 May 2025 18:09:48 +0000 Manifest next update: Wed 21 May 2025 18:09:48 +0000 Files and hashes: 1: BUM8OuqKSXAsmoLuyV0WtVA86mA.crl (hash: YJC5FDe367nwBJ5XQ32jq94c2GJgYUnGXIb7sSOP8Mg=) 2: 83ECD7C40CCA11ED97820077C4F9AE02.roa (hash: tsWCAJh3hDUuF0jt3mDhnNo48pJ1cTxWnbkE+ZQXBxw=) 3: 0E3F36D8C43D11EBAB31777FC4F9AE02.roa (hash: BThAKf2icEZsZqpXgnFl9VpqvpRKYGs7e0515Blb0yw=) 4: 1F4E1CC014D311EA81309110C4F9AE02.roa (hash: zPumQuSa3V5Do5kU4HAy8QEzfyGrDVZPMvaKh+jhJxk=) 5: E6F0F39214CE11EA9E740182C4F9AE02.roa (hash: zpETj3vTU+4JGJFNH2bJangxDJpoV//my0UXRjaLeMk=) 6: 4CD3C8DC14D011EA93366A85C4F9AE02.roa (hash: JwI9xru2SKVmPRR5P37ZWy6F3njGvB5RFaYgtRHbNFY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.crl rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BUM8OuqKSXAsmoLuyV0WtVA86mA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 18:09:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3403 (0xd4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFA0, serialNumber=05433C3AEA8A49702C9A82EEC95D16B5503CEA60 Validity Not Before: May 14 18:09:48 2025 GMT Not After : May 21 18:09:48 2025 GMT Subject: CN=6824dc6c-1a20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:31:b2:f0:be:98:31:c4:26:8f:09:ba:4a:5b: 0e:2e:7b:ec:b1:ad:df:fd:96:32:3d:26:d0:e9:8f: 51:28:c4:52:a6:c6:8c:37:69:4c:1d:2a:07:86:a8: 88:b2:83:99:d7:ec:fa:53:b7:ce:c2:39:b7:44:94: 26:98:09:f8:d4:d2:c8:af:1b:b5:94:e6:fb:5e:e0: d4:85:90:c8:49:ee:b8:db:35:94:7c:f9:d6:38:8c: 53:e1:a1:f6:8c:ad:48:5b:ec:17:13:b0:81:09:07: 39:42:98:b6:c9:3a:0e:c2:55:e2:d6:6b:b3:36:36: 2f:8b:ae:4a:90:d2:f3:63:60:20:da:73:11:25:b4: 78:f7:a4:e0:43:3e:0b:c2:dd:6d:b6:18:0d:ff:64: 28:26:69:19:9e:22:c3:20:d6:a9:72:6a:d1:ab:87: 79:52:1a:03:c8:03:5d:50:d4:35:6a:36:50:42:a4: 6e:dc:29:26:d5:ab:e8:fd:04:9c:2b:45:49:26:5c: df:c0:d6:23:8a:06:56:97:b1:79:a8:80:0d:8f:cb: f8:61:b8:f6:9a:ed:04:47:0a:db:df:c1:f7:2a:a5: 8c:f5:eb:72:17:42:7f:d2:34:12:d5:f7:74:56:63: 11:5f:e4:7d:54:1e:17:5e:47:77:3a:36:61:eb:57: 8f:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:7D:C2:44:55:18:AE:0D:7E:56:7E:44:A5:A0:67:48:D9:B3:63:85 X509v3 Authority Key Identifier: keyid:05:43:3C:3A:EA:8A:49:70:2C:9A:82:EE:C9:5D:16:B5:50:3C:EA:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BUM8OuqKSXAsmoLuyV0WtVA86mA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:6a:c7:79:40:b2:91:e8:77:20:d4:83:f8:a6:34:f0:58:25: 89:0a:cc:0d:0a:35:0e:bf:fe:48:2a:08:b3:77:e3:91:94:f2: 52:e2:fe:89:8f:f8:af:37:b3:28:bb:a0:a9:46:1a:62:d6:ed: ab:3c:62:19:fb:ee:65:98:75:f6:16:75:22:2e:50:5d:f3:c8: 77:ee:b2:30:bb:05:cc:ae:14:2a:23:f0:2a:f8:a8:4d:93:a8: 44:43:30:37:80:3f:31:ce:96:a8:7e:d5:2d:b1:6f:5e:7d:66: 36:cd:07:6e:63:d6:79:95:f8:23:2e:39:9d:fd:23:37:f0:84: f6:75:dd:a2:f3:76:29:ea:86:ca:94:f1:31:d5:5f:5b:7b:0a: 19:fc:62:17:cd:ee:13:a3:c6:9f:d6:ea:c6:3f:e4:3f:aa:bb: 7f:54:d0:4b:aa:7b:b7:d0:3a:24:02:86:9d:c5:5a:af:d2:33: 4f:b1:3e:cb:4d:2b:f0:d6:78:e0:ce:1a:9b:c0:8d:6f:b6:cd: e4:ac:43:ec:3a:1c:bd:39:9c:82:56:25:64:1a:b0:f6:a9:5a: 14:d9:04:8c:7f:17:78:a6:53:93:b7:00:71:49:e2:96:2c:8e: 8b:e7:f5:d4:82:7d:d2:0e:05:05:e0:0b:36:0f:9a:32:34:f4: 70:8b:95:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDUswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGQTAxMTAvBgNVBAUTKDA1NDMzQzNBRUE4QTQ5NzAyQzlBODJFRUM5NUQxNkI1 NTAzQ0VBNjAwHhcNMjUwNTE0MTgwOTQ4WhcNMjUwNTIxMTgwOTQ4WjAYMRYwFAYD VQQDEw02ODI0ZGM2Yy0xYTIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxDGy8L6YMcQmjwm6SlsOLnvssa3f/ZYyPSbQ6Y9RKMRSpsaMN2lMHSoHhqiI soOZ1+z6U7fOwjm3RJQmmAn41NLIrxu1lOb7XuDUhZDISe642zWUfPnWOIxT4aH2 jK1IW+wXE7CBCQc5Qpi2yToOwlXi1muzNjYvi65KkNLzY2Ag2nMRJbR496TgQz4L wt1tthgN/2QoJmkZniLDINapcmrRq4d5UhoDyANdUNQ1ajZQQqRu3Ckm1avo/QSc K0VJJlzfwNYjigZWl7F5qIANj8v4Ybj2mu0ERwrb38H3KqWM9etyF0J/0jQS1fd0 VmMRX+R9VB4XXkd3OjZh61ePSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAR9wkRV GK4NflZ+RKWgZ0jZs2OFMB8GA1UdIwQYMBaAFAVDPDrqiklwLJqC7sldFrVQPOpg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZBMC8xNTBCRjY5MEQ4 Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9CVU04T3VxS1NYQXNtb0x1eVYwV3RWQTg2 bUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JVTThPdXFLU1hBc21vTHV5VjBXdFZBODZtQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkZBMC8xNTBCRjY5MEQ4Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9CVU04T3VxS1NY QXNtb0x1eVYwV3RWQTg2bUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7asd5QLKR6Hcg1IP4pjTwWCWJCswNCjUOv/5IKgizd+ORlPJS4v6J j/ivN7Mou6CpRhpi1u2rPGIZ++5lmHX2FnUiLlBd88h37rIwuwXMrhQqI/Aq+KhN k6hEQzA3gD8xzpaoftUtsW9efWY2zQduY9Z5lfgjLjmd/SM38IT2dd2i83Yp6obK lPEx1V9bewoZ/GIXze4To8af1urGP+Q/qrt/VNBLqnu30DokAoadxVqv0jNPsT7L TSvw1njgzhqbwI1vts3krEPsOhy9OZyCViVkGrD2qVoU2QSMfxd4plOTtwBxSeKW LI6L5/XUgn3SDgUF4As2D5oyNPRwi5UF -----END CERTIFICATE-----Generated at Thu May 15 12:15:31 2025 by rpki-client