$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft File: BUM8OuqKSXAsmoLuyV0WtVA86mA.mft (raw, json) Hash identifier: MSEZCkCigVhfRxdrBSxbAGaSQHrcYTUzjvs3aWihXus= Subject key identifier: 22:21:83:34:D7:F3:40:6C:05:E3:2C:D3:F2:42:2D:FB:84:C4:C3:38 Authority key identifier: 05:43:3C:3A:EA:8A:49:70:2C:9A:82:EE:C9:5D:16:B5:50:3C:EA:60 Certificate issuer: /CN=A91CFFA0/serialNumber=05433C3AEA8A49702C9A82EEC95D16B5503CEA60 Certificate serial: 0D63 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BUM8OuqKSXAsmoLuyV0WtVA86mA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft Manifest number: 0D41 Signing time: Wed 02 Jul 2025 18:13:58 +0000 Manifest this update: Wed 02 Jul 2025 18:13:57 +0000 Manifest next update: Wed 09 Jul 2025 18:13:57 +0000 Files and hashes: 1: BUM8OuqKSXAsmoLuyV0WtVA86mA.crl (hash: fs6xA91nzbPLCSy4QpOxWfoyCXhp/oXpDWBlhYc+7LE=) 2: 83ECD7C40CCA11ED97820077C4F9AE02.roa (hash: tsWCAJh3hDUuF0jt3mDhnNo48pJ1cTxWnbkE+ZQXBxw=) 3: 0E3F36D8C43D11EBAB31777FC4F9AE02.roa (hash: BThAKf2icEZsZqpXgnFl9VpqvpRKYGs7e0515Blb0yw=) 4: 1F4E1CC014D311EA81309110C4F9AE02.roa (hash: zPumQuSa3V5Do5kU4HAy8QEzfyGrDVZPMvaKh+jhJxk=) 5: E6F0F39214CE11EA9E740182C4F9AE02.roa (hash: zpETj3vTU+4JGJFNH2bJangxDJpoV//my0UXRjaLeMk=) 6: 4CD3C8DC14D011EA93366A85C4F9AE02.roa (hash: JwI9xru2SKVmPRR5P37ZWy6F3njGvB5RFaYgtRHbNFY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.crl rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BUM8OuqKSXAsmoLuyV0WtVA86mA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:13:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3427 (0xd63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFA0, serialNumber=05433C3AEA8A49702C9A82EEC95D16B5503CEA60 Validity Not Before: Jul 2 18:13:57 2025 GMT Not After : Jul 9 18:13:57 2025 GMT Subject: CN=686576e5-4d4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:a1:88:a1:b4:ce:05:86:31:ce:19:3c:b2:e3: 93:14:6e:a8:ec:31:b6:26:43:23:fa:53:23:40:fd: 1d:b7:57:e4:fd:d7:07:72:01:26:47:a3:e5:b5:fe: 62:4e:9e:f6:47:0c:38:73:64:f6:fc:de:78:fb:ac: 35:8b:87:31:20:24:24:5a:60:ce:98:8d:16:11:af: ae:ef:4f:3f:e1:92:b6:75:db:c3:d1:67:d4:d3:a5: 99:bf:06:e8:76:c3:91:22:57:2b:c4:bd:c8:3b:ac: 5c:d2:bd:42:55:ae:52:0a:dd:1e:81:83:56:35:35: 74:b1:cf:fc:e1:39:25:95:be:aa:91:e3:57:54:af: 2f:26:0b:2f:76:5f:4b:a2:f8:7b:8d:39:de:de:7e: e6:a7:60:87:c1:ac:b8:05:c9:de:03:ab:81:30:4e: 41:92:9b:d3:a7:a4:33:9e:50:79:df:27:29:21:5b: 26:1b:69:b3:46:e3:7c:fa:e3:c5:07:f6:78:55:5c: 35:35:9c:57:3b:90:03:dc:5d:86:1f:f9:19:f7:05: df:9d:1c:6d:d8:7f:77:c5:d0:23:1f:bf:07:c9:32: 40:8c:a9:09:f6:0b:8b:b2:b4:0c:69:9c:2f:b6:af: 4a:03:5e:70:f3:0a:57:cb:c7:d9:7d:8b:fa:33:3e: 37:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:21:83:34:D7:F3:40:6C:05:E3:2C:D3:F2:42:2D:FB:84:C4:C3:38 X509v3 Authority Key Identifier: keyid:05:43:3C:3A:EA:8A:49:70:2C:9A:82:EE:C9:5D:16:B5:50:3C:EA:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BUM8OuqKSXAsmoLuyV0WtVA86mA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:cf:ac:8f:39:b9:e2:08:be:8d:e7:9c:13:0b:17:ab:b4:c4: da:fe:f7:5d:93:d4:da:7b:98:52:b9:c7:0a:dc:c3:20:46:97: f2:1a:e9:5f:d7:d0:40:44:a9:e2:32:41:c0:cc:0d:64:df:20: 9c:03:44:a6:cd:e5:71:9f:d8:ee:77:57:53:63:ad:d0:15:53: ca:bd:97:66:c9:92:32:dc:df:69:1a:80:81:84:a2:8f:33:27: 34:3a:3f:97:d4:bd:c3:db:57:26:2a:09:4d:18:48:93:23:1b: a2:9f:7c:af:00:eb:b0:fd:0d:c2:fa:02:60:45:01:fa:8e:f4: da:b2:17:5d:3f:44:20:6c:5a:3d:2d:e7:88:91:42:19:1a:6b: 1e:ea:73:93:a4:4b:cb:b4:12:21:e4:bb:ba:ef:cd:6e:89:1c: a1:c7:7b:29:9f:eb:db:4f:f5:c0:de:5d:7f:00:bb:56:10:ab: b5:5a:94:78:ea:6e:21:73:df:bc:63:fc:b7:fa:23:fd:64:ef: 3f:85:66:a9:2f:70:71:f6:eb:04:be:23:97:f0:ab:c1:6c:62: c4:77:67:f4:63:62:24:d9:49:7e:1d:c0:18:6c:2d:9a:59:64: 25:0a:de:27:5e:0f:2c:18:b3:64:de:33:c6:e8:29:95:30:4c: 91:6a:0a:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDWMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGQTAxMTAvBgNVBAUTKDA1NDMzQzNBRUE4QTQ5NzAyQzlBODJFRUM5NUQxNkI1 NTAzQ0VBNjAwHhcNMjUwNzAyMTgxMzU3WhcNMjUwNzA5MTgxMzU3WjAYMRYwFAYD VQQDEw02ODY1NzZlNS00ZDRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqaGIobTOBYYxzhk8suOTFG6o7DG2JkMj+lMjQP0dt1fk/dcHcgEmR6Pltf5i Tp72Rww4c2T2/N54+6w1i4cxICQkWmDOmI0WEa+u708/4ZK2ddvD0WfU06WZvwbo dsORIlcrxL3IO6xc0r1CVa5SCt0egYNWNTV0sc/84Tkllb6qkeNXVK8vJgsvdl9L ovh7jTne3n7mp2CHway4BcneA6uBME5BkpvTp6QznlB53ycpIVsmG2mzRuN8+uPF B/Z4VVw1NZxXO5AD3F2GH/kZ9wXfnRxt2H93xdAjH78HyTJAjKkJ9guLsrQMaZwv tq9KA15w8wpXy8fZfYv6Mz43SwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCIhgzTX 80BsBeMs0/JCLfuExMM4MB8GA1UdIwQYMBaAFAVDPDrqiklwLJqC7sldFrVQPOpg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZBMC8xNTBCRjY5MEQ4 Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9CVU04T3VxS1NYQXNtb0x1eVYwV3RWQTg2 bUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JVTThPdXFLU1hBc21vTHV5VjBXdFZBODZtQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkZBMC8xNTBCRjY5MEQ4Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9CVU04T3VxS1NY QXNtb0x1eVYwV3RWQTg2bUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAz6yPObniCL6N55wTCxertMTa/vddk9Tae5hSuccK3MMgRpfyGulf 19BARKniMkHAzA1k3yCcA0SmzeVxn9jud1dTY63QFVPKvZdmyZIy3N9pGoCBhKKP Myc0Oj+X1L3D21cmKglNGEiTIxuin3yvAOuw/Q3C+gJgRQH6jvTashddP0QgbFo9 LeeIkUIZGmse6nOTpEvLtBIh5Lu6781uiRyhx3spn+vbT/XA3l1/ALtWEKu1WpR4 6m4hc9+8Y/y3+iP9ZO8/hWapL3Bx9usEviOX8KvBbGLEd2f0Y2Ik2Ul+HcAYbC2a WWQlCt4nXg8sGLNk3jPG6CmVMEyRagp4 -----END CERTIFICATE-----Generated at Fri Jul 4 00:33:11 2025 by rpki-client