$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF5AE/5E6E20789AA811EC89D42474C4F9AE02/BZOGVctKEp6P3fsJQsICA-N-G8E.mft File: BZOGVctKEp6P3fsJQsICA-N-G8E.mft (raw, json) Hash identifier: rFOCnJmwuQpafbJr9jFPqe7IvbFf3je64CQxsgIf5Xw= Subject key identifier: DF:EB:25:DE:A7:B2:42:48:A5:AA:5D:39:D5:70:B1:FA:8C:AD:0A:B0 Authority key identifier: 05:93:86:55:CB:4A:12:9E:8F:DD:FB:09:42:C2:02:03:E3:7E:1B:C1 Certificate issuer: /CN=A91EF5AE/serialNumber=05938655CB4A129E8FDDFB0942C20203E37E1BC1 Certificate serial: 039A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BZOGVctKEp6P3fsJQsICA-N-G8E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF5AE/5E6E20789AA811EC89D42474C4F9AE02/BZOGVctKEp6P3fsJQsICA-N-G8E.mft Manifest number: 0395 Signing time: Tue 13 May 2025 00:35:31 +0000 Manifest this update: Tue 13 May 2025 00:35:30 +0000 Manifest next update: Tue 20 May 2025 00:35:30 +0000 Files and hashes: 1: BZOGVctKEp6P3fsJQsICA-N-G8E.crl (hash: pS4h28+PJ/0si9zZ1vwoGr36sXeE2akH1FtFj3MbIEg=) 2: 1D45733C9AAB11ECBDD79E1EC4F9AE02.roa (hash: IDcKfjrcD970kwyhuo4LacbpxchYwfNjnBXBdXrdXbs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF5AE/5E6E20789AA811EC89D42474C4F9AE02/BZOGVctKEp6P3fsJQsICA-N-G8E.crl rsync://rpki.apnic.net/member_repository/A91EF5AE/5E6E20789AA811EC89D42474C4F9AE02/BZOGVctKEp6P3fsJQsICA-N-G8E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BZOGVctKEp6P3fsJQsICA-N-G8E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 00:35:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 922 (0x39a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF5AE, serialNumber=05938655CB4A129E8FDDFB0942C20203E37E1BC1 Validity Not Before: May 13 00:35:30 2025 GMT Not After : May 20 00:35:30 2025 GMT Subject: CN=682293d2-9aec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:8d:bd:4a:a6:f6:eb:1f:4a:28:5f:d6:93:2a: 31:e3:b7:f4:5a:cd:4e:de:34:c7:5d:86:3e:bf:cb: ad:e6:44:20:a9:7e:2b:ba:8d:03:52:ed:c5:91:4a: 05:ee:bc:2a:d4:fc:63:83:3f:5b:8f:75:dc:65:d1: c9:0e:26:26:75:a5:5f:7f:52:76:39:d3:70:b1:c4: 4a:ee:38:0f:09:fe:18:df:c6:ab:09:1a:37:ce:bb: 90:94:5e:4a:d4:92:cd:e0:0a:65:cc:b0:9a:3a:b9: 43:20:2e:bd:ba:4d:70:d9:bc:24:f4:80:5f:98:b4: fc:34:ba:29:05:ba:25:39:a3:85:f1:9c:be:5e:13: 15:2c:95:7c:7b:e8:fa:38:19:a9:0e:65:18:38:63: 1e:d5:bf:7c:da:e7:7f:2e:7a:10:9e:12:2a:c2:92: 39:bd:88:11:12:4e:d3:b2:16:2e:56:39:c1:9e:cd: cc:c4:92:ee:9d:13:92:53:13:25:41:09:fb:63:3e: c3:23:2f:ca:3c:ac:0f:8d:59:63:d8:17:b5:54:a9: 50:f3:a8:be:82:0d:3b:ea:dc:9e:85:50:56:be:4e: ce:cd:24:4b:3e:76:4f:5e:52:46:2d:0a:94:84:03: a3:71:3a:24:2e:3c:4f:3c:51:8f:39:3e:cb:fe:49: 53:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:EB:25:DE:A7:B2:42:48:A5:AA:5D:39:D5:70:B1:FA:8C:AD:0A:B0 X509v3 Authority Key Identifier: keyid:05:93:86:55:CB:4A:12:9E:8F:DD:FB:09:42:C2:02:03:E3:7E:1B:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF5AE/5E6E20789AA811EC89D42474C4F9AE02/BZOGVctKEp6P3fsJQsICA-N-G8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BZOGVctKEp6P3fsJQsICA-N-G8E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF5AE/5E6E20789AA811EC89D42474C4F9AE02/BZOGVctKEp6P3fsJQsICA-N-G8E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:73:e1:ec:5d:54:f6:e7:92:18:34:bd:ac:73:4c:d9:01:b0: e5:ee:9b:c2:73:19:c4:dc:03:3e:4d:a2:8e:36:1a:2c:56:9a: a3:6a:84:ba:a0:77:09:42:cf:12:47:ca:e5:8c:6f:2c:b9:95: c3:15:50:03:84:77:0e:70:96:7b:19:79:83:ff:fe:da:93:05: 53:c6:a4:d4:f1:04:ef:96:d3:ce:39:27:05:99:14:0f:b1:2f: 5f:de:de:f2:06:a6:a6:aa:b6:b1:c9:1f:00:cd:4b:2f:16:61: ff:dc:15:eb:eb:22:fa:98:45:26:b5:08:45:0a:b1:ea:09:a9: 4a:24:b2:19:e8:c1:14:54:9e:f3:59:32:92:38:e9:ed:9d:c2: e9:4e:92:3d:b6:95:96:db:83:ae:fe:bb:64:e0:ea:99:60:2a: 01:d7:99:4e:dc:a9:64:30:2a:79:40:d5:4a:85:ab:59:c8:de: d6:f1:ef:d8:87:67:85:80:5b:95:6a:52:0c:7f:75:12:01:81: 1f:f2:51:9e:68:99:66:9d:47:bd:9f:b1:db:c5:60:b2:50:84: 71:dc:33:cd:16:27:a2:7f:58:b7:97:80:69:92:27:f4:d9:96: e4:bb:85:92:3b:f3:fe:90:8a:af:0f:1e:6d:3a:20:2f:a4:00: 97:d0:d0:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUY1QUUxMTAvBgNVBAUTKDA1OTM4NjU1Q0I0QTEyOUU4RkRERkIwOTQyQzIwMjAz RTM3RTFCQzEwHhcNMjUwNTEzMDAzNTMwWhcNMjUwNTIwMDAzNTMwWjAYMRYwFAYD VQQDEw02ODIyOTNkMi05YWVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxI29Sqb26x9KKF/Wkyox47f0Ws1O3jTHXYY+v8ut5kQgqX4ruo0DUu3FkUoF 7rwq1Pxjgz9bj3XcZdHJDiYmdaVff1J2OdNwscRK7jgPCf4Y38arCRo3zruQlF5K 1JLN4AplzLCaOrlDIC69uk1w2bwk9IBfmLT8NLopBbolOaOF8Zy+XhMVLJV8e+j6 OBmpDmUYOGMe1b982ud/LnoQnhIqwpI5vYgREk7TshYuVjnBns3MxJLunROSUxMl QQn7Yz7DIy/KPKwPjVlj2Be1VKlQ86i+gg076tyehVBWvk7OzSRLPnZPXlJGLQqU hAOjcTokLjxPPFGPOT7L/klTcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN/rJd6n skJIpapdOdVwsfqMrQqwMB8GA1UdIwQYMBaAFAWThlXLShKej937CULCAgPjfhvB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjVBRS81RTZFMjA3ODlB QTgxMUVDODlENDI0NzRDNEY5QUUwMi9CWk9HVmN0S0VwNlAzZnNKUXNJQ0EtTi1H OEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JaT0dWY3RLRXA2UDNmc0pRc0lDQS1OLUc4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjVBRS81RTZFMjA3ODlBQTgxMUVDODlENDI0NzRDNEY5QUUwMi9CWk9HVmN0S0Vw NlAzZnNKUXNJQ0EtTi1HOEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcc+HsXVT255IYNL2sc0zZAbDl7pvCcxnE3AM+TaKONhosVpqjaoS6 oHcJQs8SR8rljG8suZXDFVADhHcOcJZ7GXmD//7akwVTxqTU8QTvltPOOScFmRQP sS9f3t7yBqamqraxyR8AzUsvFmH/3BXr6yL6mEUmtQhFCrHqCalKJLIZ6MEUVJ7z WTKSOOntncLpTpI9tpWW24Ou/rtk4OqZYCoB15lO3KlkMCp5QNVKhatZyN7W8e/Y h2eFgFuValIMf3USAYEf8lGeaJlmnUe9n7HbxWCyUIRx3DPNFieif1i3l4Bpkif0 2Zbku4WSO/P+kIqvDx5tOiAvpACX0NDa -----END CERTIFICATE-----Generated at Wed May 14 15:24:47 2025 by rpki-client