$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft File: BNhIIeE7gDAzVMS-NDMdURHyvKY.mft (raw, json) Hash identifier: HKGoxx3Dr7SpYQCiR+4Phhj4JVMYMDtZEbPGi980RiY= Subject key identifier: 88:38:A8:62:0A:0D:9C:11:FA:39:25:BF:AA:2C:20:85:08:59:59:16 Authority key identifier: 04:D8:48:21:E1:3B:80:30:33:54:C4:BE:34:33:1D:51:11:F2:BC:A6 Certificate issuer: /CN=A91F0721/serialNumber=04D84821E13B80303354C4BE34331D5111F2BCA6 Certificate serial: 01A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BNhIIeE7gDAzVMS-NDMdURHyvKY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft Manifest number: 01A1 Signing time: Fri 09 May 2025 02:29:07 +0000 Manifest this update: Fri 09 May 2025 02:29:06 +0000 Manifest next update: Fri 16 May 2025 02:29:06 +0000 Files and hashes: 1: BNhIIeE7gDAzVMS-NDMdURHyvKY.crl (hash: FTPceK3ET6iFTzfyRNKz6/SsfUqXI+GBmNA92YydeXo=) 2: 7659B89AADCC11ED84051211C4F9AE02.roa (hash: S0QCets6nYQwhXbRnwnSRy3OBYGEXLOm6h5sFxoClJ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.crl rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BNhIIeE7gDAzVMS-NDMdURHyvKY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 02:29:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 420 (0x1a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0721, serialNumber=04D84821E13B80303354C4BE34331D5111F2BCA6 Validity Not Before: May 9 02:29:06 2025 GMT Not After : May 16 02:29:06 2025 GMT Subject: CN=681d6872-cc6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:73:d2:8f:84:e6:de:92:6f:db:b5:93:aa:20: ba:83:70:5e:b9:87:ac:01:7c:e4:1f:1e:a3:a3:cf: 2f:81:65:74:fd:91:ef:86:1f:66:85:93:f2:b3:5d: 6e:2c:2c:d2:21:6e:c0:fb:db:98:2f:43:a3:72:df: 34:63:16:8b:e2:46:c4:34:d6:46:9b:35:d3:f0:a6: e9:a0:35:cb:4a:f9:3b:e3:1b:12:fc:40:08:c7:71: f3:1c:13:b2:d6:5f:aa:57:93:ed:f2:2e:e3:2b:68: 3c:e6:92:f4:82:db:2b:a5:a5:04:87:60:af:f5:3a: 7b:79:d3:0a:5f:31:9e:e2:c9:8d:4a:c2:ae:00:9c: cb:97:84:52:bf:c6:c7:64:1e:13:3e:57:6f:4a:65: bd:f9:67:7d:e0:3a:8c:5d:5c:a3:ba:88:79:13:61: 95:93:9a:4a:0e:3d:fa:1a:33:78:cb:80:7c:d5:04: 77:3b:c7:52:d0:ec:b3:d2:d5:f6:2e:ac:74:29:2e: 7e:e3:71:2a:9d:13:2a:38:d1:c6:d6:62:21:7d:bf: c2:2d:e4:cb:83:49:b5:e8:14:2b:d8:a3:b8:14:65: e5:74:bf:54:28:8e:33:a8:65:9a:82:de:16:5e:cb: 59:a1:8c:fa:34:94:a7:dc:48:c0:86:cb:cc:e9:50: a1:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:38:A8:62:0A:0D:9C:11:FA:39:25:BF:AA:2C:20:85:08:59:59:16 X509v3 Authority Key Identifier: keyid:04:D8:48:21:E1:3B:80:30:33:54:C4:BE:34:33:1D:51:11:F2:BC:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BNhIIeE7gDAzVMS-NDMdURHyvKY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0721/C9127B3EADC811ED9216220EC4F9AE02/BNhIIeE7gDAzVMS-NDMdURHyvKY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:7f:de:f1:2b:86:6e:b1:79:09:49:c0:f7:67:35:1b:1c:91: 74:c2:4a:b8:05:aa:fc:c1:a3:15:a3:e3:cd:92:47:55:25:7b: a0:99:6c:d1:9b:07:0a:a3:4e:a7:45:31:b4:5e:54:38:08:70: cb:6a:94:06:0e:d5:b4:4c:46:53:ad:99:6d:e3:cb:23:50:c5: ed:70:42:21:52:1c:a3:62:e0:1b:b8:71:dc:b2:07:74:19:6b: b5:06:35:03:82:ca:34:88:7e:f5:30:38:2d:4e:a5:05:60:8c: a6:49:75:e6:67:37:11:31:8c:52:2a:d4:52:3f:99:d4:35:ab: f9:b2:bb:3c:29:dc:09:69:a0:2e:78:d4:2f:d1:fd:bb:5e:8a: 12:d8:60:24:33:b3:0f:84:37:10:be:14:1b:04:7f:ac:34:d5: bf:33:83:43:80:e7:6b:88:00:4f:37:6d:04:3c:80:b3:fc:ac: 58:d7:3d:69:86:6f:a1:65:c3:e4:0d:ce:e0:30:9f:ef:bf:4d: 4b:d5:09:84:10:bb:29:24:db:0a:c9:ec:31:94:dc:01:a7:0d: 41:2f:7f:32:b7:4f:28:1e:ea:7e:c1:0c:50:3e:86:b4:5d:0a: 4f:1c:c8:49:b7:ef:cd:24:c9:a8:5b:5d:dc:15:8c:5e:d2:ba: 71:26:49:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjA3MjExMTAvBgNVBAUTKDA0RDg0ODIxRTEzQjgwMzAzMzU0QzRCRTM0MzMxRDUx MTFGMkJDQTYwHhcNMjUwNTA5MDIyOTA2WhcNMjUwNTE2MDIyOTA2WjAYMRYwFAYD VQQDEw02ODFkNjg3Mi1jYzZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0XPSj4Tm3pJv27WTqiC6g3BeuYesAXzkHx6jo88vgWV0/ZHvhh9mhZPys11u LCzSIW7A+9uYL0Ojct80YxaL4kbENNZGmzXT8KbpoDXLSvk74xsS/EAIx3HzHBOy 1l+qV5Pt8i7jK2g85pL0gtsrpaUEh2Cv9Tp7edMKXzGe4smNSsKuAJzLl4RSv8bH ZB4TPldvSmW9+Wd94DqMXVyjuoh5E2GVk5pKDj36GjN4y4B81QR3O8dS0Oyz0tX2 Lqx0KS5+43EqnRMqONHG1mIhfb/CLeTLg0m16BQr2KO4FGXldL9UKI4zqGWagt4W XstZoYz6NJSn3EjAhsvM6VChGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIg4qGIK DZwR+jklv6osIIUIWVkWMB8GA1UdIwQYMBaAFATYSCHhO4AwM1TEvjQzHVER8rym MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMDcyMS9DOTEyN0IzRUFE QzgxMUVEOTIxNjIyMEVDNEY5QUUwMi9CTmhJSWVFN2dEQXpWTVMtTkRNZFVSSHl2 S1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JOaElJZUU3Z0RBelZNUy1ORE1kVVJIeXZLWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MDcyMS9DOTEyN0IzRUFEQzgxMUVEOTIxNjIyMEVDNEY5QUUwMi9CTmhJSWVFN2dE QXpWTVMtTkRNZFVSSHl2S1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVf97xK4ZusXkJScD3ZzUbHJF0wkq4Bar8waMVo+PNkkdVJXugmWzR mwcKo06nRTG0XlQ4CHDLapQGDtW0TEZTrZlt48sjUMXtcEIhUhyjYuAbuHHcsgd0 GWu1BjUDgso0iH71MDgtTqUFYIymSXXmZzcRMYxSKtRSP5nUNav5srs8KdwJaaAu eNQv0f27XooS2GAkM7MPhDcQvhQbBH+sNNW/M4NDgOdriABPN20EPICz/KxY1z1p hm+hZcPkDc7gMJ/vv01L1QmEELspJNsKyewxlNwBpw1BL38yt08oHup+wQxQPoa0 XQpPHMhJt+/NJMmoW13cFYxe0rpxJkkE -----END CERTIFICATE-----Generated at Fri May 9 05:06:47 2025 by rpki-client