$ rpki-client -vvf rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft File: BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft (raw, json) Hash identifier: fC2DIYj+/PJoJWx3f0JaHLEFo0ssMTZaVTsiQLTGrSo= Subject key identifier: 02:8E:06:83:A5:93:A1:E0:11:13:21:64:EE:30:3D:F9:71:3A:56:9D Authority key identifier: 06:66:6A:EC:D7:8C:0A:5E:D1:37:90:A5:E9:AA:40:C3:49:0F:BC:F1 Certificate issuer: /CN=A91F63DC/serialNumber=06666AECD78C0A5ED13790A5E9AA40C3490FBCF1 Certificate serial: 0129 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BmZq7NeMCl7RN5Cl6apAw0kPvPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft Manifest number: 0127 Signing time: Mon 05 May 2025 03:32:00 +0000 Manifest this update: Mon 05 May 2025 03:31:59 +0000 Manifest next update: Mon 12 May 2025 03:31:59 +0000 Files and hashes: 1: BmZq7NeMCl7RN5Cl6apAw0kPvPE.crl (hash: 5HO0q+7sowq8S8uteL0BrC5soJyHOoNs/UGwlmAFo+A=) 2: 9FFF0E74665511EEB872BE4DC4F9AE02.roa (hash: HsI9s/avf/WsE7yy/2Fnz0a9pkM1ZrwF3kHF8jU1yp8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.crl rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BmZq7NeMCl7RN5Cl6apAw0kPvPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 03:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 297 (0x129) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F63DC, serialNumber=06666AECD78C0A5ED13790A5E9AA40C3490FBCF1 Validity Not Before: May 5 03:31:59 2025 GMT Not After : May 12 03:31:59 2025 GMT Subject: CN=68183130-59c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:56:2b:c2:97:ee:0a:05:63:dd:cd:8a:7d:b9: 9c:d6:ae:73:37:b1:cf:d4:c3:4c:cc:2d:d2:4c:24: af:6d:ff:f6:03:1a:9a:53:85:9d:0f:4e:b9:4a:3d: a0:af:ab:eb:2a:85:0e:2c:ad:f3:1c:32:bf:b4:19: 1b:03:ff:44:2a:ff:c8:e1:eb:27:96:73:fd:c7:0a: 08:b4:0f:9e:59:83:fe:a0:ef:ec:4d:1a:a3:ef:8a: 75:93:15:23:cf:47:88:ae:40:9b:0c:4e:f3:0d:69: c9:bd:62:8b:5e:7b:d1:af:68:0a:9a:ec:2a:65:17: be:f9:8e:22:5c:ee:12:52:72:31:e7:d6:ae:a3:6d: 14:b8:ec:52:ac:b4:2a:60:1a:9c:16:78:0a:75:91: cd:f4:ca:f5:02:e9:64:c3:e0:67:a0:c3:50:e3:5a: ad:39:d9:82:37:c3:70:cf:34:21:9a:67:2a:80:e9: db:2b:09:63:b2:2c:48:b9:81:b4:8e:e0:34:35:54: e5:a1:3e:d2:3a:bd:38:b5:75:39:b8:f7:2c:c8:f1: cd:86:13:4e:a8:ef:b8:68:e1:17:3b:4f:49:87:d7: 5b:01:87:97:1e:fb:cd:6d:15:e7:9e:4a:54:3a:5b: 18:d9:de:ae:ca:e7:0b:e6:fa:26:6d:3e:a5:b7:75: b0:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:8E:06:83:A5:93:A1:E0:11:13:21:64:EE:30:3D:F9:71:3A:56:9D X509v3 Authority Key Identifier: keyid:06:66:6A:EC:D7:8C:0A:5E:D1:37:90:A5:E9:AA:40:C3:49:0F:BC:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BmZq7NeMCl7RN5Cl6apAw0kPvPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F63DC/043152E2665311EE9C68EE2BC4F9AE02/BmZq7NeMCl7RN5Cl6apAw0kPvPE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:da:f1:93:01:03:de:44:03:a0:b0:07:a5:6e:82:80:69:6e: a0:02:9d:4f:67:c1:d9:64:89:28:a8:f9:9c:ae:6b:f9:66:20: 22:66:78:25:3f:89:28:08:34:6b:ce:1b:3c:69:c5:39:76:d1: 79:21:56:df:3a:d0:fd:de:7e:12:32:f3:35:5b:97:72:73:cc: 66:28:ee:85:3b:4c:dd:96:fc:36:d0:54:91:88:9a:c4:b7:57: bf:67:1e:30:34:1c:d5:52:dc:6f:6d:05:b9:c5:94:aa:34:20: 52:95:a0:fb:08:a2:ad:ef:7c:21:e4:cb:45:0e:4e:fa:7c:68: 1a:ff:95:2b:ac:23:2a:c0:dd:82:29:3d:5f:dc:76:f9:2b:c0: 7f:88:87:13:75:2a:f9:10:10:e0:4a:3f:29:45:4c:36:e7:f5: 08:7f:7b:c3:d3:d0:21:8d:af:d6:26:a7:d8:39:8f:2f:24:af: 76:85:5d:24:61:3a:48:ab:55:8a:8c:da:7a:79:9c:fa:dc:de: dc:fb:60:5b:da:0b:e5:7e:32:cc:79:9f:f2:99:3c:1e:58:9f: e0:c0:41:b3:66:03:3c:24:65:bd:df:d7:10:1a:e5:5b:70:8e: 7d:7c:5b:58:d5:3b:cc:f5:a3:6f:7a:36:15:82:c6:90:a3:23: b1:15:b3:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYzREMxMTAvBgNVBAUTKDA2NjY2QUVDRDc4QzBBNUVEMTM3OTBBNUU5QUE0MEMz NDkwRkJDRjEwHhcNMjUwNTA1MDMzMTU5WhcNMjUwNTEyMDMzMTU5WjAYMRYwFAYD VQQDEw02ODE4MzEzMC01OWM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzlYrwpfuCgVj3c2Kfbmc1q5zN7HP1MNMzC3STCSvbf/2AxqaU4WdD065Sj2g r6vrKoUOLK3zHDK/tBkbA/9EKv/I4esnlnP9xwoItA+eWYP+oO/sTRqj74p1kxUj z0eIrkCbDE7zDWnJvWKLXnvRr2gKmuwqZRe++Y4iXO4SUnIx59auo20UuOxSrLQq YBqcFngKdZHN9Mr1Aulkw+BnoMNQ41qtOdmCN8NwzzQhmmcqgOnbKwljsixIuYG0 juA0NVTloT7SOr04tXU5uPcsyPHNhhNOqO+4aOEXO09Jh9dbAYeXHvvNbRXnnkpU OlsY2d6uyucL5vombT6lt3WwxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAKOBoOl k6HgERMhZO4wPflxOladMB8GA1UdIwQYMBaAFAZmauzXjApe0TeQpemqQMNJD7zx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjNEQy8wNDMxNTJFMjY2 NTMxMUVFOUM2OEVFMkJDNEY5QUUwMi9CbVpxN05lTUNsN1JONUNsNmFwQXcwa1B2 UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JtWnE3TmVNQ2w3Uk41Q2w2YXBBdzBrUHZQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjNEQy8wNDMxNTJFMjY2NTMxMUVFOUM2OEVFMkJDNEY5QUUwMi9CbVpxN05lTUNs N1JONUNsNmFwQXcwa1B2UEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCs2vGTAQPeRAOgsAelboKAaW6gAp1PZ8HZZIkoqPmcrmv5ZiAiZngl P4koCDRrzhs8acU5dtF5IVbfOtD93n4SMvM1W5dyc8xmKO6FO0zdlvw20FSRiJrE t1e/Zx4wNBzVUtxvbQW5xZSqNCBSlaD7CKKt73wh5MtFDk76fGga/5UrrCMqwN2C KT1f3Hb5K8B/iIcTdSr5EBDgSj8pRUw25/UIf3vD09Ahja/WJqfYOY8vJK92hV0k YTpIq1WKjNp6eZz63N7c+2Bb2gvlfjLMeZ/ymTweWJ/gwEGzZgM8JGW939cQGuVb cI59fFtY1TvM9aNvejYVgsaQoyOxFbO7 -----END CERTIFICATE-----Generated at Tue May 6 06:17:26 2025 by rpki-client