$ rpki-client -vvf rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.mft File: bIAwUr-WwqtKuqntJqOptGOWBaM.mft (raw, json) Hash identifier: DVtc4thcg4rw0UIpgxYYyErbzvXYqmJb6JZGXv15UYc= Subject key identifier: 30:F8:8C:19:B6:E2:AC:AD:30:65:16:48:EB:0C:1B:67:FD:7B:57:E7 Authority key identifier: 6C:80:30:52:BF:96:C2:AB:4A:BA:A9:ED:26:A3:A9:B4:63:96:05:A3 Certificate issuer: /CN=A91F89A2/serialNumber=6C803052BF96C2AB4ABAA9ED26A3A9B4639605A3 Certificate serial: F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bIAwUr-WwqtKuqntJqOptGOWBaM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.mft Manifest number: F0 Signing time: Tue 13 May 2025 04:31:09 +0000 Manifest this update: Tue 13 May 2025 04:31:08 +0000 Manifest next update: Tue 20 May 2025 04:31:08 +0000 Files and hashes: 1: bIAwUr-WwqtKuqntJqOptGOWBaM.crl (hash: BLDjxEroGHquoukdAow//RUe2Nrpna5zPuGgjfxgI8s=) 2: 0FBF57D2F16611EEB75BE640C4F9AE02.roa (hash: pARn59mvC3EFmnc54zsYhH0vh0pFsHJXtSQmvirMetQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.crl rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bIAwUr-WwqtKuqntJqOptGOWBaM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 04:31:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 242 (0xf2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F89A2, serialNumber=6C803052BF96C2AB4ABAA9ED26A3A9B4639605A3 Validity Not Before: May 13 04:31:08 2025 GMT Not After : May 20 04:31:08 2025 GMT Subject: CN=6822cb0c-199b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:03:c8:ce:69:e5:be:68:0e:66:4a:73:1a:a8: 13:69:7b:d2:7e:57:17:64:f7:71:03:9e:50:d6:80: 41:17:a1:42:42:6f:1e:2b:ff:96:be:dc:32:89:9f: 43:f2:7f:ce:8c:02:58:54:e0:c0:12:c1:67:1a:9a: 41:1b:f8:e7:a6:e4:bf:ef:3d:03:bf:3b:68:82:1e: c8:55:5a:74:78:93:38:46:e5:c2:57:e4:7d:3f:24: 3a:ab:d9:e4:39:ed:54:6c:4c:39:76:f3:2f:2f:6a: a7:64:4e:39:55:15:92:59:ed:e2:c1:5e:fc:c9:64: 8c:fc:09:92:1d:6f:c5:03:3a:39:9f:d4:3c:0a:ec: c0:22:42:5c:a8:5f:12:66:3d:a3:9b:56:10:e3:94: e8:f0:61:1a:cf:8b:f2:8c:55:b0:5f:97:69:1d:2c: d8:3e:2e:65:00:3d:68:f4:81:da:34:0f:a6:a8:6d: af:47:13:12:09:90:31:cc:68:c3:a7:35:13:de:c8: f8:4d:af:c4:01:0d:5a:ec:f8:83:6a:9b:41:9f:92: 3b:7f:9d:df:28:43:93:a4:de:af:db:83:28:e2:73: 89:36:04:e1:24:f4:f9:0f:d3:d6:d1:d8:23:19:1c: 13:97:e7:21:6c:76:10:36:6d:94:e3:7e:0b:b4:7d: 04:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:F8:8C:19:B6:E2:AC:AD:30:65:16:48:EB:0C:1B:67:FD:7B:57:E7 X509v3 Authority Key Identifier: keyid:6C:80:30:52:BF:96:C2:AB:4A:BA:A9:ED:26:A3:A9:B4:63:96:05:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bIAwUr-WwqtKuqntJqOptGOWBaM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F89A2/BCBAE0CEC54111EEABC2C385C4F9AE02/bIAwUr-WwqtKuqntJqOptGOWBaM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:19:ca:4a:8d:b0:3c:a7:ea:f9:cf:26:31:52:18:70:ec:85: be:2a:9e:d5:5d:aa:ff:62:7f:8f:6d:71:2e:12:9c:00:0f:b7: 3b:32:d1:a0:05:b5:bf:b0:94:4c:18:c6:7b:99:2f:60:ee:58: 47:d2:48:2b:5e:3f:0c:8a:c1:6a:57:7b:89:75:a3:56:25:69: ea:af:53:64:ab:d4:88:32:44:d7:ba:5c:a9:83:73:94:1d:06: c7:ca:6c:07:a6:e2:f6:60:d3:ff:e7:30:cb:8c:77:c1:5a:53: 74:ef:9c:d3:17:16:77:4f:79:c4:28:3d:7e:d2:98:39:62:77: 49:1b:1d:a2:2f:a3:75:da:bc:d1:2e:52:b1:b3:d4:76:59:84: 95:a5:c1:eb:28:2b:d9:07:73:ff:ea:c3:12:ab:98:df:85:8f: 0e:ea:79:4b:11:31:4c:e2:89:f3:1d:a6:14:ee:67:a0:01:95: af:1d:3d:3d:11:34:bd:67:93:8f:7f:15:b9:7d:be:ca:a9:71: 63:1c:c6:28:53:d0:36:05:a2:53:18:87:e6:ea:d7:58:bd:32: 57:63:ba:d8:fb:40:e8:fa:bd:b6:2f:4c:69:29:43:1d:f3:55: 31:ba:b4:32:ec:bf:75:8c:c3:17:a0:ae:9d:5c:8d:e7:07:6b: 28:be:cf:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg5QTIxMTAvBgNVBAUTKDZDODAzMDUyQkY5NkMyQUI0QUJBQTlFRDI2QTNBOUI0 NjM5NjA1QTMwHhcNMjUwNTEzMDQzMTA4WhcNMjUwNTIwMDQzMTA4WjAYMRYwFAYD VQQDEw02ODIyY2IwYy0xOTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAugPIzmnlvmgOZkpzGqgTaXvSflcXZPdxA55Q1oBBF6FCQm8eK/+WvtwyiZ9D 8n/OjAJYVODAEsFnGppBG/jnpuS/7z0Dvztogh7IVVp0eJM4RuXCV+R9PyQ6q9nk Oe1UbEw5dvMvL2qnZE45VRWSWe3iwV78yWSM/AmSHW/FAzo5n9Q8CuzAIkJcqF8S Zj2jm1YQ45To8GEaz4vyjFWwX5dpHSzYPi5lAD1o9IHaNA+mqG2vRxMSCZAxzGjD pzUT3sj4Ta/EAQ1a7PiDaptBn5I7f53fKEOTpN6v24Mo4nOJNgThJPT5D9PW0dgj GRwTl+chbHYQNm2U434LtH0EUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDD4jBm2 4qytMGUWSOsMG2f9e1fnMB8GA1UdIwQYMBaAFGyAMFK/lsKrSrqp7SajqbRjlgWj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODlBMi9CQ0JBRTBDRUM1 NDExMUVFQUJDMkMzODVDNEY5QUUwMi9iSUF3VXItV3dxdEt1cW50SnFPcHRHT1dC YU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JJQXdVci1Xd3F0S3VxbnRKcU9wdEdPV0JhTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODlBMi9CQ0JBRTBDRUM1NDExMUVFQUJDMkMzODVDNEY5QUUwMi9iSUF3VXItV3dx dEt1cW50SnFPcHRHT1dCYU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUGcpKjbA8p+r5zyYxUhhw7IW+Kp7VXar/Yn+PbXEuEpwAD7c7MtGg BbW/sJRMGMZ7mS9g7lhH0kgrXj8MisFqV3uJdaNWJWnqr1Nkq9SIMkTXulypg3OU HQbHymwHpuL2YNP/5zDLjHfBWlN075zTFxZ3T3nEKD1+0pg5YndJGx2iL6N12rzR LlKxs9R2WYSVpcHrKCvZB3P/6sMSq5jfhY8O6nlLETFM4onzHaYU7megAZWvHT09 ETS9Z5OPfxW5fb7KqXFjHMYoU9A2BaJTGIfm6tdYvTJXY7rY+0Do+r22L0xpKUMd 81UxurQy7L91jMMXoK6dXI3nB2sovs81 -----END CERTIFICATE-----Generated at Tue May 13 12:40:39 2025 by rpki-client