$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft File: bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft (raw, json) Hash identifier: vDKfzU8SdD+7oP0hLegqNReZaLgjSDAvuKG7MNI6nmQ= Subject key identifier: 50:3D:61:03:A3:B8:71:01:C8:8F:BE:E3:AC:18:98:ED:DB:27:A8:3F Authority key identifier: 6E:48:61:0A:A0:E6:B0:E2:C5:EE:D4:02:DD:07:83:3A:A7:3E:7E:A2 Certificate issuer: /CN=A91FBD28/serialNumber=6E48610AA0E6B0E2C5EED402DD07833AA73E7EA2 Certificate serial: 1AA7 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/bkhhCqDmsOLF7tQC3QeDOqc-fqI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft Manifest number: 1A92 Signing time: Mon 12 May 2025 15:39:53 +0000 Manifest this update: Mon 12 May 2025 15:39:53 +0000 Manifest next update: Mon 19 May 2025 15:39:53 +0000 Files and hashes: 1: bkhhCqDmsOLF7tQC3QeDOqc-fqI.crl (hash: 47S7bLjypWzCNCUhOC11aBLmNcSK5ZFvcQ70gbcv1u8=) 2: D8B92776A16A11EAA517B11EC4F9AE02.roa (hash: Kdp9AKQeL2FX/yJ9dKy0ocxr3Mori7J9VoVLko7H5hQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.crl rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/bkhhCqDmsOLF7tQC3QeDOqc-fqI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 15:39:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6823 (0x1aa7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBD28, serialNumber=6E48610AA0E6B0E2C5EED402DD07833AA73E7EA2 Validity Not Before: May 12 15:39:53 2025 GMT Not After : May 19 15:39:53 2025 GMT Subject: CN=68221649-eba5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:b3:91:73:1e:fc:d1:a0:91:cd:93:23:34:7c: 82:06:c8:f1:dc:e1:c4:0b:f1:a8:28:a1:ba:7c:a9: e3:21:29:36:f2:86:67:1c:69:e5:bb:47:e3:6d:2a: 10:97:f9:da:bd:a8:39:a5:36:48:7f:2a:77:9a:d6: 1f:1f:40:7b:1f:35:97:2d:17:8a:0f:76:32:dd:c5: 68:1e:a7:35:73:3e:28:de:a9:53:c5:e7:1e:e9:4b: 35:47:be:f8:b8:41:7a:07:57:90:a7:1b:49:30:12: f4:97:4d:6f:04:be:0a:12:38:ba:47:ed:da:43:98: ca:e0:bd:62:c6:29:17:bd:b7:22:e5:60:0e:aa:7a: 1d:6d:a8:20:98:64:a2:0d:56:30:f1:e6:f8:e9:c9: 2a:0c:b5:8d:6f:3c:bf:a7:40:7b:d6:9c:79:0e:1a: 09:c4:ed:36:99:d5:53:73:2d:d8:7b:fb:47:ca:17: 51:3c:71:0f:da:9e:ba:97:a1:40:c1:22:8e:f7:23: 71:2d:ac:fb:42:1c:7e:6c:2e:a7:28:44:50:21:c1: 5e:1c:d0:5c:c0:8d:6d:9e:aa:4b:61:cd:31:48:47: e1:7c:6f:4c:ac:3f:b1:18:bd:72:8b:df:ae:0f:8a: fc:f1:48:a3:d4:f6:ef:fc:c9:54:e4:5a:86:50:6d: 41:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:3D:61:03:A3:B8:71:01:C8:8F:BE:E3:AC:18:98:ED:DB:27:A8:3F X509v3 Authority Key Identifier: keyid:6E:48:61:0A:A0:E6:B0:E2:C5:EE:D4:02:DD:07:83:3A:A7:3E:7E:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/bkhhCqDmsOLF7tQC3QeDOqc-fqI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBD28/26758BB43AB511E7B8609F1CC4F9AE02/bkhhCqDmsOLF7tQC3QeDOqc-fqI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:ff:ef:80:df:97:4b:b6:13:58:0a:4d:7d:12:ad:25:c4:ed: 61:92:35:9c:a1:be:dc:62:d5:dc:af:11:4f:45:3a:b1:3a:4b: 49:48:c4:03:36:a5:b8:bb:10:8a:bf:5a:da:34:da:3e:79:53: 6f:13:7b:19:49:b1:2f:32:b1:58:7d:41:23:c4:35:4d:a9:70: d8:5d:64:50:bf:a2:b7:88:27:d9:d3:e6:77:24:79:3a:cb:4c: cf:b5:f3:79:14:1c:74:aa:20:35:c2:9c:d8:b2:48:45:3d:be: 8d:39:c2:3a:96:67:1e:c9:44:6e:a9:b2:eb:bd:08:e4:42:ec: 22:cb:d0:90:87:30:c7:8e:ba:2b:18:5a:31:50:d3:3d:59:97: 77:2d:cc:5a:cf:d8:b6:59:8b:3c:f4:d8:42:b9:18:56:64:b6: e4:7f:7c:12:28:d5:ee:3b:50:b2:64:4c:1d:82:18:ed:c0:a7: c0:3a:4d:58:2a:31:7c:9a:06:22:87:58:b0:e3:76:41:0c:b7: fc:b8:94:96:64:04:d1:26:88:92:5a:dd:cd:c7:31:c7:85:51: 40:d9:59:cf:21:4e:c0:d3:a8:1b:ba:78:e2:46:6e:bf:e3:0b: d4:59:d0:b7:ba:5b:a5:e4:42:c7:0c:f4:df:d2:f0:40:32:f9: 72:b6:0b:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGqcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkJEMjgxMTAvBgNVBAUTKDZFNDg2MTBBQTBFNkIwRTJDNUVFRDQwMkREMDc4MzNB QTczRTdFQTIwHhcNMjUwNTEyMTUzOTUzWhcNMjUwNTE5MTUzOTUzWjAYMRYwFAYD VQQDEw02ODIyMTY0OS1lYmE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtrORcx780aCRzZMjNHyCBsjx3OHEC/GoKKG6fKnjISk28oZnHGnlu0fjbSoQ l/navag5pTZIfyp3mtYfH0B7HzWXLReKD3Yy3cVoHqc1cz4o3qlTxece6Us1R774 uEF6B1eQpxtJMBL0l01vBL4KEji6R+3aQ5jK4L1ixikXvbci5WAOqnodbaggmGSi DVYw8eb46ckqDLWNbzy/p0B71px5DhoJxO02mdVTcy3Ye/tHyhdRPHEP2p66l6FA wSKO9yNxLaz7Qhx+bC6nKERQIcFeHNBcwI1tnqpLYc0xSEfhfG9MrD+xGL1yi9+u D4r88Uij1Pbv/MlU5FqGUG1BswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFA9YQOj uHEByI++46wYmO3bJ6g/MB8GA1UdIwQYMBaAFG5IYQqg5rDixe7UAt0HgzqnPn6i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQkQyOC8yNjc1OEJCNDNB QjUxMUU3Qjg2MDlGMUNDNEY5QUUwMi9ia2hoQ3FEbXNPTEY3dFFDM1FlRE9xYy1m cUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2JraGhDcURtc09MRjd0UUMzUWVET3FjLWZxSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QkQyOC8yNjc1OEJCNDNBQjUxMUU3Qjg2MDlGMUNDNEY5QUUwMi9ia2hoQ3FEbXNP TEY3dFFDM1FlRE9xYy1mcUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBp/++A35dLthNYCk19Eq0lxO1hkjWcob7cYtXcrxFPRTqxOktJSMQD NqW4uxCKv1raNNo+eVNvE3sZSbEvMrFYfUEjxDVNqXDYXWRQv6K3iCfZ0+Z3JHk6 y0zPtfN5FBx0qiA1wpzYskhFPb6NOcI6lmceyURuqbLrvQjkQuwiy9CQhzDHjror GFoxUNM9WZd3Lcxaz9i2WYs89NhCuRhWZLbkf3wSKNXuO1CyZEwdghjtwKfAOk1Y KjF8mgYih1iw43ZBDLf8uJSWZATRJoiSWt3NxzHHhVFA2VnPIU7A06gbunjiRm6/ 4wvUWdC3ulul5ELHDPTf0vBAMvlytgum -----END CERTIFICATE-----Generated at Tue May 13 04:57:49 2025 by rpki-client