$ rpki-client -vvf rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.mft File: kl2pi04IXWgNFte6GD8OpUJqGgM.mft (raw, json) Hash identifier: iZDbgG7JfXQMxkPo7JwJBimYSFgOHXOwu30DBELyjHI= Subject key identifier: A0:16:DC:27:57:B8:3A:CD:37:40:57:5E:67:79:B6:DB:EC:54:11:DC Authority key identifier: 92:5D:A9:8B:4E:08:5D:68:0D:16:D7:BA:18:3F:0E:A5:42:6A:1A:03 Certificate issuer: /CN=A9112320/serialNumber=925DA98B4E085D680D16D7BA183F0EA5426A1A03 Certificate serial: 0536 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kl2pi04IXWgNFte6GD8OpUJqGgM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.mft Manifest number: 0526 Signing time: Sun 04 May 2025 23:12:50 +0000 Manifest this update: Sun 04 May 2025 23:12:50 +0000 Manifest next update: Sun 11 May 2025 23:12:50 +0000 Files and hashes: 1: kl2pi04IXWgNFte6GD8OpUJqGgM.crl (hash: tRH00rZFTX/OLZtQeTYHj6NarwfyvQsxZ6PL8GfHgko=) 2: C7B754BEF85311ED8D59CA87C4F9AE02.roa (hash: FKFKH5eFofFRTvqGy9vDB52V4WqF8Uh4JVrswNbtjMM=) 3: A87AE518D2E011EDA1EF340FC4F9AE02.roa (hash: C85Ln946y9Tr5r2XkfYdY+5M9KTyQRGliz2lUS9dRFA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.crl rsync://rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kl2pi04IXWgNFte6GD8OpUJqGgM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 23:12:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1334 (0x536) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112320, serialNumber=925DA98B4E085D680D16D7BA183F0EA5426A1A03 Validity Not Before: May 4 23:12:50 2025 GMT Not After : May 11 23:12:50 2025 GMT Subject: CN=6817f472-9db9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:a4:4a:fa:d7:b2:04:41:57:a3:10:6b:a9:62: f2:a4:84:e7:a7:f6:be:0f:de:b9:4c:21:e7:5a:2d: 8e:29:d9:f7:7c:d4:94:e3:6e:d4:9c:25:c7:7a:c4: 6f:72:26:aa:b5:f3:4f:54:ac:2f:c9:55:3b:57:30: 5c:e4:d6:cc:cc:9f:8a:11:f2:b8:3a:8c:ff:7c:f1: cd:9c:55:13:4e:73:81:18:c0:aa:f5:12:b9:25:a6: 13:d9:b3:a6:45:1c:db:07:6d:0d:3d:aa:35:bd:11: 06:43:ab:d9:7b:08:fa:52:b5:b2:38:d8:a7:c6:e9: 15:a3:97:37:b7:c9:f5:db:2d:2d:21:99:65:13:7c: f3:17:64:36:ca:1a:06:b0:ce:49:4d:b8:f8:28:82: 7d:8b:50:40:71:4d:de:e0:97:f6:df:79:42:40:d2: 4b:f1:65:49:8b:87:51:56:ec:9e:74:b9:3e:da:28: 0b:37:26:8b:4e:90:19:21:ef:bb:13:9e:fc:69:ab: 0c:7a:9b:ce:3b:e9:12:fb:c0:12:92:34:e8:ca:87: ce:d6:c9:e2:ed:6e:d6:8f:56:80:74:79:6d:3f:c9: de:82:84:95:89:8c:fa:1e:ca:9d:f3:f5:c1:be:0c: 2e:c9:5c:e6:65:35:b5:43:19:54:19:38:a1:d3:f3: 69:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:16:DC:27:57:B8:3A:CD:37:40:57:5E:67:79:B6:DB:EC:54:11:DC X509v3 Authority Key Identifier: keyid:92:5D:A9:8B:4E:08:5D:68:0D:16:D7:BA:18:3F:0E:A5:42:6A:1A:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kl2pi04IXWgNFte6GD8OpUJqGgM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:f3:67:9b:52:4e:91:6f:e8:6f:d6:06:94:68:c6:1c:20:bf: 4a:0c:bd:13:29:97:17:81:c2:24:7e:32:21:d3:e1:f9:0f:a3: 55:54:5e:9a:a7:57:a3:b2:80:43:05:14:53:ec:6d:c0:38:b0: b1:d3:21:5d:f0:3f:48:7b:fb:ba:db:a8:95:e4:4d:83:95:da: f7:47:7b:f7:0a:0c:2a:a3:7d:a7:15:95:d8:b5:9d:01:d8:25: b5:5e:94:dd:af:ac:b6:bb:27:86:97:c2:fc:7d:4e:93:e5:ce: fd:79:cb:1c:97:68:ec:31:d9:3f:33:f2:85:5e:09:5f:ed:a9: 5c:05:01:19:79:1a:e0:a9:f2:0d:6d:3c:0a:7c:88:c9:6c:28: b5:af:72:6f:5e:e5:86:64:69:28:7c:97:e6:57:88:65:73:bf: 0c:12:98:e8:b9:04:27:6d:f3:60:20:3f:42:cb:91:c3:f5:83: ae:8d:69:df:06:f3:a5:22:33:bc:4a:f3:a2:26:b8:81:6a:3d: 10:e6:50:76:dc:cb:42:51:46:38:a6:b1:17:54:9a:db:91:b0: 6b:1e:0b:93:5a:c5:bb:21:13:22:b1:bf:ec:21:76:de:9b:ab: c1:32:24:68:60:cb:bf:a2:7c:23:c3:81:9e:85:c9:bd:1f:51: 0f:a9:d1:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBTYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTIzMjAxMTAvBgNVBAUTKDkyNURBOThCNEUwODVENjgwRDE2RDdCQTE4M0YwRUE1 NDI2QTFBMDMwHhcNMjUwNTA0MjMxMjUwWhcNMjUwNTExMjMxMjUwWjAYMRYwFAYD VQQDEw02ODE3ZjQ3Mi05ZGI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxqRK+teyBEFXoxBrqWLypITnp/a+D965TCHnWi2OKdn3fNSU427UnCXHesRv ciaqtfNPVKwvyVU7VzBc5NbMzJ+KEfK4Ooz/fPHNnFUTTnOBGMCq9RK5JaYT2bOm RRzbB20NPao1vREGQ6vZewj6UrWyONinxukVo5c3t8n12y0tIZllE3zzF2Q2yhoG sM5JTbj4KIJ9i1BAcU3e4Jf233lCQNJL8WVJi4dRVuyedLk+2igLNyaLTpAZIe+7 E578aasMepvOO+kS+8ASkjToyofO1sni7W7Wj1aAdHltP8negoSViYz6Hsqd8/XB vgwuyVzmZTW1QxlUGTih0/NpfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKAW3CdX uDrNN0BXXmd5ttvsVBHcMB8GA1UdIwQYMBaAFJJdqYtOCF1oDRbXuhg/DqVCahoD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjMyMC82RDcwNUJDRUZF NzAxMUVCOUNGQjkwMjlDNEY5QUUwMi9rbDJwaTA0SVhXZ05GdGU2R0Q4T3BVSnFH Z00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tsMnBpMDRJWFdnTkZ0ZTZHRDhPcFVKcUdnTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjMyMC82RDcwNUJDRUZFNzAxMUVCOUNGQjkwMjlDNEY5QUUwMi9rbDJwaTA0SVhX Z05GdGU2R0Q4T3BVSnFHZ00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZ82ebUk6Rb+hv1gaUaMYcIL9KDL0TKZcXgcIkfjIh0+H5D6NVVF6a p1ejsoBDBRRT7G3AOLCx0yFd8D9Ie/u626iV5E2Dldr3R3v3Cgwqo32nFZXYtZ0B 2CW1XpTdr6y2uyeGl8L8fU6T5c79ecscl2jsMdk/M/KFXglf7alcBQEZeRrgqfIN bTwKfIjJbCi1r3JvXuWGZGkofJfmV4hlc78MEpjouQQnbfNgID9Cy5HD9YOujWnf BvOlIjO8SvOiJriBaj0Q5lB23MtCUUY4prEXVJrbkbBrHguTWsW7IRMisb/sIXbe m6vBMiRoYMu/onwjw4Gehcm9H1EPqdEA -----END CERTIFICATE-----Generated at Mon May 5 02:57:35 2025 by rpki-client