$ rpki-client -vvf rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.mft File: KiZlwxQeS_P9LwBKrimlmHETod8.mft (raw, json) Hash identifier: Wftw/mXkDMybFC45UbwyOb7++5VQyoQjl344b5u6ujo= Subject key identifier: D1:9E:C9:87:80:2C:B1:A4:ED:A3:1B:62:94:38:4A:BB:7C:9C:DB:FE Authority key identifier: 2A:26:65:C3:14:1E:4B:F3:FD:2F:00:4A:AE:29:A5:98:71:13:A1:DF Certificate issuer: /CN=A911972D/serialNumber=2A2665C3141E4BF3FD2F004AAE29A5987113A1DF Certificate serial: 037F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KiZlwxQeS_P9LwBKrimlmHETod8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.mft Manifest number: 037A Signing time: Sat 17 May 2025 01:09:42 +0000 Manifest this update: Sat 17 May 2025 01:09:41 +0000 Manifest next update: Sat 24 May 2025 01:09:41 +0000 Files and hashes: 1: KiZlwxQeS_P9LwBKrimlmHETod8.crl (hash: cbDMyhoSVcnCCgpvbzhaRV5K8PE9BQiSTHcYGZ3dxak=) 2: B067CCDCA8C511EC8F560C42C4F9AE02.roa (hash: xmdlJLhBfyeauv2Ft4ug73ckVk3r1dVH2Fa5m4Eb/po=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.crl rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KiZlwxQeS_P9LwBKrimlmHETod8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 00:27:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 895 (0x37f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911972D, serialNumber=2A2665C3141E4BF3FD2F004AAE29A5987113A1DF Validity Not Before: May 17 01:09:41 2025 GMT Not After : May 24 01:09:41 2025 GMT Subject: CN=6827e1d5-8de7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d7:3c:26:04:0d:62:18:f8:b3:cb:b2:7c:24: 1f:7b:02:e8:98:ab:67:1a:9e:2d:4e:42:77:57:78: 19:e8:02:a2:23:38:b2:a2:84:89:12:59:e1:28:90: 0d:df:1a:52:49:19:e8:a5:ff:d0:87:8f:ca:0f:37: 41:2a:41:92:86:d5:e3:9e:07:d5:90:61:ae:a3:1d: e3:70:72:f7:b4:f0:43:3f:1a:84:d8:c2:2c:c9:3e: f9:4e:35:e0:3d:c0:3b:88:1f:80:02:03:4f:64:b4: e1:0f:29:44:2f:e8:21:3e:3d:d7:1b:64:76:2d:4d: bd:ce:20:a3:fe:da:1d:e6:04:ba:64:73:f4:dd:c2: 26:c8:ad:a7:71:20:e7:56:99:62:83:7c:df:77:24: 11:b8:d8:c9:74:9d:6f:94:c3:e1:33:af:db:4b:f9: f9:6f:ff:8e:5c:c3:70:e2:93:13:01:2e:80:a9:26: 88:a6:50:bd:fe:fb:f1:a3:a8:f7:57:a2:de:df:96: 70:03:65:25:c7:90:50:93:bb:07:92:45:df:02:13: 20:33:3a:1d:4a:fa:21:57:d3:ba:32:3a:cc:8e:88: 14:c8:5a:9b:8e:b9:df:e6:30:c9:c6:fb:b1:39:e2: 3e:4f:e8:3f:1d:be:22:6a:1e:37:62:1c:7a:0f:b8: 96:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:9E:C9:87:80:2C:B1:A4:ED:A3:1B:62:94:38:4A:BB:7C:9C:DB:FE X509v3 Authority Key Identifier: keyid:2A:26:65:C3:14:1E:4B:F3:FD:2F:00:4A:AE:29:A5:98:71:13:A1:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KiZlwxQeS_P9LwBKrimlmHETod8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:ae:e5:d2:47:1d:93:43:7a:85:33:63:33:50:7d:70:fa:e0: 9e:7b:b5:a4:6e:fe:a1:45:69:e6:6f:53:e8:35:19:98:39:e1: 3e:61:ab:26:47:49:32:a5:5b:5a:aa:80:42:9b:aa:20:8e:56: 99:4e:c8:4d:2d:61:ec:dd:d9:40:dc:f2:ee:de:81:62:70:91: 16:8e:a5:20:d1:8f:08:f5:fc:34:e5:b4:f8:fe:f2:f0:de:e7: 1b:b2:64:c9:16:3d:d8:10:e0:98:b7:29:6e:5d:c8:b5:d8:52: 44:2e:40:25:d2:9a:ea:bc:8e:91:f5:c7:14:2f:18:57:75:ee: 2e:99:c9:d2:00:f2:67:3c:4f:c3:5e:a6:c3:b8:1f:38:e2:74: 71:d3:1a:a3:55:99:35:d2:c9:b3:42:b7:56:bc:9c:05:99:a7: f7:34:40:9c:05:ab:54:cf:b5:de:6f:6e:05:a7:83:4a:32:8e: 5d:56:66:03:e5:60:cd:0e:a5:53:84:d2:fe:58:40:bf:cf:9b: 05:23:35:67:d5:98:41:e9:8c:bd:e2:ed:ce:2e:cd:5b:c6:4f: cf:36:3e:cf:49:31:37:b2:eb:b1:9d:b0:1d:a2:5d:35:77:8e: 75:87:de:99:cf:55:ab:13:90:08:d4:68:82:cf:0d:5b:7b:47: 74:ff:58:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA38wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk3MkQxMTAvBgNVBAUTKDJBMjY2NUMzMTQxRTRCRjNGRDJGMDA0QUFFMjlBNTk4 NzExM0ExREYwHhcNMjUwNTE3MDEwOTQxWhcNMjUwNTI0MDEwOTQxWjAYMRYwFAYD VQQDEw02ODI3ZTFkNS04ZGU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwNc8JgQNYhj4s8uyfCQfewLomKtnGp4tTkJ3V3gZ6AKiIziyooSJElnhKJAN 3xpSSRnopf/Qh4/KDzdBKkGShtXjngfVkGGuox3jcHL3tPBDPxqE2MIsyT75TjXg PcA7iB+AAgNPZLThDylEL+ghPj3XG2R2LU29ziCj/tod5gS6ZHP03cImyK2ncSDn Vplig3zfdyQRuNjJdJ1vlMPhM6/bS/n5b/+OXMNw4pMTAS6AqSaIplC9/vvxo6j3 V6Le35ZwA2Ulx5BQk7sHkkXfAhMgMzodSvohV9O6MjrMjogUyFqbjrnf5jDJxvux OeI+T+g/Hb4iah43Yhx6D7iWwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNGeyYeA LLGk7aMbYpQ4Srt8nNv+MB8GA1UdIwQYMBaAFComZcMUHkvz/S8ASq4ppZhxE6Hf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTcyRC85OUVFOTUwQ0E2 ODIxMUVDQjRFM0VDM0FDNEY5QUUwMi9LaVpsd3hRZVNfUDlMd0JLcmltbG1IRVRv ZDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tpWmx3eFFlU19QOUx3QktyaW1sbUhFVG9kOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTcyRC85OUVFOTUwQ0E2ODIxMUVDQjRFM0VDM0FDNEY5QUUwMi9LaVpsd3hRZVNf UDlMd0JLcmltbG1IRVRvZDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/ruXSRx2TQ3qFM2MzUH1w+uCee7Wkbv6hRWnmb1PoNRmYOeE+Yasm R0kypVtaqoBCm6ogjlaZTshNLWHs3dlA3PLu3oFicJEWjqUg0Y8I9fw05bT4/vLw 3ucbsmTJFj3YEOCYtyluXci12FJELkAl0prqvI6R9ccULxhXde4umcnSAPJnPE/D XqbDuB844nRx0xqjVZk10smzQrdWvJwFmaf3NECcBatUz7Xeb24Fp4NKMo5dVmYD 5WDNDqVThNL+WEC/z5sFIzVn1ZhB6Yy94u3OLs1bxk/PNj7PSTE3suuxnbAdol01 d451h96Zz1WrE5AI1GiCzw1be0d0/1it -----END CERTIFICATE-----Generated at Sat May 17 04:23:31 2025 by rpki-client