$ rpki-client -vvf rpki.apnic.net/member_repository/A911F536/9A86DBD0C99A11EFB4CEEF1EC4F9AE02/KumFgVoQ3W0EUj_IHY2v1ya-eBY.mft File: KumFgVoQ3W0EUj_IHY2v1ya-eBY.mft (raw, json) Hash identifier: MV2+nEiWPVVsUuVTLtdeKbQcx/CnD1ErhcsLwIuecYw= Subject key identifier: 30:D1:56:03:30:BC:6D:3C:2A:14:30:0D:21:B7:DB:25:84:CC:7C:A9 Authority key identifier: 2A:E9:85:81:5A:10:DD:6D:04:52:3F:C8:1D:8D:AF:D7:26:BE:78:16 Certificate issuer: /CN=A911F536/serialNumber=2AE985815A10DD6D04523FC81D8DAFD726BE7816 Certificate serial: 45 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KumFgVoQ3W0EUj_IHY2v1ya-eBY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F536/9A86DBD0C99A11EFB4CEEF1EC4F9AE02/KumFgVoQ3W0EUj_IHY2v1ya-eBY.mft Manifest number: 44 Signing time: Tue 13 May 2025 06:35:53 +0000 Manifest this update: Tue 13 May 2025 06:35:53 +0000 Manifest next update: Tue 20 May 2025 06:35:53 +0000 Files and hashes: 1: KumFgVoQ3W0EUj_IHY2v1ya-eBY.crl (hash: 1W24B7rJTWZJNX+RV+AhG08HV1JTgrdN0Z388EdG37w=) 2: F51AC6A6C99A11EFB5D4B020C4F9AE02.roa (hash: fGNbEo2HZuTyhLS2iozgIgHjOEWzYtgGTZax02Zo+d8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F536/9A86DBD0C99A11EFB4CEEF1EC4F9AE02/KumFgVoQ3W0EUj_IHY2v1ya-eBY.crl rsync://rpki.apnic.net/member_repository/A911F536/9A86DBD0C99A11EFB4CEEF1EC4F9AE02/KumFgVoQ3W0EUj_IHY2v1ya-eBY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KumFgVoQ3W0EUj_IHY2v1ya-eBY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 06:35:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69 (0x45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F536, serialNumber=2AE985815A10DD6D04523FC81D8DAFD726BE7816 Validity Not Before: May 13 06:35:53 2025 GMT Not After : May 20 06:35:53 2025 GMT Subject: CN=6822e849-4bfd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:70:aa:0b:48:38:5b:25:41:85:2b:1b:5f:aa: 72:d7:6a:f7:b4:4f:d6:35:91:3c:a8:06:6d:04:db: 65:7e:9c:68:5f:b3:1b:dc:0c:d1:b4:4c:4b:ee:a0: 1d:6b:91:17:10:cb:0c:bf:25:59:76:82:0a:e6:3b: b4:93:3c:af:57:4f:7a:fb:2b:81:2f:5f:9b:6a:78: af:e3:81:25:e5:af:20:de:62:67:16:94:64:af:ee: 24:21:b5:8e:39:f2:54:23:1b:9e:13:66:dd:92:52: 87:f9:7d:70:38:93:27:9e:0d:ce:89:ad:a2:e4:87: 23:65:3d:23:1e:ec:b9:c5:57:6c:a9:dc:27:44:9c: a2:23:6b:87:2f:e9:fa:8e:c8:39:fc:61:51:d0:58: ca:52:2a:b7:f6:4d:22:78:47:f9:2c:d3:53:e8:82: a1:58:75:7f:02:43:e9:0e:ca:05:8a:ca:b1:d1:a5: 30:91:86:52:31:6a:56:3e:e8:a4:00:49:3a:ea:9f: aa:a6:be:29:20:38:e7:ad:4c:e4:e1:3d:1e:77:90: 76:5e:7e:ff:c6:75:e7:12:8a:2e:6d:64:28:54:b5: 78:bd:d6:20:93:01:20:a5:00:00:f9:49:ed:88:3b: 59:e7:80:6a:27:8d:25:a9:a7:d6:2e:96:6d:71:a4: 34:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:D1:56:03:30:BC:6D:3C:2A:14:30:0D:21:B7:DB:25:84:CC:7C:A9 X509v3 Authority Key Identifier: keyid:2A:E9:85:81:5A:10:DD:6D:04:52:3F:C8:1D:8D:AF:D7:26:BE:78:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F536/9A86DBD0C99A11EFB4CEEF1EC4F9AE02/KumFgVoQ3W0EUj_IHY2v1ya-eBY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KumFgVoQ3W0EUj_IHY2v1ya-eBY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F536/9A86DBD0C99A11EFB4CEEF1EC4F9AE02/KumFgVoQ3W0EUj_IHY2v1ya-eBY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:a2:0d:a1:42:a4:b2:ba:b7:07:39:53:8c:c8:0c:ab:15:d8: ba:ff:80:91:b1:51:fc:42:c3:af:0f:74:f8:7c:af:e7:2c:52: db:60:21:f1:43:95:cf:85:85:11:35:a2:d3:c9:5e:ef:91:4f: c5:f1:6b:e5:a0:fc:0f:88:10:c9:ba:4e:4f:97:ea:56:4e:7a: ec:11:e3:c0:68:ff:88:83:9f:e6:50:15:06:63:35:9c:9b:b1: 5e:29:ac:91:d8:4b:1e:21:40:8e:75:02:b1:94:03:a3:6c:f1: 82:56:ab:48:e6:dd:c1:57:fc:0e:22:be:33:d3:7e:0b:1d:ff: 1a:78:45:78:74:86:c4:2b:85:59:6a:1a:7e:0b:3f:aa:08:08: c4:58:cb:ea:aa:b9:d8:b3:70:fc:c7:0f:4c:d2:b5:87:a8:00: 1b:44:1a:dd:c2:1b:97:6d:ec:7f:19:b4:7f:e7:a1:b0:5a:e7: 01:6e:4b:2c:20:d3:5a:3d:71:9b:34:e2:b7:68:ee:92:50:77: 9d:da:d2:03:72:8a:fb:69:48:a2:8d:e0:39:c8:06:7b:86:4c: a5:1a:e7:9c:91:81:ae:9d:a5:63:03:7b:a2:8a:ca:72:aa:d5: 3d:07:b2:ba:78:fe:ca:e5:53:ee:ef:a2:0a:ee:89:fa:02:27: d6:f4:a7:d9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RjUzNjExMC8GA1UEBRMoMkFFOTg1ODE1QTEwREQ2RDA0NTIzRkM4MUQ4REFGRDcy NkJFNzgxNjAeFw0yNTA1MTMwNjM1NTNaFw0yNTA1MjAwNjM1NTNaMBgxFjAUBgNV BAMTDTY4MjJlODQ5LTRiZmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCcKoLSDhbJUGFKxtfqnLXave0T9Y1kTyoBm0E22V+nGhfsxvcDNG0TEvuoB1r kRcQywy/JVl2ggrmO7STPK9XT3r7K4EvX5tqeK/jgSXlryDeYmcWlGSv7iQhtY45 8lQjG54TZt2SUof5fXA4kyeeDc6JraLkhyNlPSMe7LnFV2yp3CdEnKIja4cv6fqO yDn8YVHQWMpSKrf2TSJ4R/ks01PogqFYdX8CQ+kOygWKyrHRpTCRhlIxalY+6KQA STrqn6qmvikgOOetTOThPR53kHZefv/GdecSii5tZChUtXi91iCTASClAAD5Se2I O1nngGonjSWpp9Yulm1xpDS1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUMNFWAzC8 bTwqFDANIbfbJYTMfKkwHwYDVR0jBBgwFoAUKumFgVoQ3W0EUj/IHY2v1ya+eBYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFGNTM2LzlBODZEQkQwQzk5 QTExRUZCNENFRUYxRUM0RjlBRTAyL0t1bUZnVm9RM1cwRVVqX0lIWTJ2MXlhLWVC WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvS3VtRmdWb1EzVzBFVWpfSUhZMnYxeWEtZUJZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFG NTM2LzlBODZEQkQwQzk5QTExRUZCNENFRUYxRUM0RjlBRTAyL0t1bUZnVm9RM1cw RVVqX0lIWTJ2MXlhLWVCWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIyiDaFCpLK6twc5U4zIDKsV2Lr/gJGxUfxCw68PdPh8r+csUttgIfFD lc+FhRE1otPJXu+RT8Xxa+Wg/A+IEMm6Tk+X6lZOeuwR48Bo/4iDn+ZQFQZjNZyb sV4prJHYSx4hQI51ArGUA6Ns8YJWq0jm3cFX/A4ivjPTfgsd/xp4RXh0hsQrhVlq Gn4LP6oICMRYy+qqudizcPzHD0zStYeoABtEGt3CG5dt7H8ZtH/nobBa5wFuSywg 01o9cZs04rdo7pJQd53a0gNyivtpSKKN4DnIBnuGTKUa55yRga6dpWMDe6KKynKq 1T0Hsrp4/srlU+7vogruifoCJ9b0p9k= -----END CERTIFICATE-----Generated at Tue May 13 21:53:04 2025 by rpki-client