$ rpki-client -vvf rpki.apnic.net/member_repository/A913149F/DF01580808FC11EAA891A575C4F9AE02/Kt1a2PtDrdgNUrtYNpPDG42asuw.mft File: Kt1a2PtDrdgNUrtYNpPDG42asuw.mft (raw, json) Hash identifier: C9+4cYdSWo3JG4VNshbsaXnDgaNRI2IrjUrJQIo3esI= Subject key identifier: 74:CF:8F:0A:FB:13:DF:24:59:FF:0C:03:81:E6:07:3E:5C:0A:11:01 Authority key identifier: 2A:DD:5A:D8:FB:43:AD:D8:0D:52:BB:58:36:93:C3:1B:8D:9A:B2:EC Certificate issuer: /CN=A913149F/serialNumber=2ADD5AD8FB43ADD80D52BB583693C31B8D9AB2EC Certificate serial: 0C23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kt1a2PtDrdgNUrtYNpPDG42asuw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913149F/DF01580808FC11EAA891A575C4F9AE02/Kt1a2PtDrdgNUrtYNpPDG42asuw.mft Manifest number: 0C1E Signing time: Mon 12 May 2025 18:24:51 +0000 Manifest this update: Mon 12 May 2025 18:24:50 +0000 Manifest next update: Mon 19 May 2025 18:24:50 +0000 Files and hashes: 1: Kt1a2PtDrdgNUrtYNpPDG42asuw.crl (hash: 5tky6Otu2ynFoAEW5pPIK5M8rsBOW2Gd7dhwmPv6oVg=) 2: 78550A2608FE11EAA003E778C4F9AE02.roa (hash: /6LQIDdmV3dE7MeUvHilah4V60fZn+m3/u3zkX+mGFA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913149F/DF01580808FC11EAA891A575C4F9AE02/Kt1a2PtDrdgNUrtYNpPDG42asuw.crl rsync://rpki.apnic.net/member_repository/A913149F/DF01580808FC11EAA891A575C4F9AE02/Kt1a2PtDrdgNUrtYNpPDG42asuw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kt1a2PtDrdgNUrtYNpPDG42asuw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 18:24:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3107 (0xc23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913149F, serialNumber=2ADD5AD8FB43ADD80D52BB583693C31B8D9AB2EC Validity Not Before: May 12 18:24:50 2025 GMT Not After : May 19 18:24:50 2025 GMT Subject: CN=68223cf2-72b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:7a:2c:99:f0:23:4b:cc:55:7d:35:ad:e7:06: 1e:21:3a:80:d6:0d:1f:b8:54:7e:26:4f:2b:12:69: ad:c6:50:6c:16:e3:36:fd:18:7c:79:26:cd:0a:f4: 97:b9:a2:17:63:11:da:cd:9c:eb:ff:a6:13:92:dc: 4e:07:5b:73:3b:3d:ba:3f:06:7c:c5:93:15:70:28: 94:38:77:f0:45:94:a5:ae:ad:5a:c4:5e:aa:62:2a: c0:cd:80:ae:8a:03:af:1d:90:3e:d6:a3:00:3d:11: 79:93:1e:3a:4c:b2:66:4c:d8:0d:81:98:ae:8b:97: ac:90:b0:a5:3e:25:94:4f:bd:c5:94:3c:04:ce:b8: f1:68:70:b1:05:06:d1:90:4d:e9:49:84:21:7e:a4: da:f1:35:30:0f:ee:fc:15:6f:78:08:3c:5d:f0:22: c8:9f:af:f9:ed:d6:26:15:02:e1:4b:d6:15:48:e3: b8:57:9b:4a:0d:2d:dc:77:b6:e5:75:b0:8e:1f:01: 87:d0:b9:74:4e:20:cc:d2:c1:79:b0:dd:88:55:31: 3d:f4:18:30:7f:55:e6:f5:7e:41:95:a0:c6:08:24: 41:02:ef:49:32:fb:d4:0c:68:8d:4e:6a:06:5e:1a: 4e:35:25:56:9b:44:72:6c:f5:67:7d:27:1a:1f:19: 7c:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:CF:8F:0A:FB:13:DF:24:59:FF:0C:03:81:E6:07:3E:5C:0A:11:01 X509v3 Authority Key Identifier: keyid:2A:DD:5A:D8:FB:43:AD:D8:0D:52:BB:58:36:93:C3:1B:8D:9A:B2:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913149F/DF01580808FC11EAA891A575C4F9AE02/Kt1a2PtDrdgNUrtYNpPDG42asuw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kt1a2PtDrdgNUrtYNpPDG42asuw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913149F/DF01580808FC11EAA891A575C4F9AE02/Kt1a2PtDrdgNUrtYNpPDG42asuw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:9e:fe:58:db:89:b4:f9:fa:18:1a:bb:ff:03:3d:8d:d4:25: bc:08:d6:b5:f1:cb:9b:c8:6d:bd:ee:7c:71:8b:1d:e8:9a:8a: 1f:81:a4:bd:db:4d:da:31:01:6a:10:ae:d5:28:0a:20:c8:03: 3a:50:72:d8:c0:ef:23:55:aa:1f:a9:cb:08:12:0d:94:9b:b5: 1d:99:92:ad:4b:33:15:d8:e3:47:36:52:85:43:0e:14:df:fb: 7d:19:1f:e6:f6:91:5a:1e:86:ac:42:e5:fa:7d:46:db:19:65: 05:24:88:32:e2:6e:6d:76:4f:de:aa:ca:c0:42:1f:f3:21:7a: ee:3f:0e:31:d9:2e:9d:80:63:68:94:ab:2d:43:6f:5d:de:d1: b7:b2:d1:0c:48:d8:c9:8b:35:8c:9c:30:45:9e:e4:4f:6d:15: 62:4c:8d:b3:43:87:c2:7d:4e:91:74:ba:b1:a7:02:9b:40:c9: e8:db:eb:87:94:60:65:7c:a2:13:8d:36:d7:6f:5f:d7:b5:a8: 1a:c2:aa:8d:b7:c4:07:a9:39:b0:d6:e7:56:f3:b7:35:90:fb: 39:d2:8d:78:8d:97:f3:2a:19:e6:b5:c9:54:85:ec:c5:06:7c: 01:65:d4:e0:66:3a:6a:a0:cb:d0:64:02:d6:38:17:b4:62:d4: 51:18:ce:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE0OUYxMTAvBgNVBAUTKDJBREQ1QUQ4RkI0M0FERDgwRDUyQkI1ODM2OTNDMzFC OEQ5QUIyRUMwHhcNMjUwNTEyMTgyNDUwWhcNMjUwNTE5MTgyNDUwWjAYMRYwFAYD VQQDEw02ODIyM2NmMi03MmI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwnosmfAjS8xVfTWt5wYeITqA1g0fuFR+Jk8rEmmtxlBsFuM2/Rh8eSbNCvSX uaIXYxHazZzr/6YTktxOB1tzOz26PwZ8xZMVcCiUOHfwRZSlrq1axF6qYirAzYCu igOvHZA+1qMAPRF5kx46TLJmTNgNgZiui5eskLClPiWUT73FlDwEzrjxaHCxBQbR kE3pSYQhfqTa8TUwD+78FW94CDxd8CLIn6/57dYmFQLhS9YVSOO4V5tKDS3cd7bl dbCOHwGH0Ll0TiDM0sF5sN2IVTE99Bgwf1Xm9X5BlaDGCCRBAu9JMvvUDGiNTmoG XhpONSVWm0RybPVnfScaHxl8+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHTPjwr7 E98kWf8MA4HmBz5cChEBMB8GA1UdIwQYMBaAFCrdWtj7Q63YDVK7WDaTwxuNmrLs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTQ5Ri9ERjAxNTgwODA4 RkMxMUVBQTg5MUE1NzVDNEY5QUUwMi9LdDFhMlB0RHJkZ05VcnRZTnBQREc0MmFz dXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t0MWEyUHREcmRnTlVydFlOcFBERzQyYXN1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTQ5Ri9ERjAxNTgwODA4RkMxMUVBQTg5MUE1NzVDNEY5QUUwMi9LdDFhMlB0RHJk Z05VcnRZTnBQREc0MmFzdXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBanv5Y24m0+foYGrv/Az2N1CW8CNa18cubyG297nxxix3omoofgaS9 203aMQFqEK7VKAogyAM6UHLYwO8jVaofqcsIEg2Um7UdmZKtSzMV2ONHNlKFQw4U 3/t9GR/m9pFaHoasQuX6fUbbGWUFJIgy4m5tdk/eqsrAQh/zIXruPw4x2S6dgGNo lKstQ29d3tG3stEMSNjJizWMnDBFnuRPbRViTI2zQ4fCfU6RdLqxpwKbQMno2+uH lGBlfKITjTbXb1/XtagawqqNt8QHqTmw1udW87c1kPs50o14jZfzKhnmtclUhezF BnwBZdTgZjpqoMvQZALWOBe0YtRRGM40 -----END CERTIFICATE-----Generated at Tue May 13 12:40:53 2025 by rpki-client