$ rpki-client -vvf rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft File: kB-Ykfv38n1Bah7gazGwFlquHcU.mft (raw, json) Hash identifier: P60M0md/EnaJxqSsnDstEnDMOFo20DW45A0+eYYhB/Y= Subject key identifier: 2B:5E:BF:70:9A:B1:1B:62:B4:63:44:86:C3:62:26:D6:65:30:B0:A5 Authority key identifier: 90:1F:98:91:FB:F7:F2:7D:41:6A:1E:E0:6B:31:B0:16:5A:AE:1D:C5 Certificate issuer: /CN=A9132D93/serialNumber=901F9891FBF7F27D416A1EE06B31B0165AAE1DC5 Certificate serial: 03E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft Manifest number: 03DD Signing time: Sat 17 May 2025 00:48:50 +0000 Manifest this update: Sat 17 May 2025 00:48:49 +0000 Manifest next update: Sat 24 May 2025 00:48:49 +0000 Files and hashes: 1: kB-Ykfv38n1Bah7gazGwFlquHcU.crl (hash: srdwPIGW1qqMIdZYkWsodulyV1AJouhoIOOSV8uFuc4=) 2: 4E0503CA7F3F11ECBB0EA972C4F9AE02.roa (hash: zGO+SfCUiN93pLbUpzCLUs56wrah6tVni3k+tYi9qSM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.crl rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 00:48:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 993 (0x3e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132D93, serialNumber=901F9891FBF7F27D416A1EE06B31B0165AAE1DC5 Validity Not Before: May 17 00:48:49 2025 GMT Not After : May 24 00:48:49 2025 GMT Subject: CN=6827dcf2-545a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:e6:5e:e1:7c:69:39:96:9c:13:dc:8a:8d:16: e9:bb:51:cd:d0:d7:a2:32:cb:76:ae:e9:90:f9:91: 80:81:8d:48:e3:6a:98:0e:3e:fc:34:25:22:fe:97: 8a:6e:99:3b:b7:12:6e:f1:75:d3:b6:9f:cd:5f:d8: f7:12:f3:dc:eb:2c:4f:03:d0:26:6e:4d:35:a2:eb: 2f:07:58:db:0f:a3:a6:0c:9e:7f:da:8c:2b:af:58: 3e:29:d8:b9:9f:59:95:59:ee:b6:bd:03:f1:3a:10: da:16:bb:90:fb:55:0c:27:d3:ac:94:2a:76:07:8a: 10:37:77:2b:bb:38:b6:35:e6:57:d9:06:db:bb:29: f6:2d:2c:2b:bc:65:b8:45:39:af:e1:06:4e:54:9d: 24:24:90:36:a6:c1:fd:44:58:2e:0a:42:c2:c3:ae: 09:f3:e6:92:ed:73:07:e3:cd:3e:13:fd:d0:e4:2c: 71:92:21:f7:3d:85:67:72:79:47:fa:37:6a:0f:70: 1e:4c:3a:09:da:fe:54:ab:46:1f:5a:d2:df:a1:a9: b0:a2:51:fb:3b:e7:63:a8:a3:26:92:5d:dc:f6:8a: ee:df:9a:49:5c:53:a0:aa:25:23:19:9b:e9:1b:21: cf:39:c0:97:1d:3f:f8:c9:2a:99:b4:7e:b2:e5:24: 88:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:5E:BF:70:9A:B1:1B:62:B4:63:44:86:C3:62:26:D6:65:30:B0:A5 X509v3 Authority Key Identifier: keyid:90:1F:98:91:FB:F7:F2:7D:41:6A:1E:E0:6B:31:B0:16:5A:AE:1D:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:fa:cf:34:2f:0e:0f:6e:67:e9:f0:6a:df:10:31:e2:49:85: 3f:9a:03:ab:a1:e2:67:e9:de:b1:06:40:43:59:5a:30:d1:1e: 73:b6:3f:46:5a:e1:43:40:76:8e:cd:0b:9b:15:c7:3c:c1:bb: 1b:34:74:11:f0:22:40:68:d7:a1:9a:bb:55:88:de:ae:94:95: 76:c7:14:17:5d:7b:41:0a:c3:ca:a8:8a:55:b4:4b:c3:c8:c8: 28:e3:a1:df:a9:e7:29:5e:e0:33:81:2b:30:ee:75:74:55:42: d1:38:d4:61:93:34:79:8f:6b:0d:8d:9d:e8:0e:90:ba:67:5a: f4:31:23:8a:7e:08:73:37:82:6d:bf:fb:ee:63:1e:de:36:d0: b8:18:57:f0:24:6a:f0:4a:6e:0d:32:c6:6c:cc:a9:59:4a:0d: 26:2c:87:cd:a0:3d:6f:72:e8:e4:28:b3:a4:51:6f:5d:7a:48: a7:04:97:c2:80:99:ec:f3:a7:5d:f6:6e:ad:70:45:21:d7:cb: 04:ce:fd:94:41:98:68:04:c3:3d:c2:05:14:80:52:a4:ab:97: d5:0c:ac:ef:dd:af:31:b9:16:e2:51:8e:dd:b9:5e:6e:3e:fd: 1b:41:53:7b:af:8c:e1:31:18:b8:c9:c8:a5:5e:4c:af:d8:5a: 29:88:04:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJEOTMxMTAvBgNVBAUTKDkwMUY5ODkxRkJGN0YyN0Q0MTZBMUVFMDZCMzFCMDE2 NUFBRTFEQzUwHhcNMjUwNTE3MDA0ODQ5WhcNMjUwNTI0MDA0ODQ5WjAYMRYwFAYD VQQDEw02ODI3ZGNmMi01NDVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3OZe4XxpOZacE9yKjRbpu1HN0NeiMst2rumQ+ZGAgY1I42qYDj78NCUi/peK bpk7txJu8XXTtp/NX9j3EvPc6yxPA9Ambk01ousvB1jbD6OmDJ5/2owrr1g+Kdi5 n1mVWe62vQPxOhDaFruQ+1UMJ9OslCp2B4oQN3cruzi2NeZX2Qbbuyn2LSwrvGW4 RTmv4QZOVJ0kJJA2psH9RFguCkLCw64J8+aS7XMH480+E/3Q5CxxkiH3PYVncnlH +jdqD3AeTDoJ2v5Uq0YfWtLfoamwolH7O+djqKMmkl3c9oru35pJXFOgqiUjGZvp GyHPOcCXHT/4ySqZtH6y5SSI4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCtev3Ca sRtitGNEhsNiJtZlMLClMB8GA1UdIwQYMBaAFJAfmJH79/J9QWoe4GsxsBZarh3F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkQ5My8wRjg3NEE3NDdG M0QxMUVDOEExRENDNzFDNEY5QUUwMi9rQi1Za2Z2MzhuMUJhaDdnYXpHd0ZscXVI Y1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tCLVlrZnYzOG4xQmFoN2dhekd3RmxxdUhjVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkQ5My8wRjg3NEE3NDdGM0QxMUVDOEExRENDNzFDNEY5QUUwMi9rQi1Za2Z2Mzhu MUJhaDdnYXpHd0ZscXVIY1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBy+s80Lw4Pbmfp8GrfEDHiSYU/mgOroeJn6d6xBkBDWVow0R5ztj9G WuFDQHaOzQubFcc8wbsbNHQR8CJAaNehmrtViN6ulJV2xxQXXXtBCsPKqIpVtEvD yMgo46HfqecpXuAzgSsw7nV0VULRONRhkzR5j2sNjZ3oDpC6Z1r0MSOKfghzN4Jt v/vuYx7eNtC4GFfwJGrwSm4NMsZszKlZSg0mLIfNoD1vcujkKLOkUW9dekinBJfC gJns86dd9m6tcEUh18sEzv2UQZhoBMM9wgUUgFKkq5fVDKzv3a8xuRbiUY7duV5u Pv0bQVN7r4zhMRi4ycilXkyv2FopiATD -----END CERTIFICATE-----Generated at Sat May 17 16:28:49 2025 by rpki-client