$ rpki-client -vvf rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft File: KtPYi16OCwUUGjvJL4XkJzoFYqE.mft (raw, json) Hash identifier: /0k/4/CPT5cncorpiDkdvhJJpTFeriXeTmoZmDt99bM= Subject key identifier: 48:DB:80:3A:CD:13:5C:B7:4A:EE:0F:20:85:54:7B:48:F0:D4:CD:0D Authority key identifier: 2A:D3:D8:8B:5E:8E:0B:05:14:1A:3B:C9:2F:85:E4:27:3A:05:62:A1 Certificate issuer: /CN=A9132F27/serialNumber=2AD3D88B5E8E0B05141A3BC92F85E4273A0562A1 Certificate serial: F6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft Manifest number: F4 Signing time: Tue 13 May 2025 04:27:13 +0000 Manifest this update: Tue 13 May 2025 04:27:12 +0000 Manifest next update: Tue 20 May 2025 04:27:12 +0000 Files and hashes: 1: KtPYi16OCwUUGjvJL4XkJzoFYqE.crl (hash: gDseOU00GxbacqQE4YOK1kqT2drrxzKtWzgVTAMT7Z8=) 2: 1D74CCE2BB6D11EEB670B00CC4F9AE02.roa (hash: c7azquHGHrdqjZWXwOVhESd2h6ZSF7h+7L/HwU2cJDw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.crl rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 04:27:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 246 (0xf6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132F27, serialNumber=2AD3D88B5E8E0B05141A3BC92F85E4273A0562A1 Validity Not Before: May 13 04:27:12 2025 GMT Not After : May 20 04:27:12 2025 GMT Subject: CN=6822ca21-bcaa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:6c:88:25:20:36:df:fe:25:58:24:ee:e0:c6: d8:c8:80:a2:88:40:50:21:f6:86:62:3b:c0:61:a4: cc:b5:56:ea:88:a8:3d:6f:5a:3c:d4:71:40:ef:ac: 72:8c:fb:d9:41:dd:9a:18:ef:93:f6:df:4e:02:82: 55:33:01:ef:58:9e:d5:49:1c:48:13:56:85:37:12: 91:ec:73:36:71:41:38:81:c4:e7:34:43:09:bf:d4: 85:a0:a2:3a:3f:05:85:ef:9b:82:89:64:01:71:76: 71:c1:26:20:51:6b:66:4d:60:52:7c:67:ed:af:65: 37:96:dc:da:6a:53:c9:91:d7:14:62:25:2d:b5:76: c8:b7:11:a7:da:c9:1e:18:8a:74:c6:ed:d4:d0:ae: 5f:8b:04:88:f4:94:9c:14:3a:b4:15:fb:16:c6:16: 95:6a:01:5b:5e:d6:83:38:4f:d5:81:9d:1b:d0:33: 07:18:d3:1c:0c:5a:66:d8:13:21:1b:a5:34:9c:90: 4d:2a:f3:c9:8a:e4:49:40:9d:cb:77:ca:1c:f5:c4: 0a:f0:75:30:b0:1e:f8:d6:ca:41:f9:5b:59:cd:b9: 89:bf:1d:e9:1f:fe:d5:cc:47:64:ff:0f:7f:ab:38: 0d:b7:fc:ff:c2:bd:43:2b:21:b0:e7:63:1d:0c:9f: 95:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:DB:80:3A:CD:13:5C:B7:4A:EE:0F:20:85:54:7B:48:F0:D4:CD:0D X509v3 Authority Key Identifier: keyid:2A:D3:D8:8B:5E:8E:0B:05:14:1A:3B:C9:2F:85:E4:27:3A:05:62:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:86:ed:d4:ae:73:9b:fe:52:9f:4f:51:b4:42:cb:56:9c:96: 33:6d:87:96:60:0e:ee:2a:ba:c7:4c:f8:23:c8:7b:50:7b:c0: 9a:fb:7a:97:06:c2:1f:e3:c9:5f:1e:66:a4:ff:86:a6:11:15: 64:9b:fd:fe:bc:ba:77:a4:56:50:80:dd:9d:ef:21:d5:77:92: fb:47:f9:5a:b9:1d:e2:18:e9:c0:cd:45:98:a2:a0:0e:4e:9d: 92:1d:07:f8:c5:22:c5:40:bb:2f:59:7c:64:d9:a7:a4:99:46: b4:fe:cb:7f:f2:cc:17:4a:71:a5:39:00:5f:a2:5a:dd:ba:6b: 86:3d:fc:32:ef:d2:2a:2a:ac:3e:be:4b:da:c9:6c:92:8f:6b: db:62:95:3e:b5:7b:fd:ed:0c:80:2d:d8:7a:46:13:f5:e2:60: 0d:34:e0:05:6b:76:f3:de:dd:e9:f9:94:d3:43:79:59:56:d9: ce:87:e9:32:9b:fb:e5:29:58:8a:4d:61:e7:1d:11:bb:ae:a0: 5d:5b:04:e6:bb:b6:4f:93:31:1a:3e:7b:ab:c4:4a:11:05:52: d5:ed:f7:45:8b:6d:f8:ac:d2:0c:b4:b9:7b:5d:12:6b:a9:02: 12:1a:6b:49:5d:9c:f0:54:de:59:61:dc:82:12:33:37:3a:5f: 96:87:6e:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJGMjcxMTAvBgNVBAUTKDJBRDNEODhCNUU4RTBCMDUxNDFBM0JDOTJGODVFNDI3 M0EwNTYyQTEwHhcNMjUwNTEzMDQyNzEyWhcNMjUwNTIwMDQyNzEyWjAYMRYwFAYD VQQDEw02ODIyY2EyMS1iY2FhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2GyIJSA23/4lWCTu4MbYyICiiEBQIfaGYjvAYaTMtVbqiKg9b1o81HFA76xy jPvZQd2aGO+T9t9OAoJVMwHvWJ7VSRxIE1aFNxKR7HM2cUE4gcTnNEMJv9SFoKI6 PwWF75uCiWQBcXZxwSYgUWtmTWBSfGftr2U3ltzaalPJkdcUYiUttXbItxGn2ske GIp0xu3U0K5fiwSI9JScFDq0FfsWxhaVagFbXtaDOE/VgZ0b0DMHGNMcDFpm2BMh G6U0nJBNKvPJiuRJQJ3Ld8oc9cQK8HUwsB741spB+VtZzbmJvx3pH/7VzEdk/w9/ qzgNt/z/wr1DKyGw52MdDJ+VkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEjbgDrN E1y3Su4PIIVUe0jw1M0NMB8GA1UdIwQYMBaAFCrT2ItejgsFFBo7yS+F5Cc6BWKh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkYyNy83QUNERjlBQUJC NkMxMUVFQTY4MEFFNkRDNEY5QUUwMi9LdFBZaTE2T0N3VVVHanZKTDRYa0p6b0ZZ cUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0t0UFlpMTZPQ3dVVUdqdkpMNFhrSnpvRllxRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkYyNy83QUNERjlBQUJCNkMxMUVFQTY4MEFFNkRDNEY5QUUwMi9LdFBZaTE2T0N3 VVVHanZKTDRYa0p6b0ZZcUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjhu3UrnOb/lKfT1G0QstWnJYzbYeWYA7uKrrHTPgjyHtQe8Ca+3qX BsIf48lfHmak/4amERVkm/3+vLp3pFZQgN2d7yHVd5L7R/lauR3iGOnAzUWYoqAO Tp2SHQf4xSLFQLsvWXxk2aekmUa0/st/8swXSnGlOQBfolrdumuGPfwy79IqKqw+ vkvayWySj2vbYpU+tXv97QyALdh6RhP14mANNOAFa3bz3t3p+ZTTQ3lZVtnOh+ky m/vlKViKTWHnHRG7rqBdWwTmu7ZPkzEaPnurxEoRBVLV7fdFi234rNIMtLl7XRJr qQISGmtJXZzwVN5ZYdyCEjM3Ol+Wh26F -----END CERTIFICATE-----Generated at Wed May 14 08:24:24 2025 by rpki-client