$ rpki-client -vvf rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft File: khdBhFmoypIuDWajy6pAZyDLSJA.mft (raw, json) Hash identifier: JpDdyeij6dzMgTooqkzYTjBvMBtAy3Txf+vo5+PB/CU= Subject key identifier: 4A:8A:ED:56:4B:29:B0:DB:71:03:C9:00:C9:F0:C6:1B:A5:9D:21:F1 Authority key identifier: 92:17:41:84:59:A8:CA:92:2E:0D:66:A3:CB:AA:40:67:20:CB:48:90 Certificate issuer: /CN=A9137B39/serialNumber=9217418459A8CA922E0D66A3CBAA406720CB4890 Certificate serial: 038E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khdBhFmoypIuDWajy6pAZyDLSJA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft Manifest number: 0389 Signing time: Thu 15 May 2025 00:53:28 +0000 Manifest this update: Thu 15 May 2025 00:53:28 +0000 Manifest next update: Thu 22 May 2025 00:53:28 +0000 Files and hashes: 1: khdBhFmoypIuDWajy6pAZyDLSJA.crl (hash: jL94qw9S6xbKSdasfO8bjnGqdeCwprluUt6hoHzynBU=) 2: 44FBB466A03911EC9AD2F840C4F9AE02.roa (hash: u8Y2qHn4dP492v5Q3muwggQyuBR/yx2lsL2jNNDR8KY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.crl rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khdBhFmoypIuDWajy6pAZyDLSJA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 00:53:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 910 (0x38e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137B39, serialNumber=9217418459A8CA922E0D66A3CBAA406720CB4890 Validity Not Before: May 15 00:53:28 2025 GMT Not After : May 22 00:53:28 2025 GMT Subject: CN=68253b08-4746 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:4e:94:51:02:c7:2a:28:37:93:52:5c:d6:c9: b2:8b:8e:33:1d:57:21:92:00:a3:4c:b6:e7:96:93: 9a:62:81:64:61:05:fc:d9:4a:d0:f3:ea:68:e0:00: 92:2b:f8:26:59:5f:80:b3:02:51:10:b7:96:5c:63: 6f:ef:6a:81:c1:d1:3f:8a:62:1b:9b:30:0f:c9:6c: 00:9a:d8:c9:64:35:07:eb:da:b2:33:c3:96:81:13: eb:02:27:dc:61:70:24:28:11:47:3f:74:bb:36:a7: 64:9b:6e:95:88:d5:60:26:ff:d6:5d:27:78:e7:8c: 34:0d:18:d9:59:af:2b:bd:d2:03:6b:ec:85:24:6f: 2e:2b:62:4f:e4:26:c7:5d:87:a5:a9:7e:57:b0:bf: 49:c2:8e:27:ba:ad:9b:8e:5d:92:77:27:c8:03:a8: 3e:96:9a:5f:70:ae:6e:a4:ca:62:bf:50:f5:7f:f6: ad:3e:f3:83:8c:82:d6:3d:a7:c7:32:bf:4b:ad:45: 11:e4:f7:97:76:8a:be:f9:3d:78:cc:94:4c:89:29: 92:94:83:3e:1d:b7:42:d1:fd:45:ee:91:c3:cb:3d: 15:10:33:cd:e3:86:d8:c3:73:2e:a3:c4:9d:7b:78: 7b:63:56:70:08:17:c3:72:d8:e1:ac:75:c7:6e:78: d2:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:8A:ED:56:4B:29:B0:DB:71:03:C9:00:C9:F0:C6:1B:A5:9D:21:F1 X509v3 Authority Key Identifier: keyid:92:17:41:84:59:A8:CA:92:2E:0D:66:A3:CB:AA:40:67:20:CB:48:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khdBhFmoypIuDWajy6pAZyDLSJA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:43:05:23:d3:8b:c0:64:1f:82:80:98:ff:1b:a4:7a:89:e4: 4d:f9:a5:be:9f:25:38:f6:8a:9d:d7:fa:e8:1f:0b:b8:7e:51: 2f:6a:40:71:c2:4a:82:d9:40:cc:43:7d:af:b4:65:7d:b9:a0: 58:79:2d:f2:85:29:d2:40:cb:38:17:a5:43:8f:fb:e4:94:05: 98:ed:4b:5a:98:5c:1f:8c:a9:75:83:f2:6f:fc:a8:09:91:25: e4:81:66:4a:bd:79:a5:4c:aa:0b:ae:92:fe:c5:69:32:99:59: 36:63:3e:e6:50:75:e9:a3:22:71:10:42:e1:2d:15:eb:0f:c4: ab:d9:44:14:2a:8b:01:dc:74:bb:2b:ed:11:b9:13:f5:fc:cf: e2:06:c4:a0:72:93:50:ce:f4:5b:24:70:3f:9a:b1:2f:98:38: b7:6e:b6:0e:d8:c1:be:85:db:3d:2e:87:50:14:c2:30:08:75: 2f:68:c0:62:72:e8:50:c6:77:62:11:f2:b2:46:5e:82:8a:b9: d1:7c:21:d7:12:c2:21:07:22:06:b4:b1:e1:e4:88:ff:e1:e1: 00:d9:b7:4e:18:53:66:bb:60:6b:de:c7:16:fd:36:fd:2f:67: e0:8d:c7:9d:7f:20:cd:ed:d5:8b:f3:f6:31:b5:8d:8b:65:00: 15:ce:d1:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA44wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdCMzkxMTAvBgNVBAUTKDkyMTc0MTg0NTlBOENBOTIyRTBENjZBM0NCQUE0MDY3 MjBDQjQ4OTAwHhcNMjUwNTE1MDA1MzI4WhcNMjUwNTIyMDA1MzI4WjAYMRYwFAYD VQQDEw02ODI1M2IwOC00NzQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnk6UUQLHKig3k1Jc1smyi44zHVchkgCjTLbnlpOaYoFkYQX82UrQ8+po4ACS K/gmWV+AswJRELeWXGNv72qBwdE/imIbmzAPyWwAmtjJZDUH69qyM8OWgRPrAifc YXAkKBFHP3S7Nqdkm26ViNVgJv/WXSd454w0DRjZWa8rvdIDa+yFJG8uK2JP5CbH XYelqX5XsL9Jwo4nuq2bjl2SdyfIA6g+lppfcK5upMpiv1D1f/atPvODjILWPafH Mr9LrUUR5PeXdoq++T14zJRMiSmSlIM+HbdC0f1F7pHDyz0VEDPN44bYw3Muo8Sd e3h7Y1ZwCBfDctjhrHXHbnjS7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEqK7VZL KbDbcQPJAMnwxhulnSHxMB8GA1UdIwQYMBaAFJIXQYRZqMqSLg1mo8uqQGcgy0iQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0IzOS9BNzU5OUQ3QUEw MzUxMUVDODIyNTVEM0FDNEY5QUUwMi9raGRCaEZtb3lwSXVEV2FqeTZwQVp5RExT SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2toZEJoRm1veXBJdURXYWp5NnBBWnlETFNKQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz N0IzOS9BNzU5OUQ3QUEwMzUxMUVDODIyNTVEM0FDNEY5QUUwMi9raGRCaEZtb3lw SXVEV2FqeTZwQVp5RExTSkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2QwUj04vAZB+CgJj/G6R6ieRN+aW+nyU49oqd1/roHwu4flEvakBx wkqC2UDMQ32vtGV9uaBYeS3yhSnSQMs4F6VDj/vklAWY7UtamFwfjKl1g/Jv/KgJ kSXkgWZKvXmlTKoLrpL+xWkymVk2Yz7mUHXpoyJxEELhLRXrD8Sr2UQUKosB3HS7 K+0RuRP1/M/iBsSgcpNQzvRbJHA/mrEvmDi3brYO2MG+hds9LodQFMIwCHUvaMBi cuhQxndiEfKyRl6CirnRfCHXEsIhByIGtLHh5Ij/4eEA2bdOGFNmu2Br3scW/Tb9 L2fgjcedfyDN7dWL8/YxtY2LZQAVztHX -----END CERTIFICATE-----Generated at Fri May 16 01:06:49 2025 by rpki-client