$ rpki-client -vvf rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft File: koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft (raw, json) Hash identifier: heILMVyGdlctV4mm2A5wtGc3BI+R3UviXidFOi/NmY0= Subject key identifier: 06:D6:6B:3E:59:95:E6:11:B5:B8:B2:20:62:83:EA:70:60:17:91:E4 Authority key identifier: 92:80:F0:70:74:77:53:38:7B:6B:A6:57:32:D6:DD:79:92:B3:50:C1 Certificate issuer: /CN=A9138679/serialNumber=9280F070747753387B6BA65732D6DD7992B350C1 Certificate serial: 32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/koDwcHR3Uzh7a6ZXMtbdeZKzUME.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft Manifest number: 31 Signing time: Sat 17 May 2025 07:07:59 +0000 Manifest this update: Sat 17 May 2025 07:07:58 +0000 Manifest next update: Sat 24 May 2025 07:07:58 +0000 Files and hashes: 1: koDwcHR3Uzh7a6ZXMtbdeZKzUME.crl (hash: 6jxQ/FXm5TsYgqCi0BW8ryEFFr59nHKpgWv2PbU8u9A=) 2: 2CD223FCEA7811EF92D8DC39C4F9AE02.roa (hash: zvy+2HhQd/n3VOaiuMrL5/OccoJAnqCm0UAKCkrWeWw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.crl rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/koDwcHR3Uzh7a6ZXMtbdeZKzUME.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 07:07:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50 (0x32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138679, serialNumber=9280F070747753387B6BA65732D6DD7992B350C1 Validity Not Before: May 17 07:07:58 2025 GMT Not After : May 24 07:07:58 2025 GMT Subject: CN=682835ce-e6ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:58:43:b2:53:b5:d2:3e:c8:cb:d6:89:91:a2: 9d:f5:b5:23:61:1b:56:0f:1b:05:7d:97:49:29:78: ee:97:94:df:ce:bb:01:68:2c:eb:72:2c:05:66:9c: 67:6b:b1:c1:49:50:32:30:54:28:7c:c5:a6:6f:02: ae:bf:f6:d1:0e:29:1a:61:33:28:29:3a:4b:fe:fc: 58:55:83:75:3a:72:47:6d:1d:e7:fa:d0:a9:d3:a1: b2:56:96:ce:8d:f6:12:42:3f:fe:c8:95:0e:4a:c2: 3b:8e:8b:94:0e:a0:37:21:f3:d1:fe:be:70:b6:f4: d9:0f:db:b1:86:d4:d6:1b:2d:db:2a:39:80:03:c8: c8:1f:dc:40:d1:59:01:f7:d0:73:bb:a3:b8:ff:a9: 38:b9:35:a2:f2:2f:9c:bc:92:75:0d:74:2a:1f:27: fb:ae:6c:67:a7:5a:19:92:40:2c:ef:e9:ae:46:78: 07:aa:1e:f9:d4:37:a1:e5:30:f8:0f:be:f9:9d:f6: 53:3e:d5:9f:b2:af:3b:28:74:cc:4a:8f:1b:92:96: 13:93:49:73:1f:26:05:1c:b0:fb:fb:13:cd:85:3c: 93:e9:c7:a1:3b:2e:bb:35:6c:6e:4c:5c:50:1e:b9: d0:f1:bb:eb:54:9d:92:c3:bf:73:05:87:5c:59:19: a4:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:D6:6B:3E:59:95:E6:11:B5:B8:B2:20:62:83:EA:70:60:17:91:E4 X509v3 Authority Key Identifier: keyid:92:80:F0:70:74:77:53:38:7B:6B:A6:57:32:D6:DD:79:92:B3:50:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/koDwcHR3Uzh7a6ZXMtbdeZKzUME.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:12:1a:94:fa:e8:ab:f2:09:d2:4f:98:0d:c5:bd:0e:d9:f3: dd:8f:f9:20:a0:10:89:bb:ce:4e:a4:80:74:74:bf:e4:13:7b: 58:e4:eb:d4:a5:96:18:da:90:fb:b7:03:c0:d0:e0:7a:c2:52: ac:73:d0:e5:05:c3:b5:72:88:e0:57:48:87:0c:6a:f4:f7:ad: 1e:12:aa:95:96:53:4f:cf:8a:e4:74:fe:be:9f:8b:ed:49:bf: 17:fb:a2:4d:3b:bc:6f:58:2c:7c:8d:35:83:97:e0:97:35:50: 06:3b:08:ee:6e:a1:75:86:56:da:ba:61:fd:0b:ef:37:d8:a3: 80:56:60:02:97:a8:95:70:2f:f7:09:10:25:e7:36:a7:39:10: 46:59:b4:a3:75:39:3c:fd:a5:33:64:a5:da:b6:89:0b:83:75: 03:e8:a3:f4:ae:de:c7:c6:3c:6c:f3:c5:68:f2:59:23:3a:7d: 64:06:b6:8a:66:62:58:0e:1a:4b:80:11:ff:6e:46:89:30:4b: 13:f9:9f:b5:a8:bc:14:2a:5c:5e:f5:12:e8:59:ad:dc:56:84: 5d:32:f6:76:5b:37:16:dc:a7:af:8f:c8:10:3e:da:3a:53:14: b0:99:bb:6b:8f:e1:97:d5:e9:7c:50:a8:31:8a:39:87:c5:a8: b7:59:02:8b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz ODY3OTExMC8GA1UEBRMoOTI4MEYwNzA3NDc3NTMzODdCNkJBNjU3MzJENkRENzk5 MkIzNTBDMTAeFw0yNTA1MTcwNzA3NThaFw0yNTA1MjQwNzA3NThaMBgxFjAUBgNV BAMTDTY4MjgzNWNlLWU2Y2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDfWEOyU7XSPsjL1omRop31tSNhG1YPGwV9l0kpeO6XlN/OuwFoLOtyLAVmnGdr scFJUDIwVCh8xaZvAq6/9tEOKRphMygpOkv+/FhVg3U6ckdtHef60KnTobJWls6N 9hJCP/7IlQ5KwjuOi5QOoDch89H+vnC29NkP27GG1NYbLdsqOYADyMgf3EDRWQH3 0HO7o7j/qTi5NaLyL5y8knUNdCofJ/uubGenWhmSQCzv6a5GeAeqHvnUN6HlMPgP vvmd9lM+1Z+yrzsodMxKjxuSlhOTSXMfJgUcsPv7E82FPJPpx6E7Lrs1bG5MXFAe udDxu+tUnZLDv3MFh1xZGaQ/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUBtZrPlmV 5hG1uLIgYoPqcGAXkeQwHwYDVR0jBBgwFoAUkoDwcHR3Uzh7a6ZXMtbdeZKzUMEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM4Njc5L0NCMkNCM0NFRUE3 NzExRUZBNTYzNTY4MEM0RjlBRTAyL2tvRHdjSFIzVXpoN2E2WlhNdGJkZVpLelVN RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIva29Ed2NIUjNVemg3YTZaWE10YmRlWkt6VU1FLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM4 Njc5L0NCMkNCM0NFRUE3NzExRUZBNTYzNTY4MEM0RjlBRTAyL2tvRHdjSFIzVXpo N2E2WlhNdGJkZVpLelVNRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAB8SGpT66KvyCdJPmA3FvQ7Z892P+SCgEIm7zk6kgHR0v+QTe1jk69Sl lhjakPu3A8DQ4HrCUqxz0OUFw7VyiOBXSIcMavT3rR4SqpWWU0/PiuR0/r6fi+1J vxf7ok07vG9YLHyNNYOX4Jc1UAY7CO5uoXWGVtq6Yf0L7zfYo4BWYAKXqJVwL/cJ ECXnNqc5EEZZtKN1OTz9pTNkpdq2iQuDdQPoo/Su3sfGPGzzxWjyWSM6fWQGtopm YlgOGkuAEf9uRokwSxP5n7WovBQqXF71EuhZrdxWhF0y9nZbNxbcp6+PyBA+2jpT FLCZu2uP4ZfV6XxQqDGKOYfFqLdZAos= -----END CERTIFICATE-----Generated at Sun May 18 07:45:19 2025 by rpki-client