$ rpki-client -vvf rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.mft File: KO2nuV1ejUVip1l0xt19pkwqKoY.mft (raw, json) Hash identifier: hW2RbugT33FSL5TuWRg7S8ph6+AXFRUdDdVkeLle8Xs= Subject key identifier: 3B:FA:4C:15:90:FC:D3:EA:B2:F8:5C:79:DA:51:C3:54:E7:68:80:F5 Authority key identifier: 28:ED:A7:B9:5D:5E:8D:45:62:A7:59:74:C6:DD:7D:A6:4C:2A:2A:86 Certificate issuer: /CN=A9142E1E/serialNumber=28EDA7B95D5E8D4562A75974C6DD7DA64C2A2A86 Certificate serial: 41 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/KO2nuV1ejUVip1l0xt19pkwqKoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.mft Manifest number: 41 Signing time: Thu 15 May 2025 06:04:22 +0000 Manifest this update: Thu 15 May 2025 06:04:22 +0000 Manifest next update: Thu 22 May 2025 06:04:22 +0000 Files and hashes: 1: KO2nuV1ejUVip1l0xt19pkwqKoY.crl (hash: K6jskXquVIe6t2Qp1i5LaVKaiehCpbmXkdrd9rnDDlI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.crl rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/KO2nuV1ejUVip1l0xt19pkwqKoY.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 06:04:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65 (0x41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142E1E, serialNumber=28EDA7B95D5E8D4562A75974C6DD7DA64C2A2A86 Validity Not Before: May 15 06:04:22 2025 GMT Not After : May 22 06:04:22 2025 GMT Subject: CN=682583e6-9430 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ca:5f:ee:7f:3b:af:9b:42:c3:c3:93:15:53: 70:57:25:96:b0:5f:36:3f:af:35:56:f0:1f:fe:40: b6:4e:2b:08:be:43:a6:72:90:50:b1:18:0a:d7:ae: eb:08:38:35:f7:58:32:56:00:9d:91:89:76:4b:f8: 98:ed:f5:f3:61:14:ee:16:5e:8b:0a:c4:cb:77:de: 32:45:41:5a:d9:c9:92:73:aa:4b:f0:af:f4:d6:cf: ff:1a:71:f3:6c:14:63:83:d1:f3:2a:06:9c:f1:44: a6:0b:f5:53:9c:4c:c7:0b:71:fa:85:b6:fc:d0:63: 1f:c5:53:75:b9:2c:ef:f6:64:e9:45:60:55:5e:f9: b3:9b:ff:00:fe:bb:8c:1c:b0:0b:8e:a2:da:64:ba: cd:4e:bd:83:ba:0c:4b:df:5d:5d:2f:47:4f:85:51: c3:8c:7e:8d:84:16:c3:d6:97:ce:7f:c1:e2:d3:a6: 04:44:40:b7:fc:14:50:f8:df:5e:97:3a:aa:98:97: 76:d0:e7:14:eb:ca:c1:03:dd:48:04:76:ce:65:77: 3c:31:75:3b:0f:bb:30:6d:70:45:2d:ef:50:62:73: 58:e8:78:cf:90:0f:a7:5d:68:45:d3:7c:19:6d:6f: f3:85:55:35:7a:f7:74:a4:1f:6e:59:99:f4:65:fc: 55:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:FA:4C:15:90:FC:D3:EA:B2:F8:5C:79:DA:51:C3:54:E7:68:80:F5 X509v3 Authority Key Identifier: keyid:28:ED:A7:B9:5D:5E:8D:45:62:A7:59:74:C6:DD:7D:A6:4C:2A:2A:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/KO2nuV1ejUVip1l0xt19pkwqKoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:6a:87:b5:89:2d:b1:b8:6f:46:8c:fe:fe:ed:c3:1f:1b:40: 0f:94:77:6c:3a:58:88:8e:b4:ca:87:97:07:bf:5a:95:01:ab: 1b:23:dd:6a:ce:b9:7b:a5:32:53:c4:f8:fa:f8:54:fd:de:06: dc:2c:a6:e4:03:ef:22:e1:9d:c8:88:0c:67:d0:b3:5c:a6:a7: b1:d3:90:e3:e4:e8:7f:e8:42:10:43:a6:d2:da:45:32:13:5c: da:52:4a:32:0b:29:4c:07:11:74:65:15:04:43:ce:e8:88:1d: c6:75:04:b0:e2:98:ba:50:5d:50:23:e5:45:cf:e7:ee:7e:9f: cb:f8:41:c8:a2:cd:32:6f:2d:be:9f:f5:54:42:71:6b:c9:3c: 39:47:80:bd:d6:cc:22:df:79:4b:1c:e3:79:76:12:2a:d6:24: f7:f9:e6:d4:7f:c5:25:da:cb:fa:7f:57:a0:f8:a4:af:db:14: 30:57:05:14:de:1b:cf:a4:40:3f:bd:f1:ed:3c:69:f9:ec:c3: 16:d9:98:0b:b5:8a:78:f3:de:c0:f7:47:8b:50:90:ce:80:1f: b8:ca:b1:3f:6a:7b:ce:98:a5:34:ee:48:47:8b:e0:d7:a8:70: 29:a0:d3:bb:b8:ae:1a:14:3c:1b:29:01:c2:76:da:29:d4:3e: 23:52:f3:15 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MkUxRTExMC8GA1UEBRMoMjhFREE3Qjk1RDVFOEQ0NTYyQTc1OTc0QzZERDdEQTY0 QzJBMkE4NjAeFw0yNTA1MTUwNjA0MjJaFw0yNTA1MjIwNjA0MjJaMBgxFjAUBgNV BAMTDTY4MjU4M2U2LTk0MzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDRyl/ufzuvm0LDw5MVU3BXJZawXzY/rzVW8B/+QLZOKwi+Q6ZykFCxGArXrusI ODX3WDJWAJ2RiXZL+Jjt9fNhFO4WXosKxMt33jJFQVrZyZJzqkvwr/TWz/8acfNs FGOD0fMqBpzxRKYL9VOcTMcLcfqFtvzQYx/FU3W5LO/2ZOlFYFVe+bOb/wD+u4wc sAuOotpkus1OvYO6DEvfXV0vR0+FUcOMfo2EFsPWl85/weLTpgREQLf8FFD4316X OqqYl3bQ5xTrysED3UgEds5ldzwxdTsPuzBtcEUt71Bic1joeM+QD6ddaEXTfBlt b/OFVTV693SkH25ZmfRl/FUBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUO/pMFZD8 0+qy+Fx52lHDVOdogPUwHwYDVR0jBBgwFoAUKO2nuV1ejUVip1l0xt19pkwqKoYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQyRTFFL0Q0MDlGODJBRDE2 OTExRUZCNzZGQjUyMEM0RjlBRTAyL0tPMm51VjFlalVWaXAxbDB4dDE5cGt3cUtv WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvS08ybnVWMWVqVVZpcDFsMHh0MTlwa3dxS29ZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQy RTFFL0Q0MDlGODJBRDE2OTExRUZCNzZGQjUyMEM0RjlBRTAyL0tPMm51VjFlalVW aXAxbDB4dDE5cGt3cUtvWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAChqh7WJLbG4b0aM/v7twx8bQA+Ud2w6WIiOtMqHlwe/WpUBqxsj3WrO uXulMlPE+Pr4VP3eBtwspuQD7yLhnciIDGfQs1ymp7HTkOPk6H/oQhBDptLaRTIT XNpSSjILKUwHEXRlFQRDzuiIHcZ1BLDimLpQXVAj5UXP5+5+n8v4QciizTJvLb6f 9VRCcWvJPDlHgL3WzCLfeUsc43l2EirWJPf55tR/xSXay/p/V6D4pK/bFDBXBRTe G8+kQD+98e08afnswxbZmAu1injz3sD3R4tQkM6AH7jKsT9qe86YpTTuSEeL4Neo cCmg07u4rhoUPBspAcJ22inUPiNS8xU= -----END CERTIFICATE-----Generated at Sat May 17 00:14:12 2025 by rpki-client