$ rpki-client -vvf rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.mft File: KO2nuV1ejUVip1l0xt19pkwqKoY.mft (raw, json) Hash identifier: gYed9aC1/teCwOmNGlzS+N0EDaMQneg2+oMKz//UXQY= Subject key identifier: 9C:FE:A3:FC:F5:17:22:3A:09:B3:43:D5:9F:D2:C8:B9:2D:9A:0D:9A Authority key identifier: 28:ED:A7:B9:5D:5E:8D:45:62:A7:59:74:C6:DD:7D:A6:4C:2A:2A:86 Certificate issuer: /CN=A9142E1E/serialNumber=28EDA7B95D5E8D4562A75974C6DD7DA64C2A2A86 Certificate serial: 59 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/KO2nuV1ejUVip1l0xt19pkwqKoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.mft Manifest number: 59 Signing time: Thu 03 Jul 2025 06:41:16 +0000 Manifest this update: Thu 03 Jul 2025 06:41:16 +0000 Manifest next update: Thu 10 Jul 2025 06:41:16 +0000 Files and hashes: 1: KO2nuV1ejUVip1l0xt19pkwqKoY.crl (hash: GUG2ImhNLqNAHRlq2iskTVJ7nbo+oFm46jP2xbaPRis=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.crl rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/KO2nuV1ejUVip1l0xt19pkwqKoY.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 89 (0x59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142E1E, serialNumber=28EDA7B95D5E8D4562A75974C6DD7DA64C2A2A86 Validity Not Before: Jul 3 06:41:16 2025 GMT Not After : Jul 10 06:41:16 2025 GMT Subject: CN=6866260c-b22e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:d3:1a:61:33:eb:a3:14:65:47:82:0e:1c:b7: 7d:35:a6:dd:ee:d3:82:1c:8b:5d:5b:87:84:70:e3: 61:55:4e:f6:e9:4a:42:a6:91:2c:b2:2d:a4:19:fd: 99:6b:3b:14:9d:5b:2a:cc:e0:54:db:56:9d:da:0d: e3:3b:79:77:59:98:50:d5:6c:95:9d:f5:f2:d1:e6: c0:31:46:c0:d2:77:67:bf:d5:4c:e8:51:43:1a:f3: df:62:10:4e:9b:95:8a:32:a0:bc:e8:5e:c6:43:f4: 3d:96:63:21:c4:5c:73:13:44:b4:9a:d9:67:24:22: 37:7b:0e:95:eb:5a:3b:b5:a8:29:8b:94:48:65:a6: b3:d4:31:32:f2:02:f5:46:09:b6:8f:79:d4:54:c2: cc:11:df:09:42:1e:76:1c:0b:fd:93:3f:37:d2:d8: 7f:14:8a:b5:6f:ec:76:04:df:ec:78:54:04:d1:46: f1:83:ce:fe:58:5a:9a:48:9b:c4:5a:36:da:67:50: aa:0c:cb:71:8b:f0:81:6e:d2:a5:34:71:42:a4:91: f3:6b:de:08:ea:07:f1:5f:99:2e:64:91:5b:1e:95: eb:e0:55:40:6b:a8:91:bd:d3:f2:a1:86:dc:69:8b: 0b:31:d5:98:ce:5e:c8:99:2b:c1:c4:1c:dd:45:3a: 6a:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:FE:A3:FC:F5:17:22:3A:09:B3:43:D5:9F:D2:C8:B9:2D:9A:0D:9A X509v3 Authority Key Identifier: keyid:28:ED:A7:B9:5D:5E:8D:45:62:A7:59:74:C6:DD:7D:A6:4C:2A:2A:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/KO2nuV1ejUVip1l0xt19pkwqKoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:76:eb:f8:2e:f4:68:10:7e:43:b2:fd:04:56:5a:18:38:0a: a4:27:7d:25:e1:9c:8f:11:5d:3a:94:58:a0:4e:db:62:05:27: 2d:66:3b:96:df:ba:8b:9f:c2:d3:8d:ca:7e:29:ff:46:c7:57: bd:ba:ae:d4:4f:b4:84:c2:70:bf:d7:f4:ed:25:87:7f:0c:51: 25:83:1a:f5:99:0a:c5:f7:c8:fb:08:3f:77:f8:f1:e9:4e:c5: fb:92:dd:7e:80:00:59:60:9b:44:99:9c:c8:cd:17:60:8f:4c: 54:e6:2d:e5:c7:87:d6:10:e3:f0:78:7c:88:78:b4:66:2c:ed: d0:2b:fd:2e:36:6f:ca:26:e6:51:e9:f7:42:f4:0e:50:54:24: 22:cd:b9:80:90:a2:80:32:d2:3d:82:3a:a9:e0:ea:ab:d4:ba: 83:9b:44:5c:dd:e3:76:49:9e:ce:47:34:e1:f7:9c:57:18:6a: 2e:12:7e:7b:a9:ec:ef:79:fd:65:14:c7:cf:9c:b7:d0:4f:6d: 3c:16:cf:49:6a:e2:9b:23:84:5d:8b:6a:83:96:4f:df:27:a7: 6e:25:3c:21:6c:88:ef:db:be:96:12:cb:64:f7:3c:55:81:af: 9b:65:5e:a0:0d:cb:42:fd:a8:d0:b0:93:9e:f4:95:ed:3e:07: 73:62:9b:5c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MkUxRTExMC8GA1UEBRMoMjhFREE3Qjk1RDVFOEQ0NTYyQTc1OTc0QzZERDdEQTY0 QzJBMkE4NjAeFw0yNTA3MDMwNjQxMTZaFw0yNTA3MTAwNjQxMTZaMBgxFjAUBgNV BAMTDTY4NjYyNjBjLWIyMmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC10xphM+ujFGVHgg4ct301pt3u04Ici11bh4Rw42FVTvbpSkKmkSyyLaQZ/Zlr OxSdWyrM4FTbVp3aDeM7eXdZmFDVbJWd9fLR5sAxRsDSd2e/1UzoUUMa899iEE6b lYoyoLzoXsZD9D2WYyHEXHMTRLSa2WckIjd7DpXrWju1qCmLlEhlprPUMTLyAvVG CbaPedRUwswR3wlCHnYcC/2TPzfS2H8UirVv7HYE3+x4VATRRvGDzv5YWppIm8Ra NtpnUKoMy3GL8IFu0qU0cUKkkfNr3gjqB/FfmS5kkVselevgVUBrqJG90/Khhtxp iwsx1ZjOXsiZK8HEHN1FOmphAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUnP6j/PUX IjoJs0PVn9LIuS2aDZowHwYDVR0jBBgwFoAUKO2nuV1ejUVip1l0xt19pkwqKoYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQyRTFFL0Q0MDlGODJBRDE2 OTExRUZCNzZGQjUyMEM0RjlBRTAyL0tPMm51VjFlalVWaXAxbDB4dDE5cGt3cUtv WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvS08ybnVWMWVqVVZpcDFsMHh0MTlwa3dxS29ZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQy RTFFL0Q0MDlGODJBRDE2OTExRUZCNzZGQjUyMEM0RjlBRTAyL0tPMm51VjFlalVW aXAxbDB4dDE5cGt3cUtvWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGt26/gu9GgQfkOy/QRWWhg4CqQnfSXhnI8RXTqUWKBO22IFJy1mO5bf uoufwtONyn4p/0bHV726rtRPtITCcL/X9O0lh38MUSWDGvWZCsX3yPsIP3f48elO xfuS3X6AAFlgm0SZnMjNF2CPTFTmLeXHh9YQ4/B4fIh4tGYs7dAr/S42b8om5lHp 90L0DlBUJCLNuYCQooAy0j2COqng6qvUuoObRFzd43ZJns5HNOH3nFcYai4Sfnup 7O95/WUUx8+ct9BPbTwWz0lq4psjhF2LaoOWT98np24lPCFsiO/bvpYSy2T3PFWB r5tlXqANy0L9qNCwk570le0+B3Nim1w= -----END CERTIFICATE-----Generated at Fri Jul 4 23:12:06 2025 by rpki-client