$ rpki-client -vvf rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.mft File: KZYjJd4LreTcndvFdq4ncBK8N1g.mft (raw, json) Hash identifier: Hj9bPVfr4EW1GlSHPHK78++hTnLWr8QDfBjHg67PjBQ= Subject key identifier: 7F:6E:52:5D:33:FD:8C:E7:BC:AE:65:F9:2F:7E:19:9F:68:D6:92:30 Authority key identifier: 29:96:23:25:DE:0B:AD:E4:DC:9D:DB:C5:76:AE:27:70:12:BC:37:58 Certificate issuer: /CN=A914DA2D/serialNumber=29962325DE0BADE4DC9DDBC576AE277012BC3758 Certificate serial: 1A56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KZYjJd4LreTcndvFdq4ncBK8N1g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.mft Manifest number: 1A36 Signing time: Mon 12 May 2025 16:19:32 +0000 Manifest this update: Mon 12 May 2025 16:19:32 +0000 Manifest next update: Mon 19 May 2025 16:19:32 +0000 Files and hashes: 1: KZYjJd4LreTcndvFdq4ncBK8N1g.crl (hash: baXWAc77Mq0L8BvVkPjbZ5aEtbNAcpvFo9NcQu0koRk=) 2: B201496EF3A311EC8804FE09C4F9AE02.roa (hash: 1W3bZjmYo4y/faIyWLiaDn4cNEWTqd/xhoIAZdOleqM=) 3: 442A935E2F1F11F0A35F5757C4F9AE02.roa (hash: hBSO24ULXhKu94YR3RfqFp/a4boCJIBAaE6mmtZ9Bvs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.crl rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KZYjJd4LreTcndvFdq4ncBK8N1g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 16:19:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6742 (0x1a56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DA2D, serialNumber=29962325DE0BADE4DC9DDBC576AE277012BC3758 Validity Not Before: May 12 16:19:32 2025 GMT Not After : May 19 16:19:32 2025 GMT Subject: CN=68221f94-ef12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:90:3f:93:7b:69:d0:79:fd:03:45:4a:5f:f0: 96:c1:82:21:f6:17:10:7c:90:f3:02:5c:20:27:e6: 0f:9e:68:c5:69:b0:c9:34:0b:82:08:31:4d:e4:8d: eb:2f:5a:ef:d6:18:84:c5:59:ad:85:ec:88:31:76: 5e:89:26:a4:5f:6c:4e:62:96:49:b1:ef:7e:28:23: ee:36:c0:a3:52:17:0c:50:57:61:df:f9:5a:6f:af: ee:a7:d4:8c:ad:18:92:50:af:75:30:a7:6b:c2:d1: 3a:8d:7f:2c:21:a2:f3:8a:7f:52:da:02:94:59:74: 35:1b:37:c2:2b:fc:28:ff:08:4d:00:2a:df:81:9e: cb:a6:19:11:7e:8f:f9:53:c5:ff:64:bf:7a:06:8c: 58:66:c8:4a:7c:8f:a2:da:62:67:f7:cd:5e:c6:99: d5:4f:7e:88:8d:2c:73:55:ca:93:5f:0e:9d:c5:f2: 01:0c:7d:a4:9d:44:23:0a:21:e8:f4:80:32:e2:54: 85:ca:28:ce:94:b8:9f:9c:d1:9c:59:84:93:73:fa: 09:49:be:31:bc:43:39:3f:c2:68:32:ff:c6:f8:69: 16:a0:4a:12:0f:08:64:72:da:f5:9f:e3:ee:47:7e: 44:9f:b7:2a:90:40:3b:46:09:7b:ae:8c:bd:98:05: f7:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:6E:52:5D:33:FD:8C:E7:BC:AE:65:F9:2F:7E:19:9F:68:D6:92:30 X509v3 Authority Key Identifier: keyid:29:96:23:25:DE:0B:AD:E4:DC:9D:DB:C5:76:AE:27:70:12:BC:37:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KZYjJd4LreTcndvFdq4ncBK8N1g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:cc:cf:85:da:95:13:8a:bd:71:de:f8:0f:ec:f6:89:5f:87: 8c:53:a6:ec:41:7f:19:d1:c6:f1:1c:98:12:91:de:99:a8:37: 07:c3:14:d3:28:99:95:35:7e:7f:c4:4f:3b:ec:40:fc:f1:68: 52:9e:b9:33:36:b1:81:0e:58:e8:aa:0a:ec:02:1d:7e:9d:27: f0:4e:08:52:4d:07:c4:24:e7:34:9d:3d:32:4c:da:71:c3:b5: 54:6b:c4:8a:d9:93:87:79:48:ca:12:bb:f4:8d:77:ac:59:a8: 5b:3d:c5:4e:66:9c:13:91:f9:4e:0d:bc:3d:27:a2:ad:df:ae: 73:33:23:e6:b9:65:d8:83:2d:b8:8b:b9:02:5c:72:e0:bc:14: df:d7:d2:7c:2c:e8:c0:a1:7f:26:75:38:c6:52:31:94:2e:61: 67:38:e8:3d:6a:28:17:28:bc:4e:41:bf:aa:a5:c3:e8:2d:40: 9d:02:85:94:d1:b4:f4:e8:bd:76:9b:41:71:45:6a:2f:3f:c1: b9:2a:e8:c6:a3:d9:3b:6b:bd:c0:4b:85:36:d9:13:83:c6:97: 28:db:ce:a5:97:5e:e7:52:a0:fd:58:25:35:e3:08:9f:f2:00: b2:82:7a:3d:73:e8:0f:2f:b4:5e:36:72:0e:2a:c2:8e:a2:1c: 42:fc:ce:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGlYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERBMkQxMTAvBgNVBAUTKDI5OTYyMzI1REUwQkFERTREQzlEREJDNTc2QUUyNzcw MTJCQzM3NTgwHhcNMjUwNTEyMTYxOTMyWhcNMjUwNTE5MTYxOTMyWjAYMRYwFAYD VQQDEw02ODIyMWY5NC1lZjEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA55A/k3tp0Hn9A0VKX/CWwYIh9hcQfJDzAlwgJ+YPnmjFabDJNAuCCDFN5I3r L1rv1hiExVmtheyIMXZeiSakX2xOYpZJse9+KCPuNsCjUhcMUFdh3/lab6/up9SM rRiSUK91MKdrwtE6jX8sIaLzin9S2gKUWXQ1GzfCK/wo/whNACrfgZ7LphkRfo/5 U8X/ZL96BoxYZshKfI+i2mJn981expnVT36IjSxzVcqTXw6dxfIBDH2knUQjCiHo 9IAy4lSFyijOlLifnNGcWYSTc/oJSb4xvEM5P8JoMv/G+GkWoEoSDwhkctr1n+Pu R35En7cqkEA7Rgl7roy9mAX3AwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH9uUl0z /YznvK5l+S9+GZ9o1pIwMB8GA1UdIwQYMBaAFCmWIyXeC63k3J3bxXauJ3ASvDdY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REEyRC84MzgzNjIwQTUw RDUxMUU3OUVDRTQwMTNDNEY5QUUwMi9LWllqSmQ0THJlVGNuZHZGZHE0bmNCSzhO MWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0taWWpKZDRMcmVUY25kdkZkcTRuY0JLOE4xZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 REEyRC84MzgzNjIwQTUwRDUxMUU3OUVDRTQwMTNDNEY5QUUwMi9LWllqSmQ0THJl VGNuZHZGZHE0bmNCSzhOMWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVzM+F2pUTir1x3vgP7PaJX4eMU6bsQX8Z0cbxHJgSkd6ZqDcHwxTT KJmVNX5/xE877ED88WhSnrkzNrGBDljoqgrsAh1+nSfwTghSTQfEJOc0nT0yTNpx w7VUa8SK2ZOHeUjKErv0jXesWahbPcVOZpwTkflODbw9J6Kt365zMyPmuWXYgy24 i7kCXHLgvBTf19J8LOjAoX8mdTjGUjGULmFnOOg9aigXKLxOQb+qpcPoLUCdAoWU 0bT06L12m0FxRWovP8G5KujGo9k7a73AS4U22RODxpco286ll17nUqD9WCU14wif 8gCygno9c+gPL7ReNnIOKsKOohxC/M6e -----END CERTIFICATE-----Generated at Mon May 12 18:35:36 2025 by rpki-client