$ rpki-client -vvf rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft File: kDo4Q2eaCxBdykhcPWSPPREnL7c.mft (raw, json) Hash identifier: h6z02Dl316XdUqwdquXv4REvFH2Mpu+ZQkave3tS8ZM= Subject key identifier: 98:17:8D:DC:9A:B8:D8:0B:F3:70:C4:55:C1:5D:D1:C5:68:D8:F0:9C Authority key identifier: 90:3A:38:43:67:9A:0B:10:5D:CA:48:5C:3D:64:8F:3D:11:27:2F:B7 Certificate issuer: /CN=A914E488/serialNumber=903A3843679A0B105DCA485C3D648F3D11272FB7 Certificate serial: 023C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDo4Q2eaCxBdykhcPWSPPREnL7c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft Manifest number: 0238 Signing time: Thu 15 May 2025 01:53:23 +0000 Manifest this update: Thu 15 May 2025 01:53:23 +0000 Manifest next update: Thu 22 May 2025 01:53:23 +0000 Files and hashes: 1: kDo4Q2eaCxBdykhcPWSPPREnL7c.crl (hash: oVU/bE5iRAmuY2PWKy0TlAOCgm7i+ICdk1vs8Qvj2v8=) 2: 606EB6AE240911EDBFA59C27C4F9AE02.roa (hash: NNo4SAwO23W3h7iwFhvtQVGgAhn5LQhxSRbEa+xKr7I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.crl rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDo4Q2eaCxBdykhcPWSPPREnL7c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 01:53:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 572 (0x23c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E488, serialNumber=903A3843679A0B105DCA485C3D648F3D11272FB7 Validity Not Before: May 15 01:53:23 2025 GMT Not After : May 22 01:53:23 2025 GMT Subject: CN=68254913-410d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:90:ca:71:56:9b:2f:cf:0d:94:e5:17:c2:5a: 21:bd:33:92:9f:61:cb:1a:5e:5c:cd:18:9a:73:9f: 8d:0e:4a:eb:8f:a3:2a:65:71:47:10:75:89:0c:62: 92:3d:4b:04:66:0c:7d:06:7e:c4:8f:96:22:89:b7: 6e:5e:93:cf:45:a3:2c:58:93:37:8c:59:93:7d:9d: 61:1d:0f:fe:b0:3b:6b:66:41:1b:6a:60:10:57:c3: 42:fc:d2:a9:c8:2c:ae:85:48:c3:12:c1:4a:59:b7: 16:f3:5d:41:78:bb:26:8e:35:4f:6a:a8:5a:f6:26: ef:61:bd:77:39:5f:70:d0:60:b4:4e:a9:6c:f6:24: 1c:87:c7:8f:2d:bf:42:15:04:ed:e3:dc:7a:80:d8: 2e:8b:7e:90:4f:f1:f0:eb:08:ed:bd:83:87:e8:bb: d6:3c:c2:08:4f:03:27:b8:8a:de:73:8b:8f:f8:34: a1:78:f8:f8:23:10:52:45:f1:97:9a:6d:e0:35:be: f1:d8:5f:e1:1e:e2:57:fe:56:e0:c1:ac:d7:a7:61: 1d:03:45:bb:cc:ec:15:70:c0:25:3a:5b:a0:f9:f0: 94:75:fb:b1:2f:01:5c:42:dc:d1:70:fa:29:db:0c: df:af:a7:43:ee:06:3d:5c:d7:cf:0d:92:ce:6d:94: 9b:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:17:8D:DC:9A:B8:D8:0B:F3:70:C4:55:C1:5D:D1:C5:68:D8:F0:9C X509v3 Authority Key Identifier: keyid:90:3A:38:43:67:9A:0B:10:5D:CA:48:5C:3D:64:8F:3D:11:27:2F:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDo4Q2eaCxBdykhcPWSPPREnL7c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:60:91:ca:3f:59:bd:c2:f3:9a:44:ab:a0:12:1f:fb:f7:a8: 6f:41:bb:f6:60:90:3b:18:0a:8e:99:18:46:2c:a3:1e:ec:98: ab:66:d8:78:72:d0:48:fc:6c:7f:e0:37:86:01:76:39:b6:74: c4:1c:6a:39:15:c1:fe:55:45:10:3c:f7:27:7a:c8:56:39:52: 08:95:1a:f2:16:19:29:f7:72:2e:98:db:f8:ad:4a:1c:c7:dc: 57:4a:a9:16:12:2f:a4:4f:53:85:3c:74:57:7b:79:1d:74:81: 01:37:39:84:cd:43:fc:03:0a:aa:fb:90:67:32:d1:a4:70:29: 25:85:ed:fe:20:ef:ea:ab:d6:93:c3:53:4e:27:15:e3:ee:d8: 9b:b8:5b:18:e3:9b:93:13:10:de:1d:5c:60:4a:cb:20:ff:67: cd:21:18:aa:ec:a0:0b:8a:a1:e5:a2:74:fc:76:e7:71:fb:0d: 97:74:78:15:ee:f3:be:cd:b5:aa:e0:88:47:68:5e:b4:ec:a7: 4c:b7:83:47:cd:7f:e3:de:43:26:c9:06:2d:7e:df:54:11:2e: 09:7e:15:21:23:64:b9:7c:45:13:c5:92:89:c7:1f:a9:b2:45: e5:75:06:52:48:77:cf:5e:47:5f:49:79:92:af:02:e3:d8:5e: c4:71:96:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU0ODgxMTAvBgNVBAUTKDkwM0EzODQzNjc5QTBCMTA1RENBNDg1QzNENjQ4RjNE MTEyNzJGQjcwHhcNMjUwNTE1MDE1MzIzWhcNMjUwNTIyMDE1MzIzWjAYMRYwFAYD VQQDEw02ODI1NDkxMy00MTBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw5DKcVabL88NlOUXwlohvTOSn2HLGl5czRiac5+NDkrrj6MqZXFHEHWJDGKS PUsEZgx9Bn7Ej5YiibduXpPPRaMsWJM3jFmTfZ1hHQ/+sDtrZkEbamAQV8NC/NKp yCyuhUjDEsFKWbcW811BeLsmjjVPaqha9ibvYb13OV9w0GC0Tqls9iQch8ePLb9C FQTt49x6gNgui36QT/Hw6wjtvYOH6LvWPMIITwMnuIrec4uP+DShePj4IxBSRfGX mm3gNb7x2F/hHuJX/lbgwazXp2EdA0W7zOwVcMAlOlug+fCUdfuxLwFcQtzRcPop 2wzfr6dD7gY9XNfPDZLObZSbJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJgXjdya uNgL83DEVcFd0cVo2PCcMB8GA1UdIwQYMBaAFJA6OENnmgsQXcpIXD1kjz0RJy+3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTQ4OC9GODg2OThDQTI0 MDUxMUVEQjk4N0I4MjNDNEY5QUUwMi9rRG80UTJlYUN4QmR5a2hjUFdTUFBSRW5M N2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tEbzRRMmVhQ3hCZHlraGNQV1NQUFJFbkw3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTQ4OC9GODg2OThDQTI0MDUxMUVEQjk4N0I4MjNDNEY5QUUwMi9rRG80UTJlYUN4 QmR5a2hjUFdTUFBSRW5MN2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASYJHKP1m9wvOaRKugEh/796hvQbv2YJA7GAqOmRhGLKMe7JirZth4 ctBI/Gx/4DeGAXY5tnTEHGo5FcH+VUUQPPcneshWOVIIlRryFhkp93IumNv4rUoc x9xXSqkWEi+kT1OFPHRXe3kddIEBNzmEzUP8Awqq+5BnMtGkcCklhe3+IO/qq9aT w1NOJxXj7tibuFsY45uTExDeHVxgSssg/2fNIRiq7KALiqHlonT8dudx+w2XdHgV 7vO+zbWq4IhHaF607KdMt4NHzX/j3kMmyQYtft9UES4JfhUhI2S5fEUTxZKJxx+p skXldQZSSHfPXkdfSXmSrwLj2F7EcZb4 -----END CERTIFICATE-----Generated at Thu May 15 17:59:16 2025 by rpki-client