$ rpki-client -vvf rpki.apnic.net/member_repository/A9152329/C7FAD368A26811EF9D914118C4F9AE02/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.mft File: KTrGQFMJ3pSVFof-Fylq3c2Vcvw.mft (raw, json) Hash identifier: 8Q8hAjeI6fE97DujHb6o094R1ulGocWcDSIZdoo2dPU= Subject key identifier: CD:21:CB:38:64:AB:C2:2F:98:C6:9B:2F:1D:13:F5:21:FF:72:6B:17 Authority key identifier: 29:3A:C6:40:53:09:DE:94:95:16:87:FE:17:29:6A:DD:CD:95:72:FC Certificate issuer: /CN=A9152329/serialNumber=293AC6405309DE94951687FE17296ADDCD9572FC Certificate serial: 5E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152329/C7FAD368A26811EF9D914118C4F9AE02/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.mft Manifest number: 5D Signing time: Sun 11 May 2025 05:51:38 +0000 Manifest this update: Sun 11 May 2025 05:51:38 +0000 Manifest next update: Sun 18 May 2025 05:51:38 +0000 Files and hashes: 1: KTrGQFMJ3pSVFof-Fylq3c2Vcvw.crl (hash: xxhQlXRZlFjDJU2uZZyNUM+vmixVUZKANbe4keOi4BE=) 2: 38161248A26911EFBF6D0319C4F9AE02.roa (hash: ask+BZFU8F8z7xA+3YaObHPYrB9zSG3srAnnNSVnzDc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152329/C7FAD368A26811EF9D914118C4F9AE02/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.crl rsync://rpki.apnic.net/member_repository/A9152329/C7FAD368A26811EF9D914118C4F9AE02/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 05:51:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 94 (0x5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152329, serialNumber=293AC6405309DE94951687FE17296ADDCD9572FC Validity Not Before: May 11 05:51:38 2025 GMT Not After : May 18 05:51:38 2025 GMT Subject: CN=68203aea-5bdf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:d5:0f:1b:d3:4b:61:d5:7f:6d:6f:78:d7:72: 7e:a9:2a:1f:7e:a8:eb:6b:ae:7d:b6:92:f0:20:16: 7c:88:ee:e3:2d:e9:3a:14:6b:3e:85:af:a3:ca:a4: fd:09:05:db:32:3b:12:d0:6b:0c:ec:e5:cb:81:21: 57:4c:d8:ef:d1:df:c0:72:ea:84:c5:a0:83:68:97: b6:3b:a5:3d:ec:de:ce:be:79:a1:df:e5:97:33:e0: d3:06:de:06:bd:33:74:cb:32:e7:a9:d8:43:92:4b: 9f:ee:26:42:ab:bb:2c:6c:ea:cd:92:69:e7:2a:16: f2:6f:52:f2:09:81:00:cf:61:f2:f1:a6:27:28:17: 85:e9:1c:f2:a2:d0:6c:19:d0:23:f0:7a:73:95:bf: cc:37:e7:6e:b5:ae:51:2c:3e:11:36:51:72:f0:e2: 8d:fa:02:9c:a5:30:a4:e0:d2:95:5e:7e:e9:dd:66: 41:b2:54:28:cc:b0:94:18:0d:4c:f6:95:c9:3d:34: e5:34:14:37:96:bd:56:9b:7f:84:36:e2:4b:ce:42: 98:ac:69:c3:b3:37:61:9d:dc:36:7a:9e:c3:6a:fa: 1b:2e:cf:4f:72:85:bd:b9:9b:5f:f1:43:29:d0:7b: 11:01:87:57:5d:8d:b9:c6:34:a7:62:13:b7:69:18: d2:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:21:CB:38:64:AB:C2:2F:98:C6:9B:2F:1D:13:F5:21:FF:72:6B:17 X509v3 Authority Key Identifier: keyid:29:3A:C6:40:53:09:DE:94:95:16:87:FE:17:29:6A:DD:CD:95:72:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152329/C7FAD368A26811EF9D914118C4F9AE02/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152329/C7FAD368A26811EF9D914118C4F9AE02/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:d3:03:fd:4a:3d:b7:79:ca:7f:b7:91:d4:1f:40:ab:80:41: 99:6f:9a:de:b2:79:38:65:5b:56:77:d3:a2:e3:11:a2:63:21: e5:2b:6d:bb:c3:47:f1:29:9f:3e:af:c3:01:4a:f6:9a:11:53: 95:9d:2a:53:9c:d4:48:12:e9:41:9c:44:70:51:28:b3:6d:7f: 07:28:3d:2a:68:b7:19:39:3f:57:d3:4b:6d:7b:d4:32:16:62: 87:1b:19:f3:52:2c:e7:16:a3:47:70:9c:51:d2:23:45:9c:50: 49:a5:f0:d1:4a:6d:09:c0:1f:11:01:4e:84:76:bf:8c:e0:c7: 20:0a:67:79:2b:a7:bb:bc:d2:66:16:c9:18:b2:81:7f:db:47: 00:a4:3c:f4:6a:a4:09:ae:a6:e9:5b:d4:27:53:f1:e9:5a:02: 4d:c2:f2:49:c5:35:4f:40:b3:f4:4b:1c:2c:94:53:4d:22:17: c5:23:48:a6:6b:c3:b7:06:c0:5a:dd:e7:46:9c:4b:62:7c:ad: aa:aa:4b:8c:7e:b7:03:82:d8:d2:1c:45:db:c3:77:6a:3c:84: 96:e9:39:b8:8f:ee:cd:60:b0:cd:83:7b:83:f3:08:cb:9c:35: d2:2c:0a:0d:f3:fa:dc:ff:c4:bd:15:85:30:d1:22:70:b8:ed: 6a:84:f5:92 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 MjMyOTExMC8GA1UEBRMoMjkzQUM2NDA1MzA5REU5NDk1MTY4N0ZFMTcyOTZBRERD RDk1NzJGQzAeFw0yNTA1MTEwNTUxMzhaFw0yNTA1MTgwNTUxMzhaMBgxFjAUBgNV BAMTDTY4MjAzYWVhLTViZGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDz1Q8b00th1X9tb3jXcn6pKh9+qOtrrn22kvAgFnyI7uMt6ToUaz6Fr6PKpP0J BdsyOxLQawzs5cuBIVdM2O/R38By6oTFoINol7Y7pT3s3s6+eaHf5Zcz4NMG3ga9 M3TLMuep2EOSS5/uJkKruyxs6s2SaecqFvJvUvIJgQDPYfLxpicoF4XpHPKi0GwZ 0CPwenOVv8w35261rlEsPhE2UXLw4o36ApylMKTg0pVefundZkGyVCjMsJQYDUz2 lck9NOU0FDeWvVabf4Q24kvOQpisacOzN2Gd3DZ6nsNq+hsuz09yhb25m1/xQynQ exEBh1ddjbnGNKdiE7dpGNKhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUzSHLOGSr wi+YxpsvHRP1If9yaxcwHwYDVR0jBBgwFoAUKTrGQFMJ3pSVFof+Fylq3c2Vcvww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUyMzI5L0M3RkFEMzY4QTI2 ODExRUY5RDkxNDExOEM0RjlBRTAyL0tUckdRRk1KM3BTVkZvZi1GeWxxM2MyVmN2 dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvS1RyR1FGTUozcFNWRm9mLUZ5bHEzYzJWY3Z3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUy MzI5L0M3RkFEMzY4QTI2ODExRUY5RDkxNDExOEM0RjlBRTAyL0tUckdRRk1KM3BT VkZvZi1GeWxxM2MyVmN2dy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALfTA/1KPbd5yn+3kdQfQKuAQZlvmt6yeThlW1Z306LjEaJjIeUrbbvD R/Epnz6vwwFK9poRU5WdKlOc1EgS6UGcRHBRKLNtfwcoPSpotxk5P1fTS2171DIW YocbGfNSLOcWo0dwnFHSI0WcUEml8NFKbQnAHxEBToR2v4zgxyAKZ3krp7u80mYW yRiygX/bRwCkPPRqpAmupulb1CdT8elaAk3C8knFNU9As/RLHCyUU00iF8UjSKZr w7cGwFrd50acS2J8raqqS4x+twOC2NIcRdvDd2o8hJbpObiP7s1gsM2De4PzCMuc NdIsCg3z+tz/xL0VhTDRInC47WqE9ZI= -----END CERTIFICATE-----Generated at Tue May 13 02:12:23 2025 by rpki-client