$ rpki-client -vvf rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft File: KrJDLDrVEo7XPpnEYNBhH69NIg4.mft (raw, json) Hash identifier: jutNJnMoHBcH9k7ArN+wWK+NqH1EsxeAT43n5fZ+Wtg= Subject key identifier: C0:46:C6:C0:84:24:8D:A5:AD:0B:9A:D7:18:8F:B3:28:2B:30:0B:3D Authority key identifier: 2A:B2:43:2C:3A:D5:12:8E:D7:3E:99:C4:60:D0:61:1F:AF:4D:22:0E Certificate issuer: /CN=A9153850/serialNumber=2AB2432C3AD5128ED73E99C460D0611FAF4D220E Certificate serial: 4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KrJDLDrVEo7XPpnEYNBhH69NIg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft Manifest number: 43 Signing time: Thu 03 Jul 2025 07:48:46 +0000 Manifest this update: Thu 03 Jul 2025 07:48:46 +0000 Manifest next update: Thu 10 Jul 2025 07:48:46 +0000 Files and hashes: 1: KrJDLDrVEo7XPpnEYNBhH69NIg4.crl (hash: 5dJYFUx238bllUxsq8uM8byTRa5j/s4nAD0X1p8XhK0=) 2: E40AC356018611F0B7E46C83C4F9AE02.roa (hash: xnpORZ2MtPoqtzWOcmsiFxPYNxl3p5FaKDYctBVtkjc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.crl rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KrJDLDrVEo7XPpnEYNBhH69NIg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75 (0x4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153850, serialNumber=2AB2432C3AD5128ED73E99C460D0611FAF4D220E Validity Not Before: Jul 3 07:48:46 2025 GMT Not After : Jul 10 07:48:46 2025 GMT Subject: CN=686635de-24bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:38:c8:05:9d:01:a4:7f:fa:cc:8a:2c:4c:40: 45:ed:f9:08:b0:7f:03:d4:6f:4c:af:e8:e9:9c:f7: eb:07:05:e7:cf:94:a1:84:fe:70:d4:3d:ca:52:8f: 8b:88:20:e4:26:0c:52:c8:f8:1f:ed:b5:6a:f8:80: ee:1a:cf:ef:5f:2a:07:3c:dc:b7:e5:ee:fb:e3:a4: 53:58:75:a4:d9:a6:a4:00:ac:57:36:ee:1a:0c:61: 7f:20:85:6f:07:88:eb:6b:60:1d:70:51:75:96:3e: 1e:ec:11:c1:54:c1:3a:e7:23:ec:17:04:f4:7b:3f: b1:4d:d4:f4:b1:11:cb:ea:ae:73:58:1e:88:8e:e9: 93:34:ba:6d:c5:60:60:87:fd:69:fe:57:bd:bd:3c: 47:b6:a2:18:25:92:bf:73:a3:3b:d1:d5:ed:24:fc: 56:1f:fa:57:3e:af:f5:84:ab:b9:44:d7:68:2a:35: 7a:2d:62:db:91:1b:47:c4:b8:17:ee:30:31:f5:49: 7a:24:7a:b8:93:76:47:5d:62:b4:df:6a:72:e6:8c: aa:f9:b0:de:b6:5d:44:23:fc:14:de:ca:46:3f:96: cc:13:b9:cd:a5:9c:f7:ee:96:6b:21:36:50:c2:fc: 74:e7:2d:8a:75:85:76:3f:1e:e6:43:1d:92:c4:01: 13:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:46:C6:C0:84:24:8D:A5:AD:0B:9A:D7:18:8F:B3:28:2B:30:0B:3D X509v3 Authority Key Identifier: keyid:2A:B2:43:2C:3A:D5:12:8E:D7:3E:99:C4:60:D0:61:1F:AF:4D:22:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KrJDLDrVEo7XPpnEYNBhH69NIg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:73:c3:ac:d6:47:d2:05:35:42:ed:15:b9:e3:42:fe:64:eb: 39:a9:98:d2:dc:4d:bb:15:9f:15:c7:0b:95:4d:21:bf:80:6b: 7d:98:bd:01:87:e0:b9:9f:8e:8f:6c:da:a8:63:7e:46:49:13: 54:6c:d6:a8:e3:4e:f4:94:35:54:14:01:db:c3:e4:69:73:ed: a1:e0:35:b5:1a:b0:f6:51:c6:50:86:13:89:b1:a6:da:1c:2e: 4d:9d:44:f8:b6:1f:49:16:97:08:2f:a1:25:fc:72:ba:7e:55: 59:1d:a9:fc:a5:18:32:88:18:1a:30:2e:b9:31:c3:83:6c:a8: 4a:ac:ac:73:8c:a2:39:b4:eb:3f:91:cd:07:be:42:22:af:9f: e5:92:d9:35:12:7d:0e:2b:74:a5:5c:94:97:87:aa:d8:c9:13: af:0c:9e:b8:ae:4d:1b:8f:86:e0:40:86:e2:53:40:71:f7:b9: 1d:35:eb:6a:88:00:1c:3a:ae:8c:f4:f2:f3:13:e1:3b:16:bb: 0d:5a:87:9d:00:f8:2a:67:aa:56:3e:00:f7:d7:b6:81:71:4c: eb:de:31:46:7b:c2:57:e5:eb:cc:b1:23:cd:96:90:92:a1:4b: 54:ce:b7:a3:4a:9a:be:a7:5d:32:1c:b1:6a:f8:7e:42:14:4c: 70:0a:d7:94 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 Mzg1MDExMC8GA1UEBRMoMkFCMjQzMkMzQUQ1MTI4RUQ3M0U5OUM0NjBEMDYxMUZB RjREMjIwRTAeFw0yNTA3MDMwNzQ4NDZaFw0yNTA3MTAwNzQ4NDZaMBgxFjAUBgNV BAMTDTY4NjYzNWRlLTI0YmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDZOMgFnQGkf/rMiixMQEXt+QiwfwPUb0yv6Omc9+sHBefPlKGE/nDUPcpSj4uI IOQmDFLI+B/ttWr4gO4az+9fKgc83Lfl7vvjpFNYdaTZpqQArFc27hoMYX8ghW8H iOtrYB1wUXWWPh7sEcFUwTrnI+wXBPR7P7FN1PSxEcvqrnNYHoiO6ZM0um3FYGCH /Wn+V729PEe2ohglkr9zozvR1e0k/FYf+lc+r/WEq7lE12gqNXotYtuRG0fEuBfu MDH1SXokeriTdkddYrTfanLmjKr5sN62XUQj/BTeykY/lswTuc2lnPfulmshNlDC /HTnLYp1hXY/HuZDHZLEARMJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUwEbGwIQk jaWtC5rXGI+zKCswCz0wHwYDVR0jBBgwFoAUKrJDLDrVEo7XPpnEYNBhH69NIg4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUzODUwLzdCM0IzN0Q0MDE4 NjExRjBCMDVCNEM1OUM0RjlBRTAyL0tySkRMRHJWRW83WFBwbkVZTkJoSDY5Tkln NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS3JKRExEclZFbzdYUHBuRVlOQmhINjlOSWc0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUz ODUwLzdCM0IzN0Q0MDE4NjExRjBCMDVCNEM1OUM0RjlBRTAyL0tySkRMRHJWRW83 WFBwbkVZTkJoSDY5TklnNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALtzw6zWR9IFNULtFbnjQv5k6zmpmNLcTbsVnxXHC5VNIb+Aa32YvQGH 4Lmfjo9s2qhjfkZJE1Rs1qjjTvSUNVQUAdvD5Glz7aHgNbUasPZRxlCGE4mxptoc Lk2dRPi2H0kWlwgvoSX8crp+VVkdqfylGDKIGBowLrkxw4NsqEqsrHOMojm06z+R zQe+QiKvn+WS2TUSfQ4rdKVclJeHqtjJE68MnriuTRuPhuBAhuJTQHH3uR0162qI ABw6roz08vMT4TsWuw1ah50A+CpnqlY+APfXtoFxTOveMUZ7wlfl68yxI82WkJKh S1TOt6NKmr6nXTIcsWr4fkIUTHAK15Q= -----END CERTIFICATE-----Generated at Thu Jul 3 15:18:22 2025 by rpki-client