$ rpki-client -vvf rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft File: KQX7MhK9YWRvt69jPqGiV7w6Pew.mft (raw, json) Hash identifier: N52PzL+QPR5xuPE2y9HT68j79w+giJDmeksoMP1aEb8= Subject key identifier: 82:8B:CC:F0:18:25:7E:2A:FB:77:3B:C5:F3:10:1B:B4:6E:A0:28:18 Authority key identifier: 29:05:FB:32:12:BD:61:64:6F:B7:AF:63:3E:A1:A2:57:BC:3A:3D:EC Certificate issuer: /CN=A9156971/serialNumber=2905FB3212BD61646FB7AF633EA1A257BC3A3DEC Certificate serial: 3484 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQX7MhK9YWRvt69jPqGiV7w6Pew.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft Manifest number: 347F Signing time: Sat 10 May 2025 14:42:56 +0000 Manifest this update: Sat 10 May 2025 14:42:56 +0000 Manifest next update: Sat 17 May 2025 14:42:56 +0000 Files and hashes: 1: KQX7MhK9YWRvt69jPqGiV7w6Pew.crl (hash: vh96Wg4BT8jAvwZIrJEwNEcbxVTqOqHzppPSNXBEXlA=) 2: 4AF78A4AFEC611EF86B4765BC4F9AE02.roa (hash: fSvzoyKPYxxU75rpRzS9/7MEh8nKxr1lS94jPbqL5BE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.crl rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQX7MhK9YWRvt69jPqGiV7w6Pew.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 14:42:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13444 (0x3484) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156971, serialNumber=2905FB3212BD61646FB7AF633EA1A257BC3A3DEC Validity Not Before: May 10 14:42:56 2025 GMT Not After : May 17 14:42:56 2025 GMT Subject: CN=681f65f0-a27f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:2a:f6:53:2a:70:20:f4:c1:00:fc:73:ec:55: 42:1d:fe:7d:c3:5d:79:ff:83:93:9b:05:c4:a9:72: ec:d5:cb:72:96:c4:ce:0e:31:88:4e:42:65:01:93: 55:1c:6d:db:5d:03:ad:9c:96:80:61:6e:09:49:2d: 0d:eb:eb:47:fd:38:2e:84:52:77:2b:9c:62:df:2e: f0:fc:4a:9c:22:1b:63:eb:b5:fd:d2:e7:48:b7:9b: 16:0a:e5:48:99:93:45:5a:2b:e9:88:04:3c:af:f9: 0e:d2:64:28:8e:f5:10:a7:79:0a:72:6a:14:4e:91: 83:08:92:58:be:e2:ac:ab:c7:05:7b:9c:22:db:06: 46:04:d4:48:d4:c7:79:b1:a6:ef:8a:d8:46:36:cb: a7:c9:4d:eb:f5:ec:da:6c:f5:aa:41:8a:3d:df:09: 1b:de:bb:31:65:76:a9:db:20:7b:dd:c9:2f:3e:d5: 3f:36:61:2f:cf:7a:d0:2c:8e:b3:9d:c7:0e:72:f7: 82:7f:c8:d8:40:d0:0b:b6:20:c1:9d:e9:70:3a:64: a9:ee:bd:ce:85:65:71:34:2d:19:cb:73:51:5f:9c: 04:a0:b8:ba:7f:c7:f4:18:19:d0:c9:51:2c:03:0d: c2:54:36:31:95:cf:f7:89:f0:db:96:38:63:dc:3e: 76:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:8B:CC:F0:18:25:7E:2A:FB:77:3B:C5:F3:10:1B:B4:6E:A0:28:18 X509v3 Authority Key Identifier: keyid:29:05:FB:32:12:BD:61:64:6F:B7:AF:63:3E:A1:A2:57:BC:3A:3D:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQX7MhK9YWRvt69jPqGiV7w6Pew.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:63:f1:86:a6:30:f9:1c:15:24:6d:15:c9:7a:26:d3:7b:27: a2:66:72:e0:e6:e0:5e:cb:8a:cc:f1:1c:6f:d9:39:a3:d3:07: 2e:bb:42:6f:cf:73:89:ee:7a:c9:23:04:ae:c6:cb:b1:49:aa: 95:d2:29:40:62:89:e6:40:f4:cc:5c:11:27:4e:b9:5b:53:29: f0:7b:0a:13:6c:09:20:d5:1a:1c:b1:ed:db:97:54:27:8f:54: 85:4a:46:df:cf:6c:71:04:46:39:ee:14:95:6e:c6:0b:69:dd: 00:74:50:04:66:a8:bf:7d:c1:93:a2:42:39:68:c4:c9:b3:6b: ca:f3:4e:46:79:0a:c8:77:53:62:64:da:04:ab:f7:86:f0:86: 9e:2b:ac:43:41:1f:47:c3:14:cb:05:d0:a7:d3:19:5e:3b:46: 23:db:e3:78:4d:bc:19:80:59:d1:26:7b:75:fc:f2:6d:07:f0: d3:b6:e9:97:25:0e:ce:5c:f3:f0:be:2f:6b:b4:95:45:6d:15: 45:8b:08:73:eb:42:82:61:ea:a1:79:8f:7c:a5:8e:be:a1:07: f6:4f:5c:54:d9:6c:34:ce:44:ee:c1:7e:9e:52:3d:f8:d9:2d: b3:62:db:5a:4c:5a:c7:83:cb:d6:4d:ed:2c:dd:b1:cb:0e:e4: 8f:c2:3e:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY5NzExMTAvBgNVBAUTKDI5MDVGQjMyMTJCRDYxNjQ2RkI3QUY2MzNFQTFBMjU3 QkMzQTNERUMwHhcNMjUwNTEwMTQ0MjU2WhcNMjUwNTE3MTQ0MjU2WjAYMRYwFAYD VQQDEw02ODFmNjVmMC1hMjdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2ir2UypwIPTBAPxz7FVCHf59w115/4OTmwXEqXLs1ctylsTODjGITkJlAZNV HG3bXQOtnJaAYW4JSS0N6+tH/TguhFJ3K5xi3y7w/EqcIhtj67X90udIt5sWCuVI mZNFWivpiAQ8r/kO0mQojvUQp3kKcmoUTpGDCJJYvuKsq8cFe5wi2wZGBNRI1Md5 sabvithGNsunyU3r9ezabPWqQYo93wkb3rsxZXap2yB73ckvPtU/NmEvz3rQLI6z nccOcveCf8jYQNALtiDBnelwOmSp7r3OhWVxNC0Zy3NRX5wEoLi6f8f0GBnQyVEs Aw3CVDYxlc/3ifDbljhj3D52JQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIKLzPAY JX4q+3c7xfMQG7RuoCgYMB8GA1UdIwQYMBaAFCkF+zISvWFkb7evYz6hole8Oj3s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Njk3MS80OEMyMjE4NjFE OTIxMUUyQURCMzBCRjUwOEIwMkNEMi9LUVg3TWhLOVlXUnZ0NjlqUHFHaVY3dzZQ ZXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tRWDdNaEs5WVdSdnQ2OWpQcUdpVjd3NlBldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Njk3MS80OEMyMjE4NjFEOTIxMUUyQURCMzBCRjUwOEIwMkNEMi9LUVg3TWhLOVlX UnZ0NjlqUHFHaVY3dzZQZXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNY/GGpjD5HBUkbRXJeibTeyeiZnLg5uBey4rM8Rxv2Tmj0wcuu0Jv z3OJ7nrJIwSuxsuxSaqV0ilAYonmQPTMXBEnTrlbUynwewoTbAkg1Rocse3bl1Qn j1SFSkbfz2xxBEY57hSVbsYLad0AdFAEZqi/fcGTokI5aMTJs2vK805GeQrId1Ni ZNoEq/eG8IaeK6xDQR9HwxTLBdCn0xleO0Yj2+N4TbwZgFnRJnt1/PJtB/DTtumX JQ7OXPPwvi9rtJVFbRVFiwhz60KCYeqheY98pY6+oQf2T1xU2Ww0zkTuwX6eUj34 2S2zYttaTFrHg8vWTe0s3bHLDuSPwj7y -----END CERTIFICATE-----Generated at Sun May 11 20:08:31 2025 by rpki-client