$ rpki-client -vvf rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.mft File: KBfUqGRK7EGa3M7jDE6Hok0v9Xs.mft (raw, json) Hash identifier: 62sx3pRAhoFz7x1OXWekT71QDwvKhmP0BK3S3XrFwK0= Subject key identifier: 2B:AA:1E:31:75:EC:D4:56:DA:84:A8:4D:B4:61:7A:9B:6F:6B:18:D4 Authority key identifier: 28:17:D4:A8:64:4A:EC:41:9A:DC:CE:E3:0C:4E:87:A2:4D:2F:F5:7B Certificate issuer: /CN=A9158650/serialNumber=2817D4A8644AEC419ADCCEE30C4E87A24D2FF57B Certificate serial: 019E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.mft Manifest number: 019A Signing time: Sun 11 May 2025 02:21:46 +0000 Manifest this update: Sun 11 May 2025 02:21:45 +0000 Manifest next update: Sun 18 May 2025 02:21:45 +0000 Files and hashes: 1: KBfUqGRK7EGa3M7jDE6Hok0v9Xs.crl (hash: p2wrHgq8rrvwSUMQMMrJ5fPy8WCSbAG5Al7KHFTt62M=) 2: EA5A9A32BDAA11ED92995562C4F9AE02.roa (hash: la16kPDMZ0PGNGFfbiOJE4nU4r91VONeRM7xfP7lGe4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.crl rsync://rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 02:21:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 414 (0x19e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158650, serialNumber=2817D4A8644AEC419ADCCEE30C4E87A24D2FF57B Validity Not Before: May 11 02:21:45 2025 GMT Not After : May 18 02:21:45 2025 GMT Subject: CN=682009ba-95be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:02:26:ea:31:e6:c6:b4:dd:96:fc:08:cf:7b: d4:71:db:b6:f2:ea:04:5f:22:44:89:e6:43:84:9c: 37:b5:cf:50:67:24:e3:da:0f:9c:40:22:80:66:92: ab:37:de:26:f7:ed:10:ad:e8:47:1d:07:90:1b:99: e2:94:f8:60:8d:94:94:39:a8:7a:62:52:84:99:6e: 49:b0:46:a0:b5:bc:ec:2b:3b:02:10:dc:99:8b:f5: 03:22:b6:33:17:78:d6:8b:74:81:27:78:4a:c2:b2: 89:26:20:e9:26:42:1d:e0:43:3d:50:db:e2:9d:8e: 5c:73:69:bd:dc:81:fa:99:c2:c5:78:9d:55:ee:8c: c7:9d:40:f9:7e:32:29:50:1b:14:5f:83:c8:d7:36: e1:c3:20:f9:01:41:69:e7:87:9d:88:f8:7c:97:f9: bb:f3:29:4f:4c:82:1c:3c:99:c2:93:71:44:91:d9: 33:fb:99:b1:6f:ce:f3:6c:16:ea:e9:74:34:74:b7: 3a:0f:0e:3e:e4:da:a3:6a:14:25:f2:78:00:29:ff: fa:61:00:2b:b5:de:75:a6:a4:aa:f0:b9:ee:58:3c: 66:32:89:2b:65:fa:55:df:2d:68:0b:1b:b2:c3:ea: f1:27:85:aa:2f:a3:db:1e:bf:ea:7c:f6:17:11:cf: d4:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:AA:1E:31:75:EC:D4:56:DA:84:A8:4D:B4:61:7A:9B:6F:6B:18:D4 X509v3 Authority Key Identifier: keyid:28:17:D4:A8:64:4A:EC:41:9A:DC:CE:E3:0C:4E:87:A2:4D:2F:F5:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:c9:03:6a:8f:e2:99:f8:ae:60:de:fb:e4:c6:0f:55:5f:b8: 6e:ae:4d:ab:7b:b4:3d:4f:81:08:0e:9a:0b:60:35:96:10:df: d7:56:0b:4e:62:77:f6:0a:58:08:26:c1:c1:67:dc:ab:74:b6: d0:32:1d:72:75:12:5a:ac:da:ad:19:a8:b1:dc:61:4e:25:13: 68:a4:17:49:75:2a:c9:d0:2d:5a:7d:57:15:08:21:33:6e:20: 85:85:e6:4e:68:9c:22:09:8c:2f:7b:0d:15:cd:7b:23:6a:1b: 54:6d:0b:ba:6d:c3:84:a8:67:a7:67:1a:94:f0:4e:88:ab:66: 08:c7:08:a6:f0:a6:70:9e:3c:5d:dd:95:37:dc:04:38:31:48: 60:b1:7c:34:c3:9c:bc:14:66:fe:82:16:4b:77:a4:e0:e9:83: a9:66:ec:f3:70:6d:a7:63:db:df:67:da:88:7e:5d:94:a7:a3: 90:9d:ca:03:86:e5:e8:36:97:ec:bf:5b:c1:4a:6b:4d:83:12: a8:d6:ad:3c:ba:5b:f3:f8:10:1b:82:85:f5:77:14:a5:72:2c: 6a:cf:70:81:ad:86:6e:19:69:d7:a9:73:51:24:7c:61:37:8f: 43:3e:8b:12:a7:c1:9c:3a:37:b1:68:0c:aa:6a:63:a4:c9:0f: 11:4d:39:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg2NTAxMTAvBgNVBAUTKDI4MTdENEE4NjQ0QUVDNDE5QURDQ0VFMzBDNEU4N0Ey NEQyRkY1N0IwHhcNMjUwNTExMDIyMTQ1WhcNMjUwNTE4MDIyMTQ1WjAYMRYwFAYD VQQDEw02ODIwMDliYS05NWJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5wIm6jHmxrTdlvwIz3vUcdu28uoEXyJEieZDhJw3tc9QZyTj2g+cQCKAZpKr N94m9+0QrehHHQeQG5nilPhgjZSUOah6YlKEmW5JsEagtbzsKzsCENyZi/UDIrYz F3jWi3SBJ3hKwrKJJiDpJkId4EM9UNvinY5cc2m93IH6mcLFeJ1V7ozHnUD5fjIp UBsUX4PI1zbhwyD5AUFp54ediPh8l/m78ylPTIIcPJnCk3FEkdkz+5mxb87zbBbq 6XQ0dLc6Dw4+5NqjahQl8ngAKf/6YQArtd51pqSq8LnuWDxmMokrZfpV3y1oCxuy w+rxJ4WqL6PbHr/qfPYXEc/U6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCuqHjF1 7NRW2oSoTbRheptvaxjUMB8GA1UdIwQYMBaAFCgX1KhkSuxBmtzO4wxOh6JNL/V7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODY1MC83NzU4RDJDMkJE QTcxMUVEQUVDRDRBNURDNEY5QUUwMi9LQmZVcUdSSzdFR2EzTTdqREU2SG9rMHY5 WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tCZlVxR1JLN0VHYTNNN2pERTZIb2swdjlYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODY1MC83NzU4RDJDMkJEQTcxMUVEQUVDRDRBNURDNEY5QUUwMi9LQmZVcUdSSzdF R2EzTTdqREU2SG9rMHY5WHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJyQNqj+KZ+K5g3vvkxg9VX7hurk2re7Q9T4EIDpoLYDWWEN/XVgtO Ynf2ClgIJsHBZ9yrdLbQMh1ydRJarNqtGaix3GFOJRNopBdJdSrJ0C1afVcVCCEz biCFheZOaJwiCYwvew0VzXsjahtUbQu6bcOEqGenZxqU8E6Iq2YIxwim8KZwnjxd 3ZU33AQ4MUhgsXw0w5y8FGb+ghZLd6Tg6YOpZuzzcG2nY9vfZ9qIfl2Up6OQncoD huXoNpfsv1vBSmtNgxKo1q08ulvz+BAbgoX1dxSlcixqz3CBrYZuGWnXqXNRJHxh N49DPosSp8GcOjexaAyqamOkyQ8RTTmp -----END CERTIFICATE-----Generated at Sun May 11 09:22:15 2025 by rpki-client