$ rpki-client -vvf rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft File: KgHI_pZ5aUR4MewBwCvE6cuaziw.mft (raw, json) Hash identifier: h3fB0zsP0GQJ1gODwGYh2gWG2jMUOanK4QHefyDiNfU= Subject key identifier: 98:FF:1F:53:58:84:4C:C4:46:21:C6:1B:38:DD:3C:26:75:DF:53:F3 Authority key identifier: 2A:01:C8:FE:96:79:69:44:78:31:EC:01:C0:2B:C4:E9:CB:9A:CE:2C Certificate issuer: /CN=A9158F8D/serialNumber=2A01C8FE967969447831EC01C02BC4E9CB9ACE2C Certificate serial: 8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KgHI_pZ5aUR4MewBwCvE6cuaziw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft Manifest number: 8B Signing time: Thu 15 May 2025 05:51:12 +0000 Manifest this update: Thu 15 May 2025 05:51:11 +0000 Manifest next update: Thu 22 May 2025 05:51:11 +0000 Files and hashes: 1: KgHI_pZ5aUR4MewBwCvE6cuaziw.crl (hash: WXMSm3B4KvmLkt9PUqwfsiZ5A/O1s3mOsBM6qIDokTQ=) 2: B9574A322C1311F0B642882AC4F9AE02.roa (hash: HQpJTfgqUX8sx/Vj8e61bP6mPFBvq/NcDI8+HFxFJJ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.crl rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KgHI_pZ5aUR4MewBwCvE6cuaziw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 05:51:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 142 (0x8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158F8D, serialNumber=2A01C8FE967969447831EC01C02BC4E9CB9ACE2C Validity Not Before: May 15 05:51:11 2025 GMT Not After : May 22 05:51:11 2025 GMT Subject: CN=682580d0-104e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:14:5b:e5:52:7d:77:c1:47:85:34:d6:6f:10: 6e:c5:38:af:24:6c:a8:17:e7:d4:d5:ff:2a:70:b2: 7c:ac:40:db:7a:93:97:5e:2f:00:5d:eb:89:19:04: 66:97:50:8f:4d:e8:91:2e:b4:4c:3b:4f:da:ae:b8: c7:3d:35:8c:48:50:7e:47:17:d7:ef:66:b3:15:0c: 85:5c:62:69:b3:97:8b:b8:75:09:a0:25:72:98:70: 3d:f7:0e:4e:a7:cb:e4:46:f3:05:98:9e:e7:d3:de: 7c:f7:e6:77:dc:02:dd:9a:58:92:87:4b:ec:76:3e: 8f:66:73:e9:9c:9e:03:22:7c:b5:82:83:fd:8e:16: 9b:03:3f:70:7b:af:bb:2d:2b:9b:b8:48:07:3e:52: 50:0f:9c:f0:c2:ac:42:47:02:7f:c6:b7:44:75:05: 28:f2:ea:5f:35:88:68:88:7d:b0:52:03:86:07:76: 1b:cb:a4:bc:31:d1:02:02:63:8d:a3:e1:4f:b8:a3: 5d:2f:ef:34:4d:44:bc:34:61:14:97:06:92:4b:dc: 5e:46:4f:45:0a:4f:8a:db:a1:48:d7:ee:2d:a1:fc: 66:47:fa:a0:0e:c0:3c:91:06:32:68:88:66:92:ca: 8c:67:0d:6e:82:01:f8:93:e1:97:27:6d:1b:b3:4f: d3:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:FF:1F:53:58:84:4C:C4:46:21:C6:1B:38:DD:3C:26:75:DF:53:F3 X509v3 Authority Key Identifier: keyid:2A:01:C8:FE:96:79:69:44:78:31:EC:01:C0:2B:C4:E9:CB:9A:CE:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KgHI_pZ5aUR4MewBwCvE6cuaziw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:65:f1:d4:88:0e:39:64:8c:88:3e:7a:7f:52:86:f6:41:69: fc:62:3c:a5:ab:37:6b:11:47:6e:64:77:a0:79:9c:41:f9:75: b8:7b:db:e3:f3:d8:d6:27:6a:0e:dd:79:24:e3:9c:18:8b:7b: 56:98:84:d1:f7:89:b6:22:75:f0:c9:8d:d0:00:d5:89:1f:40: cd:4a:3d:29:16:72:bd:9f:5e:d6:5e:43:8e:d9:0a:8d:3d:d8: 5d:ec:ef:d5:97:e8:d8:a8:d4:a1:b0:b3:f3:39:87:41:4d:40: 24:bd:76:0f:4e:7d:f5:f2:32:ff:c4:95:e0:5b:ff:f2:82:2a: ef:9a:9b:71:5c:3a:d4:fe:fe:3a:e4:f2:a8:07:f3:90:48:11: 2d:a1:85:42:8a:ad:ef:42:cb:a4:86:63:76:9e:31:d3:59:60: 1f:ca:8d:a7:07:d3:95:42:29:7b:cc:af:b5:05:53:b8:79:30: 41:ee:55:19:74:58:29:d6:07:aa:b4:2c:ae:8c:ac:e1:8d:32: 3e:da:ea:c4:60:bc:e4:79:2e:2a:ab:99:a8:29:08:04:7a:9f: 16:93:ff:33:c9:65:41:1c:2c:37:d4:12:b9:fc:c8:cc:19:45: f5:e3:57:c6:68:86:88:a9:f8:ad:8d:31:fb:d4:9c:3c:b0:5a: fc:f3:a8:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThGOEQxMTAvBgNVBAUTKDJBMDFDOEZFOTY3OTY5NDQ3ODMxRUMwMUMwMkJDNEU5 Q0I5QUNFMkMwHhcNMjUwNTE1MDU1MTExWhcNMjUwNTIyMDU1MTExWjAYMRYwFAYD VQQDEw02ODI1ODBkMC0xMDRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAthRb5VJ9d8FHhTTWbxBuxTivJGyoF+fU1f8qcLJ8rEDbepOXXi8AXeuJGQRm l1CPTeiRLrRMO0/arrjHPTWMSFB+RxfX72azFQyFXGJps5eLuHUJoCVymHA99w5O p8vkRvMFmJ7n09589+Z33ALdmliSh0vsdj6PZnPpnJ4DIny1goP9jhabAz9we6+7 LSubuEgHPlJQD5zwwqxCRwJ/xrdEdQUo8upfNYhoiH2wUgOGB3Yby6S8MdECAmON o+FPuKNdL+80TUS8NGEUlwaSS9xeRk9FCk+K26FI1+4tofxmR/qgDsA8kQYyaIhm ksqMZw1uggH4k+GXJ20bs0/TEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJj/H1NY hEzERiHGGzjdPCZ131PzMB8GA1UdIwQYMBaAFCoByP6WeWlEeDHsAcArxOnLms4s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEY4RC9BMTc5RTUzQzY0 NzcxMUVGQTgyREU5M0RDNEY5QUUwMi9LZ0hJX3BaNWFVUjRNZXdCd0N2RTZjdWF6 aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tnSElfcFo1YVVSNE1ld0J3Q3ZFNmN1YXppdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OEY4RC9BMTc5RTUzQzY0NzcxMUVGQTgyREU5M0RDNEY5QUUwMi9LZ0hJX3BaNWFV UjRNZXdCd0N2RTZjdWF6aXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4ZfHUiA45ZIyIPnp/Uob2QWn8YjylqzdrEUduZHegeZxB+XW4e9vj 89jWJ2oO3Xkk45wYi3tWmITR94m2InXwyY3QANWJH0DNSj0pFnK9n17WXkOO2QqN Pdhd7O/Vl+jYqNShsLPzOYdBTUAkvXYPTn318jL/xJXgW//ygirvmptxXDrU/v46 5PKoB/OQSBEtoYVCiq3vQsukhmN2njHTWWAfyo2nB9OVQil7zK+1BVO4eTBB7lUZ dFgp1geqtCyujKzhjTI+2urEYLzkeS4qq5moKQgEep8Wk/8zyWVBHCw31BK5/MjM GUX141fGaIaIqfitjTH71Jw8sFr886j+ -----END CERTIFICATE-----Generated at Fri May 16 18:06:04 2025 by rpki-client