$ rpki-client -vvf rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.mft File: -KpwkWtspYPANj63qaX38mJ9c2A.mft (raw, json) Hash identifier: 6ZOGh5cGWtJkpZx5ysU1W3kHnU3wjWoqAYE7bHTRBeg= Subject key identifier: CC:21:62:E3:13:56:3A:92:73:AF:26:C7:2C:5D:84:E4:36:EC:92:A9 Authority key identifier: F8:AA:70:91:6B:6C:A5:83:C0:36:3E:B7:A9:A5:F7:F2:62:7D:73:60 Certificate issuer: /CN=A915EE53/serialNumber=F8AA70916B6CA583C0363EB7A9A5F7F2627D7360 Certificate serial: 2634 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-KpwkWtspYPANj63qaX38mJ9c2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.mft Manifest number: 2536 Signing time: Fri 16 May 2025 16:00:13 +0000 Manifest this update: Fri 16 May 2025 16:00:12 +0000 Manifest next update: Fri 23 May 2025 16:00:12 +0000 Files and hashes: 1: -KpwkWtspYPANj63qaX38mJ9c2A.crl (hash: 086KroJXYd2cqxUCZlx5bCzupwUN4+z9BeJXwQSVe0E=) 2: 9DBB8670790211EC9EE24885C4F9AE02.roa (hash: ZeH6ECuQSQ7jbEvsw/ti8Ne5hW6qGOm2ObSN2ziSRtc=) 3: 5CCAC7F8528C11ECB6101B10C4F9AE02.roa (hash: 1dZ/PYF2y/rA4g03VyVZaVZy6CLwb/t5eX6QNNHBKU4=) 4: 86D13B7E571C11EC81276481C4F9AE02.roa (hash: /OIV93XTmaqNcQdoy+u+KBTNCx5sq1KiAVNHrTFDsPk=) 5: 63C97CBAC49E11EBAC936D7AC4F9AE02.roa (hash: Iw9+JOdav50YSnSQXp9Mgjc+tFnSJTCmgJVv03j+03E=) 6: CFF5A20078E011EC8357FA15C4F9AE02.roa (hash: a8WMRrKXqOWpbHlU3tbV4FzyKQszu4zB5F1ouGdfBCA=) 7: 15812F82C4A111EBAE6C7F49C4F9AE02.roa (hash: 3xgwAlFAD++SNOBnqBO1zaeR1ssuXDrrYrvWI6Sll60=) 8: 6E042EFCABF011EC92152E22C4F9AE02.roa (hash: ffEWhmrNXjBc0Nb4WuWVQZiVVzyHTO8bmJ3skIR6GwI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.crl rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-KpwkWtspYPANj63qaX38mJ9c2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 16:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9780 (0x2634) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915EE53, serialNumber=F8AA70916B6CA583C0363EB7A9A5F7F2627D7360 Validity Not Before: May 16 16:00:12 2025 GMT Not After : May 23 16:00:12 2025 GMT Subject: CN=6827610c-5822 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:88:59:2d:2e:fd:08:32:b6:63:21:31:62:fc: 2c:54:3a:dd:86:4e:88:a4:de:4f:2e:0e:2b:6e:92: 54:37:b2:26:ef:13:20:9c:01:a4:f5:fd:81:83:7e: 64:f6:91:07:6f:17:bf:f6:8c:f0:e4:19:d4:b8:70: ff:6b:a3:4e:62:12:40:47:79:84:13:4f:68:c8:7b: ed:55:b8:e7:0d:b7:ab:f6:83:5f:e0:a5:53:df:05: 95:aa:74:05:55:e9:cf:5f:71:15:75:07:85:c0:96: ee:db:ce:e8:47:7d:91:d0:c5:ad:d5:b8:e9:55:17: ad:a2:b5:cf:32:6a:5d:c1:52:7c:b1:84:f7:1c:2e: 14:12:11:fa:fb:f5:19:0d:24:68:8a:b6:d4:f7:d1: 66:fe:86:78:74:59:8b:af:61:75:b8:d2:73:f0:a5: 5f:d6:1d:ee:d8:e2:7f:a9:c1:06:f4:95:3c:b6:fc: 08:ad:8c:09:2a:bd:a6:d1:6a:e1:cc:5b:ba:b0:17: 58:b2:71:61:12:92:d4:d8:95:df:01:fa:af:ce:4e: 63:e2:4d:5f:0f:a1:95:ab:3b:2f:b5:44:73:6e:7f: e4:60:90:2a:a9:f8:d2:e2:0d:0b:26:b3:61:dd:42: f5:58:f3:58:b7:c6:b7:dc:40:ec:a4:0f:bb:0b:c7: c8:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:21:62:E3:13:56:3A:92:73:AF:26:C7:2C:5D:84:E4:36:EC:92:A9 X509v3 Authority Key Identifier: keyid:F8:AA:70:91:6B:6C:A5:83:C0:36:3E:B7:A9:A5:F7:F2:62:7D:73:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-KpwkWtspYPANj63qaX38mJ9c2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:df:4e:36:ef:f5:fc:0c:77:89:4e:67:ba:f0:d5:c7:7c:07: 17:ac:92:59:53:5e:81:15:f2:c8:e4:f9:c9:66:2c:76:5c:f1: 6d:1c:58:87:e1:15:fc:7c:3e:b3:12:80:0e:7a:7e:f4:02:e7: db:73:02:0c:b4:d5:ad:19:9d:12:4c:b6:20:ef:75:4a:53:ee: 3a:0b:f6:55:fc:81:50:f7:76:ba:a0:ab:da:98:7f:4e:30:d5: fd:63:f3:c5:52:2b:7f:b4:3a:76:1d:36:58:7d:2c:d2:bb:d0: 32:7f:8c:01:36:1a:8c:ad:99:6a:97:72:e4:4c:cf:51:8e:1e: 01:fe:bf:d7:26:da:53:61:b3:c3:0c:f6:8f:bb:24:b7:8e:14: 48:f2:d0:80:54:ce:6a:25:8a:ce:31:50:24:4e:2f:b1:36:74: 4a:76:e5:47:f8:92:1e:d5:84:e7:b6:5f:b0:a8:df:f0:51:e4: df:63:dd:bf:f8:42:c7:9d:5e:d6:0e:4a:0e:5b:94:31:59:d6: 4b:ce:1f:cc:f5:3c:d7:6a:70:b9:a9:5e:ed:b3:4d:f8:80:0c: ec:37:5a:de:c9:1d:73:16:74:0d:75:62:ef:2c:ed:3c:d0:45: d6:1b:75:b3:45:e5:d0:f7:8c:9e:4e:dd:90:71:f5:41:24:e2: fb:36:97:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJjQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUVFNTMxMTAvBgNVBAUTKEY4QUE3MDkxNkI2Q0E1ODNDMDM2M0VCN0E5QTVGN0Yy NjI3RDczNjAwHhcNMjUwNTE2MTYwMDEyWhcNMjUwNTIzMTYwMDEyWjAYMRYwFAYD VQQDEw02ODI3NjEwYy01ODIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8YhZLS79CDK2YyExYvwsVDrdhk6IpN5PLg4rbpJUN7Im7xMgnAGk9f2Bg35k 9pEHbxe/9ozw5BnUuHD/a6NOYhJAR3mEE09oyHvtVbjnDber9oNf4KVT3wWVqnQF VenPX3EVdQeFwJbu287oR32R0MWt1bjpVRetorXPMmpdwVJ8sYT3HC4UEhH6+/UZ DSRoirbU99Fm/oZ4dFmLr2F1uNJz8KVf1h3u2OJ/qcEG9JU8tvwIrYwJKr2m0Wrh zFu6sBdYsnFhEpLU2JXfAfqvzk5j4k1fD6GVqzsvtURzbn/kYJAqqfjS4g0LJrNh 3UL1WPNYt8a33EDspA+7C8fIxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMwhYuMT VjqSc68mxyxdhOQ27JKpMB8GA1UdIwQYMBaAFPiqcJFrbKWDwDY+t6ml9/JifXNg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RUU1My8zODUxMTg0MDQ1 ODgxMUU1OUIyRDgzNzFDNEY5QUUwMi8tS3B3a1d0c3BZUEFOajYzcWFYMzhtSjlj MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1LcHdrV3RzcFlQQU5qNjNxYVgzOG1KOWMyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RUU1My8zODUxMTg0MDQ1ODgxMUU1OUIyRDgzNzFDNEY5QUUwMi8tS3B3a1d0c3BZ UEFOajYzcWFYMzhtSjljMkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBe30427/X8DHeJTme68NXHfAcXrJJZU16BFfLI5PnJZix2XPFtHFiH 4RX8fD6zEoAOen70AufbcwIMtNWtGZ0STLYg73VKU+46C/ZV/IFQ93a6oKvamH9O MNX9Y/PFUit/tDp2HTZYfSzSu9Ayf4wBNhqMrZlql3LkTM9Rjh4B/r/XJtpTYbPD DPaPuyS3jhRI8tCAVM5qJYrOMVAkTi+xNnRKduVH+JIe1YTntl+wqN/wUeTfY92/ +ELHnV7WDkoOW5QxWdZLzh/M9TzXanC5qV7ts034gAzsN1reyR1zFnQNdWLvLO08 0EXWG3WzReXQ94yeTt2QcfVBJOL7NpcV -----END CERTIFICATE-----Generated at Sun May 18 01:08:18 2025 by rpki-client