$ rpki-client -vvf rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft File: KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft (raw, json) Hash identifier: uFbEEsGlErPopZHGey92RsYhfXyyzO0am15NkUFJ374= Subject key identifier: A2:09:5B:8E:0B:F8:5D:35:D8:BE:32:34:75:81:9B:0F:BF:F5:AF:5E Authority key identifier: 29:D1:6C:98:DB:3D:5B:F6:4B:6B:92:04:C0:96:00:86:0C:D2:94:52 Certificate issuer: /CN=A916022F/serialNumber=29D16C98DB3D5BF64B6B9204C09600860CD29452 Certificate serial: 10BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft Manifest number: 23C6 Signing time: Wed 14 May 2025 17:06:46 +0000 Manifest this update: Wed 14 May 2025 17:06:45 +0000 Manifest next update: Wed 21 May 2025 17:06:45 +0000 Files and hashes: 1: KdFsmNs9W_ZLa5IEwJYAhgzSlFI.crl (hash: ysR5c2cOZRrJ8luEdtuS8vroC2YFRzD5oMyjUOTkP3Y=) 2: DE0A75A605EB11EA94CD7287C4F9AE02.roa (hash: rQZ+LsPDuc4EXnC/GiBOmzFAxUE3pMz5tb4kdOhgWwA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.crl rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 17:06:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4286 (0x10be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916022F, serialNumber=29D16C98DB3D5BF64B6B9204C09600860CD29452 Validity Not Before: May 14 17:06:45 2025 GMT Not After : May 21 17:06:45 2025 GMT Subject: CN=6824cda6-737d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:64:94:4d:e3:60:9a:9a:46:ef:80:1d:83:83: 13:e2:60:35:f4:31:ac:e3:85:32:20:16:e2:b2:9d: c6:5a:f7:43:7d:4c:d6:6f:cf:0a:82:47:81:a6:b3: 0b:33:2f:18:d7:a8:1e:bf:7a:70:0e:6b:34:21:23: fb:c4:e5:63:9d:c2:5a:d4:12:23:ab:78:ba:80:bb: 9c:71:0a:d1:c2:12:a5:2c:8c:98:08:bd:c8:f5:e4: 10:3a:59:25:14:dc:97:d6:f2:6b:1d:fd:45:bc:22: aa:9d:79:3a:b6:02:cd:7a:fe:00:0a:25:2e:8b:b9: af:03:1e:6f:1d:19:68:98:6e:28:12:4c:c3:67:24: 30:d7:96:8f:21:8d:15:1f:45:17:66:0f:b4:fb:54: 4e:d5:4c:0e:03:a3:fc:c5:05:da:6f:65:c3:cf:08: 2f:20:2d:e0:ec:0e:f4:9e:c5:56:11:4b:6f:02:55: 02:ef:88:b1:cb:11:62:f3:03:af:79:c6:5a:22:10: 4a:50:f4:7f:f4:8e:3e:ee:c4:d4:4b:4f:4e:14:13: 55:7c:da:82:52:bc:e0:f2:01:06:93:a2:63:17:f8: 48:17:91:d2:a1:2a:0e:fa:cf:04:4e:6a:ff:20:ed: 0a:7f:14:10:e4:a4:9d:13:9c:08:a2:7d:65:89:00: c5:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:09:5B:8E:0B:F8:5D:35:D8:BE:32:34:75:81:9B:0F:BF:F5:AF:5E X509v3 Authority Key Identifier: keyid:29:D1:6C:98:DB:3D:5B:F6:4B:6B:92:04:C0:96:00:86:0C:D2:94:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:6c:a0:eb:f9:82:91:4a:a0:4d:e3:79:d5:8e:51:b5:2f:3f: 68:50:49:f3:7a:6a:a9:9f:91:18:35:99:b5:82:3a:75:32:97: af:40:94:a7:95:b0:85:a2:89:79:ce:f7:9c:de:82:22:b0:06: 16:1d:76:5d:87:6a:8f:ac:33:3d:fa:9e:7c:2a:ce:ff:59:91: ce:0c:3f:70:65:3c:2c:c1:c3:b1:2e:a2:b4:61:a4:4f:df:57: 06:53:a2:3b:70:de:4b:43:0c:71:a1:b1:aa:c3:4d:65:b1:4a: 64:43:b8:29:86:e9:d5:68:34:b4:28:e2:ec:80:78:94:84:f0: 47:05:f2:c8:48:96:a4:b5:3d:dc:a7:a3:80:e6:51:45:16:9b: 33:e0:c5:c7:8c:35:0b:e8:4f:39:39:47:0c:ab:7a:40:96:40: b0:00:33:ed:f6:d1:a6:f6:d0:67:75:ea:ae:05:21:36:e3:b4: 32:94:30:d9:99:f4:8f:de:98:85:34:08:43:bd:b9:8f:66:76: 6a:78:c4:b5:70:84:de:20:0a:5d:ff:4a:7c:75:2f:d6:74:f7: 17:bb:7e:7a:90:36:e7:89:88:ed:a7:b0:3f:85:1c:51:2d:b6: d3:f1:b9:34:1a:e5:8c:58:1c:b5:9f:ff:c6:7f:9d:c3:77:15: ef:8d:3f:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjAyMkYxMTAvBgNVBAUTKDI5RDE2Qzk4REIzRDVCRjY0QjZCOTIwNEMwOTYwMDg2 MENEMjk0NTIwHhcNMjUwNTE0MTcwNjQ1WhcNMjUwNTIxMTcwNjQ1WjAYMRYwFAYD VQQDEw02ODI0Y2RhNi03MzdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1GSUTeNgmppG74Adg4MT4mA19DGs44UyIBbisp3GWvdDfUzWb88KgkeBprML My8Y16gev3pwDms0ISP7xOVjncJa1BIjq3i6gLuccQrRwhKlLIyYCL3I9eQQOlkl FNyX1vJrHf1FvCKqnXk6tgLNev4ACiUui7mvAx5vHRlomG4oEkzDZyQw15aPIY0V H0UXZg+0+1RO1UwOA6P8xQXab2XDzwgvIC3g7A70nsVWEUtvAlUC74ixyxFi8wOv ecZaIhBKUPR/9I4+7sTUS09OFBNVfNqCUrzg8gEGk6JjF/hIF5HSoSoO+s8ETmr/ IO0KfxQQ5KSdE5wIon1liQDFuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKIJW44L +F012L4yNHWBmw+/9a9eMB8GA1UdIwQYMBaAFCnRbJjbPVv2S2uSBMCWAIYM0pRS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDIyRi85RUM3QUZCNEFB N0QxMUU4ODYxNDQ1MjRDNEY5QUUwMi9LZEZzbU5zOVdfWkxhNUlFd0pZQWhnelNs RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tkRnNtTnM5V19aTGE1SUV3SllBaGd6U2xGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDIyRi85RUM3QUZCNEFBN0QxMUU4ODYxNDQ1MjRDNEY5QUUwMi9LZEZzbU5zOVdf WkxhNUlFd0pZQWhnelNsRkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfbKDr+YKRSqBN43nVjlG1Lz9oUEnzemqpn5EYNZm1gjp1MpevQJSn lbCFool5zvec3oIisAYWHXZdh2qPrDM9+p58Ks7/WZHODD9wZTwswcOxLqK0YaRP 31cGU6I7cN5LQwxxobGqw01lsUpkQ7gphunVaDS0KOLsgHiUhPBHBfLISJaktT3c p6OA5lFFFpsz4MXHjDUL6E85OUcMq3pAlkCwADPt9tGm9tBndequBSE247QylDDZ mfSP3piFNAhDvbmPZnZqeMS1cITeIApd/0p8dS/WdPcXu356kDbniYjtp7A/hRxR LbbT8bk0GuWMWBy1n//Gf53DdxXvjT97 -----END CERTIFICATE-----Generated at Fri May 16 11:50:39 2025 by rpki-client