$ rpki-client -vvf rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft File: KFO9oWOMWZqEwwlTEOab_SYKqXg.mft (raw, json) Hash identifier: 6O8AX48sOjdJmI57Lk0yYzcm5j+EbMH+VUUYi8B2ZJo= Subject key identifier: D9:49:BD:7D:FA:24:1C:98:C4:8B:63:E0:C0:02:B2:EF:AB:E4:66:59 Authority key identifier: 28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 Certificate issuer: /CN=A916557B/serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Certificate serial: 03FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft Manifest number: 038C Signing time: Sun 11 May 2025 00:39:17 +0000 Manifest this update: Sun 11 May 2025 00:39:17 +0000 Manifest next update: Sun 18 May 2025 00:39:17 +0000 Files and hashes: 1: KFO9oWOMWZqEwwlTEOab_SYKqXg.crl (hash: YYpglDMxfHQx4ScMNQ0+ef9ahVo75bysQg39e/XdY50=) 2: F7D72D3E23E211EFA47D6C68C4F9AE02.roa (hash: e+M4adDsVVtiBfslPnOBJOSyjq+6gRCvAtKsdhjHrg8=) 3: 57A7394C4B0E11EE8682CD4CC4F9AE02.roa (hash: j6YHhVIdNkPdVV6kIT6wpzB9Muw42P+/9W2kK5xhqXo=) 4: 04AB651469C211EFA06F8562C4F9AE02.roa (hash: YV6zDgOh2QMJi+TbqoW1Wt5O6E3eSYJDwfMJ3aJ2a10=) 5: F1930FBAEFE011ED81AE706DC4F9AE02.roa (hash: NP4Z7Tt6CY/HSXNtbW7GXldzu9mQG/LCVCiq7fXDLJ8=) 6: 2F24736869C111EF92B54060C4F9AE02.roa (hash: 3Y7RO9a921W0m0+KGz0aqJiJml6RthEQD034mrQPM14=) 7: 45BC5258C6F711ED9BD6E476C4F9AE02.roa (hash: wASZh3+a4jtcXdGHzHa3qDgrJcrhUIDBhkIcjHP+VMU=) 8: A336FE62609111EFB751B771C4F9AE02.roa (hash: 52bkXRq+LzImcNciZMVc/RbkFDyxds03UT8vcrTtvWc=) 9: 02734B6624D611F0B50DE20BC4F9AE02.roa (hash: kMVjaoh/nl+HaXtTqo7eTliBreBhvFCgfQya7sUAs84=) 10: 1F89C5C22CB511F08A1A9242C4F9AE02.roa (hash: baAQ8jjbDnd+yIywZELKI/f+fLzoC+yEEVRka25c/bE=) 11: 07D38A6669C011EF90EADF5CC4F9AE02.roa (hash: MZXl+TpE4PKXHu+CHp6bbz53wt0k4JzbyBQBboqTIP4=) 12: 14000EECD46811EEBDB9C07CC4F9AE02.roa (hash: riBHCo9Gmq1D+0u/pG7iCc4xDo8oVc7na3FG+hNveUk=) 13: 79AA61622C8711EFBDD6F672C4F9AE02.roa (hash: 3biVBRmslEYYBK7sgaVOapllwelbsd+exeLENbjHwjc=) 14: F83786F4030011F0984B974FC4F9AE02.roa (hash: dZbjlWTe8fWMRR6qgpL+ZoRL9VFsmU1Nz8661bmlCro=) 15: 1DBF3F2E69BF11EF9B52775AC4F9AE02.roa (hash: oEcJmw9GBlLPpcX10UQcg9xp3RCQZJ+XOY7mrRgn4Bk=) 16: 458AC21A684111EEA6632877C4F9AE02.roa (hash: rQlxlSsLfUnZ/IhD06ff6PZ8dH3kW3qdosnvLtL69I4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 00:39:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1019 (0x3fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916557B, serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Validity Not Before: May 11 00:39:17 2025 GMT Not After : May 18 00:39:17 2025 GMT Subject: CN=681ff1b5-0d5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:92:9d:91:1d:92:cd:bf:46:cb:fe:bc:fe:b4: 2e:d0:18:02:8a:84:1c:a7:20:8a:3e:67:e6:e2:68: 0b:87:f0:18:57:83:8d:63:3c:33:83:02:db:fa:61: f0:41:80:cd:ad:d7:ef:83:6a:41:25:44:cb:a4:ea: c4:70:95:5e:4b:bd:2d:d6:e5:7a:6a:5b:e3:40:81: 59:52:ed:ca:15:6d:dd:c1:13:83:4d:ab:6f:a4:e8: 55:f4:56:6a:e8:9d:e5:1c:01:a1:35:9b:be:ec:1a: a1:31:ac:d6:67:a9:8e:a7:79:21:df:b6:b2:ac:8e: 4e:20:d7:fb:bf:76:7a:74:2c:de:d5:48:16:eb:cc: 3e:b5:51:98:11:8a:db:85:40:1e:12:54:6b:af:3d: de:96:16:13:dd:18:e5:a4:d5:1d:5d:30:45:0d:42: 80:d1:53:82:8a:65:7b:3d:41:57:d5:61:9e:01:de: 26:aa:f0:e0:a9:23:1f:de:ac:63:80:ec:82:e1:9c: 2b:53:0f:63:9b:76:31:29:6d:c9:ca:db:b3:08:4a: 43:ab:d4:95:36:45:9d:8a:f5:2f:1a:48:7a:96:b4: 5b:78:9f:21:14:8d:3f:af:d8:e3:49:c5:77:2c:6f: 3a:84:3c:49:37:8c:5a:41:76:7b:ff:f7:02:9d:57: 0c:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:49:BD:7D:FA:24:1C:98:C4:8B:63:E0:C0:02:B2:EF:AB:E4:66:59 X509v3 Authority Key Identifier: keyid:28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:63:71:d9:8a:8c:94:f9:41:53:45:27:db:14:ad:46:83:27: a0:80:64:a7:e8:38:41:0e:06:3c:9c:61:1e:b3:63:16:c4:58: dc:02:09:6e:88:6d:fd:53:bd:91:4d:6c:c2:fc:4f:5e:c7:2a: ec:f2:6b:42:38:21:20:d7:a3:0a:df:9b:f7:cf:28:93:07:a9: e4:53:c1:95:23:c3:74:80:13:4e:b3:04:b0:07:dd:4d:9e:94: 15:6b:ef:e4:4a:0c:17:d7:dd:16:ca:2f:82:24:97:0c:bb:77: f4:5b:78:f3:c4:e5:53:03:6a:e1:2b:e7:7c:ac:63:c4:ba:fb: 2f:bb:54:fc:79:29:31:c1:03:75:bc:9f:87:b5:50:10:9b:70: f9:f0:d5:71:6a:e3:56:f7:94:41:a5:d7:5c:e8:27:40:39:23: 1a:85:56:0f:70:7a:f6:a1:05:1a:9c:7f:b1:ef:3b:fb:5b:7e: 2d:5d:60:2e:53:98:a8:0f:01:6e:42:ac:07:07:65:07:46:9e: a6:aa:9b:42:77:e8:b0:11:db:58:af:79:2a:7b:a1:7c:9d:10: 87:48:7f:16:0a:56:9f:24:6c:51:12:6c:0f:36:d2:92:22:df: ab:14:8c:12:c0:79:62:17:fb:ff:15:a5:98:16:eb:4e:2d:05: 95:a3:37:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1N0IxMTAvBgNVBAUTKDI4NTNCREExNjM4QzU5OUE4NEMzMDk1MzEwRTY5QkZE MjYwQUE5NzgwHhcNMjUwNTExMDAzOTE3WhcNMjUwNTE4MDAzOTE3WjAYMRYwFAYD VQQDEw02ODFmZjFiNS0wZDVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4ZKdkR2Szb9Gy/68/rQu0BgCioQcpyCKPmfm4mgLh/AYV4ONYzwzgwLb+mHw QYDNrdfvg2pBJUTLpOrEcJVeS70t1uV6alvjQIFZUu3KFW3dwRODTatvpOhV9FZq 6J3lHAGhNZu+7BqhMazWZ6mOp3kh37ayrI5OINf7v3Z6dCze1UgW68w+tVGYEYrb hUAeElRrrz3elhYT3RjlpNUdXTBFDUKA0VOCimV7PUFX1WGeAd4mqvDgqSMf3qxj gOyC4ZwrUw9jm3YxKW3JytuzCEpDq9SVNkWdivUvGkh6lrRbeJ8hFI0/r9jjScV3 LG86hDxJN4xaQXZ7//cCnVcMXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNlJvX36 JByYxItj4MACsu+r5GZZMB8GA1UdIwQYMBaAFChTvaFjjFmahMMJUxDmm/0mCql4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU3Qi84REE3MjY0MEMx RkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVdacUV3d2xURU9hYl9TWUtx WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tGTzlvV09NV1pxRXd3bFRFT2FiX1NZS3FYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTU3Qi84REE3MjY0MEMxRkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVda cUV3d2xURU9hYl9TWUtxWGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkY3HZioyU+UFTRSfbFK1GgyeggGSn6DhBDgY8nGEes2MWxFjcAglu iG39U72RTWzC/E9exyrs8mtCOCEg16MK35v3zyiTB6nkU8GVI8N0gBNOswSwB91N npQVa+/kSgwX190Wyi+CJJcMu3f0W3jzxOVTA2rhK+d8rGPEuvsvu1T8eSkxwQN1 vJ+HtVAQm3D58NVxauNW95RBpddc6CdAOSMahVYPcHr2oQUanH+x7zv7W34tXWAu U5ioDwFuQqwHB2UHRp6mqptCd+iwEdtYr3kqe6F8nRCHSH8WClafJGxREmwPNtKS It+rFIwSwHliF/v/FaWYFutOLQWVozcZ -----END CERTIFICATE-----Generated at Sun May 11 15:56:53 2025 by rpki-client