$ rpki-client -vvf rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft File: KFO9oWOMWZqEwwlTEOab_SYKqXg.mft (raw, json) Hash identifier: 0oTnipVel+z31k2bzJV2d/uTQy/QVhiUFW1V1/5Aiis= Subject key identifier: 34:0C:55:D7:C1:69:A1:5D:00:4F:F5:F3:27:F4:75:46:22:06:0A:44 Authority key identifier: 28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 Certificate issuer: /CN=A916557B/serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Certificate serial: 0414 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft Manifest number: 03A5 Signing time: Tue 01 Jul 2025 01:37:08 +0000 Manifest this update: Tue 01 Jul 2025 01:37:07 +0000 Manifest next update: Tue 08 Jul 2025 01:37:07 +0000 Files and hashes: 1: KFO9oWOMWZqEwwlTEOab_SYKqXg.crl (hash: QD/eIHA4PAG3zIOeh2j5+GlM99yLSU6Acciq10wT9ts=) 2: F7D72D3E23E211EFA47D6C68C4F9AE02.roa (hash: e+M4adDsVVtiBfslPnOBJOSyjq+6gRCvAtKsdhjHrg8=) 3: 57A7394C4B0E11EE8682CD4CC4F9AE02.roa (hash: j6YHhVIdNkPdVV6kIT6wpzB9Muw42P+/9W2kK5xhqXo=) 4: 04AB651469C211EFA06F8562C4F9AE02.roa (hash: YV6zDgOh2QMJi+TbqoW1Wt5O6E3eSYJDwfMJ3aJ2a10=) 5: F1930FBAEFE011ED81AE706DC4F9AE02.roa (hash: NP4Z7Tt6CY/HSXNtbW7GXldzu9mQG/LCVCiq7fXDLJ8=) 6: 2F24736869C111EF92B54060C4F9AE02.roa (hash: 3Y7RO9a921W0m0+KGz0aqJiJml6RthEQD034mrQPM14=) 7: 45BC5258C6F711ED9BD6E476C4F9AE02.roa (hash: wASZh3+a4jtcXdGHzHa3qDgrJcrhUIDBhkIcjHP+VMU=) 8: A336FE62609111EFB751B771C4F9AE02.roa (hash: 52bkXRq+LzImcNciZMVc/RbkFDyxds03UT8vcrTtvWc=) 9: 02734B6624D611F0B50DE20BC4F9AE02.roa (hash: kMVjaoh/nl+HaXtTqo7eTliBreBhvFCgfQya7sUAs84=) 10: 1F89C5C22CB511F08A1A9242C4F9AE02.roa (hash: baAQ8jjbDnd+yIywZELKI/f+fLzoC+yEEVRka25c/bE=) 11: 07D38A6669C011EF90EADF5CC4F9AE02.roa (hash: MZXl+TpE4PKXHu+CHp6bbz53wt0k4JzbyBQBboqTIP4=) 12: 14000EECD46811EEBDB9C07CC4F9AE02.roa (hash: riBHCo9Gmq1D+0u/pG7iCc4xDo8oVc7na3FG+hNveUk=) 13: 79AA61622C8711EFBDD6F672C4F9AE02.roa (hash: 3biVBRmslEYYBK7sgaVOapllwelbsd+exeLENbjHwjc=) 14: F83786F4030011F0984B974FC4F9AE02.roa (hash: dZbjlWTe8fWMRR6qgpL+ZoRL9VFsmU1Nz8661bmlCro=) 15: 1DBF3F2E69BF11EF9B52775AC4F9AE02.roa (hash: oEcJmw9GBlLPpcX10UQcg9xp3RCQZJ+XOY7mrRgn4Bk=) 16: 458AC21A684111EEA6632877C4F9AE02.roa (hash: rQlxlSsLfUnZ/IhD06ff6PZ8dH3kW3qdosnvLtL69I4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 01:37:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1044 (0x414) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916557B, serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Validity Not Before: Jul 1 01:37:07 2025 GMT Not After : Jul 8 01:37:07 2025 GMT Subject: CN=68633bc4-dcb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:0c:76:bd:ad:39:9a:91:32:bd:83:6e:96:06: 9f:e9:a0:e8:e2:e7:64:c8:65:51:b4:05:47:01:93: 8a:d9:94:0d:00:d0:dd:70:bf:98:cd:7e:52:a1:84: b7:ca:2b:ad:e2:c0:ea:20:c1:fd:79:23:98:98:fd: 5a:48:34:2c:55:c7:18:ef:06:8c:41:d0:ed:09:fa: 17:fe:34:b6:78:e1:30:99:c1:e0:b4:f7:51:e4:fc: c9:fc:a2:0d:1b:a6:25:ec:e5:67:4a:29:1e:1c:37: c5:12:1a:4d:64:1e:cb:93:8c:89:5a:7f:b8:17:45: c4:70:3e:f6:0d:80:df:8d:4f:ba:fa:2b:ca:bd:ce: a1:5b:44:97:c8:c3:fb:90:1b:7f:d3:60:a1:e6:a2: f8:d0:c2:df:23:a7:bb:85:7c:d9:96:11:99:d3:a7: dc:4c:28:e7:1b:fb:fa:70:97:41:2f:08:ea:40:2a: ff:fe:aa:c3:94:c0:db:73:7d:9c:cc:b7:be:5b:a8: 86:7d:b8:fa:1c:d2:eb:f7:43:84:78:60:b9:39:ea: a5:cf:34:fb:2e:ff:39:19:13:e7:f8:a1:f9:ae:67: e4:cd:e2:10:49:7d:dd:a0:a2:7c:7d:59:1b:f2:61: f9:cb:f4:bd:99:83:72:da:f6:8e:1c:c5:c9:a2:45: 88:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:0C:55:D7:C1:69:A1:5D:00:4F:F5:F3:27:F4:75:46:22:06:0A:44 X509v3 Authority Key Identifier: keyid:28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:c1:65:f5:57:a5:72:c4:eb:89:7e:56:b1:be:06:b0:3b:a6: 6d:d5:79:c1:3c:f7:c9:5a:cc:d2:08:e5:44:d5:1d:fe:03:7b: 02:55:f1:8a:22:57:a3:25:61:02:71:d1:fc:ed:98:b0:8e:a3: b9:1b:cc:cb:dc:96:3b:af:a2:f4:18:ce:8e:97:2b:41:9d:46: 97:09:9f:54:72:78:14:eb:f2:f2:81:f2:27:f8:09:be:d6:7f: 01:c7:98:ca:e6:09:25:bc:fb:23:bb:12:1a:61:d8:ee:0a:42: 24:3f:17:27:3d:27:0d:5a:52:22:94:28:16:4f:92:cf:b0:45: 2a:40:7c:ab:42:83:2a:18:81:a2:c3:fb:95:5e:c0:27:74:d4: ad:26:a2:68:52:5d:9a:24:b9:32:9d:13:b8:84:91:1d:f2:a0: 95:a7:2d:cd:26:ea:2f:2b:23:4d:ed:fb:a5:5a:eb:aa:20:8a: 0c:b4:96:7e:5a:4e:42:1f:e4:44:6d:8d:9b:66:f4:86:34:7a: 64:05:8f:5a:2d:b8:ff:b9:c0:3f:55:ab:57:60:a8:e0:a6:b8: 22:5d:00:21:33:18:30:5c:45:08:91:89:ca:06:0a:c7:4a:fa: d1:12:5d:4d:15:9e:76:24:43:f0:35:27:08:a9:c3:be:d6:cb: b2:b1:d5:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1N0IxMTAvBgNVBAUTKDI4NTNCREExNjM4QzU5OUE4NEMzMDk1MzEwRTY5QkZE MjYwQUE5NzgwHhcNMjUwNzAxMDEzNzA3WhcNMjUwNzA4MDEzNzA3WjAYMRYwFAYD VQQDEw02ODYzM2JjNC1kY2I3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlgx2va05mpEyvYNulgaf6aDo4udkyGVRtAVHAZOK2ZQNANDdcL+YzX5SoYS3 yiut4sDqIMH9eSOYmP1aSDQsVccY7waMQdDtCfoX/jS2eOEwmcHgtPdR5PzJ/KIN G6Yl7OVnSikeHDfFEhpNZB7Lk4yJWn+4F0XEcD72DYDfjU+6+ivKvc6hW0SXyMP7 kBt/02Ch5qL40MLfI6e7hXzZlhGZ06fcTCjnG/v6cJdBLwjqQCr//qrDlMDbc32c zLe+W6iGfbj6HNLr90OEeGC5OeqlzzT7Lv85GRPn+KH5rmfkzeIQSX3doKJ8fVkb 8mH5y/S9mYNy2vaOHMXJokWIgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDQMVdfB aaFdAE/18yf0dUYiBgpEMB8GA1UdIwQYMBaAFChTvaFjjFmahMMJUxDmm/0mCql4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU3Qi84REE3MjY0MEMx RkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVdacUV3d2xURU9hYl9TWUtx WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tGTzlvV09NV1pxRXd3bFRFT2FiX1NZS3FYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTU3Qi84REE3MjY0MEMxRkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVda cUV3d2xURU9hYl9TWUtxWGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCawWX1V6VyxOuJflaxvgawO6Zt1XnBPPfJWszSCOVE1R3+A3sCVfGK IlejJWECcdH87ZiwjqO5G8zL3JY7r6L0GM6OlytBnUaXCZ9UcngU6/LygfIn+Am+ 1n8Bx5jK5gklvPsjuxIaYdjuCkIkPxcnPScNWlIilCgWT5LPsEUqQHyrQoMqGIGi w/uVXsAndNStJqJoUl2aJLkynRO4hJEd8qCVpy3NJuovKyNN7fulWuuqIIoMtJZ+ Wk5CH+REbY2bZvSGNHpkBY9aLbj/ucA/VatXYKjgprgiXQAhMxgwXEUIkYnKBgrH SvrREl1NFZ52JEPwNScIqcO+1suysdXO -----END CERTIFICATE-----Generated at Tue Jul 1 21:06:16 2025 by rpki-client