$ rpki-client -vvf rpki.apnic.net/member_repository/A916AC73/77512DC2251711F0B07F861DC4F9AE02/KM0J5lDCaex9K8n-99VmwQEtIEw.mft File: KM0J5lDCaex9K8n-99VmwQEtIEw.mft (raw, json) Hash identifier: k95FVAXn7ttjO8gOalrVCCQKO8U4vaU+2ROE3UnQEZQ= Subject key identifier: C6:EB:96:15:41:1A:3C:E8:01:D5:A1:F3:65:90:56:9D:43:4B:74:2A Authority key identifier: 28:CD:09:E6:50:C2:69:EC:7D:2B:C9:FE:F7:D5:66:C1:01:2D:20:4C Certificate issuer: /CN=A916AC73/serialNumber=28CD09E650C269EC7D2BC9FEF7D566C1012D204C Certificate serial: 2E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KM0J5lDCaex9K8n-99VmwQEtIEw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916AC73/77512DC2251711F0B07F861DC4F9AE02/KM0J5lDCaex9K8n-99VmwQEtIEw.mft Manifest number: 28 Signing time: Thu 03 Jul 2025 08:06:48 +0000 Manifest this update: Thu 03 Jul 2025 08:06:47 +0000 Manifest next update: Thu 10 Jul 2025 08:06:47 +0000 Files and hashes: 1: KM0J5lDCaex9K8n-99VmwQEtIEw.crl (hash: CECKtqPNxqTnmfkVbkEsHCwdeUcmj4YXf6oBWSl7fGs=) 2: FAA72960259911F0953E0023C4F9AE02.roa (hash: e7nzxpCTQBDCIg5PEDtZeqSUVMOKuiFn7Ttj5SwjEWA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916AC73/77512DC2251711F0B07F861DC4F9AE02/KM0J5lDCaex9K8n-99VmwQEtIEw.crl rsync://rpki.apnic.net/member_repository/A916AC73/77512DC2251711F0B07F861DC4F9AE02/KM0J5lDCaex9K8n-99VmwQEtIEw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KM0J5lDCaex9K8n-99VmwQEtIEw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46 (0x2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916AC73, serialNumber=28CD09E650C269EC7D2BC9FEF7D566C1012D204C Validity Not Before: Jul 3 08:06:47 2025 GMT Not After : Jul 10 08:06:47 2025 GMT Subject: CN=68663a17-5c37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:6b:a3:66:e3:0f:2d:cc:a9:ea:f5:72:c8:5c: f3:66:bf:8c:34:6e:d2:8a:d0:03:bb:51:f2:52:af: 7a:1c:4d:67:7d:56:c4:98:24:97:9e:0d:d7:f0:8f: aa:be:06:46:ea:43:95:7b:c4:5a:a1:f8:d9:74:55: f1:63:c8:8a:38:77:d7:b5:ef:3a:7e:05:3f:b5:ea: b1:3b:5a:4b:b4:d7:22:42:98:c1:6b:d7:a9:ad:75: 75:ec:36:4a:08:4d:6e:8c:c7:59:da:39:c2:92:16: 30:05:70:68:66:48:b9:80:2e:31:82:57:77:a9:8f: 89:65:96:19:d7:76:c7:b6:4f:26:31:52:65:a0:8a: d4:bd:48:b5:3c:6a:20:00:d8:fa:b0:ce:5d:23:d3: 03:df:87:83:2d:4a:08:3a:c6:f5:75:a6:b2:e8:f4: 27:4b:c2:57:d5:b2:67:c3:7f:d7:b1:a5:71:e8:58: f4:a4:d5:56:df:4a:cf:69:8e:b8:f0:6c:2d:91:52: 4e:8e:af:dd:24:3f:d1:0d:02:9d:f8:d1:48:a8:2f: a1:c6:bd:1d:30:2e:9b:3e:17:a8:23:96:5a:31:df: 62:53:08:00:88:3e:6a:9d:4c:c5:24:6a:1c:76:0b: 81:ec:e8:27:5c:71:1d:c0:b1:05:fd:75:18:2f:f4: 26:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:EB:96:15:41:1A:3C:E8:01:D5:A1:F3:65:90:56:9D:43:4B:74:2A X509v3 Authority Key Identifier: keyid:28:CD:09:E6:50:C2:69:EC:7D:2B:C9:FE:F7:D5:66:C1:01:2D:20:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916AC73/77512DC2251711F0B07F861DC4F9AE02/KM0J5lDCaex9K8n-99VmwQEtIEw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KM0J5lDCaex9K8n-99VmwQEtIEw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916AC73/77512DC2251711F0B07F861DC4F9AE02/KM0J5lDCaex9K8n-99VmwQEtIEw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:b7:08:47:65:69:0e:60:e0:85:0c:85:cf:fb:f6:12:fe:80: 01:cb:3a:1d:fa:62:be:b3:1d:76:c0:56:df:f6:cc:d3:a8:cc: 77:3c:45:c7:3c:ae:6e:15:4b:3a:65:01:97:73:18:95:6f:37: 63:34:16:b8:6e:88:c0:ed:97:d1:55:37:d1:0e:a6:e2:39:d2: 44:de:56:db:fb:7d:c8:4c:42:d4:5a:d3:09:82:56:88:dc:27: af:35:45:b9:14:de:87:54:b0:91:71:f2:15:d5:2f:18:f8:f5: b0:b5:16:13:2b:3e:2e:86:d4:6f:4a:7b:37:fb:d6:e2:b8:ec: d9:99:19:07:09:09:75:e1:88:04:70:d9:f1:a5:f8:e3:3f:ca: 8c:90:64:50:b8:a7:81:22:3e:64:9e:67:15:ac:dc:f0:ea:0e: 4a:db:cb:45:c9:d4:7d:54:2c:f3:ba:f1:74:bd:b0:7d:1b:d4: a3:7d:2f:34:62:bc:61:45:5d:28:5d:44:d2:ac:c6:2b:ff:1c: d6:eb:18:d2:eb:92:d9:c8:6d:dc:26:7a:b8:fe:13:45:9b:b9: f8:95:fa:3e:70:7f:d7:3e:32:5c:be:3e:c0:34:97:b7:d1:b3: 7f:18:ac:09:d2:78:cb:56:ce:f6:49:5a:56:7c:55:06:ce:4b: c4:6a:fa:0e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 QUM3MzExMC8GA1UEBRMoMjhDRDA5RTY1MEMyNjlFQzdEMkJDOUZFRjdENTY2QzEw MTJEMjA0QzAeFw0yNTA3MDMwODA2NDdaFw0yNTA3MTAwODA2NDdaMBgxFjAUBgNV BAMTDTY4NjYzYTE3LTVjMzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCa6Nm4w8tzKnq9XLIXPNmv4w0btKK0AO7UfJSr3ocTWd9VsSYJJeeDdfwj6q+ BkbqQ5V7xFqh+Nl0VfFjyIo4d9e17zp+BT+16rE7Wku01yJCmMFr16mtdXXsNkoI TW6Mx1naOcKSFjAFcGhmSLmALjGCV3epj4lllhnXdse2TyYxUmWgitS9SLU8aiAA 2Pqwzl0j0wPfh4MtSgg6xvV1prLo9CdLwlfVsmfDf9expXHoWPSk1VbfSs9pjrjw bC2RUk6Or90kP9ENAp340UioL6HGvR0wLps+F6gjllox32JTCACIPmqdTMUkahx2 C4Hs6CdccR3AsQX9dRgv9CafAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUxuuWFUEa POgB1aHzZZBWnUNLdCowHwYDVR0jBBgwFoAUKM0J5lDCaex9K8n+99VmwQEtIEww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZBQzczLzc3NTEyREMyMjUx NzExRjBCMDdGODYxREM0RjlBRTAyL0tNMEo1bERDYWV4OUs4bi05OVZtd1FFdElF dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS00wSjVsRENhZXg5SzhuLTk5Vm13UUV0SUV3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZB QzczLzc3NTEyREMyMjUxNzExRjBCMDdGODYxREM0RjlBRTAyL0tNMEo1bERDYWV4 OUs4bi05OVZtd1FFdElFdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIi3CEdlaQ5g4IUMhc/79hL+gAHLOh36Yr6zHXbAVt/2zNOozHc8Rcc8 rm4VSzplAZdzGJVvN2M0FrhuiMDtl9FVN9EOpuI50kTeVtv7fchMQtRa0wmCVojc J681RbkU3odUsJFx8hXVLxj49bC1FhMrPi6G1G9Kezf71uK47NmZGQcJCXXhiARw 2fGl+OM/yoyQZFC4p4EiPmSeZxWs3PDqDkrby0XJ1H1ULPO68XS9sH0b1KN9LzRi vGFFXShdRNKsxiv/HNbrGNLrktnIbdwmerj+E0WbufiV+j5wf9c+Mly+PsA0l7fR s38YrAnSeMtWzvZJWlZ8VQbOS8Rq+g4= -----END CERTIFICATE-----Generated at Thu Jul 3 11:40:01 2025 by rpki-client