$ rpki-client -vvf rpki.apnic.net/member_repository/A916AC73/77512DC2251711F0B07F861DC4F9AE02/KM0J5lDCaex9K8n-99VmwQEtIEw.mft File: KM0J5lDCaex9K8n-99VmwQEtIEw.mft (raw, json) Hash identifier: LrW93MuVgt1GttgN958jmEgAHWaSKNlBbddY9mfcezE= Subject key identifier: A9:4F:2C:07:D9:86:C0:7D:F7:5F:BF:92:D6:B2:1A:34:85:45:87:DE Authority key identifier: 28:CD:09:E6:50:C2:69:EC:7D:2B:C9:FE:F7:D5:66:C1:01:2D:20:4C Certificate issuer: /CN=A916AC73/serialNumber=28CD09E650C269EC7D2BC9FEF7D566C1012D204C Certificate serial: 17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KM0J5lDCaex9K8n-99VmwQEtIEw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916AC73/77512DC2251711F0B07F861DC4F9AE02/KM0J5lDCaex9K8n-99VmwQEtIEw.mft Manifest number: 11 Signing time: Thu 15 May 2025 07:25:54 +0000 Manifest this update: Thu 15 May 2025 07:25:54 +0000 Manifest next update: Thu 22 May 2025 07:25:54 +0000 Files and hashes: 1: KM0J5lDCaex9K8n-99VmwQEtIEw.crl (hash: YsTZjsxfSbkXQHub1o/x1viZGLTbL6XdXBiyuhDeKr8=) 2: FAA72960259911F0953E0023C4F9AE02.roa (hash: e7nzxpCTQBDCIg5PEDtZeqSUVMOKuiFn7Ttj5SwjEWA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916AC73/77512DC2251711F0B07F861DC4F9AE02/KM0J5lDCaex9K8n-99VmwQEtIEw.crl rsync://rpki.apnic.net/member_repository/A916AC73/77512DC2251711F0B07F861DC4F9AE02/KM0J5lDCaex9K8n-99VmwQEtIEw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KM0J5lDCaex9K8n-99VmwQEtIEw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 07:25:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23 (0x17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916AC73, serialNumber=28CD09E650C269EC7D2BC9FEF7D566C1012D204C Validity Not Before: May 15 07:25:54 2025 GMT Not After : May 22 07:25:54 2025 GMT Subject: CN=68259702-7773 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:c7:d0:84:37:79:c9:ee:ab:7a:a7:ad:88:3a: 00:c6:0d:5d:16:13:6d:f6:dd:d6:64:5f:81:b6:18: 62:2b:65:0f:f4:c4:be:21:0e:05:33:76:cd:88:f2: 01:08:81:22:6d:53:74:96:a3:b0:6c:6a:fe:de:f2: 5f:98:3a:3a:05:47:1f:32:b8:f8:a6:ab:f0:5a:52: da:af:58:0c:36:f9:b7:7a:e5:f6:0e:96:e0:a2:af: ab:44:8a:47:1e:fa:67:39:6a:78:3f:0c:ff:4d:ec: cd:89:23:68:75:27:d3:a8:17:a3:a5:7b:5a:89:e2: b7:34:15:04:c4:92:e1:bc:51:62:43:07:ec:61:1b: d1:e1:27:e5:b0:5f:a3:3d:fc:13:ea:38:8e:e1:5d: 06:cd:52:96:e2:de:de:a3:c7:f2:cf:b3:a0:a2:65: b7:75:dc:ef:0d:69:ee:f3:a0:66:cb:f3:b7:cb:d4: 9b:37:e4:c5:1f:a8:97:67:16:59:64:18:b1:1d:0f: 9f:bf:15:9f:53:4d:d3:28:c3:95:18:c4:47:a1:5b: 7e:f3:eb:de:d1:64:fe:b9:db:07:9d:f5:65:57:7f: 99:fe:86:11:01:b6:84:a5:41:e0:52:94:40:d8:e3: 78:80:9b:72:aa:ed:9a:0a:63:16:7e:9c:d1:d8:c6: e5:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:4F:2C:07:D9:86:C0:7D:F7:5F:BF:92:D6:B2:1A:34:85:45:87:DE X509v3 Authority Key Identifier: keyid:28:CD:09:E6:50:C2:69:EC:7D:2B:C9:FE:F7:D5:66:C1:01:2D:20:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916AC73/77512DC2251711F0B07F861DC4F9AE02/KM0J5lDCaex9K8n-99VmwQEtIEw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KM0J5lDCaex9K8n-99VmwQEtIEw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916AC73/77512DC2251711F0B07F861DC4F9AE02/KM0J5lDCaex9K8n-99VmwQEtIEw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:02:9b:33:fa:7b:bc:b8:30:04:57:f3:26:07:d9:09:1a:52: be:21:c4:d8:61:55:51:f8:a4:ab:63:c8:d8:67:ea:44:6a:eb: af:50:55:81:5d:38:4c:98:dd:27:0f:89:90:20:93:2a:d3:02: 59:82:8a:33:ca:7a:98:e2:f1:19:df:ee:54:e4:2f:52:84:16: 5c:2b:1c:68:55:c1:df:c9:b8:c8:27:b8:ad:6e:5b:f3:5e:b9: 3f:4a:ec:9e:48:ff:85:5c:ce:75:b5:17:fe:cd:16:b0:54:d5: 7a:b8:4e:d1:7a:7b:bf:c9:67:ee:e8:6f:6a:74:1e:ea:43:09: 25:d3:9b:65:bb:e7:b6:e4:90:50:86:8d:5d:4a:74:23:ea:0b: 4b:35:ed:9f:b0:f0:10:76:0a:d3:60:12:2e:62:bd:3a:f1:ad: 0f:94:62:48:24:e8:0b:df:b4:b8:00:e3:9b:61:ba:88:9f:84: cc:49:27:a7:cf:6c:91:5a:53:22:63:3c:34:dd:4d:97:31:06: 3d:b4:89:84:2e:c9:11:fd:2d:1e:aa:d7:b4:14:ad:81:c2:73: db:f0:cd:40:13:0d:06:b4:ba:fd:85:dd:07:8c:cc:fa:5f:c0: 88:93:55:a0:04:c1:f2:ad:26:31:fd:8c:f7:09:3e:f7:a1:fd: 3f:43:5d:d7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 QUM3MzExMC8GA1UEBRMoMjhDRDA5RTY1MEMyNjlFQzdEMkJDOUZFRjdENTY2QzEw MTJEMjA0QzAeFw0yNTA1MTUwNzI1NTRaFw0yNTA1MjIwNzI1NTRaMBgxFjAUBgNV BAMTDTY4MjU5NzAyLTc3NzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDMx9CEN3nJ7qt6p62IOgDGDV0WE2323dZkX4G2GGIrZQ/0xL4hDgUzds2I8gEI gSJtU3SWo7Bsav7e8l+YOjoFRx8yuPimq/BaUtqvWAw2+bd65fYOluCir6tEikce +mc5ang/DP9N7M2JI2h1J9OoF6Ole1qJ4rc0FQTEkuG8UWJDB+xhG9HhJ+WwX6M9 /BPqOI7hXQbNUpbi3t6jx/LPs6CiZbd13O8Nae7zoGbL87fL1Js35MUfqJdnFllk GLEdD5+/FZ9TTdMow5UYxEehW37z697RZP652wed9WVXf5n+hhEBtoSlQeBSlEDY 43iAm3Kq7ZoKYxZ+nNHYxuU3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUqU8sB9mG wH33X7+S1rIaNIVFh94wHwYDVR0jBBgwFoAUKM0J5lDCaex9K8n+99VmwQEtIEww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZBQzczLzc3NTEyREMyMjUx NzExRjBCMDdGODYxREM0RjlBRTAyL0tNMEo1bERDYWV4OUs4bi05OVZtd1FFdElF dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS00wSjVsRENhZXg5SzhuLTk5Vm13UUV0SUV3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZB QzczLzc3NTEyREMyMjUxNzExRjBCMDdGODYxREM0RjlBRTAyL0tNMEo1bERDYWV4 OUs4bi05OVZtd1FFdElFdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJkCmzP6e7y4MARX8yYH2QkaUr4hxNhhVVH4pKtjyNhn6kRq669QVYFd OEyY3ScPiZAgkyrTAlmCijPKepji8Rnf7lTkL1KEFlwrHGhVwd/JuMgnuK1uW/Ne uT9K7J5I/4VcznW1F/7NFrBU1Xq4TtF6e7/JZ+7ob2p0HupDCSXTm2W757bkkFCG jV1KdCPqC0s17Z+w8BB2CtNgEi5ivTrxrQ+UYkgk6AvftLgA45thuoifhMxJJ6fP bJFaUyJjPDTdTZcxBj20iYQuyRH9LR6q17QUrYHCc9vwzUATDQa0uv2F3QeMzPpf wIiTVaAEwfKtJjH9jPcJPveh/T9DXdc= -----END CERTIFICATE-----Generated at Fri May 16 21:41:24 2025 by rpki-client