$ rpki-client -vvf rpki.apnic.net/member_repository/A9180174/79D6662A168911EC8162580CC4F9AE02/KN1yVzxbraKIuDKzmB_0yYsvjFE.mft File: KN1yVzxbraKIuDKzmB_0yYsvjFE.mft (raw, json) Hash identifier: v5ALSLef9LYJhPqT3lZSqBIu5BglKUiW5DCYg4U3eLA= Subject key identifier: E0:E3:C0:B4:0E:19:D6:F2:E7:F5:4F:5B:36:76:A1:7E:0A:2A:61:62 Authority key identifier: 28:DD:72:57:3C:5B:AD:A2:88:B8:32:B3:98:1F:F4:C9:8B:2F:8C:51 Certificate issuer: /CN=A9180174/serialNumber=28DD72573C5BADA288B832B3981FF4C98B2F8C51 Certificate serial: 04EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KN1yVzxbraKIuDKzmB_0yYsvjFE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9180174/79D6662A168911EC8162580CC4F9AE02/KN1yVzxbraKIuDKzmB_0yYsvjFE.mft Manifest number: 04E9 Signing time: Wed 14 May 2025 23:47:22 +0000 Manifest this update: Wed 14 May 2025 23:47:22 +0000 Manifest next update: Wed 21 May 2025 23:47:22 +0000 Files and hashes: 1: KN1yVzxbraKIuDKzmB_0yYsvjFE.crl (hash: AMpCLz9fx5ZYw2HfVQ5oDAHigm1WpVdj2EnhRn6JUXY=) 2: F6750B60168D11EC89C9CB5DC4F9AE02.roa (hash: 9is5aeB2FzFVh9EnamHZGKMz2wLecoiTResPsgf3D2Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9180174/79D6662A168911EC8162580CC4F9AE02/KN1yVzxbraKIuDKzmB_0yYsvjFE.crl rsync://rpki.apnic.net/member_repository/A9180174/79D6662A168911EC8162580CC4F9AE02/KN1yVzxbraKIuDKzmB_0yYsvjFE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KN1yVzxbraKIuDKzmB_0yYsvjFE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 23:47:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1263 (0x4ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9180174, serialNumber=28DD72573C5BADA288B832B3981FF4C98B2F8C51 Validity Not Before: May 14 23:47:22 2025 GMT Not After : May 21 23:47:22 2025 GMT Subject: CN=68252b8a-bbef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:b2:08:0d:86:37:14:99:1d:00:fb:1d:7c:3f: e0:a4:3a:9d:d0:85:f3:35:29:ff:2e:9e:0a:c7:a4: 45:03:be:0a:5a:8c:b6:2b:40:37:d3:0b:55:60:12: fb:21:6a:f0:a7:f8:ce:12:c3:61:1c:e6:00:0c:5d: b4:c6:cc:fa:8b:b1:12:f2:07:2c:34:1a:da:0b:91: f2:5c:e6:41:25:df:28:2a:5d:de:82:2c:cb:f9:2e: 1f:7c:c1:86:04:ab:ec:10:31:ad:6c:3d:18:74:02: 1b:32:46:71:7a:0f:2b:bb:ac:8c:0e:3b:24:fa:8d: 62:12:c5:8b:1b:3b:74:80:41:c1:fa:83:9c:1e:08: b5:d1:65:d7:d6:c6:e2:27:62:fd:e9:b8:bc:3d:46: 95:d6:74:91:f6:4a:e4:a1:13:9f:1e:82:69:ef:52: 5a:a7:f9:f8:09:02:31:aa:2f:12:a1:b9:29:6f:91: 64:13:29:cd:1e:cf:e4:79:bb:af:35:cc:d1:07:f7: 3a:e1:2c:88:0f:4f:87:ac:a6:42:2a:04:aa:ee:2d: 44:d9:82:ca:6c:64:a6:9f:8f:03:b8:e7:bc:df:84: e3:a9:2e:63:bf:83:73:b3:12:fc:d2:91:4d:d1:0c: 61:0c:61:8f:68:0c:c0:a4:ed:1c:02:5b:f3:80:8e: 0f:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:E3:C0:B4:0E:19:D6:F2:E7:F5:4F:5B:36:76:A1:7E:0A:2A:61:62 X509v3 Authority Key Identifier: keyid:28:DD:72:57:3C:5B:AD:A2:88:B8:32:B3:98:1F:F4:C9:8B:2F:8C:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9180174/79D6662A168911EC8162580CC4F9AE02/KN1yVzxbraKIuDKzmB_0yYsvjFE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KN1yVzxbraKIuDKzmB_0yYsvjFE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9180174/79D6662A168911EC8162580CC4F9AE02/KN1yVzxbraKIuDKzmB_0yYsvjFE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:4f:ed:74:36:57:67:99:83:ce:5f:20:97:b2:43:b1:9e:59: c4:2c:13:cd:93:26:a5:68:c0:86:84:f1:45:22:87:8e:e4:8f: 2d:46:b1:3c:f2:62:18:9b:29:bc:df:95:00:ef:2a:ea:40:42: af:9f:19:b4:0d:ef:e4:f6:14:d3:be:d4:6e:21:53:22:66:17: 79:99:00:09:4d:ed:18:78:84:ad:c3:ba:49:27:5f:c0:e0:fc: 1e:0d:7e:b9:79:fb:97:ff:11:ad:62:e6:95:de:bf:91:73:04: 30:cc:75:f5:3f:4c:28:0c:1a:2f:cf:e0:a9:a8:98:fb:cf:6b: e7:c9:4b:e9:3c:a0:c6:6e:a1:5d:0c:c3:51:8f:4c:cf:50:fe: 72:05:8d:66:04:47:48:bc:8a:6d:66:9a:45:e0:5b:dc:c6:4a: 1c:a9:e5:4d:4b:42:94:f4:e5:94:2d:4f:8b:60:96:2a:cf:38: 80:21:3b:1d:c0:c2:55:de:5c:e4:9d:19:c0:03:40:18:89:0c: 7c:0e:e8:4a:20:6c:ad:7d:56:51:26:d8:bd:ea:b3:61:79:b1: e1:aa:4c:90:19:ea:72:4f:a7:6d:5c:b1:e3:4e:48:42:62:1c: 3f:80:cf:c2:37:35:45:90:ca:73:17:92:80:bd:e0:36:cc:f3: 9a:b5:47:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAxNzQxMTAvBgNVBAUTKDI4REQ3MjU3M0M1QkFEQTI4OEI4MzJCMzk4MUZGNEM5 OEIyRjhDNTEwHhcNMjUwNTE0MjM0NzIyWhcNMjUwNTIxMjM0NzIyWjAYMRYwFAYD VQQDEw02ODI1MmI4YS1iYmVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsLIIDYY3FJkdAPsdfD/gpDqd0IXzNSn/Lp4Kx6RFA74KWoy2K0A30wtVYBL7 IWrwp/jOEsNhHOYADF20xsz6i7ES8gcsNBraC5HyXOZBJd8oKl3egizL+S4ffMGG BKvsEDGtbD0YdAIbMkZxeg8ru6yMDjsk+o1iEsWLGzt0gEHB+oOcHgi10WXX1sbi J2L96bi8PUaV1nSR9krkoROfHoJp71Jap/n4CQIxqi8Sobkpb5FkEynNHs/kebuv NczRB/c64SyID0+HrKZCKgSq7i1E2YLKbGSmn48DuOe834TjqS5jv4NzsxL80pFN 0QxhDGGPaAzApO0cAlvzgI4PxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFODjwLQO Gdby5/VPWzZ2oX4KKmFiMB8GA1UdIwQYMBaAFCjdclc8W62iiLgys5gf9MmLL4xR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDE3NC83OUQ2NjYyQTE2 ODkxMUVDODE2MjU4MENDNEY5QUUwMi9LTjF5Vnp4YnJhS0l1REt6bUJfMHlZc3Zq RkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tOMXlWenhicmFLSXVES3ptQl8weVlzdmpGRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDE3NC83OUQ2NjYyQTE2ODkxMUVDODE2MjU4MENDNEY5QUUwMi9LTjF5Vnp4YnJh S0l1REt6bUJfMHlZc3ZqRkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNT+10NldnmYPOXyCXskOxnlnELBPNkyalaMCGhPFFIoeO5I8tRrE8 8mIYmym835UA7yrqQEKvnxm0De/k9hTTvtRuIVMiZhd5mQAJTe0YeIStw7pJJ1/A 4PweDX65efuX/xGtYuaV3r+RcwQwzHX1P0woDBovz+CpqJj7z2vnyUvpPKDGbqFd DMNRj0zPUP5yBY1mBEdIvIptZppF4FvcxkocqeVNS0KU9OWULU+LYJYqzziAITsd wMJV3lzknRnAA0AYiQx8DuhKIGytfVZRJti96rNhebHhqkyQGepyT6dtXLHjTkhC Yhw/gM/CNzVFkMpzF5KAveA2zPOatUcD -----END CERTIFICATE-----Generated at Sat May 17 01:01:41 2025 by rpki-client