$ rpki-client -vvf rpki.apnic.net/member_repository/A918424C/ABCBEBD623D411EF9575324EC4F9AE02/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.mft File: KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.mft (raw, json) Hash identifier: TzgBCGNt7lwOKn3HensOYjXVRLQkai3g9jvHNA4uRhQ= Subject key identifier: 93:6B:30:24:AD:88:E3:01:62:37:E2:79:6C:29:86:3D:9F:6D:60:99 Authority key identifier: 2A:44:56:D1:72:B2:B8:6D:CD:A7:12:E6:61:F6:D9:F2:FF:19:20:38 Certificate issuer: /CN=A918424C/serialNumber=2A4456D172B2B86DCDA712E661F6D9F2FF192038 Certificate serial: AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918424C/ABCBEBD623D411EF9575324EC4F9AE02/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.mft Manifest number: AE Signing time: Sun 11 May 2025 04:49:52 +0000 Manifest this update: Sun 11 May 2025 04:49:51 +0000 Manifest next update: Sun 18 May 2025 04:49:51 +0000 Files and hashes: 1: KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.crl (hash: KoyI9wyAnYm24ccgNt8+VqwxiX+Ctps5vY/ZzrZzrHI=) 2: 4394064223D511EF9AB13E4FC4F9AE02.roa (hash: uOPt38YEsEAnQYMhJ/vWZ8Bh0zzqI6ovkE/WceLABSs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918424C/ABCBEBD623D411EF9575324EC4F9AE02/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.crl rsync://rpki.apnic.net/member_repository/A918424C/ABCBEBD623D411EF9575324EC4F9AE02/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 175 (0xaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918424C, serialNumber=2A4456D172B2B86DCDA712E661F6D9F2FF192038 Validity Not Before: May 11 04:49:51 2025 GMT Not After : May 18 04:49:51 2025 GMT Subject: CN=68202c70-1114 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:da:ae:65:68:ec:08:88:55:6f:ae:bc:2d:d1: cf:4c:3c:52:26:65:b7:1c:db:0e:d1:8f:e1:0e:28: c7:2e:07:ee:fb:39:a1:8b:e7:41:6d:2b:9d:70:90: c3:34:5d:8d:07:94:0c:26:4c:ce:29:88:47:c7:53: 94:e1:07:ed:8e:88:7d:a2:4e:14:da:a1:c7:38:8b: 1b:86:a4:53:69:14:ee:df:16:bd:5f:9c:54:a4:1c: 6f:c9:69:4d:ee:52:1f:66:42:ae:99:25:ee:2d:ee: b9:b9:01:d9:e4:99:3c:9a:9b:26:43:3e:a0:50:83: 3f:eb:ea:ee:c4:4a:30:de:16:a3:1e:0f:9c:4a:06: c3:57:e0:ed:a7:41:55:0e:6b:29:d7:36:33:37:dc: f8:e8:65:3f:8a:75:e3:ad:3d:e6:d7:be:08:bb:7c: 7a:3a:62:45:e0:0b:af:4b:d0:af:23:9c:c8:99:55: c4:36:d9:0f:8b:dd:42:fc:68:52:f8:d5:76:51:3a: 3a:ff:85:0d:26:32:17:9d:a4:09:76:26:e8:0e:f6: be:d6:64:07:00:d1:b8:57:76:2f:94:da:ce:a9:e6: 48:12:79:82:36:19:7b:81:44:72:27:ce:33:6c:b6: cc:28:92:99:fe:48:db:24:5c:66:e7:e7:03:37:fb: e8:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:6B:30:24:AD:88:E3:01:62:37:E2:79:6C:29:86:3D:9F:6D:60:99 X509v3 Authority Key Identifier: keyid:2A:44:56:D1:72:B2:B8:6D:CD:A7:12:E6:61:F6:D9:F2:FF:19:20:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918424C/ABCBEBD623D411EF9575324EC4F9AE02/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918424C/ABCBEBD623D411EF9575324EC4F9AE02/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:a3:19:12:70:d0:ab:7b:2e:25:b3:d0:9c:9f:01:4f:fa:e9: 9b:51:30:ca:56:b9:12:4a:8f:b6:07:64:ac:a3:59:ba:3e:83: 1d:5b:58:2c:c8:20:5d:c1:97:b2:6d:6a:f5:1a:8f:fb:fa:d1: 74:67:dd:64:be:26:aa:ce:44:a3:da:93:8b:1c:95:a0:37:6f: 78:3e:e8:a2:b6:13:97:57:ba:6b:0f:fe:2b:e9:32:7f:e4:ad: 02:8e:4b:2b:71:20:69:66:20:e8:d2:38:4e:7f:57:46:70:63: be:c7:0b:e6:a3:19:07:12:fb:95:d2:93:aa:eb:c2:b3:54:86: b8:ae:2b:99:e5:96:38:14:9e:3d:ba:5e:4c:be:52:0c:37:1c: a5:c1:c9:b5:f9:ba:62:a5:91:be:ce:94:7c:a9:6e:6b:c2:70: 5e:31:53:40:96:75:3f:78:f0:e5:9e:98:8c:ac:1d:4e:31:66: 72:69:04:4b:49:42:cb:a7:ec:91:71:9d:34:93:79:74:86:f7: da:5e:8b:92:b9:71:cc:bc:dc:2b:62:d6:fc:e4:f5:5a:72:0b: a6:b0:39:03:18:ca:f6:f5:5d:f1:a4:fb:3f:94:51:bd:94:4e: f2:f6:bf:14:79:ba:0f:6c:38:7d:6e:43:4e:e2:60:aa:e7:51: 1e:21:93:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQyNEMxMTAvBgNVBAUTKDJBNDQ1NkQxNzJCMkI4NkRDREE3MTJFNjYxRjZEOUYy RkYxOTIwMzgwHhcNMjUwNTExMDQ0OTUxWhcNMjUwNTE4MDQ0OTUxWjAYMRYwFAYD VQQDEw02ODIwMmM3MC0xMTE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx9quZWjsCIhVb668LdHPTDxSJmW3HNsO0Y/hDijHLgfu+zmhi+dBbSudcJDD NF2NB5QMJkzOKYhHx1OU4Qftjoh9ok4U2qHHOIsbhqRTaRTu3xa9X5xUpBxvyWlN 7lIfZkKumSXuLe65uQHZ5Jk8mpsmQz6gUIM/6+ruxEow3hajHg+cSgbDV+Dtp0FV Dmsp1zYzN9z46GU/inXjrT3m174Iu3x6OmJF4AuvS9CvI5zImVXENtkPi91C/GhS +NV2UTo6/4UNJjIXnaQJdiboDva+1mQHANG4V3YvlNrOqeZIEnmCNhl7gURyJ84z bLbMKJKZ/kjbJFxm5+cDN/vozwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJNrMCSt iOMBYjfieWwphj2fbWCZMB8GA1UdIwQYMBaAFCpEVtFysrhtzacS5mH22fL/GSA4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDI0Qy9BQkNCRUJENjIz RDQxMUVGOTU3NTMyNEVDNEY5QUUwMi9La1JXMFhLeXVHM05weExtWWZiWjh2OFpJ RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0trUlcwWEt5dUczTnB4TG1ZZmJaOHY4WklEZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDI0Qy9BQkNCRUJENjIzRDQxMUVGOTU3NTMyNEVDNEY5QUUwMi9La1JXMFhLeXVH M05weExtWWZiWjh2OFpJRGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYoxkScNCrey4ls9CcnwFP+umbUTDKVrkSSo+2B2Sso1m6PoMdW1gs yCBdwZeybWr1Go/7+tF0Z91kviaqzkSj2pOLHJWgN294PuiithOXV7prD/4r6TJ/ 5K0CjksrcSBpZiDo0jhOf1dGcGO+xwvmoxkHEvuV0pOq68KzVIa4riuZ5ZY4FJ49 ul5MvlIMNxylwcm1+bpipZG+zpR8qW5rwnBeMVNAlnU/ePDlnpiMrB1OMWZyaQRL SULLp+yRcZ00k3l0hvfaXouSuXHMvNwrYtb85PVacgumsDkDGMr29V3xpPs/lFG9 lE7y9r8UeboPbDh9bkNO4mCq51EeIZPf -----END CERTIFICATE-----Generated at Sun May 11 10:14:03 2025 by rpki-client