$ rpki-client -vvf rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.mft File: kMIvc5OFDo7Pa18eMg0HstGs2P0.mft (raw, json) Hash identifier: WW4VQNxRsZ+x2vMYtqx8j0Y0m1HQCdAi175AqUBFq0M= Subject key identifier: EC:12:1D:CF:57:81:1E:48:3B:56:9F:8D:CB:BD:97:BE:A3:C8:2D:8C Authority key identifier: 90:C2:2F:73:93:85:0E:8E:CF:6B:5F:1E:32:0D:07:B2:D1:AC:D8:FD Certificate issuer: /CN=A918495F/serialNumber=90C22F7393850E8ECF6B5F1E320D07B2D1ACD8FD Certificate serial: 17CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMIvc5OFDo7Pa18eMg0HstGs2P0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.mft Manifest number: 1766 Signing time: Tue 06 May 2025 16:39:19 +0000 Manifest this update: Tue 06 May 2025 16:39:19 +0000 Manifest next update: Tue 13 May 2025 16:39:19 +0000 Files and hashes: 1: kMIvc5OFDo7Pa18eMg0HstGs2P0.crl (hash: a/1LaKxVf6ruklqmr9ewB2LukGBwTYVNpxfX9Jq8les=) 2: E8118BFA022C11EBAC47A831C4F9AE02.roa (hash: HwVvfhhBB2RSjFMDjowAziG6alcP2zuXw5LmUAX2gK8=) 3: 7E2725DAAC7611EAB766A74CC4F9AE02.roa (hash: 9OXjAAMYLAB5L3agld9axHr8PefYFycM5j/bsa1mWpA=) 4: DD145D6E023A11EBBDF8B35FC4F9AE02.roa (hash: rlaLzwVaLuL4ngSmjTuU0HKWW8Z5rb2WxCS8BXA4T2A=) 5: A2C8B57074B711EB8491BC63C4F9AE02.roa (hash: f4Nb70DFVEDtxBNhflIcmdj1De7oL7oNb+VI5wy+7A8=) 6: B04675FC959711EA9F290A33C4F9AE02.roa (hash: uYFRc83EBaJfN2GivSwIY06UqczGnSbs78PJfa9CAEA=) 7: 07EE827ADFEE11E7B0E71D1CC4F9AE02.roa (hash: jF4bRTQ1bhj8ogQbDSaGxO9z7G4aPx9aLlwCJEOU1qE=) 8: 696975861A3611EEA597E872C4F9AE02.roa (hash: B3kL8S/jc+3ePihG4qejPX9ur4Lx70UDT6EX1xakBa4=) 9: 4C0C96C6022E11EBA920EA37C4F9AE02.roa (hash: th7HEEEVK4zRCYHv7MzA93JGFKTxnTNbxPYDrvgQY58=) 10: 694CCE66E53911EF9DD1B90DC4F9AE02.roa (hash: dHpVockv1v0nsLKVjW4JjR0Rc9XC1Dp8MsDOOMq04/4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.crl rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMIvc5OFDo7Pa18eMg0HstGs2P0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 16:39:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6093 (0x17cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918495F, serialNumber=90C22F7393850E8ECF6B5F1E320D07B2D1ACD8FD Validity Not Before: May 6 16:39:19 2025 GMT Not After : May 13 16:39:19 2025 GMT Subject: CN=681a3b37-c4c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:de:9b:ef:85:0c:a0:10:2f:e1:d5:7f:0d:33: b1:e0:63:a1:b7:d5:aa:e1:7b:f0:85:c1:0b:cd:ca: 50:96:9d:92:6c:0e:d7:d3:28:15:32:40:59:33:0c: ea:a4:2e:3a:91:fa:f0:39:83:95:a8:6f:42:83:04: 4d:35:cb:cb:e2:6a:cf:20:ed:55:8a:17:30:d1:61: 8f:a7:f0:7e:3b:8e:9e:8e:12:5a:28:3f:b6:c3:00: bf:41:d0:e8:66:10:23:2b:a9:21:8f:3d:5e:dd:c3: 33:cd:31:f8:91:e8:20:2b:1b:8a:dc:cf:ea:8b:be: e6:a2:83:95:29:9a:34:3c:c9:ba:41:e5:9e:89:c0: f3:d3:17:9b:8d:97:c7:81:80:af:9c:96:ca:50:84: b9:12:99:90:d8:c8:c1:cb:b5:1a:26:ca:17:6f:58: 50:09:b0:45:80:5e:4e:7f:8a:5b:50:16:9b:2d:9a: b6:f9:4b:bd:38:c0:fb:00:42:db:63:63:9f:cf:78: 8c:78:37:7e:f4:91:8f:f8:8e:b7:5f:7a:fe:39:e9: 00:1e:8b:57:68:db:ba:73:f5:46:02:d7:47:c9:58: b4:1a:9e:48:e4:56:bf:1e:37:65:80:79:7d:f5:21: b9:77:17:4e:da:7c:3d:ec:56:64:81:61:8f:78:7b: 62:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:12:1D:CF:57:81:1E:48:3B:56:9F:8D:CB:BD:97:BE:A3:C8:2D:8C X509v3 Authority Key Identifier: keyid:90:C2:2F:73:93:85:0E:8E:CF:6B:5F:1E:32:0D:07:B2:D1:AC:D8:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMIvc5OFDo7Pa18eMg0HstGs2P0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:e2:c0:33:cb:04:6e:6d:11:ba:25:8d:42:5a:de:ae:de:8e: 45:07:77:df:cd:59:9f:c1:67:d5:6d:50:f5:be:9b:4c:0d:fc: 8b:82:7a:a5:9c:02:d9:7c:2f:94:44:8e:4f:ca:b4:ab:26:6f: 23:ec:e6:0c:72:19:ca:11:54:97:ea:fe:70:94:d2:00:e4:b2: 7f:95:b9:b9:c3:7d:3f:2a:8b:db:08:41:19:4e:10:cf:18:86: 3d:3e:32:be:bb:73:b3:c1:3d:47:a4:fa:82:60:71:73:58:92: cb:5d:e1:3b:f2:c8:8a:f7:32:6d:48:bf:62:6d:8e:8f:e5:6f: 9f:d7:58:40:f6:64:42:ab:6d:15:56:21:50:91:89:90:e4:93: 22:90:9a:5a:78:40:3e:cf:cf:74:23:9c:aa:1c:29:75:fc:4d: f0:21:d0:7b:48:84:02:4c:a9:78:3f:4c:ee:8d:03:9e:b2:b6: 5d:7e:1f:c3:5a:31:dc:73:11:d3:08:ae:a7:d7:36:84:69:6c: db:cb:a7:da:e2:39:b7:f9:17:29:99:9c:4f:2a:69:3b:9f:24: 96:c4:cc:3b:01:04:42:1c:be:92:2a:87:79:a5:4c:4e:7e:53: 67:53:6c:5d:41:9c:86:ae:ef:ea:a5:70:7d:b9:a6:fc:c4:ac: b1:3c:d7:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF80wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ5NUYxMTAvBgNVBAUTKDkwQzIyRjczOTM4NTBFOEVDRjZCNUYxRTMyMEQwN0Iy RDFBQ0Q4RkQwHhcNMjUwNTA2MTYzOTE5WhcNMjUwNTEzMTYzOTE5WjAYMRYwFAYD VQQDEw02ODFhM2IzNy1jNGM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxN6b74UMoBAv4dV/DTOx4GOht9Wq4XvwhcELzcpQlp2SbA7X0ygVMkBZMwzq pC46kfrwOYOVqG9CgwRNNcvL4mrPIO1Vihcw0WGPp/B+O46ejhJaKD+2wwC/QdDo ZhAjK6khjz1e3cMzzTH4keggKxuK3M/qi77mooOVKZo0PMm6QeWeicDz0xebjZfH gYCvnJbKUIS5EpmQ2MjBy7UaJsoXb1hQCbBFgF5Of4pbUBabLZq2+Uu9OMD7AELb Y2Ofz3iMeDd+9JGP+I63X3r+OekAHotXaNu6c/VGAtdHyVi0Gp5I5Fa/HjdlgHl9 9SG5dxdO2nw97FZkgWGPeHtiYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOwSHc9X gR5IO1afjcu9l76jyC2MMB8GA1UdIwQYMBaAFJDCL3OThQ6Oz2tfHjINB7LRrNj9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDk1Ri84NDhDODU3Q0RG RUMxMUU3QTI3QTIyMTNDNEY5QUUwMi9rTUl2YzVPRkRvN1BhMThlTWcwSHN0R3My UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tNSXZjNU9GRG83UGExOGVNZzBIc3RHczJQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDk1Ri84NDhDODU3Q0RGRUMxMUU3QTI3QTIyMTNDNEY5QUUwMi9rTUl2YzVPRkRv N1BhMThlTWcwSHN0R3MyUDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBL4sAzywRubRG6JY1CWt6u3o5FB3ffzVmfwWfVbVD1vptMDfyLgnql nALZfC+URI5PyrSrJm8j7OYMchnKEVSX6v5wlNIA5LJ/lbm5w30/KovbCEEZThDP GIY9PjK+u3OzwT1HpPqCYHFzWJLLXeE78siK9zJtSL9ibY6P5W+f11hA9mRCq20V ViFQkYmQ5JMikJpaeEA+z890I5yqHCl1/E3wIdB7SIQCTKl4P0zujQOesrZdfh/D WjHccxHTCK6n1zaEaWzby6fa4jm3+RcpmZxPKmk7nySWxMw7AQRCHL6SKod5pUxO flNnU2xdQZyGru/qpXB9uab8xKyxPNcy -----END CERTIFICATE-----Generated at Wed May 7 06:24:49 2025 by rpki-client