$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.mft File: kFj-3Oxfh289_hYZQxnBRcnAzLU.mft (raw, json) Hash identifier: iUdxitYN6Owqj6QOC7sP74tJbvr5LHSWmYFQn9+Qk74= Subject key identifier: 11:CA:64:4F:B6:DC:5C:E1:AE:67:21:FF:5B:1D:05:5D:C1:E4:CA:95 Authority key identifier: 90:58:FE:DC:EC:5F:87:6F:3D:FE:16:19:43:19:C1:45:C9:C0:CC:B5 Certificate issuer: /CN=A9185B0F/serialNumber=9058FEDCEC5F876F3DFE16194319C145C9C0CCB5 Certificate serial: 0655 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kFj-3Oxfh289_hYZQxnBRcnAzLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.mft Manifest number: 0650 Signing time: Wed 14 May 2025 22:33:50 +0000 Manifest this update: Wed 14 May 2025 22:33:50 +0000 Manifest next update: Wed 21 May 2025 22:33:50 +0000 Files and hashes: 1: kFj-3Oxfh289_hYZQxnBRcnAzLU.crl (hash: 9IVx6k+FhUHsLUXIsbBC/o9PfIIUk/aKv/OgQ4UA63Y=) 2: 25A7FE7E855211EB8DEDD812C4F9AE02.roa (hash: rH99d2UyS2BchbUPUbqFc9GOoYlWGp7hkjxEyr/ZGj0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.crl rsync://rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kFj-3Oxfh289_hYZQxnBRcnAzLU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 22:33:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1621 (0x655) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B0F, serialNumber=9058FEDCEC5F876F3DFE16194319C145C9C0CCB5 Validity Not Before: May 14 22:33:50 2025 GMT Not After : May 21 22:33:50 2025 GMT Subject: CN=68251a4e-49a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:f3:25:3e:d9:91:49:ee:e5:e0:6b:59:dc:3f: da:46:ab:d2:b5:10:b8:ed:d5:5c:2c:2e:54:87:c2: 9b:e8:53:63:ba:f0:7d:43:45:f8:e1:a0:d6:2a:79: 8d:9d:ec:1c:fc:bc:40:a2:cd:66:5a:f8:dd:8e:8f: 1a:5a:0d:50:77:90:7c:5c:f2:f5:43:21:ea:d3:85: 85:98:55:eb:15:91:79:ef:4c:44:4d:9a:c1:64:78: 09:8d:89:88:ea:3d:28:75:66:69:39:6f:1f:22:85: 41:56:bf:5c:64:4e:77:1d:18:69:61:26:4e:95:9f: ca:ec:df:f7:80:15:74:48:48:c9:23:48:45:b3:5c: b6:ab:ea:33:92:37:eb:dc:fa:0c:6a:a1:24:77:a0: 80:66:da:44:22:8c:68:db:81:6e:d8:64:42:0a:04: 4e:ce:b3:48:74:87:8f:f6:47:b2:79:09:a9:ff:19: 66:4f:78:0b:ca:b6:50:0a:b5:96:b6:4c:37:e8:3d: 19:2b:e4:56:5d:53:2e:be:96:f3:07:a0:3c:42:5a: 6c:99:2b:06:03:31:c6:22:f0:02:44:92:59:a8:ec: 43:62:8f:e7:6d:be:6c:e1:95:69:19:ea:13:28:29: c9:1f:a8:09:b3:0d:11:f5:f8:82:a4:23:5e:b4:c0: 49:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:CA:64:4F:B6:DC:5C:E1:AE:67:21:FF:5B:1D:05:5D:C1:E4:CA:95 X509v3 Authority Key Identifier: keyid:90:58:FE:DC:EC:5F:87:6F:3D:FE:16:19:43:19:C1:45:C9:C0:CC:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kFj-3Oxfh289_hYZQxnBRcnAzLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:1c:e7:7d:50:4c:8d:32:ac:31:b5:7a:e8:67:cd:99:8e:63: ee:71:7d:71:cb:ff:75:01:c4:01:5d:de:e6:3b:78:a7:73:57: da:4e:a5:15:cb:57:37:f8:e2:14:2f:8b:f9:1a:b0:15:94:71: fd:d3:f2:39:ac:64:ff:94:06:10:7c:3b:1b:42:90:52:df:f6: 62:96:fd:56:95:2c:70:46:d0:9a:e1:55:aa:bd:68:d9:ca:0b: 82:24:6c:22:9d:ca:f2:bd:57:da:36:a0:f5:ab:d1:0d:71:c8: 1d:8a:28:1a:c1:63:d7:99:65:65:f0:95:46:66:e9:f6:f7:12: 2c:21:8d:5b:40:a3:18:48:ea:49:a9:b0:69:12:2b:5e:2d:78: 7d:db:c4:c3:0e:c1:29:65:45:e8:5f:ed:ab:f7:da:9d:21:46: 3e:92:3d:30:1f:d6:28:c0:4a:9b:28:4c:01:a7:af:86:52:0d: 6d:96:db:85:c9:12:e5:f0:75:b3:a1:fc:35:66:f8:84:89:89: 8d:71:66:b2:88:64:e5:1d:89:03:a2:ff:eb:e8:a2:4e:d8:4f: 88:fa:e6:5d:53:63:5f:af:bf:1b:ed:13:58:25:fa:3d:8f:8b: 35:10:04:1e:fd:c5:48:3c:f8:ef:11:70:30:bd:45:72:9a:28: 79:90:de:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVCMEYxMTAvBgNVBAUTKDkwNThGRURDRUM1Rjg3NkYzREZFMTYxOTQzMTlDMTQ1 QzlDMENDQjUwHhcNMjUwNTE0MjIzMzUwWhcNMjUwNTIxMjIzMzUwWjAYMRYwFAYD VQQDEw02ODI1MWE0ZS00OWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyfMlPtmRSe7l4GtZ3D/aRqvStRC47dVcLC5Uh8Kb6FNjuvB9Q0X44aDWKnmN newc/LxAos1mWvjdjo8aWg1Qd5B8XPL1QyHq04WFmFXrFZF570xETZrBZHgJjYmI 6j0odWZpOW8fIoVBVr9cZE53HRhpYSZOlZ/K7N/3gBV0SEjJI0hFs1y2q+ozkjfr 3PoMaqEkd6CAZtpEIoxo24Fu2GRCCgROzrNIdIeP9keyeQmp/xlmT3gLyrZQCrWW tkw36D0ZK+RWXVMuvpbzB6A8QlpsmSsGAzHGIvACRJJZqOxDYo/nbb5s4ZVpGeoT KCnJH6gJsw0R9fiCpCNetMBJfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBHKZE+2 3Fzhrmch/1sdBV3B5MqVMB8GA1UdIwQYMBaAFJBY/tzsX4dvPf4WGUMZwUXJwMy1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUIwRi81MkQwQTEyMDg1 NEUxMUVCQjc1QkIwMDlDNEY5QUUwMi9rRmotM094ZmgyODlfaFlaUXhuQlJjbkF6 TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tGai0zT3hmaDI4OV9oWVpReG5CUmNuQXpMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUIwRi81MkQwQTEyMDg1NEUxMUVCQjc1QkIwMDlDNEY5QUUwMi9rRmotM094Zmgy ODlfaFlaUXhuQlJjbkF6TFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMHOd9UEyNMqwxtXroZ82ZjmPucX1xy/91AcQBXd7mO3inc1faTqUV y1c3+OIUL4v5GrAVlHH90/I5rGT/lAYQfDsbQpBS3/Zilv1WlSxwRtCa4VWqvWjZ yguCJGwincryvVfaNqD1q9ENccgdiigawWPXmWVl8JVGZun29xIsIY1bQKMYSOpJ qbBpEiteLXh928TDDsEpZUXoX+2r99qdIUY+kj0wH9YowEqbKEwBp6+GUg1tltuF yRLl8HWzofw1ZviEiYmNcWayiGTlHYkDov/r6KJO2E+I+uZdU2Nfr78b7RNYJfo9 j4s1EAQe/cVIPPjvEXAwvUVymih5kN71 -----END CERTIFICATE-----Generated at Fri May 16 02:31:24 2025 by rpki-client