$ rpki-client -vvf rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft File: kyv2OTHDR-dryQidQb4k9jcPJYI.mft (raw, json) Hash identifier: nBY1ulthQuupu/twFxRc73bkEGubiAJr7Sdy9QmAhO4= Subject key identifier: B4:EC:F5:9A:1D:1A:33:FB:9B:CA:A3:C8:2A:8C:77:34:C7:E6:63:33 Authority key identifier: 93:2B:F6:39:31:C3:47:E7:6B:C9:08:9D:41:BE:24:F6:37:0F:25:82 Certificate issuer: /CN=A919879C/serialNumber=932BF63931C347E76BC9089D41BE24F6370F2582 Certificate serial: 0285 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kyv2OTHDR-dryQidQb4k9jcPJYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft Manifest number: 0281 Signing time: Thu 15 May 2025 01:38:33 +0000 Manifest this update: Thu 15 May 2025 01:38:32 +0000 Manifest next update: Thu 22 May 2025 01:38:32 +0000 Files and hashes: 1: kyv2OTHDR-dryQidQb4k9jcPJYI.crl (hash: m8uDv3ShpypSl4u//Xbgpr4dfzx5duQ7IM79V9euNBg=) 2: E7C34456073711ED8BA93630C4F9AE02.roa (hash: kldDMFdCdKUVHMXGUfTfraYPzp89poxoo5pvwA3fx9Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.crl rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kyv2OTHDR-dryQidQb4k9jcPJYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 01:38:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 645 (0x285) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919879C, serialNumber=932BF63931C347E76BC9089D41BE24F6370F2582 Validity Not Before: May 15 01:38:32 2025 GMT Not After : May 22 01:38:32 2025 GMT Subject: CN=68254598-2e75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:59:60:9e:82:9b:bf:ba:ff:59:73:3f:21:e6: c1:5b:94:98:c8:d5:93:09:a4:14:74:20:c2:98:71: 25:13:68:b8:cc:44:da:a3:86:e7:85:3f:cc:cf:db: 88:01:ee:ae:d7:ea:75:bd:85:9b:37:f8:11:da:28: b8:64:92:bc:95:df:38:0b:1f:4e:b1:c0:57:b5:dc: 40:50:97:5e:71:3c:75:9f:c2:55:b6:c6:b6:4c:91: 6c:19:7c:2e:5f:37:0c:08:f1:94:7c:4f:57:f7:22: c7:3d:6e:36:5d:bb:4d:4e:cb:64:e6:db:d0:7f:ad: 58:ac:4b:69:73:2f:2b:9b:08:3e:e3:5b:23:25:fa: 86:c4:d2:8e:6b:bf:3f:33:f9:ed:8d:7f:27:72:00: db:1d:a7:83:84:8e:8c:17:2c:21:a6:2b:92:54:80: e0:e4:5f:c9:d6:43:f2:25:37:47:5a:20:ea:c7:f1: 08:6d:af:b8:3a:8c:4f:1c:d4:79:8e:37:d4:57:c1: 99:84:79:f3:ec:41:2d:1f:dd:68:ea:81:b9:40:4a: 99:dc:3b:a1:2e:df:9a:a8:aa:46:e5:74:93:f7:92: 20:48:70:4a:66:7d:c1:8e:46:10:da:e0:4b:81:df: 85:be:fb:01:81:ed:75:3a:05:08:95:de:94:41:61: 5a:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:EC:F5:9A:1D:1A:33:FB:9B:CA:A3:C8:2A:8C:77:34:C7:E6:63:33 X509v3 Authority Key Identifier: keyid:93:2B:F6:39:31:C3:47:E7:6B:C9:08:9D:41:BE:24:F6:37:0F:25:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kyv2OTHDR-dryQidQb4k9jcPJYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:b0:97:c7:55:59:c0:69:5d:9d:2f:07:6f:e4:0b:26:46:c1: 03:65:8f:97:73:39:c0:c8:ef:4b:af:a6:73:b5:d2:a8:1e:de: 73:b2:5a:5e:e6:f1:80:a6:ac:5f:a6:a7:ef:5c:18:c5:ff:ca: b5:68:16:63:cf:40:f2:60:57:07:b2:cb:f2:07:e7:2d:07:61: 11:84:19:a1:d6:4e:ec:c9:73:b7:07:33:ad:6f:4f:b1:a9:60: b2:be:12:3d:69:e5:a3:8e:4d:b9:cf:0a:c5:f3:87:52:cf:77: af:5e:ec:7c:45:e5:48:c7:fa:b7:d7:6d:4d:9d:16:4c:15:ca: 5a:8f:5a:d7:54:03:46:e3:42:19:d5:01:d2:c5:91:63:78:98: fe:55:c9:79:6f:65:1c:a8:82:2e:9d:b5:89:73:69:40:7f:8a: a6:a6:1c:c6:c5:4f:2f:70:6a:dc:2f:d5:af:43:b7:c8:f5:7a: 7b:c8:c8:ef:61:e3:ee:02:c4:b3:28:5e:44:a9:5a:42:d7:1b: 52:91:db:7b:73:cd:92:99:ca:f2:58:0f:b7:ea:ad:ff:f0:fc: f2:73:1e:d8:f8:40:4c:a7:b8:dd:cd:8e:7a:b4:cd:28:b3:78: 79:55:0f:80:d4:a9:8f:20:ad:5a:e8:51:c5:8e:1e:e3:e7:ef: 16:ea:2b:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAoUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTg3OUMxMTAvBgNVBAUTKDkzMkJGNjM5MzFDMzQ3RTc2QkM5MDg5RDQxQkUyNEY2 MzcwRjI1ODIwHhcNMjUwNTE1MDEzODMyWhcNMjUwNTIyMDEzODMyWjAYMRYwFAYD VQQDEw02ODI1NDU5OC0yZTc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvllgnoKbv7r/WXM/IebBW5SYyNWTCaQUdCDCmHElE2i4zETao4bnhT/Mz9uI Ae6u1+p1vYWbN/gR2ii4ZJK8ld84Cx9OscBXtdxAUJdecTx1n8JVtsa2TJFsGXwu XzcMCPGUfE9X9yLHPW42XbtNTstk5tvQf61YrEtpcy8rmwg+41sjJfqGxNKOa78/ M/ntjX8ncgDbHaeDhI6MFywhpiuSVIDg5F/J1kPyJTdHWiDqx/EIba+4OoxPHNR5 jjfUV8GZhHnz7EEtH91o6oG5QEqZ3DuhLt+aqKpG5XST95IgSHBKZn3BjkYQ2uBL gd+FvvsBge11OgUIld6UQWFafQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLTs9Zod GjP7m8qjyCqMdzTH5mMzMB8GA1UdIwQYMBaAFJMr9jkxw0fna8kInUG+JPY3DyWC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODc5Qy9FMUQyMDI5MjA3 MzQxMUVEQjA0RDM3MkRDNEY5QUUwMi9reXYyT1RIRFItZHJ5UWlkUWI0azlqY1BK WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t5djJPVEhEUi1kcnlRaWRRYjRrOWpjUEpZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODc5Qy9FMUQyMDI5MjA3MzQxMUVEQjA0RDM3MkRDNEY5QUUwMi9reXYyT1RIRFIt ZHJ5UWlkUWI0azlqY1BKWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJsJfHVVnAaV2dLwdv5AsmRsEDZY+XcznAyO9Lr6ZztdKoHt5zslpe 5vGApqxfpqfvXBjF/8q1aBZjz0DyYFcHssvyB+ctB2ERhBmh1k7syXO3BzOtb0+x qWCyvhI9aeWjjk25zwrF84dSz3evXux8ReVIx/q3121NnRZMFcpaj1rXVANG40IZ 1QHSxZFjeJj+Vcl5b2UcqIIunbWJc2lAf4qmphzGxU8vcGrcL9WvQ7fI9Xp7yMjv YePuAsSzKF5EqVpC1xtSkdt7c82SmcryWA+36q3/8Pzycx7Y+EBMp7jdzY56tM0o s3h5VQ+A1KmPIK1a6FHFjh7j5+8W6it/ -----END CERTIFICATE-----Generated at Thu May 15 19:18:52 2025 by rpki-client