$ rpki-client -vvf rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.mft File: KtUm39nH6QyjDDH8pOGCUBtwB1M.mft (raw, json) Hash identifier: 8BbbN3j7bn9w1DGh0sWKN1UQbXhweYz+/k4ixy2q8nc= Subject key identifier: 53:C9:97:91:CF:BF:12:F6:F7:7B:C8:D8:E1:41:D3:39:2E:01:6A:F1 Authority key identifier: 2A:D5:26:DF:D9:C7:E9:0C:A3:0C:31:FC:A4:E1:82:50:1B:70:07:53 Certificate issuer: /CN=A919AAA0/serialNumber=2AD526DFD9C7E90CA30C31FCA4E182501B700753 Certificate serial: 0651 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KtUm39nH6QyjDDH8pOGCUBtwB1M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.mft Manifest number: 0635 Signing time: Sat 10 May 2025 22:19:57 +0000 Manifest this update: Sat 10 May 2025 22:19:57 +0000 Manifest next update: Sat 17 May 2025 22:19:57 +0000 Files and hashes: 1: KtUm39nH6QyjDDH8pOGCUBtwB1M.crl (hash: fYJJYBVa3TSMwtioo1vlqyHTE69/7UuVmeI96L6XCI0=) 2: 4092F17AE64811EFA0F37560C4F9AE02.roa (hash: MuDOs+UNP3qWV7q9sz+FoRMoZ33SC0+8rektpH4Ht5s=) 3: 698130FEE60411EFA2DC3057C4F9AE02.roa (hash: Vt5tMPro7Yd+AkFJe3Cnn+BsDTWCkJWM0XoIlmggi2I=) 4: 5C75E87C95F511EBA6D31767C4F9AE02.roa (hash: lfQZb+Cu5k1P9aIBAVZr1VIcUuyX72bxEGl/rtrTc0A=) 5: 176E1D3E961411EB80BD4E1DC4F9AE02.roa (hash: guMsQztHXJe0nHYo+3sRzxnbrPq9rNiGro7Edp8V/SQ=) 6: 6CFB0FFCF65711EB8988A924C4F9AE02.roa (hash: 0e9NIIe4Eh6DQ3FvIOOg4nTVMnHbYlzq1N/yU/4pzQY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.crl rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KtUm39nH6QyjDDH8pOGCUBtwB1M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 22:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1617 (0x651) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919AAA0, serialNumber=2AD526DFD9C7E90CA30C31FCA4E182501B700753 Validity Not Before: May 10 22:19:57 2025 GMT Not After : May 17 22:19:57 2025 GMT Subject: CN=681fd10d-76b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:0a:83:d0:cd:14:25:31:74:ed:f9:b3:79:20: e0:85:6c:89:33:6c:e9:e7:91:36:a8:61:37:14:d8: 86:9e:d1:ea:1d:29:74:55:67:0b:6c:7f:0d:44:22: e7:25:ae:b6:a5:8a:6e:c1:c7:11:a1:a5:11:1a:60: 07:ad:b3:09:75:c7:00:ee:c4:47:f5:8d:93:86:e7: ef:8c:81:ea:55:b0:f9:f1:42:e0:38:ec:39:b4:b7: 56:c4:1e:87:ac:bf:6e:fd:26:22:dd:8b:ba:80:b8: e5:aa:88:5c:78:d0:bf:11:ec:82:83:c9:ae:05:40: 0d:a1:34:d4:35:65:7e:7e:77:0f:99:c9:a4:15:2f: 76:53:fd:f6:25:50:0f:69:ce:60:6e:cd:79:74:14: 68:45:0f:b2:b9:27:79:78:cc:e3:31:6d:ed:e7:3b: 93:00:45:a7:76:5a:5e:19:a2:63:83:e2:87:f7:65: 4e:27:4e:93:df:7d:52:4b:a9:99:b2:0f:be:06:62: 29:5d:e1:0d:4e:5d:5a:2f:96:fe:9a:9a:47:83:80: 06:fa:6e:41:2a:89:2e:bf:31:03:5d:e9:1c:fa:f9: 3f:88:48:ad:a2:83:66:47:31:fb:43:f9:af:5c:84: b6:74:8a:ae:48:94:6e:59:73:a9:f2:a0:2a:86:cc: 69:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:C9:97:91:CF:BF:12:F6:F7:7B:C8:D8:E1:41:D3:39:2E:01:6A:F1 X509v3 Authority Key Identifier: keyid:2A:D5:26:DF:D9:C7:E9:0C:A3:0C:31:FC:A4:E1:82:50:1B:70:07:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KtUm39nH6QyjDDH8pOGCUBtwB1M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:6a:ff:b7:91:5e:e8:78:ea:5a:3c:f1:80:02:0a:85:13:39: 16:07:8b:16:34:9d:c2:1a:25:85:91:ae:8a:e5:35:7d:e6:e9: d5:b2:80:88:a5:1f:aa:70:de:a0:bb:23:2e:48:b3:8e:19:8f: e4:1b:07:f1:ae:c9:14:d4:84:6c:dc:8f:e7:39:a7:23:f8:b7: c8:ad:05:f2:60:70:55:a2:cf:3b:a0:d9:93:d1:a4:33:d8:d2: d6:3e:68:db:49:42:a0:68:13:47:e9:37:86:df:da:41:c4:f0: b3:44:a3:a4:b9:08:00:ed:31:ab:b2:d8:e1:c0:d9:cd:2a:75: d4:0b:5a:d4:c5:ac:80:cd:6b:cb:73:7f:b0:41:79:4b:26:52: 10:15:1d:af:c1:8a:aa:2e:d4:f0:92:70:6f:4a:c6:f1:4d:8a: f7:c8:c9:ff:8b:fb:87:14:bf:b8:2d:b1:20:7f:a1:87:af:b7: 7b:d0:be:99:07:26:15:0f:bf:74:60:15:3e:38:78:dc:78:ba: 24:7f:c8:ac:cf:80:d0:e7:9a:a8:f7:94:ef:38:a4:bd:c0:6b: 7c:1d:0d:90:33:6d:47:47:fc:cb:d4:60:a9:cd:0a:84:42:1a: 17:0f:94:9a:77:a9:e5:60:0b:8e:32:06:12:80:09:74:6a:4e: b5:1e:ee:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUFBQTAxMTAvBgNVBAUTKDJBRDUyNkRGRDlDN0U5MENBMzBDMzFGQ0E0RTE4MjUw MUI3MDA3NTMwHhcNMjUwNTEwMjIxOTU3WhcNMjUwNTE3MjIxOTU3WjAYMRYwFAYD VQQDEw02ODFmZDEwZC03NmI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsQqD0M0UJTF07fmzeSDghWyJM2zp55E2qGE3FNiGntHqHSl0VWcLbH8NRCLn Ja62pYpuwccRoaURGmAHrbMJdccA7sRH9Y2ThufvjIHqVbD58ULgOOw5tLdWxB6H rL9u/SYi3Yu6gLjlqohceNC/EeyCg8muBUANoTTUNWV+fncPmcmkFS92U/32JVAP ac5gbs15dBRoRQ+yuSd5eMzjMW3t5zuTAEWndlpeGaJjg+KH92VOJ06T331SS6mZ sg++BmIpXeENTl1aL5b+mppHg4AG+m5BKokuvzEDXekc+vk/iEitooNmRzH7Q/mv XIS2dIquSJRuWXOp8qAqhsxp4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFPJl5HP vxL293vI2OFB0zkuAWrxMB8GA1UdIwQYMBaAFCrVJt/Zx+kMowwx/KThglAbcAdT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QUFBMC8yMjgzOTZCQTk1 RjQxMUVCQjMxQjhGNjZDNEY5QUUwMi9LdFVtMzluSDZReWpEREg4cE9HQ1VCdHdC MU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t0VW0zOW5INlF5akRESDhwT0dDVUJ0d0IxTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QUFBMC8yMjgzOTZCQTk1RjQxMUVCQjMxQjhGNjZDNEY5QUUwMi9LdFVtMzluSDZR eWpEREg4cE9HQ1VCdHdCMU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7av+3kV7oeOpaPPGAAgqFEzkWB4sWNJ3CGiWFka6K5TV95unVsoCI pR+qcN6guyMuSLOOGY/kGwfxrskU1IRs3I/nOacj+LfIrQXyYHBVos87oNmT0aQz 2NLWPmjbSUKgaBNH6TeG39pBxPCzRKOkuQgA7TGrstjhwNnNKnXUC1rUxayAzWvL c3+wQXlLJlIQFR2vwYqqLtTwknBvSsbxTYr3yMn/i/uHFL+4LbEgf6GHr7d70L6Z ByYVD790YBU+OHjceLokf8isz4DQ55qo95TvOKS9wGt8HQ2QM21HR/zL1GCpzQqE QhoXD5Sad6nlYAuOMgYSgAl0ak61Hu6M -----END CERTIFICATE-----Generated at Mon May 12 04:40:11 2025 by rpki-client