$ rpki-client -vvf rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft File: KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft (raw, json) Hash identifier: HyG8+e0BU5lIbArmKN113wf2YWS3SFcFy2SdkdyxiM4= Subject key identifier: 26:7A:46:91:02:57:15:50:1A:9A:51:55:1D:76:CD:9B:B7:5D:4B:BE Authority key identifier: 28:E6:70:C2:E3:70:12:F0:5C:63:BB:56:6E:20:3C:51:DC:45:E2:B2 Certificate issuer: /CN=A91E868C/serialNumber=28E670C2E37012F05C63BB566E203C51DC45E2B2 Certificate serial: 0E95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft Manifest number: 0E4A Signing time: Wed 14 May 2025 17:57:06 +0000 Manifest this update: Wed 14 May 2025 17:57:06 +0000 Manifest next update: Wed 21 May 2025 17:57:06 +0000 Files and hashes: 1: KOZwwuNwEvBcY7tWbiA8UdxF4rI.crl (hash: obxLONFVcjHIuOwAox3x5/dZ7zgWitn11uCAkDV8q+4=) 2: 433917A83D8211EEA0E4DD46C4F9AE02.roa (hash: q8VjbfesBfjBXJ1O+TtlGTvZbuy2Q6Gq6lc9iUM1cKc=) 3: 5915642864AB11EEBFD54F2EC4F9AE02.roa (hash: L+aUrfi/IHEm4FCCzrEf6AdJOcO/5KYjXAI+VHu0xCQ=) 4: 40BA3F5C3D8211EEA0E4DD46C4F9AE02.roa (hash: mROz4ndcci/lFowjKQt8EppikBLu2fjIlvGiFhvH3EY=) 5: 41A09C683D8211EEA0E4DD46C4F9AE02.roa (hash: LliQbQ1JrB45v11EWXMUYtz6YL9U5wdtSwrWMJkpnsM=) 6: DED77BB2FA2F11EF98728875C4F9AE02.roa (hash: mlWu4QI6RV3Fazg24ou9fVsCNac8uNLMWZTkxYffaU4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.crl rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 17:57:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3733 (0xe95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E868C, serialNumber=28E670C2E37012F05C63BB566E203C51DC45E2B2 Validity Not Before: May 14 17:57:06 2025 GMT Not After : May 21 17:57:06 2025 GMT Subject: CN=6824d972-1d76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:ff:e4:33:97:c3:8d:bb:f3:34:a8:67:41:8f: b1:80:ea:fa:a4:f8:fd:bf:1d:de:e4:8f:a2:64:45: ae:45:26:3b:8b:11:ed:df:ac:88:3d:ed:fe:ea:80: 34:29:69:7b:3b:41:22:55:28:c3:0b:6a:62:0a:eb: f5:08:63:c7:b0:bb:cf:ef:fa:07:70:0a:ed:75:4e: 4e:5a:11:28:91:51:37:a1:d0:3e:87:2c:c5:9b:60: de:ec:ed:2a:4d:b4:d8:b8:e5:5e:1d:e8:3e:2c:a9: 2b:81:ed:32:c5:1b:28:03:35:ec:c3:34:6e:b0:6d: de:17:4b:d2:9d:4a:72:e1:07:a3:32:ff:3f:0f:3d: e4:e5:2f:da:a8:fb:ac:df:a9:4d:d7:ca:2f:84:3e: 11:dd:ec:ec:cd:e0:0a:77:42:25:b7:ca:0c:07:bc: ab:d5:df:2e:ac:d5:68:f3:6c:f8:87:00:a5:fa:ad: 73:5f:2a:1c:10:65:d8:8d:bf:2c:d0:8e:cd:33:19: 62:0b:fb:88:75:90:05:60:64:b9:81:1b:ae:11:c0: 4e:df:81:ae:ce:be:ba:99:aa:91:23:65:cd:aa:7d: 04:c8:95:b6:bd:eb:dc:1b:12:b7:c7:ae:bb:3e:a7: 17:b9:ab:ec:3a:3b:3c:5a:b4:2a:d1:cd:89:57:3d: 61:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:7A:46:91:02:57:15:50:1A:9A:51:55:1D:76:CD:9B:B7:5D:4B:BE X509v3 Authority Key Identifier: keyid:28:E6:70:C2:E3:70:12:F0:5C:63:BB:56:6E:20:3C:51:DC:45:E2:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:5b:08:e2:bb:90:41:6b:4e:f4:e3:9d:e1:d7:e8:a4:73:e6: 27:3c:d7:00:9a:b3:61:c4:19:e3:72:37:1d:4d:9e:0a:84:be: 48:3f:b1:0a:eb:60:4e:67:56:e9:7e:1a:fb:5b:43:fb:fc:c2: ae:db:16:ca:6b:c1:33:63:70:0f:5f:53:e4:ea:7e:f0:f6:45: ae:ab:a0:65:a7:bb:9a:32:ef:61:77:d9:bb:6f:f6:2e:79:e1: b0:51:b5:10:33:b2:80:24:37:2c:d0:94:09:0e:18:ea:26:9f: 1a:cc:8a:fc:f8:17:70:76:5f:84:24:21:4d:40:3b:d1:b6:88: dc:e3:86:0d:ee:85:10:88:04:b2:7c:da:c3:cd:7c:ba:16:48: c4:10:b9:b0:41:30:85:8d:99:1a:55:2f:8b:e1:b3:0c:85:39: a6:d6:67:f0:aa:d0:b8:eb:e3:72:22:9e:43:e5:67:ea:73:09: ae:29:f9:24:e7:4c:e9:5b:90:54:83:20:bb:33:56:ee:7e:6d: b7:f9:18:19:8b:22:a5:dc:c4:b3:95:4e:cf:92:35:52:05:25: f5:3b:b2:d9:9c:32:6f:72:a8:fb:2e:68:8f:4c:24:21:6a:95: 8d:ad:87:1c:f9:6d:d8:be:7f:0e:75:67:73:2a:c7:df:d3:d5: 20:25:59:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDpUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg2OEMxMTAvBgNVBAUTKDI4RTY3MEMyRTM3MDEyRjA1QzYzQkI1NjZFMjAzQzUx REM0NUUyQjIwHhcNMjUwNTE0MTc1NzA2WhcNMjUwNTIxMTc1NzA2WjAYMRYwFAYD VQQDEw02ODI0ZDk3Mi0xZDc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzf/kM5fDjbvzNKhnQY+xgOr6pPj9vx3e5I+iZEWuRSY7ixHt36yIPe3+6oA0 KWl7O0EiVSjDC2piCuv1CGPHsLvP7/oHcArtdU5OWhEokVE3odA+hyzFm2De7O0q TbTYuOVeHeg+LKkrge0yxRsoAzXswzRusG3eF0vSnUpy4QejMv8/Dz3k5S/aqPus 36lN18ovhD4R3ezszeAKd0Ilt8oMB7yr1d8urNVo82z4hwCl+q1zXyocEGXYjb8s 0I7NMxliC/uIdZAFYGS5gRuuEcBO34Guzr66maqRI2XNqn0EyJW2vevcGxK3x667 PqcXuavsOjs8WrQq0c2JVz1hRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCZ6RpEC VxVQGppRVR12zZu3XUu+MB8GA1UdIwQYMBaAFCjmcMLjcBLwXGO7Vm4gPFHcReKy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODY4Qy8zRkI5MzM2OEE5 REIxMUU5ODQyODUyODZDNEY5QUUwMi9LT1p3d3VOd0V2QmNZN3RXYmlBOFVkeEY0 ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tPWnd3dU53RXZCY1k3dFdiaUE4VWR4RjRySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODY4Qy8zRkI5MzM2OEE5REIxMUU5ODQyODUyODZDNEY5QUUwMi9LT1p3d3VOd0V2 QmNZN3RXYmlBOFVkeEY0ckkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmWwjiu5BBa070453h1+ikc+YnPNcAmrNhxBnjcjcdTZ4KhL5IP7EK 62BOZ1bpfhr7W0P7/MKu2xbKa8EzY3APX1Pk6n7w9kWuq6Blp7uaMu9hd9m7b/Yu eeGwUbUQM7KAJDcs0JQJDhjqJp8azIr8+Bdwdl+EJCFNQDvRtojc44YN7oUQiASy fNrDzXy6FkjEELmwQTCFjZkaVS+L4bMMhTmm1mfwqtC46+NyIp5D5WfqcwmuKfkk 50zpW5BUgyC7M1bufm23+RgZiyKl3MSzlU7PkjVSBSX1O7LZnDJvcqj7LmiPTCQh apWNrYcc+W3Yvn8OdWdzKsff09UgJVm/ -----END CERTIFICATE-----Generated at Fri May 16 17:10:18 2025 by rpki-client