$ rpki-client -vvf rpki.apnic.net/member_repository/A911F536/9A86DBD0C99A11EFB4CEEF1EC4F9AE02/KumFgVoQ3W0EUj_IHY2v1ya-eBY.mft File: KumFgVoQ3W0EUj_IHY2v1ya-eBY.mft (raw, json) Hash identifier: 0H1gGF6wYzmLb1itY4eXvikQG9g8Mizl55WOvSPnOm0= Subject key identifier: 39:F1:77:5B:CF:58:7F:50:E8:E0:DA:2C:E3:FD:EA:8A:49:01:DB:E7 Authority key identifier: 2A:E9:85:81:5A:10:DD:6D:04:52:3F:C8:1D:8D:AF:D7:26:BE:78:16 Certificate issuer: /CN=A911F536/serialNumber=2AE985815A10DD6D04523FC81D8DAFD726BE7816 Certificate serial: 3C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KumFgVoQ3W0EUj_IHY2v1ya-eBY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F536/9A86DBD0C99A11EFB4CEEF1EC4F9AE02/KumFgVoQ3W0EUj_IHY2v1ya-eBY.mft Manifest number: 3B Signing time: Fri 25 Apr 2025 06:29:17 +0000 Manifest this update: Fri 25 Apr 2025 06:29:16 +0000 Manifest next update: Fri 02 May 2025 06:29:16 +0000 Files and hashes: 1: KumFgVoQ3W0EUj_IHY2v1ya-eBY.crl (hash: kN+q+87pcCTpZ5z4QpjOyphEaqcvITAeDVC5TYwhbV4=) 2: F51AC6A6C99A11EFB5D4B020C4F9AE02.roa (hash: fGNbEo2HZuTyhLS2iozgIgHjOEWzYtgGTZax02Zo+d8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F536/9A86DBD0C99A11EFB4CEEF1EC4F9AE02/KumFgVoQ3W0EUj_IHY2v1ya-eBY.crl rsync://rpki.apnic.net/member_repository/A911F536/9A86DBD0C99A11EFB4CEEF1EC4F9AE02/KumFgVoQ3W0EUj_IHY2v1ya-eBY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KumFgVoQ3W0EUj_IHY2v1ya-eBY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:29:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60 (0x3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F536, serialNumber=2AE985815A10DD6D04523FC81D8DAFD726BE7816 Validity Not Before: Apr 25 06:29:16 2025 GMT Not After : May 2 06:29:16 2025 GMT Subject: CN=680b2bbc-8589 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:8b:f2:0c:89:11:0c:8d:45:3f:da:41:52:df: c2:8e:8f:17:11:6b:67:88:e5:4c:b1:33:e2:64:8c: de:3b:0d:f7:3f:4d:56:9a:ed:5c:58:95:87:90:58: ee:c5:49:36:8e:d8:80:64:fb:9e:53:01:5f:7f:db: ae:9b:13:bb:06:51:5b:c4:2a:11:7a:92:bf:cc:52: 4a:44:d3:40:e2:36:e4:af:49:9e:c5:6d:8a:14:7c: 69:1c:6a:ab:9b:ca:63:94:ab:4a:eb:0c:d5:2d:e1: cf:86:bc:9e:02:94:e4:fc:c9:f6:4e:88:72:61:78: 2a:cf:7b:02:81:b2:e8:25:2d:5b:8c:d2:98:57:86: d8:37:2f:e5:3d:b6:83:8b:ea:08:31:2d:be:f2:36: 34:47:51:eb:b1:a9:3b:2b:27:19:c1:a0:97:7b:5f: 20:e2:b3:0f:08:bc:9d:d5:b9:1b:60:2e:3c:51:eb: 21:e7:d8:a9:db:79:87:36:33:2d:d5:de:4e:d1:d0: e8:36:4d:83:da:29:3a:21:4e:4a:47:9c:84:eb:77: 9e:51:01:8c:19:cc:18:ad:3c:d7:ec:19:85:0c:05: 08:74:ac:45:be:06:cd:9d:25:45:69:d3:cb:0a:14: 25:53:fa:5d:77:92:02:cc:d6:14:c9:18:79:0c:65: ca:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:F1:77:5B:CF:58:7F:50:E8:E0:DA:2C:E3:FD:EA:8A:49:01:DB:E7 X509v3 Authority Key Identifier: keyid:2A:E9:85:81:5A:10:DD:6D:04:52:3F:C8:1D:8D:AF:D7:26:BE:78:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F536/9A86DBD0C99A11EFB4CEEF1EC4F9AE02/KumFgVoQ3W0EUj_IHY2v1ya-eBY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KumFgVoQ3W0EUj_IHY2v1ya-eBY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F536/9A86DBD0C99A11EFB4CEEF1EC4F9AE02/KumFgVoQ3W0EUj_IHY2v1ya-eBY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:f4:b3:07:02:5f:34:e9:c5:f6:21:21:44:9d:69:00:3b:36: e7:02:3b:a7:51:77:8a:80:97:15:3d:3f:1b:e3:22:7d:7c:b0: 03:b8:22:55:66:a1:d6:b9:b9:ff:07:46:50:31:5a:a2:69:dd: b3:f9:7a:7a:65:7f:95:c2:58:35:ad:43:c8:10:e4:9f:c7:f2: 1c:55:00:79:f9:32:c0:a5:79:95:3f:0b:ae:a1:17:48:02:7b: 89:3d:a4:6b:1a:89:9a:97:31:33:17:4c:5b:ee:68:25:cc:23: 3c:03:93:cf:96:7f:72:29:d8:b5:73:3b:75:b0:e8:78:5b:54: ef:92:f8:ac:07:5e:fb:e7:42:c0:7d:4c:31:87:fc:09:9c:7a: 20:0a:5f:91:3a:c3:94:c1:29:c3:dc:af:66:7e:4d:f1:14:57: 4b:ef:cb:37:4b:f3:5f:b7:90:05:83:55:ca:81:69:de:eb:5c: c4:41:ec:59:3b:ce:05:e8:be:ae:2b:30:7b:eb:b1:1c:ba:22: d2:ed:e4:81:e9:b8:e2:ad:f1:e4:a3:ae:40:9d:06:c1:93:3d: 25:ef:e4:6c:34:52:0a:67:d2:04:47:fb:b2:87:fa:82:7f:47: a7:1a:5e:bd:18:eb:2d:27:e1:65:c1:56:03:e0:0f:bf:17:d7: 2a:f6:59:54 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RjUzNjExMC8GA1UEBRMoMkFFOTg1ODE1QTEwREQ2RDA0NTIzRkM4MUQ4REFGRDcy NkJFNzgxNjAeFw0yNTA0MjUwNjI5MTZaFw0yNTA1MDIwNjI5MTZaMBgxFjAUBgNV BAMTDTY4MGIyYmJjLTg1ODkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD0i/IMiREMjUU/2kFS38KOjxcRa2eI5UyxM+JkjN47Dfc/TVaa7VxYlYeQWO7F STaO2IBk+55TAV9/266bE7sGUVvEKhF6kr/MUkpE00DiNuSvSZ7FbYoUfGkcaqub ymOUq0rrDNUt4c+GvJ4ClOT8yfZOiHJheCrPewKBsuglLVuM0phXhtg3L+U9toOL 6ggxLb7yNjRHUeuxqTsrJxnBoJd7XyDisw8IvJ3VuRtgLjxR6yHn2KnbeYc2My3V 3k7R0Og2TYPaKTohTkpHnITrd55RAYwZzBitPNfsGYUMBQh0rEW+Bs2dJUVp08sK FCVT+l13kgLM1hTJGHkMZcr/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUOfF3W89Y f1Do4Nos4/3qikkB2+cwHwYDVR0jBBgwFoAUKumFgVoQ3W0EUj/IHY2v1ya+eBYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFGNTM2LzlBODZEQkQwQzk5 QTExRUZCNENFRUYxRUM0RjlBRTAyL0t1bUZnVm9RM1cwRVVqX0lIWTJ2MXlhLWVC WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvS3VtRmdWb1EzVzBFVWpfSUhZMnYxeWEtZUJZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFG NTM2LzlBODZEQkQwQzk5QTExRUZCNENFRUYxRUM0RjlBRTAyL0t1bUZnVm9RM1cw RVVqX0lIWTJ2MXlhLWVCWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJz0swcCXzTpxfYhIUSdaQA7NucCO6dRd4qAlxU9PxvjIn18sAO4IlVm oda5uf8HRlAxWqJp3bP5enplf5XCWDWtQ8gQ5J/H8hxVAHn5MsCleZU/C66hF0gC e4k9pGsaiZqXMTMXTFvuaCXMIzwDk8+Wf3Ip2LVzO3Ww6HhbVO+S+KwHXvvnQsB9 TDGH/AmceiAKX5E6w5TBKcPcr2Z+TfEUV0vvyzdL81+3kAWDVcqBad7rXMRB7Fk7 zgXovq4rMHvrsRy6ItLt5IHpuOKt8eSjrkCdBsGTPSXv5Gw0Ugpn0gRH+7KH+oJ/ R6caXr0Y6y0n4WXBVgPgD78X1yr2WVQ= -----END CERTIFICATE-----Generated at Sat Apr 26 13:49:31 2025 by rpki-client