$ rpki-client -vvf rpki.apnic.net/member_repository/A91233D4/25A061806B1F11EA8130A65FC4F9AE02/KpPhRZdmUGGV3_yZtSM2K-WsDWs.mft File: KpPhRZdmUGGV3_yZtSM2K-WsDWs.mft (raw, json) Hash identifier: 2Day5zUT7V79YP9Eu2pnjr2r43lAJ11Cn3rGy0qxOLU= Subject key identifier: 9D:D7:8F:1A:04:04:01:72:C4:21:F3:05:B0:96:9C:BE:67:AA:2F:DC Authority key identifier: 2A:93:E1:45:97:66:50:61:95:DF:FC:99:B5:23:36:2B:E5:AC:0D:6B Certificate issuer: /CN=A91233D4/serialNumber=2A93E1459766506195DFFC99B523362BE5AC0D6B Certificate serial: 0A45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KpPhRZdmUGGV3_yZtSM2K-WsDWs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91233D4/25A061806B1F11EA8130A65FC4F9AE02/KpPhRZdmUGGV3_yZtSM2K-WsDWs.mft Manifest number: 0A33 Signing time: Thu 24 Apr 2025 19:40:47 +0000 Manifest this update: Thu 24 Apr 2025 19:40:46 +0000 Manifest next update: Thu 01 May 2025 19:40:46 +0000 Files and hashes: 1: KpPhRZdmUGGV3_yZtSM2K-WsDWs.crl (hash: IZU89kj4ZxcBvSWVOuNxkZdxEsW2y40wtnoqYDpgMRI=) 2: A08B108A78D411EAA8C57711C4F9AE02.roa (hash: 3OpBGXXCJTXlZTJu94VcICtCah5ixfAdvhW279UITTY=) 3: A1D479B878D411EAA8C57711C4F9AE02.roa (hash: OYgq0o9dgNrqTYjdakq5qNzK/yt9wMabsIU2jLZbz/U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91233D4/25A061806B1F11EA8130A65FC4F9AE02/KpPhRZdmUGGV3_yZtSM2K-WsDWs.crl rsync://rpki.apnic.net/member_repository/A91233D4/25A061806B1F11EA8130A65FC4F9AE02/KpPhRZdmUGGV3_yZtSM2K-WsDWs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KpPhRZdmUGGV3_yZtSM2K-WsDWs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:40:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2629 (0xa45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91233D4, serialNumber=2A93E1459766506195DFFC99B523362BE5AC0D6B Validity Not Before: Apr 24 19:40:46 2025 GMT Not After : May 1 19:40:46 2025 GMT Subject: CN=680a93be-514e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:30:02:7d:1c:ef:0a:a0:5a:da:fc:8c:a2:f9: 77:d3:ad:a0:59:24:c3:9e:f7:3f:5c:d3:91:c6:73: 86:14:e5:be:c8:fb:45:95:c8:78:2e:8f:ff:8b:d0: 2c:8f:fb:1b:52:85:88:af:86:1c:fd:64:ad:c4:23: eb:77:57:39:d5:b2:a9:75:8f:f2:1f:8a:22:b8:50: ec:55:a3:e7:94:10:cf:8a:94:29:6d:d3:1d:e8:e3: b1:2e:ec:3f:5e:23:dc:3f:dd:37:1d:e6:b3:2a:26: da:62:a0:14:4d:05:2b:35:50:9d:60:7f:33:90:77: bd:9d:1a:f4:4a:90:be:ac:7f:0d:d9:1f:26:db:04: 1a:cb:c2:a4:f4:e8:9d:8e:59:c7:c3:96:41:86:60: af:f7:ff:26:fc:74:58:7d:2e:de:85:e3:5b:96:bb: 27:83:a9:05:a5:e8:8a:d0:0f:e9:2a:48:7b:a5:7a: d3:24:e0:42:a6:19:96:f7:dc:0e:f2:49:e4:14:39: 2b:d5:de:54:c6:e1:9a:7c:c7:b5:46:ec:58:52:1f: 20:5c:f5:d4:31:c3:72:3c:82:dc:9e:f9:b9:b6:41: dc:23:4e:73:a9:40:13:ff:6d:24:2d:1e:72:d3:43: 88:4e:78:68:30:5b:a0:21:70:06:b1:6d:67:9f:ff: 8c:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:D7:8F:1A:04:04:01:72:C4:21:F3:05:B0:96:9C:BE:67:AA:2F:DC X509v3 Authority Key Identifier: keyid:2A:93:E1:45:97:66:50:61:95:DF:FC:99:B5:23:36:2B:E5:AC:0D:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91233D4/25A061806B1F11EA8130A65FC4F9AE02/KpPhRZdmUGGV3_yZtSM2K-WsDWs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KpPhRZdmUGGV3_yZtSM2K-WsDWs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91233D4/25A061806B1F11EA8130A65FC4F9AE02/KpPhRZdmUGGV3_yZtSM2K-WsDWs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:27:b6:e6:c4:ea:c4:84:3b:75:a6:fa:af:f6:4b:57:91:4e: 56:6f:58:ca:f0:82:b4:21:45:06:b8:46:87:35:c8:e3:a4:7b: cd:de:d3:17:91:c6:82:7c:e1:f9:2c:97:f5:dc:1e:71:7d:85: a8:31:f7:f8:14:37:d0:d0:ed:ff:1c:9d:c7:e4:80:7f:e7:9e: 5b:19:0a:7c:5d:ee:fa:8b:ca:10:86:d4:5d:8f:8a:47:5c:ff: b0:20:17:8f:48:0f:e8:a4:ee:a9:bc:62:88:1f:9e:2f:f5:1b: fc:38:c8:fd:50:d2:24:c8:80:0f:6a:d1:e0:e5:8e:0f:99:9d: 71:17:1f:69:5e:77:66:34:2e:20:b3:8f:52:78:bf:28:5a:28: ef:f7:a2:c6:f8:76:52:9d:40:b2:07:91:75:52:7f:b2:f4:89: 2f:cd:fe:25:60:15:31:d1:d4:48:c0:d0:f1:14:a0:fd:30:74: d7:a7:47:de:04:5e:b8:c0:6e:c8:25:c2:5c:8c:6a:48:b3:24: 11:2e:ee:7f:3d:7c:40:66:0f:dc:32:36:0e:30:06:de:89:07: 43:fc:79:87:ad:a9:22:5c:e0:0a:e9:55:ad:b2:60:77:7d:44: 6e:48:7d:36:43:fb:4a:c2:9c:5d:a5:18:bb:39:c1:86:3f:4e: cb:35:ce:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCkUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjMzRDQxMTAvBgNVBAUTKDJBOTNFMTQ1OTc2NjUwNjE5NURGRkM5OUI1MjMzNjJC RTVBQzBENkIwHhcNMjUwNDI0MTk0MDQ2WhcNMjUwNTAxMTk0MDQ2WjAYMRYwFAYD VQQDEw02ODBhOTNiZS01MTRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3DACfRzvCqBa2vyMovl3062gWSTDnvc/XNORxnOGFOW+yPtFlch4Lo//i9As j/sbUoWIr4Yc/WStxCPrd1c51bKpdY/yH4oiuFDsVaPnlBDPipQpbdMd6OOxLuw/ XiPcP903HeazKibaYqAUTQUrNVCdYH8zkHe9nRr0SpC+rH8N2R8m2wQay8Kk9Oid jlnHw5ZBhmCv9/8m/HRYfS7eheNblrsng6kFpeiK0A/pKkh7pXrTJOBCphmW99wO 8knkFDkr1d5UxuGafMe1RuxYUh8gXPXUMcNyPILcnvm5tkHcI05zqUAT/20kLR5y 00OITnhoMFugIXAGsW1nn/+M3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ3XjxoE BAFyxCHzBbCWnL5nqi/cMB8GA1UdIwQYMBaAFCqT4UWXZlBhld/8mbUjNivlrA1r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzNENC8yNUEwNjE4MDZC MUYxMUVBODEzMEE2NUZDNEY5QUUwMi9LcFBoUlpkbVVHR1YzX3ladFNNMkstV3NE V3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0twUGhSWmRtVUdHVjNfeVp0U00ySy1Xc0RXcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzNENC8yNUEwNjE4MDZCMUYxMUVBODEzMEE2NUZDNEY5QUUwMi9LcFBoUlpkbVVH R1YzX3ladFNNMkstV3NEV3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUJ7bmxOrEhDt1pvqv9ktXkU5Wb1jK8IK0IUUGuEaHNcjjpHvN3tMX kcaCfOH5LJf13B5xfYWoMff4FDfQ0O3/HJ3H5IB/555bGQp8Xe76i8oQhtRdj4pH XP+wIBePSA/opO6pvGKIH54v9Rv8OMj9UNIkyIAPatHg5Y4PmZ1xFx9pXndmNC4g s49SeL8oWijv96LG+HZSnUCyB5F1Un+y9Ikvzf4lYBUx0dRIwNDxFKD9MHTXp0fe BF64wG7IJcJcjGpIsyQRLu5/PXxAZg/cMjYOMAbeiQdD/HmHrakiXOAK6VWtsmB3 fURuSH02Q/tKwpxdpRi7OcGGP07LNc4o -----END CERTIFICATE-----Generated at Sat Apr 26 13:07:33 2025 by rpki-client