$ rpki-client -vvf rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft File: KtPYi16OCwUUGjvJL4XkJzoFYqE.mft (raw, json) Hash identifier: A4FGNSF7WRlDuHDlX4H8Po3JIzN61zMiqsK3RRW36iU= Subject key identifier: 13:9D:A8:B8:D9:3C:E8:03:7A:59:1D:D2:72:BE:2A:92:AF:F7:75:89 Authority key identifier: 2A:D3:D8:8B:5E:8E:0B:05:14:1A:3B:C9:2F:85:E4:27:3A:05:62:A1 Certificate issuer: /CN=A9132F27/serialNumber=2AD3D88B5E8E0B05141A3BC92F85E4273A0562A1 Certificate serial: ED Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft Manifest number: EB Signing time: Fri 25 Apr 2025 04:25:34 +0000 Manifest this update: Fri 25 Apr 2025 04:25:33 +0000 Manifest next update: Fri 02 May 2025 04:25:33 +0000 Files and hashes: 1: KtPYi16OCwUUGjvJL4XkJzoFYqE.crl (hash: Vv9yVasHrJksZvGoFE7C0yKoeKCDlTKgZrTlHxGknFE=) 2: 1D74CCE2BB6D11EEB670B00CC4F9AE02.roa (hash: c7azquHGHrdqjZWXwOVhESd2h6ZSF7h+7L/HwU2cJDw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.crl rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:25:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 237 (0xed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132F27, serialNumber=2AD3D88B5E8E0B05141A3BC92F85E4273A0562A1 Validity Not Before: Apr 25 04:25:33 2025 GMT Not After : May 2 04:25:33 2025 GMT Subject: CN=680b0ebd-c9eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:ac:61:31:50:2d:bb:c5:11:08:9f:fd:fc:0d: 29:67:f7:ec:a7:3d:a7:84:04:a2:e4:e5:39:ad:41: 0f:91:5f:83:5d:d6:5c:38:97:f7:24:a9:d6:70:1f: 12:23:c7:0a:25:3a:18:c0:17:dd:48:2d:d0:90:79: 0b:6a:94:c9:bb:76:8a:cb:ba:2d:67:81:8c:63:fe: e8:90:e1:68:ba:f6:9d:0c:7d:eb:ab:bd:f7:bb:a4: 1e:d9:56:58:74:90:3e:2e:df:bf:8b:c6:1d:b5:da: da:9b:c5:f5:55:88:aa:91:59:f4:25:8d:f6:17:b7: d1:55:5b:20:f6:d7:8d:78:8a:64:67:c0:02:b5:5d: 10:ef:54:a2:32:7f:e6:02:54:51:da:84:2d:20:09: 1c:41:97:b4:95:f9:70:e0:81:a0:e9:56:c1:5e:f4: 7c:c7:2f:44:e0:83:e0:dc:e3:94:76:d1:62:75:21: a8:d6:2f:3a:f5:e9:aa:93:9b:87:7c:c2:c3:a8:2b: eb:80:38:ba:ee:95:b4:63:4f:b1:54:4d:cd:e0:4c: c5:ac:0f:44:ae:32:14:22:ac:95:dc:7b:9d:12:ae: c0:d1:a6:6d:bf:b5:b7:24:d5:c0:69:85:a4:92:c9: 70:ea:47:19:bd:37:2b:2e:23:02:8f:55:a2:62:51: 22:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:9D:A8:B8:D9:3C:E8:03:7A:59:1D:D2:72:BE:2A:92:AF:F7:75:89 X509v3 Authority Key Identifier: keyid:2A:D3:D8:8B:5E:8E:0B:05:14:1A:3B:C9:2F:85:E4:27:3A:05:62:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:1f:9c:c2:0c:ee:0d:44:c3:91:19:45:5a:d9:ec:77:27:04: fc:9f:63:2c:92:ef:b5:32:64:2c:17:18:35:6d:38:f7:23:be: 1a:b4:53:95:8e:8e:bf:61:1e:cb:e8:71:40:bf:d8:f6:79:4c: 04:bf:83:05:b7:39:18:0c:d0:4f:99:e2:a5:5b:09:42:73:da: 36:5b:c0:d5:7a:bc:19:f4:e2:2b:76:50:f0:b6:dc:f9:34:89: 68:d3:ab:5f:ec:a9:aa:d8:cb:b5:57:ef:c9:64:c4:62:bd:74: ff:e9:dd:07:ea:86:af:03:03:e8:5e:91:e1:68:65:df:ca:ed: 6f:d1:25:be:29:d7:27:d6:14:79:52:39:4d:f5:6c:2b:a4:4b: ac:6b:32:b7:52:95:42:63:e5:bb:da:0e:69:16:99:31:82:c2: 71:24:71:c5:0c:37:95:60:87:5f:56:8f:de:19:c7:31:6c:84: 1a:93:75:ca:3b:55:db:d1:47:61:77:c7:ce:68:3d:17:bf:59: 72:4c:7e:4e:5b:24:bd:4c:5d:33:28:87:b9:07:c6:dd:85:ee: 28:2e:cd:2d:d1:65:8f:f8:c8:e6:d8:5e:c4:44:20:a4:3d:7d: 4b:83:d8:45:5f:86:c4:ae:50:5f:34:bf:7e:7f:b1:24:75:a7: d7:37:f1:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJGMjcxMTAvBgNVBAUTKDJBRDNEODhCNUU4RTBCMDUxNDFBM0JDOTJGODVFNDI3 M0EwNTYyQTEwHhcNMjUwNDI1MDQyNTMzWhcNMjUwNTAyMDQyNTMzWjAYMRYwFAYD VQQDEw02ODBiMGViZC1jOWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApKxhMVAtu8URCJ/9/A0pZ/fspz2nhASi5OU5rUEPkV+DXdZcOJf3JKnWcB8S I8cKJToYwBfdSC3QkHkLapTJu3aKy7otZ4GMY/7okOFouvadDH3rq733u6Qe2VZY dJA+Lt+/i8Ydtdram8X1VYiqkVn0JY32F7fRVVsg9teNeIpkZ8ACtV0Q71SiMn/m AlRR2oQtIAkcQZe0lflw4IGg6VbBXvR8xy9E4IPg3OOUdtFidSGo1i869emqk5uH fMLDqCvrgDi67pW0Y0+xVE3N4EzFrA9ErjIUIqyV3HudEq7A0aZtv7W3JNXAaYWk kslw6kcZvTcrLiMCj1WiYlEiPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBOdqLjZ POgDelkd0nK+KpKv93WJMB8GA1UdIwQYMBaAFCrT2ItejgsFFBo7yS+F5Cc6BWKh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkYyNy83QUNERjlBQUJC NkMxMUVFQTY4MEFFNkRDNEY5QUUwMi9LdFBZaTE2T0N3VVVHanZKTDRYa0p6b0ZZ cUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0t0UFlpMTZPQ3dVVUdqdkpMNFhrSnpvRllxRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkYyNy83QUNERjlBQUJCNkMxMUVFQTY4MEFFNkRDNEY5QUUwMi9LdFBZaTE2T0N3 VVVHanZKTDRYa0p6b0ZZcUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQH5zCDO4NRMORGUVa2ex3JwT8n2Msku+1MmQsFxg1bTj3I74atFOV jo6/YR7L6HFAv9j2eUwEv4MFtzkYDNBPmeKlWwlCc9o2W8DVerwZ9OIrdlDwttz5 NIlo06tf7Kmq2Mu1V+/JZMRivXT/6d0H6oavAwPoXpHhaGXfyu1v0SW+Kdcn1hR5 UjlN9WwrpEusazK3UpVCY+W72g5pFpkxgsJxJHHFDDeVYIdfVo/eGccxbIQak3XK O1Xb0Udhd8fOaD0Xv1lyTH5OWyS9TF0zKIe5B8bdhe4oLs0t0WWP+Mjm2F7ERCCk PX1Lg9hFX4bErlBfNL9+f7EkdafXN/Hj -----END CERTIFICATE-----Generated at Sat Apr 26 12:32:52 2025 by rpki-client