$ rpki-client -vvf rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft File: koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft (raw, json) Hash identifier: yPt/8d2RI1Urf0qxH4Ph0aflbn1Tw62TWKLbH/PDPQ0= Subject key identifier: 40:34:A9:19:03:B2:49:F9:B7:6A:87:FA:20:FF:B4:83:14:2C:4E:E0 Authority key identifier: 92:80:F0:70:74:77:53:38:7B:6B:A6:57:32:D6:DD:79:92:B3:50:C1 Certificate issuer: /CN=A9138679/serialNumber=9280F070747753387B6BA65732D6DD7992B350C1 Certificate serial: 27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/koDwcHR3Uzh7a6ZXMtbdeZKzUME.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft Manifest number: 26 Signing time: Fri 25 Apr 2025 06:46:40 +0000 Manifest this update: Fri 25 Apr 2025 06:46:40 +0000 Manifest next update: Fri 02 May 2025 06:46:40 +0000 Files and hashes: 1: koDwcHR3Uzh7a6ZXMtbdeZKzUME.crl (hash: HdzD9RGaBlkzVNPHU6wm1LBQTK925D6Z6m/I2TDFqUI=) 2: 2CD223FCEA7811EF92D8DC39C4F9AE02.roa (hash: zvy+2HhQd/n3VOaiuMrL5/OccoJAnqCm0UAKCkrWeWw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.crl rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/koDwcHR3Uzh7a6ZXMtbdeZKzUME.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:46:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39 (0x27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138679, serialNumber=9280F070747753387B6BA65732D6DD7992B350C1 Validity Not Before: Apr 25 06:46:40 2025 GMT Not After : May 2 06:46:40 2025 GMT Subject: CN=680b2fd0-5e9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:8c:ba:d8:16:07:81:79:32:75:d9:2d:2b:96: b9:a1:bd:90:a4:6a:10:3b:b3:2a:99:dc:1a:cc:18: 08:93:0b:47:cc:f7:b9:43:ab:ea:1e:74:73:62:10: 04:44:88:29:c0:4f:5f:66:58:0a:11:ee:26:e1:60: 3c:1f:4e:d6:0e:75:b7:eb:e2:20:0f:19:10:ca:21: 47:eb:f5:a3:9f:e6:ca:42:36:4c:de:cd:0c:5a:12: 73:c8:49:4b:66:ed:3c:c1:92:32:ce:b2:9b:81:db: da:cd:d3:5c:70:3a:f6:0f:e9:16:26:e8:99:86:aa: d4:c4:47:80:28:17:a2:4b:09:a0:8b:73:4d:dc:ed: ff:65:49:d6:d4:71:67:d4:9e:b3:fb:00:15:16:2b: 27:e2:38:64:0f:52:d8:e8:ea:78:25:14:35:89:42: c5:17:95:00:fa:ea:ef:1d:f7:a9:e6:76:e0:8f:9e: 46:8c:65:d8:1d:f6:49:de:81:15:28:66:ba:77:e5: c0:40:b6:1d:4f:e5:40:1b:5b:e8:2d:92:8e:b9:33: 04:b8:14:79:1d:7c:ef:b5:d4:f7:b6:cc:28:cf:1e: 1a:1d:4b:19:0f:dd:df:a6:e3:cc:bf:fe:70:50:61: 44:61:dc:4c:96:b2:3e:bd:22:2f:e0:f0:21:8c:0c: f1:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:34:A9:19:03:B2:49:F9:B7:6A:87:FA:20:FF:B4:83:14:2C:4E:E0 X509v3 Authority Key Identifier: keyid:92:80:F0:70:74:77:53:38:7B:6B:A6:57:32:D6:DD:79:92:B3:50:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/koDwcHR3Uzh7a6ZXMtbdeZKzUME.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:81:5b:ae:64:8b:79:e9:0c:59:48:03:cf:1e:f2:d1:cc:8d: 46:ee:76:6d:31:ee:7a:dd:4a:40:f9:99:29:ec:c6:36:fb:a4: c2:fc:17:31:b6:64:61:fc:5c:05:07:64:12:34:c4:66:5d:01: c2:01:a6:2d:a2:76:90:bc:15:08:bc:24:29:e8:d3:fc:bb:6c: c8:75:c7:0c:4c:eb:a0:27:f1:2c:c6:4f:15:8a:f5:0d:8b:49: 63:aa:1c:05:0a:56:ab:af:ce:c9:43:64:a5:f3:91:0a:43:da: 3f:04:bc:dd:fb:54:38:9c:a3:7f:62:f9:22:cd:16:9b:af:43: 02:cf:65:b6:7e:1f:67:97:1f:9f:b0:9d:e4:70:6f:f0:ce:58: ed:73:32:62:c5:69:5c:9d:22:32:39:0e:2e:00:5a:d6:8d:da: 38:b0:4e:ad:0e:da:ba:16:37:fc:78:04:e0:23:91:1f:1b:3c: 12:80:ea:64:32:da:a7:72:58:a3:99:cf:c3:ce:fb:f3:56:88: 50:51:0b:23:48:9f:ac:51:0b:d7:5a:9d:69:99:2f:f3:85:ea: 35:11:9b:39:5d:61:7d:95:ed:e8:31:0d:4b:41:a4:b1:63:5f: f8:fe:d2:56:90:20:b5:1b:89:33:34:a2:45:cf:1f:12:72:91: 9c:d9:10:7a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz ODY3OTExMC8GA1UEBRMoOTI4MEYwNzA3NDc3NTMzODdCNkJBNjU3MzJENkRENzk5 MkIzNTBDMTAeFw0yNTA0MjUwNjQ2NDBaFw0yNTA1MDIwNjQ2NDBaMBgxFjAUBgNV BAMTDTY4MGIyZmQwLTVlOWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDFjLrYFgeBeTJ12S0rlrmhvZCkahA7syqZ3BrMGAiTC0fM97lDq+oedHNiEARE iCnAT19mWAoR7ibhYDwfTtYOdbfr4iAPGRDKIUfr9aOf5spCNkzezQxaEnPISUtm 7TzBkjLOspuB29rN01xwOvYP6RYm6JmGqtTER4AoF6JLCaCLc03c7f9lSdbUcWfU nrP7ABUWKyfiOGQPUtjo6nglFDWJQsUXlQD66u8d96nmduCPnkaMZdgd9knegRUo Zrp35cBAth1P5UAbW+gtko65MwS4FHkdfO+11Pe2zCjPHhodSxkP3d+m48y//nBQ YURh3EyWsj69Ii/g8CGMDPGXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUQDSpGQOy Sfm3aof6IP+0gxQsTuAwHwYDVR0jBBgwFoAUkoDwcHR3Uzh7a6ZXMtbdeZKzUMEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM4Njc5L0NCMkNCM0NFRUE3 NzExRUZBNTYzNTY4MEM0RjlBRTAyL2tvRHdjSFIzVXpoN2E2WlhNdGJkZVpLelVN RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIva29Ed2NIUjNVemg3YTZaWE10YmRlWkt6VU1FLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM4 Njc5L0NCMkNCM0NFRUE3NzExRUZBNTYzNTY4MEM0RjlBRTAyL2tvRHdjSFIzVXpo N2E2WlhNdGJkZVpLelVNRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAKBW65ki3npDFlIA88e8tHMjUbudm0x7nrdSkD5mSnsxjb7pML8FzG2 ZGH8XAUHZBI0xGZdAcIBpi2idpC8FQi8JCno0/y7bMh1xwxM66An8SzGTxWK9Q2L SWOqHAUKVquvzslDZKXzkQpD2j8EvN37VDico39i+SLNFpuvQwLPZbZ+H2eXH5+w neRwb/DOWO1zMmLFaVydIjI5Di4AWtaN2jiwTq0O2roWN/x4BOAjkR8bPBKA6mQy 2qdyWKOZz8PO+/NWiFBRCyNIn6xRC9danWmZL/OF6jURmzldYX2V7egxDUtBpLFj X/j+0laQILUbiTM0okXPHxJykZzZEHo= -----END CERTIFICATE-----Generated at Sat Apr 26 04:23:43 2025 by rpki-client