$ rpki-client -vvf rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft File: KrJDLDrVEo7XPpnEYNBhH69NIg4.mft (raw, json) Hash identifier: Rd44jxjNV2TP8IxQBrj/qpGfaF47z/o3ngPgFXN5HX0= Subject key identifier: 80:A9:AB:74:65:5D:D4:AE:0F:EC:70:DE:52:B1:DC:31:38:AC:86:E9 Authority key identifier: 2A:B2:43:2C:3A:D5:12:8E:D7:3E:99:C4:60:D0:61:1F:AF:4D:22:0E Certificate issuer: /CN=A9153850/serialNumber=2AB2432C3AD5128ED73E99C460D0611FAF4D220E Certificate serial: 41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KrJDLDrVEo7XPpnEYNBhH69NIg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft Manifest number: 39 Signing time: Fri 13 Jun 2025 06:35:52 +0000 Manifest this update: Fri 13 Jun 2025 06:35:52 +0000 Manifest next update: Fri 20 Jun 2025 06:35:52 +0000 Files and hashes: 1: KrJDLDrVEo7XPpnEYNBhH69NIg4.crl (hash: SATyb9Qj5qfPilRDDPK1TzN71p8Co/VeRXtFz27QYRw=) 2: E40AC356018611F0B7E46C83C4F9AE02.roa (hash: xnpORZ2MtPoqtzWOcmsiFxPYNxl3p5FaKDYctBVtkjc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.crl rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KrJDLDrVEo7XPpnEYNBhH69NIg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 06:35:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65 (0x41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153850, serialNumber=2AB2432C3AD5128ED73E99C460D0611FAF4D220E Validity Not Before: Jun 13 06:35:52 2025 GMT Not After : Jun 20 06:35:52 2025 GMT Subject: CN=684bc6c8-992f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:cb:7e:e8:d8:7a:1a:f6:60:8b:ce:6e:8b:6d: 8f:44:e7:d7:b1:8a:25:57:d7:ff:b6:dd:36:da:fe: 18:4b:5c:6f:ac:99:f7:0d:3d:dc:de:ed:35:5c:ec: 22:87:be:f1:b9:e5:b5:cb:f2:38:ad:30:e5:ab:af: 11:2d:94:32:9e:3f:66:d7:bc:f9:0a:7d:38:c6:82: 8d:36:06:f5:2c:4e:ca:33:9a:b8:47:c4:7b:85:90: 82:7a:0a:2f:65:37:14:5f:51:c0:80:f1:ba:b1:ec: c3:3e:f5:50:28:44:f0:76:8d:18:6f:bb:ca:ab:e6: b8:4b:dd:80:76:4e:0c:93:44:1c:92:ca:e7:db:19: de:2a:c9:59:7d:47:36:1f:31:55:62:80:27:0e:08: db:8b:fc:ee:fd:5d:23:29:6b:60:6c:a7:47:54:b7: 28:49:db:19:53:2f:bc:24:13:69:1e:14:63:92:d5: cc:6e:16:6c:00:71:4b:23:fb:a2:d5:4d:af:1c:f2: fd:63:36:b4:fa:b0:77:ec:5b:fb:b4:a4:4d:59:7b: 6f:00:a7:76:12:61:7e:30:c3:87:27:4d:e9:65:a4: f7:e9:15:05:9a:6a:78:ea:9e:db:cc:19:5c:65:ab: c7:f5:7d:76:de:17:e9:16:3b:10:04:78:19:26:a2: 45:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:A9:AB:74:65:5D:D4:AE:0F:EC:70:DE:52:B1:DC:31:38:AC:86:E9 X509v3 Authority Key Identifier: keyid:2A:B2:43:2C:3A:D5:12:8E:D7:3E:99:C4:60:D0:61:1F:AF:4D:22:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KrJDLDrVEo7XPpnEYNBhH69NIg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:80:ee:64:33:dd:45:e5:4a:30:2f:3c:2c:34:1f:e6:71:75: 87:86:3d:d8:1f:ed:b7:8a:b7:b1:4b:68:b9:4f:19:6b:ae:bb: e4:82:d2:bc:54:0f:89:f5:6c:e6:38:54:c2:fd:3b:08:12:6d: f9:45:a3:75:a6:98:d1:9c:e9:0a:9c:f4:68:63:9f:9f:1e:a0: 05:95:c1:c8:4e:2d:2d:dc:6b:06:c9:22:95:7b:31:28:9f:76: ec:0f:1c:7e:9e:75:ed:c6:33:08:cf:e3:9f:04:61:7c:a9:cd: 91:27:9a:2f:20:90:1c:48:a6:01:19:97:cc:2d:9f:1b:fb:8c: 56:86:04:1e:a5:85:16:f7:15:98:2b:6d:a6:8e:82:ea:7f:28: 16:ab:ba:11:8c:ff:69:85:2a:79:90:d0:87:4c:3e:fc:2a:cb: 89:17:f5:b7:ea:4b:f0:dc:b2:f6:76:d3:ad:0e:8b:bb:d2:37: a5:e9:eb:b5:bb:39:dd:04:60:55:ed:e5:8b:f6:85:ce:20:88: c0:e6:c6:b1:27:00:03:01:ab:b6:fb:83:eb:ce:79:a7:93:ed: 2e:fc:15:7b:fd:63:20:88:cc:78:9b:92:50:8b:25:3c:6d:87: 29:c9:cb:cb:8a:3f:ec:90:77:43:e0:0a:ec:44:ea:1d:cf:51: 35:e5:7b:86 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 Mzg1MDExMC8GA1UEBRMoMkFCMjQzMkMzQUQ1MTI4RUQ3M0U5OUM0NjBEMDYxMUZB RjREMjIwRTAeFw0yNTA2MTMwNjM1NTJaFw0yNTA2MjAwNjM1NTJaMBgxFjAUBgNV BAMTDTY4NGJjNmM4LTk5MmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGy37o2Hoa9mCLzm6LbY9E59exiiVX1/+23Tba/hhLXG+smfcNPdze7TVc7CKH vvG55bXL8jitMOWrrxEtlDKeP2bXvPkKfTjGgo02BvUsTsozmrhHxHuFkIJ6Ci9l NxRfUcCA8bqx7MM+9VAoRPB2jRhvu8qr5rhL3YB2TgyTRBySyufbGd4qyVl9RzYf MVVigCcOCNuL/O79XSMpa2Bsp0dUtyhJ2xlTL7wkE2keFGOS1cxuFmwAcUsj+6LV Ta8c8v1jNrT6sHfsW/u0pE1Ze28Ap3YSYX4ww4cnTellpPfpFQWaanjqntvMGVxl q8f1fXbeF+kWOxAEeBkmokVrAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUgKmrdGVd 1K4P7HDeUrHcMTishukwHwYDVR0jBBgwFoAUKrJDLDrVEo7XPpnEYNBhH69NIg4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUzODUwLzdCM0IzN0Q0MDE4 NjExRjBCMDVCNEM1OUM0RjlBRTAyL0tySkRMRHJWRW83WFBwbkVZTkJoSDY5Tkln NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS3JKRExEclZFbzdYUHBuRVlOQmhINjlOSWc0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUz ODUwLzdCM0IzN0Q0MDE4NjExRjBCMDVCNEM1OUM0RjlBRTAyL0tySkRMRHJWRW83 WFBwbkVZTkJoSDY5TklnNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADeA7mQz3UXlSjAvPCw0H+ZxdYeGPdgf7beKt7FLaLlPGWuuu+SC0rxU D4n1bOY4VML9OwgSbflFo3WmmNGc6Qqc9Ghjn58eoAWVwchOLS3cawbJIpV7MSif duwPHH6ede3GMwjP458EYXypzZEnmi8gkBxIpgEZl8wtnxv7jFaGBB6lhRb3FZgr baaOgup/KBaruhGM/2mFKnmQ0IdMPvwqy4kX9bfqS/DcsvZ2060Oi7vSN6Xp67W7 Od0EYFXt5Yv2hc4giMDmxrEnAAMBq7b7g+vOeaeT7S78FXv9YyCIzHibklCLJTxt hynJy8uKP+yQd0PgCuxE6h3PUTXle4Y= -----END CERTIFICATE-----Generated at Sat Jun 14 19:35:18 2025 by rpki-client