$ rpki-client -vvf rpki.apnic.net/member_repository/A915F438/B7EF53FE2B4E11E5ACBBDF3AC4F9AE02/k-dhjM_iZIDXknoYcbrYP--d9IQ.mft File: k-dhjM_iZIDXknoYcbrYP--d9IQ.mft (raw, json) Hash identifier: 3+1bFIZYSK/Q+SMmM+jRF0w7g8iiE+nFuBsvKQQ1nPk= Subject key identifier: 14:F0:25:2C:36:66:77:E1:65:B6:12:8F:97:AB:47:37:80:05:1F:6C Authority key identifier: 93:E7:61:8C:CF:E2:64:80:D7:92:7A:18:71:BA:D8:3F:EF:9D:F4:84 Certificate issuer: /CN=A915F438/serialNumber=93E7618CCFE26480D7927A1871BAD83FEF9DF484 Certificate serial: 2514 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k-dhjM_iZIDXknoYcbrYP--d9IQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915F438/B7EF53FE2B4E11E5ACBBDF3AC4F9AE02/k-dhjM_iZIDXknoYcbrYP--d9IQ.mft Manifest number: 2500 Signing time: Thu 24 Apr 2025 15:46:59 +0000 Manifest this update: Thu 24 Apr 2025 15:46:58 +0000 Manifest next update: Thu 01 May 2025 15:46:58 +0000 Files and hashes: 1: k-dhjM_iZIDXknoYcbrYP--d9IQ.crl (hash: PK/Ok8OrWB1yrJ33apJpNnXu0GhYHr4dAvAdJvWtqFI=) 2: 657B47B61C2F11E880C4ED7BC4F9AE02.roa (hash: cn19kmgTI5pykmKU6ztYW1fuk/UgkkZVZQRR4mCHAg4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915F438/B7EF53FE2B4E11E5ACBBDF3AC4F9AE02/k-dhjM_iZIDXknoYcbrYP--d9IQ.crl rsync://rpki.apnic.net/member_repository/A915F438/B7EF53FE2B4E11E5ACBBDF3AC4F9AE02/k-dhjM_iZIDXknoYcbrYP--d9IQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k-dhjM_iZIDXknoYcbrYP--d9IQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:46:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9492 (0x2514) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915F438, serialNumber=93E7618CCFE26480D7927A1871BAD83FEF9DF484 Validity Not Before: Apr 24 15:46:58 2025 GMT Not After : May 1 15:46:58 2025 GMT Subject: CN=680a5cf3-cceb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:c6:11:e4:9b:33:56:40:6f:74:37:f8:7b:66: 4e:11:be:15:13:9b:72:59:25:a6:25:78:81:23:e5: a9:07:b8:fc:fe:7c:1a:10:87:ba:e0:91:ae:97:35: 25:3d:a4:74:d2:83:53:05:c9:7e:02:5d:f1:80:bb: 87:be:d5:1b:3b:e1:18:9e:5c:1e:29:56:9f:15:31: 31:ab:84:02:c6:6c:58:cb:25:6c:04:48:57:7e:09: b0:a1:b1:a0:d5:3a:3f:68:0b:91:5d:3f:fb:d8:32: 94:08:70:12:3b:2a:96:14:e1:19:c3:ad:2a:eb:28: 03:29:3a:fb:68:3b:ef:10:e7:76:2d:99:52:78:cd: b8:7d:9d:2e:09:fb:95:a1:0c:4a:84:12:28:da:13: f4:fa:35:8e:13:03:15:78:70:5d:07:d8:3f:de:b2: b8:73:92:5b:72:56:d0:7e:c9:35:24:d9:19:71:82: b2:20:f6:3e:e7:b1:ff:71:c7:56:77:25:8d:50:0d: 90:58:55:81:ce:65:d8:a6:ce:f2:7d:d2:fd:25:14: 7d:29:46:5b:12:a8:4b:f5:f6:a6:68:86:75:64:b1: 67:ec:60:d9:f8:ee:63:7b:a6:76:8e:52:c0:8c:e3: 68:ee:d6:de:cb:ef:ec:f8:40:a2:e0:b5:6d:74:7d: 08:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:F0:25:2C:36:66:77:E1:65:B6:12:8F:97:AB:47:37:80:05:1F:6C X509v3 Authority Key Identifier: keyid:93:E7:61:8C:CF:E2:64:80:D7:92:7A:18:71:BA:D8:3F:EF:9D:F4:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915F438/B7EF53FE2B4E11E5ACBBDF3AC4F9AE02/k-dhjM_iZIDXknoYcbrYP--d9IQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k-dhjM_iZIDXknoYcbrYP--d9IQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915F438/B7EF53FE2B4E11E5ACBBDF3AC4F9AE02/k-dhjM_iZIDXknoYcbrYP--d9IQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:75:32:a7:d9:78:6d:09:55:6d:95:62:04:cc:61:39:f6:1f: 45:a3:35:c2:78:f0:3c:44:35:ef:c4:77:55:91:b2:cc:a4:1a: 4a:2d:79:04:bf:53:ab:2c:33:48:b0:0a:86:21:9d:76:b9:06: 86:f0:03:ab:f2:c3:65:50:98:c6:dd:b0:ba:61:54:5d:7f:2d: 10:44:cb:8c:0f:e4:3d:29:fe:6f:cb:bc:cd:c3:f1:4b:c2:41: 29:9c:42:19:1a:cc:4f:21:84:0e:fc:01:49:5d:8f:70:7d:1a: f2:4b:47:f8:6a:1f:5e:f9:fb:c5:07:39:0d:e0:5e:e0:14:33: 91:aa:78:c1:03:3f:5a:0e:d5:31:9f:80:6c:8b:2d:05:ff:fe: f5:d6:0d:dd:13:09:a0:31:a9:68:88:f1:45:36:cb:e8:e9:06: ef:7e:1e:d1:f9:c9:13:6d:9e:76:22:ad:7c:9d:a0:79:8b:3d: 14:7c:e9:83:ed:56:63:3b:ea:19:f8:27:da:d5:ab:62:23:13: 16:0f:49:17:84:dc:7d:ac:1b:bb:95:ba:94:ec:d3:1a:90:f2: 1c:50:58:ec:d6:58:fa:79:c0:d8:47:c7:0f:d6:f3:3a:27:10: 88:d2:69:3b:ab:3b:78:23:26:23:b8:15:e3:50:d6:59:5a:08: 74:33:81:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJRQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUY0MzgxMTAvBgNVBAUTKDkzRTc2MThDQ0ZFMjY0ODBENzkyN0ExODcxQkFEODNG RUY5REY0ODQwHhcNMjUwNDI0MTU0NjU4WhcNMjUwNTAxMTU0NjU4WjAYMRYwFAYD VQQDEw02ODBhNWNmMy1jY2ViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7cYR5JszVkBvdDf4e2ZOEb4VE5tyWSWmJXiBI+WpB7j8/nwaEIe64JGulzUl PaR00oNTBcl+Al3xgLuHvtUbO+EYnlweKVafFTExq4QCxmxYyyVsBEhXfgmwobGg 1To/aAuRXT/72DKUCHASOyqWFOEZw60q6ygDKTr7aDvvEOd2LZlSeM24fZ0uCfuV oQxKhBIo2hP0+jWOEwMVeHBdB9g/3rK4c5JbclbQfsk1JNkZcYKyIPY+57H/ccdW dyWNUA2QWFWBzmXYps7yfdL9JRR9KUZbEqhL9famaIZ1ZLFn7GDZ+O5je6Z2jlLA jONo7tbey+/s+ECi4LVtdH0IswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBTwJSw2 ZnfhZbYSj5erRzeABR9sMB8GA1UdIwQYMBaAFJPnYYzP4mSA15J6GHG62D/vnfSE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RjQzOC9CN0VGNTNGRTJC NEUxMUU1QUNCQkRGM0FDNEY5QUUwMi9rLWRoak1faVpJRFhrbm9ZY2JyWVAtLWQ5 SVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2stZGhqTV9pWklEWGtub1ljYnJZUC0tZDlJUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RjQzOC9CN0VGNTNGRTJCNEUxMUU1QUNCQkRGM0FDNEY5QUUwMi9rLWRoak1faVpJ RFhrbm9ZY2JyWVAtLWQ5SVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANdTKn2XhtCVVtlWIEzGE59h9FozXCePA8RDXvxHdVkbLMpBpKLXkE v1OrLDNIsAqGIZ12uQaG8AOr8sNlUJjG3bC6YVRdfy0QRMuMD+Q9Kf5vy7zNw/FL wkEpnEIZGsxPIYQO/AFJXY9wfRryS0f4ah9e+fvFBzkN4F7gFDORqnjBAz9aDtUx n4Bsiy0F//711g3dEwmgMaloiPFFNsvo6Qbvfh7R+ckTbZ52Iq18naB5iz0UfOmD 7VZjO+oZ+Cfa1atiIxMWD0kXhNx9rBu7lbqU7NMakPIcUFjs1lj6ecDYR8cP1vM6 JxCI0mk7qzt4IyYjuBXjUNZZWgh0M4Gl -----END CERTIFICATE-----Generated at Sat Apr 26 12:21:11 2025 by rpki-client