$ rpki-client -vvf rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft File: KFO9oWOMWZqEwwlTEOab_SYKqXg.mft (raw, json) Hash identifier: FV4aZyo0ZJS6VBRX4N50rcsG6OU4kfxl7Ie8SECTbhI= Subject key identifier: 38:29:4F:95:52:B3:F1:D6:AE:F7:86:B7:AB:20:84:72:52:51:AA:70 Authority key identifier: 28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 Certificate issuer: /CN=A916557B/serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Certificate serial: 03EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft Manifest number: 0380 Signing time: Fri 25 Apr 2025 00:53:19 +0000 Manifest this update: Fri 25 Apr 2025 00:53:19 +0000 Manifest next update: Fri 02 May 2025 00:53:19 +0000 Files and hashes: 1: KFO9oWOMWZqEwwlTEOab_SYKqXg.crl (hash: y2qNj1tiEUArAlyUdRbZkOGKWjmI2DGngsEswCMzLOw=) 2: F7D72D3E23E211EFA47D6C68C4F9AE02.roa (hash: e+M4adDsVVtiBfslPnOBJOSyjq+6gRCvAtKsdhjHrg8=) 3: 57A7394C4B0E11EE8682CD4CC4F9AE02.roa (hash: j6YHhVIdNkPdVV6kIT6wpzB9Muw42P+/9W2kK5xhqXo=) 4: 04AB651469C211EFA06F8562C4F9AE02.roa (hash: YV6zDgOh2QMJi+TbqoW1Wt5O6E3eSYJDwfMJ3aJ2a10=) 5: F1930FBAEFE011ED81AE706DC4F9AE02.roa (hash: NP4Z7Tt6CY/HSXNtbW7GXldzu9mQG/LCVCiq7fXDLJ8=) 6: 2F24736869C111EF92B54060C4F9AE02.roa (hash: 3Y7RO9a921W0m0+KGz0aqJiJml6RthEQD034mrQPM14=) 7: 45BC5258C6F711ED9BD6E476C4F9AE02.roa (hash: wASZh3+a4jtcXdGHzHa3qDgrJcrhUIDBhkIcjHP+VMU=) 8: A336FE62609111EFB751B771C4F9AE02.roa (hash: 52bkXRq+LzImcNciZMVc/RbkFDyxds03UT8vcrTtvWc=) 9: 13D58140172711ED8E3E8136C4F9AE02.roa (hash: LOrACtpPjzLqnH6mglr8TYVvqw/0+G4Q6Hlw8x23Gz8=) 10: 07D38A6669C011EF90EADF5CC4F9AE02.roa (hash: MZXl+TpE4PKXHu+CHp6bbz53wt0k4JzbyBQBboqTIP4=) 11: 14000EECD46811EEBDB9C07CC4F9AE02.roa (hash: riBHCo9Gmq1D+0u/pG7iCc4xDo8oVc7na3FG+hNveUk=) 12: 79AA61622C8711EFBDD6F672C4F9AE02.roa (hash: 3biVBRmslEYYBK7sgaVOapllwelbsd+exeLENbjHwjc=) 13: F83786F4030011F0984B974FC4F9AE02.roa (hash: dZbjlWTe8fWMRR6qgpL+ZoRL9VFsmU1Nz8661bmlCro=) 14: 1DBF3F2E69BF11EF9B52775AC4F9AE02.roa (hash: oEcJmw9GBlLPpcX10UQcg9xp3RCQZJ+XOY7mrRgn4Bk=) 15: 458AC21A684111EEA6632877C4F9AE02.roa (hash: rQlxlSsLfUnZ/IhD06ff6PZ8dH3kW3qdosnvLtL69I4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:53:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1004 (0x3ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916557B, serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Validity Not Before: Apr 25 00:53:19 2025 GMT Not After : May 2 00:53:19 2025 GMT Subject: CN=680adcff-8321 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:a9:7d:24:16:c7:a2:63:93:0a:22:4c:6f:f1: 50:58:ea:1f:1a:d1:82:94:1b:80:8d:36:c8:67:5f: ac:74:2d:f7:d8:b8:0b:43:7f:41:d5:8d:9c:d4:76: 36:89:d4:89:8b:0e:e7:65:31:79:95:56:fe:e8:3d: ad:a4:10:ee:05:a4:1d:61:cc:91:95:af:5c:99:8b: a4:b4:6b:c3:83:39:68:8f:09:c7:0a:c6:c2:31:95: bf:d5:98:7d:5a:92:85:6d:49:20:85:01:bf:df:5a: 6c:df:0f:ca:7a:fe:f2:94:c7:ee:ad:9a:71:c3:b8: 70:f6:c0:fd:62:ce:2d:3e:30:92:88:93:8c:5f:06: 43:fa:52:63:a1:4f:fb:e6:e0:0b:d3:28:bb:9c:ca: 89:26:d9:e5:cd:cb:86:6e:38:ee:bb:a9:53:ed:d1: cf:6c:c6:ad:8e:c3:99:72:41:2c:18:66:78:0c:eb: ca:4e:c3:a6:65:3a:18:ec:31:90:72:ba:98:07:8a: 0b:d4:ec:f0:b7:ee:6e:6d:2c:a5:0c:91:fc:a9:c5: bb:85:be:01:1e:76:bb:c1:ea:2f:64:d0:53:b3:76: cb:1e:e3:8d:d5:6c:d3:e1:1c:b1:eb:65:9a:02:9a: 01:ef:aa:b2:8b:66:77:93:3c:c8:23:dd:01:3e:2f: 71:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:29:4F:95:52:B3:F1:D6:AE:F7:86:B7:AB:20:84:72:52:51:AA:70 X509v3 Authority Key Identifier: keyid:28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:16:f3:37:98:e2:7a:83:e3:6b:f9:c6:e2:ec:ea:aa:58:f3: 43:65:07:ea:18:56:92:b4:3b:cf:cc:c6:fa:d9:56:f0:1f:9e: b4:07:61:19:9c:e3:10:e0:a7:8e:a6:3d:c1:b2:82:95:11:8d: 28:ae:ae:1b:00:9d:a6:dd:a5:33:19:2d:d6:98:88:e4:e5:b6: 84:db:b9:f7:66:1d:6f:3a:21:f5:a0:1d:09:00:21:28:e6:e2: 6e:9a:c9:b7:f1:77:2c:5b:67:01:c3:6a:84:fc:c2:db:77:bc: c4:78:e7:40:6d:cb:b3:9e:a1:1b:b0:33:e9:ac:ab:b0:d8:f6: 54:ed:2b:a4:c4:85:b5:f0:fb:6c:4f:c8:d4:cf:eb:98:77:d1: cf:2f:16:a3:96:e0:0c:5d:1f:5c:53:b5:7b:b3:b6:e0:4a:f3: 55:39:5f:a2:5e:94:82:5b:60:95:d7:60:43:3a:43:55:4f:a5: cf:45:11:66:8a:ac:85:14:4e:2a:b4:46:5d:7a:d7:e7:3e:0c: a4:53:f3:44:3a:09:46:48:54:53:2a:e2:d0:f3:bd:e5:bd:fd: d6:88:6b:33:c8:42:0a:24:79:48:33:29:3f:1f:8f:f4:51:28: 62:da:1b:51:95:67:9d:1e:d4:fb:ae:c0:96:fe:8e:57:c2:4f: b1:12:8c:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1N0IxMTAvBgNVBAUTKDI4NTNCREExNjM4QzU5OUE4NEMzMDk1MzEwRTY5QkZE MjYwQUE5NzgwHhcNMjUwNDI1MDA1MzE5WhcNMjUwNTAyMDA1MzE5WjAYMRYwFAYD VQQDEw02ODBhZGNmZi04MzIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxql9JBbHomOTCiJMb/FQWOofGtGClBuAjTbIZ1+sdC332LgLQ39B1Y2c1HY2 idSJiw7nZTF5lVb+6D2tpBDuBaQdYcyRla9cmYuktGvDgzlojwnHCsbCMZW/1Zh9 WpKFbUkghQG/31ps3w/Kev7ylMfurZpxw7hw9sD9Ys4tPjCSiJOMXwZD+lJjoU/7 5uAL0yi7nMqJJtnlzcuGbjjuu6lT7dHPbMatjsOZckEsGGZ4DOvKTsOmZToY7DGQ crqYB4oL1Ozwt+5ubSylDJH8qcW7hb4BHna7weovZNBTs3bLHuON1WzT4Ryx62Wa ApoB76qyi2Z3kzzII90BPi9xsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDgpT5VS s/HWrveGt6sghHJSUapwMB8GA1UdIwQYMBaAFChTvaFjjFmahMMJUxDmm/0mCql4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU3Qi84REE3MjY0MEMx RkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVdacUV3d2xURU9hYl9TWUtx WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tGTzlvV09NV1pxRXd3bFRFT2FiX1NZS3FYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTU3Qi84REE3MjY0MEMxRkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVda cUV3d2xURU9hYl9TWUtxWGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPFvM3mOJ6g+Nr+cbi7OqqWPNDZQfqGFaStDvPzMb62VbwH560B2EZ nOMQ4KeOpj3BsoKVEY0orq4bAJ2m3aUzGS3WmIjk5baE27n3Zh1vOiH1oB0JACEo 5uJumsm38XcsW2cBw2qE/MLbd7zEeOdAbcuznqEbsDPprKuw2PZU7SukxIW18Pts T8jUz+uYd9HPLxajluAMXR9cU7V7s7bgSvNVOV+iXpSCW2CV12BDOkNVT6XPRRFm iqyFFE4qtEZdetfnPgykU/NEOglGSFRTKuLQ873lvf3WiGszyEIKJHlIMyk/H4/0 UShi2htRlWedHtT7rsCW/o5Xwk+xEozx -----END CERTIFICATE-----Generated at Sat Apr 26 05:01:58 2025 by rpki-client