$ rpki-client -vvf rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft File: KFO9oWOMWZqEwwlTEOab_SYKqXg.mft (raw, json) Hash identifier: obC5TOnbU7hAUNb8hzE0ZSCaeSjHE71iM18jHM2RbhE= Subject key identifier: A9:11:99:74:C6:AF:BC:E7:97:21:14:85:D5:16:9C:32:D7:CB:2E:C9 Authority key identifier: 28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 Certificate issuer: /CN=A916557B/serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Certificate serial: 040C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft Manifest number: 039D Signing time: Sun 15 Jun 2025 00:45:21 +0000 Manifest this update: Sun 15 Jun 2025 00:45:20 +0000 Manifest next update: Sun 22 Jun 2025 00:45:20 +0000 Files and hashes: 1: KFO9oWOMWZqEwwlTEOab_SYKqXg.crl (hash: Hjml13ElioVehpFJHBQF8IvC+S2sjPCZbP9EEx7C318=) 2: F7D72D3E23E211EFA47D6C68C4F9AE02.roa (hash: e+M4adDsVVtiBfslPnOBJOSyjq+6gRCvAtKsdhjHrg8=) 3: 57A7394C4B0E11EE8682CD4CC4F9AE02.roa (hash: j6YHhVIdNkPdVV6kIT6wpzB9Muw42P+/9W2kK5xhqXo=) 4: 04AB651469C211EFA06F8562C4F9AE02.roa (hash: YV6zDgOh2QMJi+TbqoW1Wt5O6E3eSYJDwfMJ3aJ2a10=) 5: F1930FBAEFE011ED81AE706DC4F9AE02.roa (hash: NP4Z7Tt6CY/HSXNtbW7GXldzu9mQG/LCVCiq7fXDLJ8=) 6: 2F24736869C111EF92B54060C4F9AE02.roa (hash: 3Y7RO9a921W0m0+KGz0aqJiJml6RthEQD034mrQPM14=) 7: 45BC5258C6F711ED9BD6E476C4F9AE02.roa (hash: wASZh3+a4jtcXdGHzHa3qDgrJcrhUIDBhkIcjHP+VMU=) 8: A336FE62609111EFB751B771C4F9AE02.roa (hash: 52bkXRq+LzImcNciZMVc/RbkFDyxds03UT8vcrTtvWc=) 9: 02734B6624D611F0B50DE20BC4F9AE02.roa (hash: kMVjaoh/nl+HaXtTqo7eTliBreBhvFCgfQya7sUAs84=) 10: 1F89C5C22CB511F08A1A9242C4F9AE02.roa (hash: baAQ8jjbDnd+yIywZELKI/f+fLzoC+yEEVRka25c/bE=) 11: 07D38A6669C011EF90EADF5CC4F9AE02.roa (hash: MZXl+TpE4PKXHu+CHp6bbz53wt0k4JzbyBQBboqTIP4=) 12: 14000EECD46811EEBDB9C07CC4F9AE02.roa (hash: riBHCo9Gmq1D+0u/pG7iCc4xDo8oVc7na3FG+hNveUk=) 13: 79AA61622C8711EFBDD6F672C4F9AE02.roa (hash: 3biVBRmslEYYBK7sgaVOapllwelbsd+exeLENbjHwjc=) 14: F83786F4030011F0984B974FC4F9AE02.roa (hash: dZbjlWTe8fWMRR6qgpL+ZoRL9VFsmU1Nz8661bmlCro=) 15: 1DBF3F2E69BF11EF9B52775AC4F9AE02.roa (hash: oEcJmw9GBlLPpcX10UQcg9xp3RCQZJ+XOY7mrRgn4Bk=) 16: 458AC21A684111EEA6632877C4F9AE02.roa (hash: rQlxlSsLfUnZ/IhD06ff6PZ8dH3kW3qdosnvLtL69I4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 00:45:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1036 (0x40c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916557B, serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Validity Not Before: Jun 15 00:45:20 2025 GMT Not After : Jun 22 00:45:20 2025 GMT Subject: CN=684e17a1-62f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:25:77:2a:51:4a:2e:c9:da:02:b8:a2:7c:25: 09:6d:2a:3b:cd:c1:c4:6b:b2:97:5b:3f:ac:96:2f: 31:e3:55:c5:f8:e5:04:a1:ad:60:67:90:94:33:aa: 8a:7f:ac:e8:50:e6:5a:c7:0d:a4:97:6a:3a:eb:a0: 86:a7:22:07:30:21:95:c6:53:2a:2b:97:d6:b9:ca: 5f:9d:85:b0:7b:d4:81:49:65:75:f0:31:3a:3d:b7: 22:e3:23:a1:4c:2a:19:31:bb:06:af:57:44:29:7b: ba:9b:19:d5:1b:45:9a:95:ce:1c:5a:06:ff:89:c9: ba:1f:4a:6f:4d:4f:49:9c:89:1a:dd:7f:dd:e7:c3: cd:59:aa:3e:b9:3e:2b:17:be:67:29:64:b8:be:e4: 67:2d:a0:1e:e7:90:21:e5:9a:dc:b7:bc:9b:80:73: 3f:d8:c2:ad:8c:76:e0:67:d3:51:6e:9b:c8:69:dd: fb:04:54:24:a7:30:64:d8:45:17:f1:f5:34:9a:32: 86:5b:ba:9c:c0:fc:97:00:c9:ef:c2:5e:97:21:fc: e3:02:63:73:28:3e:11:01:b5:cd:c2:2f:cb:50:a7: 88:c3:98:b7:aa:ad:6c:9f:0f:e6:ab:80:50:aa:4f: 25:bf:4a:54:df:91:44:85:b5:50:9c:05:cb:f0:dd: f2:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:11:99:74:C6:AF:BC:E7:97:21:14:85:D5:16:9C:32:D7:CB:2E:C9 X509v3 Authority Key Identifier: keyid:28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:85:f6:8c:9e:84:a8:c2:3f:df:c1:9a:38:54:f7:58:36:0e: 0c:5e:f3:b6:42:ea:63:9f:c1:82:e4:62:62:36:5c:fc:31:da: d4:69:e2:77:7c:58:3d:70:24:fe:7b:63:1c:55:6e:65:af:f4: a5:c8:81:d1:2e:a4:82:d9:ca:13:d7:8f:9e:13:77:ed:5e:f4: 8b:df:83:20:be:b8:5e:95:81:03:e5:36:34:d8:9b:88:28:e0: 97:02:89:8d:a3:25:b7:3f:14:d5:2e:ec:f1:23:30:64:91:0a: 7b:8e:ed:ba:6c:90:6e:38:76:09:fa:24:c6:67:2c:6b:88:60: c4:33:8e:c9:da:67:8c:61:bc:d9:56:7e:43:78:c6:bb:89:4c: fd:14:45:49:21:40:80:a2:c5:8a:b5:66:b7:d5:4d:15:f8:fb: 20:4e:ef:65:25:a6:cc:e4:1f:15:d4:5b:9f:61:d2:84:57:07: 41:2a:36:05:99:3f:48:27:b9:80:95:b4:d4:a9:7b:48:cc:48: 05:aa:b4:06:9d:73:5f:ef:9b:2e:70:6a:2d:86:d3:59:11:21: c5:a1:52:1d:7c:fb:b3:7f:69:6a:24:11:42:00:bc:24:01:6f: 7b:b7:64:2e:46:60:63:1a:e5:57:68:ea:39:3c:0a:08:47:43: 28:de:ef:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBAwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1N0IxMTAvBgNVBAUTKDI4NTNCREExNjM4QzU5OUE4NEMzMDk1MzEwRTY5QkZE MjYwQUE5NzgwHhcNMjUwNjE1MDA0NTIwWhcNMjUwNjIyMDA0NTIwWjAYMRYwFAYD VQQDEw02ODRlMTdhMS02MmY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkyV3KlFKLsnaAriifCUJbSo7zcHEa7KXWz+sli8x41XF+OUEoa1gZ5CUM6qK f6zoUOZaxw2kl2o666CGpyIHMCGVxlMqK5fWucpfnYWwe9SBSWV18DE6Pbci4yOh TCoZMbsGr1dEKXu6mxnVG0Walc4cWgb/icm6H0pvTU9JnIka3X/d58PNWao+uT4r F75nKWS4vuRnLaAe55Ah5Zrct7ybgHM/2MKtjHbgZ9NRbpvIad37BFQkpzBk2EUX 8fU0mjKGW7qcwPyXAMnvwl6XIfzjAmNzKD4RAbXNwi/LUKeIw5i3qq1snw/mq4BQ qk8lv0pU35FEhbVQnAXL8N3yRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKkRmXTG r7znlyEUhdUWnDLXyy7JMB8GA1UdIwQYMBaAFChTvaFjjFmahMMJUxDmm/0mCql4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU3Qi84REE3MjY0MEMx RkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVdacUV3d2xURU9hYl9TWUtx WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tGTzlvV09NV1pxRXd3bFRFT2FiX1NZS3FYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTU3Qi84REE3MjY0MEMxRkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVda cUV3d2xURU9hYl9TWUtxWGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPhfaMnoSowj/fwZo4VPdYNg4MXvO2Qupjn8GC5GJiNlz8MdrUaeJ3 fFg9cCT+e2McVW5lr/SlyIHRLqSC2coT14+eE3ftXvSL34MgvrhelYED5TY02JuI KOCXAomNoyW3PxTVLuzxIzBkkQp7ju26bJBuOHYJ+iTGZyxriGDEM47J2meMYbzZ Vn5DeMa7iUz9FEVJIUCAosWKtWa31U0V+PsgTu9lJabM5B8V1FufYdKEVwdBKjYF mT9IJ7mAlbTUqXtIzEgFqrQGnXNf75sucGothtNZESHFoVIdfPuzf2lqJBFCALwk AW97t2QuRmBjGuVXaOo5PAoIR0Mo3u9Q -----END CERTIFICATE-----Generated at Sun Jun 15 07:02:26 2025 by rpki-client