$ rpki-client -vvf rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft File: KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft (raw, json) Hash identifier: C5ssyKMAgYUlWl6UQDn8JcetS1ocRTyWgWG30RhZsTI= Subject key identifier: EB:54:A1:C0:1A:FD:BE:12:4D:10:3E:BF:DF:3D:7A:89:BE:A2:DC:BF Authority key identifier: 2A:69:D6:99:F1:3C:04:1B:FD:A3:DA:A5:7E:21:FF:AB:3C:53:ED:5F Certificate issuer: /CN=A9171927/serialNumber=2A69D699F13C041BFDA3DAA57E21FFAB3C53ED5F Certificate serial: 01A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmnWmfE8BBv9o9qlfiH_qzxT7V8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft Manifest number: 019A Signing time: Fri 25 Apr 2025 02:37:16 +0000 Manifest this update: Fri 25 Apr 2025 02:37:15 +0000 Manifest next update: Fri 02 May 2025 02:37:15 +0000 Files and hashes: 1: KmnWmfE8BBv9o9qlfiH_qzxT7V8.crl (hash: gAgJPsv3l+bM/iCRrzm1F6AkuIaQg3RIBpeX0KGaNoY=) 2: 6AA5FC16905211EE840DED1DC4F9AE02.roa (hash: MC0BNQ8WSdb9k6lw5PW7hJBMQ3Zo5Nq5ihUjlKmX1lo=) 3: FD41FC5EEA6811EDBE3EE23CC4F9AE02.roa (hash: RACB3YknB3cdpFyJZW5lQ48vMsl9eTtZug3dtaWvByM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.crl rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmnWmfE8BBv9o9qlfiH_qzxT7V8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:37:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 421 (0x1a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171927, serialNumber=2A69D699F13C041BFDA3DAA57E21FFAB3C53ED5F Validity Not Before: Apr 25 02:37:15 2025 GMT Not After : May 2 02:37:15 2025 GMT Subject: CN=680af55c-652a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:76:2c:61:a9:8b:9b:d3:c4:cf:fb:4d:9b:85: 9b:66:8e:63:0e:4a:d4:60:74:d5:a0:58:3c:c0:f2: 5f:90:81:7f:56:25:c8:de:cd:57:14:78:a2:a5:e3: a6:42:78:43:05:c2:19:d0:4d:6e:ad:80:2b:a0:94: 86:cd:bf:dc:7c:f4:0a:d4:d6:ae:02:e1:89:8b:30: d7:4c:14:79:5e:ec:0c:bb:80:f9:b9:1a:85:92:55: fb:ea:7a:df:b8:79:3e:28:58:6c:41:a4:de:80:7f: 06:ce:5f:5c:40:d6:c8:f8:f3:37:ab:29:f3:5f:ff: 6a:e1:d0:52:b0:d3:19:83:40:a0:3b:47:f3:8a:8c: 96:8d:f2:d4:fd:35:30:bb:e4:2b:61:59:2d:69:fd: 7c:37:4c:90:6c:00:67:25:5f:42:01:12:e2:76:0d: ca:4a:cb:3c:76:14:3e:8f:45:99:9e:55:ac:c7:9c: f4:3d:63:c5:b9:aa:89:9b:c8:8a:52:2d:c7:f3:14: 49:ef:40:e4:52:54:3d:26:11:60:37:72:12:df:6d: 2e:e7:3b:27:b1:19:44:1c:c2:d4:22:13:e8:c9:89: bb:e3:0c:5e:03:b8:49:1b:26:75:1c:c3:c1:e3:00: 1c:ca:b9:69:81:c4:fe:da:00:f3:53:1f:30:1a:cd: 16:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:54:A1:C0:1A:FD:BE:12:4D:10:3E:BF:DF:3D:7A:89:BE:A2:DC:BF X509v3 Authority Key Identifier: keyid:2A:69:D6:99:F1:3C:04:1B:FD:A3:DA:A5:7E:21:FF:AB:3C:53:ED:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmnWmfE8BBv9o9qlfiH_qzxT7V8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:be:fc:4f:20:17:67:24:b2:a0:91:d1:d0:f1:74:c3:18:4a: f1:61:77:38:5c:a4:3b:6a:11:45:0c:a0:44:95:dd:f6:f8:fe: 15:35:4b:f8:3c:66:ab:66:02:98:be:6b:10:aa:8a:32:f6:ff: 28:26:c3:53:8a:e1:93:4d:3b:de:39:fd:7a:51:ac:59:1d:f1: 13:6a:16:af:f0:27:21:f8:2c:90:37:63:2b:8c:31:04:1f:63: 2d:82:13:91:30:8e:f2:fe:a3:c0:d0:5c:c2:a7:c2:18:87:9b: 01:a1:87:c5:6b:81:c6:37:ad:0f:ac:5d:bd:41:6e:32:42:ac: 5a:37:d4:9f:16:20:67:6b:d4:fc:81:65:d3:65:d5:a3:ef:3f: 31:72:3c:e7:13:93:5a:a7:43:be:d8:ab:09:55:98:fb:79:d0: e0:7f:19:d1:fd:ca:2e:71:16:63:e0:44:cc:4d:a4:35:d1:80: a7:78:2e:7f:17:42:a0:fb:03:f3:89:5b:35:d8:4c:1d:32:9f: fe:ef:ff:c4:d1:5b:30:66:0b:57:80:2d:54:84:08:07:24:5d: fe:5b:86:a0:6d:f0:a0:cf:a3:6f:c5:24:c9:d8:e2:72:95:c7: f7:37:01:8a:c6:ab:51:c3:3a:06:e9:2e:2b:9a:84:d5:f3:fe: a2:fa:a7:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE5MjcxMTAvBgNVBAUTKDJBNjlENjk5RjEzQzA0MUJGREEzREFBNTdFMjFGRkFC M0M1M0VENUYwHhcNMjUwNDI1MDIzNzE1WhcNMjUwNTAyMDIzNzE1WjAYMRYwFAYD VQQDEw02ODBhZjU1Yy02NTJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAunYsYamLm9PEz/tNm4WbZo5jDkrUYHTVoFg8wPJfkIF/ViXI3s1XFHiipeOm QnhDBcIZ0E1urYAroJSGzb/cfPQK1NauAuGJizDXTBR5XuwMu4D5uRqFklX76nrf uHk+KFhsQaTegH8Gzl9cQNbI+PM3qynzX/9q4dBSsNMZg0CgO0fzioyWjfLU/TUw u+QrYVktaf18N0yQbABnJV9CARLidg3KSss8dhQ+j0WZnlWsx5z0PWPFuaqJm8iK Ui3H8xRJ70DkUlQ9JhFgN3IS320u5zsnsRlEHMLUIhPoyYm74wxeA7hJGyZ1HMPB 4wAcyrlpgcT+2gDzUx8wGs0W1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOtUocAa /b4STRA+v989eom+oty/MB8GA1UdIwQYMBaAFCpp1pnxPAQb/aPapX4h/6s8U+1f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTkyNy9GRDhCMjJCMEJD MkYxMUVEQThGNzY1M0VDNEY5QUUwMi9LbW5XbWZFOEJCdjlvOXFsZmlIX3F6eFQ3 VjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ttbldtZkU4QkJ2OW85cWxmaUhfcXp4VDdWOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTkyNy9GRDhCMjJCMEJDMkYxMUVEQThGNzY1M0VDNEY5QUUwMi9LbW5XbWZFOEJC djlvOXFsZmlIX3F6eFQ3VjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2vvxPIBdnJLKgkdHQ8XTDGErxYXc4XKQ7ahFFDKBEld32+P4VNUv4 PGarZgKYvmsQqooy9v8oJsNTiuGTTTveOf16UaxZHfETahav8Cch+CyQN2MrjDEE H2MtghORMI7y/qPA0FzCp8IYh5sBoYfFa4HGN60PrF29QW4yQqxaN9SfFiBna9T8 gWXTZdWj7z8xcjznE5Nap0O+2KsJVZj7edDgfxnR/coucRZj4ETMTaQ10YCneC5/ F0Kg+wPziVs12EwdMp/+7//E0VswZgtXgC1UhAgHJF3+W4agbfCgz6NvxSTJ2OJy lcf3NwGKxqtRwzoG6S4rmoTV8/6i+qfd -----END CERTIFICATE-----Generated at Sat Apr 26 12:56:39 2025 by rpki-client