$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.mft File: kFj-3Oxfh289_hYZQxnBRcnAzLU.mft (raw, json) Hash identifier: EQJ6w4y+bBaYTsMaVjX39Mu8UpxlyxLOR5kSU/TTM6c= Subject key identifier: AC:84:81:A8:C6:8D:4C:E0:77:31:B4:F0:AC:48:7D:59:74:EE:6D:5A Authority key identifier: 90:58:FE:DC:EC:5F:87:6F:3D:FE:16:19:43:19:C1:45:C9:C0:CC:B5 Certificate issuer: /CN=A9185B0F/serialNumber=9058FEDCEC5F876F3DFE16194319C145C9C0CCB5 Certificate serial: 064B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kFj-3Oxfh289_hYZQxnBRcnAzLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.mft Manifest number: 0646 Signing time: Thu 24 Apr 2025 22:19:56 +0000 Manifest this update: Thu 24 Apr 2025 22:19:55 +0000 Manifest next update: Thu 01 May 2025 22:19:55 +0000 Files and hashes: 1: kFj-3Oxfh289_hYZQxnBRcnAzLU.crl (hash: Z3lh2gH8kB2UPVFNd3Uzfsc0Uu1j8RzYAwPSTVuatzc=) 2: 25A7FE7E855211EB8DEDD812C4F9AE02.roa (hash: rH99d2UyS2BchbUPUbqFc9GOoYlWGp7hkjxEyr/ZGj0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.crl rsync://rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kFj-3Oxfh289_hYZQxnBRcnAzLU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:19:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1611 (0x64b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B0F, serialNumber=9058FEDCEC5F876F3DFE16194319C145C9C0CCB5 Validity Not Before: Apr 24 22:19:55 2025 GMT Not After : May 1 22:19:55 2025 GMT Subject: CN=680ab90c-595f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:69:ef:c0:ff:a4:66:33:6d:0d:a2:9a:b7:53: 0c:eb:61:1b:55:12:0c:ed:79:69:79:31:98:c4:ee: 28:7a:ce:46:ae:89:b9:3b:36:d2:96:bf:03:78:86: e7:e6:f2:4b:c6:cc:ae:59:23:d7:03:5d:7e:cc:a5: f4:36:6c:74:4c:37:5c:dc:68:bd:62:42:3a:68:45: 07:c9:c5:18:eb:28:6e:14:b8:f7:6c:40:3c:7a:86: 5b:02:fd:47:9b:07:6b:9e:8a:e5:3e:46:02:ef:52: 1b:6c:1f:b3:a2:01:b9:db:25:ee:ff:19:5e:54:38: 7d:f5:d2:f0:e5:e6:8c:71:e2:4e:af:8c:c4:b6:3c: c7:48:ea:d9:83:2e:80:d4:e2:75:63:d2:13:69:56: 66:b7:1f:da:16:f5:ac:78:fc:f7:3a:05:8e:ad:34: 1a:bc:ea:26:8f:e0:7a:df:eb:30:8d:6e:c4:1a:73: 60:15:1d:9d:ac:1c:bc:a5:c3:d3:d0:88:97:b3:0a: 5a:66:c2:aa:68:f8:72:1c:a6:a0:c2:77:42:6f:2a: 6d:98:8a:82:f9:37:3d:7e:f3:07:9a:11:da:11:ab: 04:26:72:1c:6c:69:17:d2:8f:ef:30:17:60:7e:bc: f2:f5:41:e8:27:6b:09:72:cf:e1:59:14:e8:33:2f: 81:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:84:81:A8:C6:8D:4C:E0:77:31:B4:F0:AC:48:7D:59:74:EE:6D:5A X509v3 Authority Key Identifier: keyid:90:58:FE:DC:EC:5F:87:6F:3D:FE:16:19:43:19:C1:45:C9:C0:CC:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kFj-3Oxfh289_hYZQxnBRcnAzLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:a8:bc:54:50:5f:71:11:45:68:1e:5f:19:8b:cb:61:37:1f: 29:a2:1f:52:8c:e6:f1:73:b4:8d:cc:04:72:83:57:22:93:cd: e4:15:37:1c:f2:de:9c:6c:52:f6:0f:1d:51:77:03:0e:5c:9d: 0b:c2:01:7b:13:db:45:2e:a1:61:d4:9b:51:28:00:3d:3f:d3: 4c:88:4d:b7:6e:ff:62:53:d4:f0:d9:26:68:5e:02:6d:14:f7: 15:ae:b7:c2:a6:11:ab:f2:33:4e:54:36:b2:0b:a3:75:92:67: 56:ad:d5:1e:04:26:ff:83:77:f8:2c:7b:b6:27:ea:b8:48:7a: 30:1b:e9:ea:54:74:45:62:3d:7d:a0:d1:72:00:50:b4:2b:f6: f2:b9:d5:94:12:2c:16:dd:88:42:35:8c:aa:76:fc:bf:37:f7: b2:ae:e6:8b:09:27:80:fd:7b:88:ac:fd:e8:4c:fc:3f:15:f5: 00:9c:16:83:03:bc:a4:78:75:13:f2:3e:be:8b:64:c2:a3:d0: 55:e2:64:fc:d9:9e:82:e1:8e:01:3f:31:50:7a:7a:51:9c:d1: 24:86:62:55:76:f3:67:0c:e2:b6:dc:8b:36:a1:71:a6:9c:b2: 1b:e2:c8:62:2a:4a:2d:51:71:59:1b:c6:87:ae:0b:3c:36:3e: 08:bf:b2:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVCMEYxMTAvBgNVBAUTKDkwNThGRURDRUM1Rjg3NkYzREZFMTYxOTQzMTlDMTQ1 QzlDMENDQjUwHhcNMjUwNDI0MjIxOTU1WhcNMjUwNTAxMjIxOTU1WjAYMRYwFAYD VQQDEw02ODBhYjkwYy01OTVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5GnvwP+kZjNtDaKat1MM62EbVRIM7XlpeTGYxO4oes5Grom5OzbSlr8DeIbn 5vJLxsyuWSPXA11+zKX0Nmx0TDdc3Gi9YkI6aEUHycUY6yhuFLj3bEA8eoZbAv1H mwdrnorlPkYC71IbbB+zogG52yXu/xleVDh99dLw5eaMceJOr4zEtjzHSOrZgy6A 1OJ1Y9ITaVZmtx/aFvWsePz3OgWOrTQavOomj+B63+swjW7EGnNgFR2drBy8pcPT 0IiXswpaZsKqaPhyHKagwndCbyptmIqC+Tc9fvMHmhHaEasEJnIcbGkX0o/vMBdg frzy9UHoJ2sJcs/hWRToMy+BowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKyEgajG jUzgdzG08KxIfVl07m1aMB8GA1UdIwQYMBaAFJBY/tzsX4dvPf4WGUMZwUXJwMy1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUIwRi81MkQwQTEyMDg1 NEUxMUVCQjc1QkIwMDlDNEY5QUUwMi9rRmotM094ZmgyODlfaFlaUXhuQlJjbkF6 TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tGai0zT3hmaDI4OV9oWVpReG5CUmNuQXpMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUIwRi81MkQwQTEyMDg1NEUxMUVCQjc1QkIwMDlDNEY5QUUwMi9rRmotM094Zmgy ODlfaFlaUXhuQlJjbkF6TFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsqLxUUF9xEUVoHl8Zi8thNx8poh9SjObxc7SNzARyg1cik83kFTcc 8t6cbFL2Dx1RdwMOXJ0LwgF7E9tFLqFh1JtRKAA9P9NMiE23bv9iU9Tw2SZoXgJt FPcVrrfCphGr8jNOVDayC6N1kmdWrdUeBCb/g3f4LHu2J+q4SHowG+nqVHRFYj19 oNFyAFC0K/byudWUEiwW3YhCNYyqdvy/N/eyruaLCSeA/XuIrP3oTPw/FfUAnBaD A7ykeHUT8j6+i2TCo9BV4mT82Z6C4Y4BPzFQenpRnNEkhmJVdvNnDOK23Is2oXGm nLIb4shiKkotUXFZG8aHrgs8Nj4Iv7KD -----END CERTIFICATE-----Generated at Sat Apr 26 14:24:39 2025 by rpki-client