$ rpki-client -vvf rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.mft File: KJYksuALd009OQ9aCtELW8NfVtg.mft (raw, json) Hash identifier: Zq/tuQ66L4hEdTaA1xjZJKSQpoiFcw+UyMxsB3LQ/ZI= Subject key identifier: 66:CB:1D:3A:9C:6F:3C:CA:4E:C1:A2:2D:33:3C:03:BC:EC:6E:9C:56 Authority key identifier: 28:96:24:B2:E0:0B:77:4D:3D:39:0F:5A:0A:D1:0B:5B:C3:5F:56:D8 Certificate issuer: /CN=A918748C/serialNumber=289624B2E00B774D3D390F5A0AD10B5BC35F56D8 Certificate serial: 0A6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJYksuALd009OQ9aCtELW8NfVtg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.mft Manifest number: 0A52 Signing time: Thu 24 Apr 2025 19:36:23 +0000 Manifest this update: Thu 24 Apr 2025 19:36:22 +0000 Manifest next update: Thu 01 May 2025 19:36:22 +0000 Files and hashes: 1: KJYksuALd009OQ9aCtELW8NfVtg.crl (hash: jhjCkEB5jgMd5J75aeTh2OvYUYBLBebwMBSvpIdNlH4=) 2: DCE066622C7811EC97C8D979C4F9AE02.roa (hash: DeSX5mR90qF9IRdX2EyXW+cFduwBwR++LaECrmC9RqI=) 3: DE137C362C7811EC97C8D979C4F9AE02.roa (hash: 1JrXRKrsJBaJ+/4+ml3Sz+iqG9fcskoIvUEpTyCTJxA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.crl rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJYksuALd009OQ9aCtELW8NfVtg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:36:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2668 (0xa6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918748C, serialNumber=289624B2E00B774D3D390F5A0AD10B5BC35F56D8 Validity Not Before: Apr 24 19:36:22 2025 GMT Not After : May 1 19:36:22 2025 GMT Subject: CN=680a92b7-8583 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:d6:04:d8:44:4d:7b:3e:e8:81:99:8b:23:56: 48:48:22:7b:23:e3:a8:f4:45:b4:01:a4:f5:8c:5e: 55:4a:fc:6a:87:49:49:5c:7a:94:32:da:c2:23:62: 00:8a:8f:d2:26:f2:62:56:bf:0d:93:c1:32:d1:4d: 02:87:a7:28:88:1f:b6:58:93:15:8b:7e:cb:fa:1d: 23:4d:96:4e:f2:dd:46:ff:43:bd:9f:38:73:dc:c7: e5:a8:50:ad:66:37:3d:37:98:d0:0c:c9:29:55:ee: 19:0b:6c:b8:e4:20:09:cb:37:cc:b7:df:c5:ea:45: d4:62:73:d0:50:b1:7c:f7:33:14:dd:1b:7f:2e:62: 5f:69:f0:25:1a:21:6c:76:20:51:03:92:b5:44:73: ac:84:ec:45:04:c7:68:6d:6e:71:f8:dd:ec:dd:04: 19:d4:e0:7f:8a:01:30:02:62:fd:4f:c1:be:da:63: 26:1c:2c:95:65:90:90:63:76:94:68:47:8a:21:88: 9a:5c:51:cd:cc:ec:83:89:f1:02:1a:a5:23:e8:d1: c3:e6:2d:62:82:5d:ac:2f:01:b1:22:2b:21:17:bd: 99:ec:31:65:33:bc:8a:83:45:af:c9:a0:bc:f1:6d: 15:1f:1d:f2:b8:01:37:98:16:43:94:27:ea:75:12: a3:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:CB:1D:3A:9C:6F:3C:CA:4E:C1:A2:2D:33:3C:03:BC:EC:6E:9C:56 X509v3 Authority Key Identifier: keyid:28:96:24:B2:E0:0B:77:4D:3D:39:0F:5A:0A:D1:0B:5B:C3:5F:56:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJYksuALd009OQ9aCtELW8NfVtg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:9f:96:1c:4d:04:a6:6e:8d:fb:d8:1b:1c:a9:a9:f1:99:1a: 2d:42:d6:ff:01:89:ab:7b:c9:48:54:c9:94:fe:1f:7f:7f:72: 0e:ca:1f:99:85:dd:6e:3e:14:6f:9a:17:b5:38:eb:14:0a:98: 07:64:f9:11:ce:32:58:72:53:67:d9:83:4d:a2:8c:44:3c:7d: 9b:3e:7c:5a:2e:68:a7:2f:24:47:04:1e:2e:ff:26:db:f8:6d: 20:52:bb:b6:1e:a6:87:41:28:a8:cf:05:07:df:9d:d7:df:2e: 48:ef:18:65:26:bd:f0:21:32:1f:13:21:18:86:cb:c4:ce:a8: 9d:4f:e5:8f:70:c5:b5:b8:d7:00:83:b6:61:2e:26:e3:f5:62: ae:58:55:32:9c:f9:33:59:f4:8a:52:6b:5b:f3:b6:ff:60:5f: de:52:3f:38:4f:c1:a7:56:d4:69:f1:c5:67:d4:dc:29:e6:9a: fb:b8:7e:42:9e:46:f0:7f:62:7e:02:b9:b7:3a:0d:9d:b5:c4: 44:99:e1:bb:37:51:9b:97:19:6d:f1:9c:7e:d6:88:ee:0f:dd: 7d:d8:3e:94:80:3c:6b:a9:33:43:a8:b5:6b:29:f3:b4:a1:39: 6c:12:ce:a2:69:a4:85:e3:2c:a1:16:35:9e:b6:e7:29:77:c5: 2b:6a:7d:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCmwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc0OEMxMTAvBgNVBAUTKDI4OTYyNEIyRTAwQjc3NEQzRDM5MEY1QTBBRDEwQjVC QzM1RjU2RDgwHhcNMjUwNDI0MTkzNjIyWhcNMjUwNTAxMTkzNjIyWjAYMRYwFAYD VQQDEw02ODBhOTJiNy04NTgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoNYE2ERNez7ogZmLI1ZISCJ7I+Oo9EW0AaT1jF5VSvxqh0lJXHqUMtrCI2IA io/SJvJiVr8Nk8Ey0U0Ch6coiB+2WJMVi37L+h0jTZZO8t1G/0O9nzhz3MflqFCt Zjc9N5jQDMkpVe4ZC2y45CAJyzfMt9/F6kXUYnPQULF89zMU3Rt/LmJfafAlGiFs diBRA5K1RHOshOxFBMdobW5x+N3s3QQZ1OB/igEwAmL9T8G+2mMmHCyVZZCQY3aU aEeKIYiaXFHNzOyDifECGqUj6NHD5i1igl2sLwGxIishF72Z7DFlM7yKg0WvyaC8 8W0VHx3yuAE3mBZDlCfqdRKj9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGbLHTqc bzzKTsGiLTM8A7zsbpxWMB8GA1UdIwQYMBaAFCiWJLLgC3dNPTkPWgrRC1vDX1bY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzQ4Qy9BNzREQTc3MjY0 QjQxMUVBQjM4QTM0MERDNEY5QUUwMi9LSllrc3VBTGQwMDlPUTlhQ3RFTFc4TmZW dGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tKWWtzdUFMZDAwOU9ROWFDdEVMVzhOZlZ0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzQ4Qy9BNzREQTc3MjY0QjQxMUVBQjM4QTM0MERDNEY5QUUwMi9LSllrc3VBTGQw MDlPUTlhQ3RFTFc4TmZWdGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6n5YcTQSmbo372BscqanxmRotQtb/AYmre8lIVMmU/h9/f3IOyh+Z hd1uPhRvmhe1OOsUCpgHZPkRzjJYclNn2YNNooxEPH2bPnxaLminLyRHBB4u/ybb +G0gUru2HqaHQSiozwUH353X3y5I7xhlJr3wITIfEyEYhsvEzqidT+WPcMW1uNcA g7ZhLibj9WKuWFUynPkzWfSKUmtb87b/YF/eUj84T8GnVtRp8cVn1Nwp5pr7uH5C nkbwf2J+Arm3Og2dtcREmeG7N1Gblxlt8Zx+1ojuD9192D6UgDxrqTNDqLVrKfO0 oTlsEs6iaaSF4yyhFjWetucpd8Uran1c -----END CERTIFICATE-----Generated at Sat Apr 26 13:00:25 2025 by rpki-client