$ rpki-client -vvf rpki.apnic.net/member_repository/A9193BF8/A22BD158E01511EDB1666961C4F9AE02/KoE65dYVKWBF2z4sQsuPzaxq0gw.mft File: KoE65dYVKWBF2z4sQsuPzaxq0gw.mft (raw, json) Hash identifier: VTCwArHACAG8HLWR8Dbd47EtEyapPUOmRNaUDu/3l+I= Subject key identifier: 8A:EA:C6:0D:C5:4E:BA:1D:00:78:57:C3:93:BD:FC:78:2D:ED:46:C4 Authority key identifier: 2A:81:3A:E5:D6:15:29:60:45:DB:3E:2C:42:CB:8F:CD:AC:6A:D2:0C Certificate issuer: /CN=A9193BF8/serialNumber=2A813AE5D615296045DB3E2C42CB8FCDAC6AD20C Certificate serial: 0182 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KoE65dYVKWBF2z4sQsuPzaxq0gw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193BF8/A22BD158E01511EDB1666961C4F9AE02/KoE65dYVKWBF2z4sQsuPzaxq0gw.mft Manifest number: 017F Signing time: Sat 03 May 2025 03:08:46 +0000 Manifest this update: Sat 03 May 2025 03:08:46 +0000 Manifest next update: Sat 10 May 2025 03:08:46 +0000 Files and hashes: 1: KoE65dYVKWBF2z4sQsuPzaxq0gw.crl (hash: akHFm3OfOW++68aWss7ObQxfS77dm/qZNVZDjLJgATo=) 2: B8F3C5B4E01811ED8385DA62C4F9AE02.roa (hash: XP8lLbicS7mB1IqZ6ApZEYlo1iErgLT+WwIjnSaqxSY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193BF8/A22BD158E01511EDB1666961C4F9AE02/KoE65dYVKWBF2z4sQsuPzaxq0gw.crl rsync://rpki.apnic.net/member_repository/A9193BF8/A22BD158E01511EDB1666961C4F9AE02/KoE65dYVKWBF2z4sQsuPzaxq0gw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KoE65dYVKWBF2z4sQsuPzaxq0gw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 03:08:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 386 (0x182) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193BF8, serialNumber=2A813AE5D615296045DB3E2C42CB8FCDAC6AD20C Validity Not Before: May 3 03:08:46 2025 GMT Not After : May 10 03:08:46 2025 GMT Subject: CN=681588be-7a12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:9c:22:20:a7:19:1f:e2:a2:83:4e:a5:ca:b4: 3f:73:31:52:53:1f:4d:60:b9:f6:eb:bf:37:d4:81: 4e:de:7a:5e:12:d5:4c:35:f0:3c:15:60:c7:b6:74: b7:95:0f:af:19:03:e8:a9:77:0a:8d:a7:b6:0d:bf: 63:45:aa:a9:00:f1:7c:bd:ae:82:9c:81:8c:b0:1a: 23:a6:78:64:e3:48:3e:45:04:00:a6:e4:9a:98:2d: d8:29:1d:49:92:4e:84:97:1d:67:db:ab:b3:0f:e7: 8c:35:da:b4:02:a7:58:d8:53:8c:db:0f:11:30:b5: bb:70:f1:d5:d8:a2:e1:12:ff:7a:44:40:10:4d:5c: 4c:4b:31:a0:c0:d8:32:d2:97:7d:14:ec:4f:7c:79: f6:e8:d0:c1:12:c0:f8:b1:74:80:82:4f:50:2a:6e: ac:68:77:6d:f7:77:d5:cd:d3:a4:a0:5b:ea:d2:6d: c5:86:7a:65:a7:eb:66:17:a4:87:aa:54:c8:6e:b4: 05:60:62:c8:02:21:4d:cf:95:4c:ca:de:16:51:c6: 09:d1:fd:42:86:a6:92:51:ec:a0:b5:d5:73:28:32: 2e:d0:26:2d:47:a9:db:76:67:36:94:97:de:dd:f1: 62:b5:ce:b8:69:d1:2a:39:bf:bd:c4:87:99:11:c4: 82:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:EA:C6:0D:C5:4E:BA:1D:00:78:57:C3:93:BD:FC:78:2D:ED:46:C4 X509v3 Authority Key Identifier: keyid:2A:81:3A:E5:D6:15:29:60:45:DB:3E:2C:42:CB:8F:CD:AC:6A:D2:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193BF8/A22BD158E01511EDB1666961C4F9AE02/KoE65dYVKWBF2z4sQsuPzaxq0gw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KoE65dYVKWBF2z4sQsuPzaxq0gw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193BF8/A22BD158E01511EDB1666961C4F9AE02/KoE65dYVKWBF2z4sQsuPzaxq0gw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:47:4e:1e:07:b4:68:1f:c4:d7:dd:0e:3c:ae:72:9a:0e:dc: 8b:84:c4:74:a4:e9:9f:ca:b8:7f:65:f6:d8:a2:73:f5:87:16: bc:d7:cf:75:3a:94:59:94:17:0f:56:77:b0:38:ff:93:97:cb: ce:9a:88:df:f1:84:b0:79:40:b9:56:ad:69:ae:6f:3e:2d:21: 70:a7:0e:44:ce:bb:77:31:74:a0:9d:b3:d6:95:95:30:cf:ff: 33:a6:c4:01:1d:c9:b0:5a:d7:bd:47:71:53:51:32:2a:e5:c9: a0:5d:8a:97:1e:12:e4:35:ad:ed:65:f3:20:97:be:9e:d1:35: fd:f7:08:08:30:24:7e:71:71:a8:f3:93:31:27:7f:89:77:1f: 48:74:01:87:2c:48:7d:6b:2a:6e:02:a8:57:04:fd:84:b9:7f: dc:29:99:ec:2a:bc:4c:6b:5e:48:06:16:77:75:e7:6c:f5:ba: 23:3d:f2:ad:4a:50:39:e5:37:1a:e5:e4:94:f3:d5:c9:1d:6d: f7:3c:14:64:7c:e2:26:7d:54:0d:56:6d:8c:c6:84:6b:f0:aa: 5f:45:3e:ca:b9:45:44:4b:b0:e7:24:76:ff:5a:1f:61:b4:a2: d0:33:23:84:bb:7b:7c:27:b7:0e:15:18:0b:7f:5d:d8:be:25: 55:c3:2d:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTNCRjgxMTAvBgNVBAUTKDJBODEzQUU1RDYxNTI5NjA0NURCM0UyQzQyQ0I4RkNE QUM2QUQyMEMwHhcNMjUwNTAzMDMwODQ2WhcNMjUwNTEwMDMwODQ2WjAYMRYwFAYD VQQDEw02ODE1ODhiZS03YTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtpwiIKcZH+Kig06lyrQ/czFSUx9NYLn267831IFO3npeEtVMNfA8FWDHtnS3 lQ+vGQPoqXcKjae2Db9jRaqpAPF8va6CnIGMsBojpnhk40g+RQQApuSamC3YKR1J kk6Elx1n26uzD+eMNdq0AqdY2FOM2w8RMLW7cPHV2KLhEv96REAQTVxMSzGgwNgy 0pd9FOxPfHn26NDBEsD4sXSAgk9QKm6saHdt93fVzdOkoFvq0m3Fhnplp+tmF6SH qlTIbrQFYGLIAiFNz5VMyt4WUcYJ0f1ChqaSUeygtdVzKDIu0CYtR6nbdmc2lJfe 3fFitc64adEqOb+9xIeZEcSCrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIrqxg3F TrodAHhXw5O9/Hgt7UbEMB8GA1UdIwQYMBaAFCqBOuXWFSlgRds+LELLj82satIM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5M0JGOC9BMjJCRDE1OEUw MTUxMUVEQjE2NjY5NjFDNEY5QUUwMi9Lb0U2NWRZVktXQkYyejRzUXN1UHpheHEw Z3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tvRTY1ZFlWS1dCRjJ6NHNRc3VQemF4cTBndy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 M0JGOC9BMjJCRDE1OEUwMTUxMUVEQjE2NjY5NjFDNEY5QUUwMi9Lb0U2NWRZVktX QkYyejRzUXN1UHpheHEwZ3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAER04eB7RoH8TX3Q48rnKaDtyLhMR0pOmfyrh/ZfbYonP1hxa81891 OpRZlBcPVnewOP+Tl8vOmojf8YSweUC5Vq1prm8+LSFwpw5Ezrt3MXSgnbPWlZUw z/8zpsQBHcmwWte9R3FTUTIq5cmgXYqXHhLkNa3tZfMgl76e0TX99wgIMCR+cXGo 85MxJ3+Jdx9IdAGHLEh9aypuAqhXBP2EuX/cKZnsKrxMa15IBhZ3deds9bojPfKt SlA55Tca5eSU89XJHW33PBRkfOImfVQNVm2MxoRr8KpfRT7KuUVES7DnJHb/Wh9h tKLQMyOEu3t8J7cOFRgLf13YviVVwy2h -----END CERTIFICATE-----Generated at Mon May 5 00:51:42 2025 by rpki-client