$ rpki-client -vvf rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft File: kyv2OTHDR-dryQidQb4k9jcPJYI.mft (raw, json) Hash identifier: ILSodEj4yIxxi4RFhttYnVi8X4jIcxsHwiZjKQ1UHXM= Subject key identifier: 35:F0:74:5C:2B:85:53:59:D3:22:EF:87:F7:D8:DF:3A:DE:D6:C3:8C Authority key identifier: 93:2B:F6:39:31:C3:47:E7:6B:C9:08:9D:41:BE:24:F6:37:0F:25:82 Certificate issuer: /CN=A919879C/serialNumber=932BF63931C347E76BC9089D41BE24F6370F2582 Certificate serial: 027B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kyv2OTHDR-dryQidQb4k9jcPJYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft Manifest number: 0277 Signing time: Fri 25 Apr 2025 01:26:24 +0000 Manifest this update: Fri 25 Apr 2025 01:26:23 +0000 Manifest next update: Fri 02 May 2025 01:26:23 +0000 Files and hashes: 1: kyv2OTHDR-dryQidQb4k9jcPJYI.crl (hash: rZDOa/hs1S40ZTX6qlOBQutci4cVN5Ab6UsR2gD4uO8=) 2: E7C34456073711ED8BA93630C4F9AE02.roa (hash: kldDMFdCdKUVHMXGUfTfraYPzp89poxoo5pvwA3fx9Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.crl rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kyv2OTHDR-dryQidQb4k9jcPJYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:26:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 635 (0x27b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919879C, serialNumber=932BF63931C347E76BC9089D41BE24F6370F2582 Validity Not Before: Apr 25 01:26:23 2025 GMT Not After : May 2 01:26:23 2025 GMT Subject: CN=680ae4c0-11b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:8d:92:58:41:a3:12:69:a5:fe:46:6a:fe:3b: ca:11:17:a0:4b:04:0a:67:28:2c:90:9a:1c:13:34: f7:49:c7:8b:34:5d:ff:24:8b:e7:c1:23:a0:79:fa: 85:a4:2a:94:e7:b8:cd:8a:62:9f:f0:6c:28:f5:dc: 58:88:af:8d:cf:a2:ea:d7:d4:be:4f:37:09:91:d1: d3:f0:01:f9:d0:69:0c:49:31:a6:da:f9:12:0d:de: 65:01:72:ee:c1:69:8f:77:7e:36:59:52:bd:57:06: 8f:4f:83:9a:04:e9:36:e4:4c:b7:9e:a9:99:e1:22: 1f:77:9a:19:47:bb:e2:79:62:69:fd:1d:90:20:7f: 80:5a:96:14:36:6c:5d:bd:07:3a:42:33:fb:92:e9: 9d:6e:dc:8d:ac:8c:97:ba:0f:da:7c:09:5a:90:bb: 19:d9:9a:fb:9e:e7:ed:95:dd:9e:33:b3:7b:f0:e0: d1:3b:74:e5:92:06:08:7f:6d:4d:bd:9c:6d:5f:3c: 13:be:a5:d0:b4:e2:26:e0:1f:26:e4:13:ff:aa:07: 7a:66:0d:85:0b:9d:ee:c3:30:11:65:c1:2b:69:38: f7:af:b8:eb:0f:d7:25:04:3a:26:eb:7b:32:70:39: 1d:10:c8:39:6d:ae:b2:c0:a1:0b:98:57:47:56:be: 21:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:F0:74:5C:2B:85:53:59:D3:22:EF:87:F7:D8:DF:3A:DE:D6:C3:8C X509v3 Authority Key Identifier: keyid:93:2B:F6:39:31:C3:47:E7:6B:C9:08:9D:41:BE:24:F6:37:0F:25:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kyv2OTHDR-dryQidQb4k9jcPJYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:df:0a:8f:de:bc:d9:e8:20:b4:36:a6:00:db:30:e1:ab:df: d5:5d:2f:57:2b:2c:84:ce:f5:7e:fc:9a:2d:e9:5a:e5:b5:a8: 07:eb:c9:ee:4c:43:6c:54:a2:bc:e9:bb:3d:04:24:00:2c:03: 22:a4:99:cb:81:e8:56:e7:21:c6:57:f6:c2:0b:d4:28:8a:e0: c5:d0:0a:94:2a:17:fe:37:19:19:cb:15:a9:dc:26:c5:09:50: 31:4b:c4:26:33:da:a6:0f:aa:5d:fd:88:b1:7a:07:d2:ff:55: 68:a2:f7:be:d5:b8:f2:d8:08:db:38:26:8c:dc:0c:3d:08:eb: 7b:bd:9c:78:79:c0:0c:bb:96:cb:bc:2e:f7:b8:39:04:5f:c3: a2:5a:cc:58:83:7e:31:76:a7:5c:5f:2a:db:d4:62:c2:ff:07: fd:0e:33:2b:ac:bc:63:4e:f1:30:3a:13:0d:1e:9f:80:e3:f4: e6:64:4b:5f:59:d3:37:9b:35:c0:df:f1:55:a4:14:67:99:65: 98:67:9c:c0:18:f5:2f:1e:32:90:a9:54:45:3a:91:a2:52:0c: ee:16:2b:71:2d:89:9a:40:2d:a0:d9:66:ad:50:0b:19:6f:22: 49:8a:0f:2d:59:55:0a:59:e8:d4:17:ec:19:ca:37:35:2b:8f: f2:f0:f8:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTg3OUMxMTAvBgNVBAUTKDkzMkJGNjM5MzFDMzQ3RTc2QkM5MDg5RDQxQkUyNEY2 MzcwRjI1ODIwHhcNMjUwNDI1MDEyNjIzWhcNMjUwNTAyMDEyNjIzWjAYMRYwFAYD VQQDEw02ODBhZTRjMC0xMWIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAso2SWEGjEmml/kZq/jvKERegSwQKZygskJocEzT3SceLNF3/JIvnwSOgefqF pCqU57jNimKf8Gwo9dxYiK+Nz6Lq19S+TzcJkdHT8AH50GkMSTGm2vkSDd5lAXLu wWmPd342WVK9VwaPT4OaBOk25Ey3nqmZ4SIfd5oZR7vieWJp/R2QIH+AWpYUNmxd vQc6QjP7kumdbtyNrIyXug/afAlakLsZ2Zr7nuftld2eM7N78ODRO3TlkgYIf21N vZxtXzwTvqXQtOIm4B8m5BP/qgd6Zg2FC53uwzARZcEraTj3r7jrD9clBDom63sy cDkdEMg5ba6ywKELmFdHVr4hmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDXwdFwr hVNZ0yLvh/fY3zre1sOMMB8GA1UdIwQYMBaAFJMr9jkxw0fna8kInUG+JPY3DyWC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODc5Qy9FMUQyMDI5MjA3 MzQxMUVEQjA0RDM3MkRDNEY5QUUwMi9reXYyT1RIRFItZHJ5UWlkUWI0azlqY1BK WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t5djJPVEhEUi1kcnlRaWRRYjRrOWpjUEpZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODc5Qy9FMUQyMDI5MjA3MzQxMUVEQjA0RDM3MkRDNEY5QUUwMi9reXYyT1RIRFIt ZHJ5UWlkUWI0azlqY1BKWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCj3wqP3rzZ6CC0NqYA2zDhq9/VXS9XKyyEzvV+/Jot6VrltagH68nu TENsVKK86bs9BCQALAMipJnLgehW5yHGV/bCC9QoiuDF0AqUKhf+NxkZyxWp3CbF CVAxS8QmM9qmD6pd/YixegfS/1Voove+1bjy2AjbOCaM3Aw9COt7vZx4ecAMu5bL vC73uDkEX8OiWsxYg34xdqdcXyrb1GLC/wf9DjMrrLxjTvEwOhMNHp+A4/TmZEtf WdM3mzXA3/FVpBRnmWWYZ5zAGPUvHjKQqVRFOpGiUgzuFitxLYmaQC2g2WatUAsZ byJJig8tWVUKWejUF+wZyjc1K4/y8PiD -----END CERTIFICATE-----Generated at Sat Apr 26 13:06:43 2025 by rpki-client