$ rpki-client -vvf rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.mft File: Kz24XvlSI40ZLc8XDua-scjbA6k.mft (raw, json) Hash identifier: RZ6Eb7TlA0qn2hxjfv5x++Y4M7U9aWd83XI3wEP0w4Q= Subject key identifier: FE:22:C5:9E:15:B2:6E:F7:7F:0A:B8:47:CE:CB:0E:58:E7:CE:CE:3F Authority key identifier: 2B:3D:B8:5E:F9:52:23:8D:19:2D:CF:17:0E:E6:BE:B1:C8:DB:03:A9 Certificate issuer: /CN=A919F525/serialNumber=2B3DB85EF952238D192DCF170EE6BEB1C8DB03A9 Certificate serial: 6F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kz24XvlSI40ZLc8XDua-scjbA6k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.mft Manifest number: 6C Signing time: Fri 25 Apr 2025 05:55:32 +0000 Manifest this update: Fri 25 Apr 2025 05:55:32 +0000 Manifest next update: Fri 02 May 2025 05:55:32 +0000 Files and hashes: 1: Kz24XvlSI40ZLc8XDua-scjbA6k.crl (hash: MVe9QtXno7xlLF9uTqkiyeeQibq8uF3fzEdtKL8jaoQ=) 2: 4AFF817484EF11EFBDCD721DC4F9AE02.roa (hash: yCZMfZ6NfluzN2Ky52xSRjoZCp2FkkrWLhsmfBj/nsg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.crl rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kz24XvlSI40ZLc8XDua-scjbA6k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:55:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 111 (0x6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F525, serialNumber=2B3DB85EF952238D192DCF170EE6BEB1C8DB03A9 Validity Not Before: Apr 25 05:55:32 2025 GMT Not After : May 2 05:55:32 2025 GMT Subject: CN=680b23d4-98bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:a4:3c:7b:63:cd:21:f5:09:cf:ce:01:38:14: 59:d5:3a:40:d1:5c:73:f1:96:6c:9a:c0:6e:50:58: e3:9b:22:0b:98:bc:5f:b8:07:3e:9b:03:21:90:2a: 07:5b:59:30:49:63:18:f1:f6:1f:15:de:56:01:0a: 7c:4e:38:c5:eb:09:d3:dc:e1:cc:89:f6:1b:d0:79: f1:b6:f0:12:75:b6:89:f6:4f:e5:1c:22:7d:aa:3a: 8a:43:d7:93:16:c0:16:38:33:ab:78:6f:89:10:4d: 2a:e6:88:fe:0b:cf:8e:23:ee:30:5e:fe:7f:66:b9: d6:c2:5d:b2:1c:d9:69:a9:0b:4c:ac:b5:b7:22:82: 14:6a:23:b0:a8:52:ae:0a:f9:d8:f1:f9:8a:14:8b: c9:f9:91:b6:af:2a:14:ac:78:0c:14:1f:ab:2e:4e: d5:e6:6f:59:e0:bc:88:26:3f:a5:b4:cf:bd:a7:13: 01:23:80:12:02:a4:0e:7b:3b:17:6e:36:1f:3d:13: 43:b7:1c:b3:49:52:33:4d:57:0f:90:98:e7:b5:14: ba:c7:9d:03:23:eb:d3:0a:b1:ed:65:a6:3d:b1:5f: db:75:f6:e8:78:1c:34:b9:c3:3c:fd:13:c9:60:0d: 4d:e8:7b:2d:08:3f:c7:6d:de:bb:5e:72:db:43:ad: 0b:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:22:C5:9E:15:B2:6E:F7:7F:0A:B8:47:CE:CB:0E:58:E7:CE:CE:3F X509v3 Authority Key Identifier: keyid:2B:3D:B8:5E:F9:52:23:8D:19:2D:CF:17:0E:E6:BE:B1:C8:DB:03:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kz24XvlSI40ZLc8XDua-scjbA6k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:44:a9:ba:47:0d:3f:31:dd:7b:66:f0:f6:7f:c3:ca:a3:dd: a4:bb:57:f4:35:41:20:bf:8c:c5:57:11:a6:80:d4:e2:61:49: 06:6f:6b:3d:c6:45:df:a1:54:1a:94:c8:f8:ed:3b:77:ca:cb: b7:cc:d6:4f:e5:da:9b:ef:dc:93:f7:c4:3b:36:bf:c4:99:bf: 35:aa:dc:e0:75:7e:f2:b0:ac:dd:71:94:ea:ec:a3:6d:89:7a: 51:cb:d4:fe:c8:58:50:04:b1:43:93:44:c9:aa:58:dd:80:ad: e8:02:a1:df:f1:28:e2:88:df:79:40:77:4a:05:c3:72:2b:3f: dd:57:bf:11:48:c8:bf:f0:ec:6d:48:ae:bf:c0:90:3b:8f:f5: 6c:47:14:fc:46:b7:64:55:7a:db:3c:61:52:d0:e5:2a:76:97: 64:b0:22:71:99:33:62:f3:2c:ea:01:9f:c0:87:90:84:d2:e1: 6d:33:88:43:51:97:62:5a:89:b7:8c:d7:4e:91:eb:88:fa:2f: 64:82:fa:bd:70:4a:4a:e1:fc:0e:2d:0c:10:21:d9:8f:40:39: 55:e4:94:9f:37:47:96:7a:53:73:46:52:de:f9:b8:c4:1a:a9: b7:bd:24:25:e4:eb:e2:c6:a4:58:9d:0a:67:f9:cc:00:4a:ca: c2:93:da:d5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RjUyNTExMC8GA1UEBRMoMkIzREI4NUVGOTUyMjM4RDE5MkRDRjE3MEVFNkJFQjFD OERCMDNBOTAeFw0yNTA0MjUwNTU1MzJaFw0yNTA1MDIwNTU1MzJaMBgxFjAUBgNV BAMTDTY4MGIyM2Q0LTk4YmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDjpDx7Y80h9QnPzgE4FFnVOkDRXHPxlmyawG5QWOObIguYvF+4Bz6bAyGQKgdb WTBJYxjx9h8V3lYBCnxOOMXrCdPc4cyJ9hvQefG28BJ1ton2T+UcIn2qOopD15MW wBY4M6t4b4kQTSrmiP4Lz44j7jBe/n9mudbCXbIc2WmpC0ystbcighRqI7CoUq4K +djx+YoUi8n5kbavKhSseAwUH6suTtXmb1ngvIgmP6W0z72nEwEjgBICpA57Oxdu Nh89E0O3HLNJUjNNVw+QmOe1FLrHnQMj69MKse1lpj2xX9t19uh4HDS5wzz9E8lg DU3oey0IP8dt3rtecttDrQv3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU/iLFnhWy bvd/CrhHzssOWOfOzj8wHwYDVR0jBBgwFoAUKz24XvlSI40ZLc8XDua+scjbA6kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlGNTI1L0UxODcxNzc2ODRF RDExRUZCOUZGMkQ1QUM0RjlBRTAyL0t6MjRYdmxTSTQwWkxjOFhEdWEtc2NqYkE2 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvS3oyNFh2bFNJNDBaTGM4WER1YS1zY2piQTZrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlG NTI1L0UxODcxNzc2ODRFRDExRUZCOUZGMkQ1QUM0RjlBRTAyL0t6MjRYdmxTSTQw WkxjOFhEdWEtc2NqYkE2ay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABhEqbpHDT8x3Xtm8PZ/w8qj3aS7V/Q1QSC/jMVXEaaA1OJhSQZvaz3G Rd+hVBqUyPjtO3fKy7fM1k/l2pvv3JP3xDs2v8SZvzWq3OB1fvKwrN1xlOrso22J elHL1P7IWFAEsUOTRMmqWN2AregCod/xKOKI33lAd0oFw3IrP91XvxFIyL/w7G1I rr/AkDuP9WxHFPxGt2RVets8YVLQ5Sp2l2SwInGZM2LzLOoBn8CHkITS4W0ziENR l2JaibeM106R64j6L2SC+r1wSkrh/A4tDBAh2Y9AOVXklJ83R5Z6U3NGUt75uMQa qbe9JCXk6+LGpFidCmf5zABKysKT2tU= -----END CERTIFICATE-----Generated at Sat Apr 26 13:38:43 2025 by rpki-client