$ rpki-client -vvf rpki.apnic.net/member_repository/A912EDB7/46162ADAFED211E987FFC217C4F9AE02/kxWcm2Ez9IBvuyjGIl6UOWOmsAE.mft File: kxWcm2Ez9IBvuyjGIl6UOWOmsAE.mft (raw, json) Hash identifier: kqu3zy/DM5o5YbI4/hO5+u+7uur17xebiXRUFmMviR0= Subject key identifier: 10:97:40:D8:A9:58:93:58:AB:93:68:7D:37:D0:A5:E5:C2:3A:3D:ED Authority key identifier: 93:15:9C:9B:61:33:F4:80:6F:BB:28:C6:22:5E:94:39:63:A6:B0:01 Certificate issuer: /CN=A912EDB7/serialNumber=93159C9B6133F4806FBB28C6225E943963A6B001 Certificate serial: 0C52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kxWcm2Ez9IBvuyjGIl6UOWOmsAE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912EDB7/46162ADAFED211E987FFC217C4F9AE02/kxWcm2Ez9IBvuyjGIl6UOWOmsAE.mft Manifest number: 0C49 Signing time: Sun 06 Apr 2025 18:09:08 +0000 Manifest this update: Sun 06 Apr 2025 18:09:08 +0000 Manifest next update: Sun 13 Apr 2025 18:09:08 +0000 Files and hashes: 1: kxWcm2Ez9IBvuyjGIl6UOWOmsAE.crl (hash: srHN9r+Wq6TgChripEbvvtrbGceBeP6n+v56Hy7/twA=) 2: 18CA7386E35511EDA63D5182C4F9AE02.roa (hash: dvi0NiJsfBapKtj0ISklbEMBQ4R3yCT+QGTIlcMVI/A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912EDB7/46162ADAFED211E987FFC217C4F9AE02/kxWcm2Ez9IBvuyjGIl6UOWOmsAE.crl rsync://rpki.apnic.net/member_repository/A912EDB7/46162ADAFED211E987FFC217C4F9AE02/kxWcm2Ez9IBvuyjGIl6UOWOmsAE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kxWcm2Ez9IBvuyjGIl6UOWOmsAE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3154 (0xc52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912EDB7 Validity Not Before: Apr 6 18:09:08 2025 GMT Not After : Apr 13 18:09:08 2025 GMT Subject: CN=67f2c344-a585 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:57:27:c9:b2:28:48:d4:69:58:4d:0d:04:db: 75:4d:c6:14:d5:a2:8a:f9:bf:89:b6:d4:9c:ec:1c: 58:74:8b:f5:83:92:e7:90:92:1b:f3:39:12:52:ab: 65:b6:81:d8:3f:6c:b4:0f:d3:80:f1:b0:c8:be:de: 4e:3a:89:2e:e4:32:3b:39:25:b2:d5:e4:cf:a6:0c: dc:35:d8:c8:70:55:52:86:d5:90:3c:5b:f8:0e:08: 12:50:b2:a8:3b:58:65:2a:cf:10:f0:ea:8c:6c:b2: 85:76:a1:29:14:c4:b8:52:12:1e:06:ea:b5:90:40: 70:47:8d:3d:e8:81:31:8b:a3:92:36:8f:0c:e0:19: 6b:07:32:06:06:ae:b8:e7:5a:e0:38:69:74:07:71: 61:86:da:eb:43:05:87:a2:c6:62:9b:c0:c5:ce:00: f3:69:40:92:0e:26:26:62:b7:d6:5b:66:4e:ae:db: 02:47:d4:32:8d:51:21:e1:81:00:d9:2a:71:b6:66: c6:25:49:92:d1:4c:72:16:8d:04:45:9b:d6:dd:d0: be:da:94:ba:85:58:00:fb:13:bd:c1:c2:b2:e3:7e: 44:40:40:68:94:f2:50:ae:c1:f7:fd:b0:b5:42:af: e1:ca:b4:cf:6d:34:83:a0:f0:5e:ba:34:06:4d:1a: d3:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:97:40:D8:A9:58:93:58:AB:93:68:7D:37:D0:A5:E5:C2:3A:3D:ED X509v3 Authority Key Identifier: keyid:93:15:9C:9B:61:33:F4:80:6F:BB:28:C6:22:5E:94:39:63:A6:B0:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912EDB7/46162ADAFED211E987FFC217C4F9AE02/kxWcm2Ez9IBvuyjGIl6UOWOmsAE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kxWcm2Ez9IBvuyjGIl6UOWOmsAE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912EDB7/46162ADAFED211E987FFC217C4F9AE02/kxWcm2Ez9IBvuyjGIl6UOWOmsAE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:a0:23:16:0f:4a:f6:52:97:fc:fc:c5:d8:0d:30:e6:e7:f0: db:cf:35:10:71:69:79:3e:5e:d3:2e:89:4f:13:4c:7e:28:67: cc:a8:78:12:c4:db:08:8d:d1:24:da:15:62:37:0e:60:ad:ba: dd:00:05:bf:a7:1b:67:06:5f:98:8f:3e:c9:e2:0f:43:b3:49: 80:ba:bc:b6:70:f6:2a:81:47:ef:40:8c:ab:44:90:69:69:d4: 63:be:10:01:10:15:24:4e:d6:9d:e9:6a:85:96:39:ae:f8:e9: e6:5c:bd:c9:da:ce:15:6b:38:83:58:b0:00:cb:30:35:9e:9c: 2e:6c:76:de:ae:f8:d2:6b:fa:1e:a5:9f:8c:7b:52:99:eb:12: 70:ca:09:7b:5b:1b:fb:86:51:42:cd:75:63:99:71:9e:c9:f1: 96:16:d3:63:f0:78:bc:fb:4b:0f:e6:64:7a:91:bc:3d:48:a6: 48:a0:61:ff:c2:c1:d6:a8:50:87:c5:46:37:18:09:58:71:a3: 65:50:22:75:45:77:01:fc:a3:75:77:5d:e6:8d:72:1a:90:79: a9:6c:a2:10:20:04:3c:7d:28:d1:1e:39:30:1c:fb:a6:f7:d4: 80:61:b9:a6:57:d3:74:b2:db:65:24:6f:92:e8:99:5e:fb:b2: ba:9a:26:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkVEQjcxMTAvBgNVBAUTKDkzMTU5QzlCNjEzM0Y0ODA2RkJCMjhDNjIyNUU5NDM5 NjNBNkIwMDEwHhcNMjUwNDA2MTgwOTA4WhcNMjUwNDEzMTgwOTA4WjAYMRYwFAYD VQQDEw02N2YyYzM0NC1hNTg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA01cnybIoSNRpWE0NBNt1TcYU1aKK+b+JttSc7BxYdIv1g5LnkJIb8zkSUqtl toHYP2y0D9OA8bDIvt5OOoku5DI7OSWy1eTPpgzcNdjIcFVShtWQPFv4DggSULKo O1hlKs8Q8OqMbLKFdqEpFMS4UhIeBuq1kEBwR4096IExi6OSNo8M4BlrBzIGBq64 51rgOGl0B3FhhtrrQwWHosZim8DFzgDzaUCSDiYmYrfWW2ZOrtsCR9QyjVEh4YEA 2SpxtmbGJUmS0UxyFo0ERZvW3dC+2pS6hVgA+xO9wcKy435EQEBolPJQrsH3/bC1 Qq/hyrTPbTSDoPBeujQGTRrTwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBCXQNip WJNYq5NofTfQpeXCOj3tMB8GA1UdIwQYMBaAFJMVnJthM/SAb7soxiJelDljprAB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRURCNy80NjE2MkFEQUZF RDIxMUU5ODdGRkMyMTdDNEY5QUUwMi9reFdjbTJFejlJQnZ1eWpHSWw2VU9XT21z QUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t4V2NtMkV6OUlCdnV5akdJbDZVT1dPbXNBRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RURCNy80NjE2MkFEQUZFRDIxMUU5ODdGRkMyMTdDNEY5QUUwMi9reFdjbTJFejlJ QnZ1eWpHSWw2VU9XT21zQUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBoCMWD0r2Upf8/MXYDTDm5/DbzzUQcWl5Pl7TLolPE0x+KGfMqHgS xNsIjdEk2hViNw5grbrdAAW/pxtnBl+Yjz7J4g9Ds0mAury2cPYqgUfvQIyrRJBp adRjvhABEBUkTtad6WqFljmu+OnmXL3J2s4VaziDWLAAyzA1npwubHbervjSa/oe pZ+Me1KZ6xJwygl7Wxv7hlFCzXVjmXGeyfGWFtNj8Hi8+0sP5mR6kbw9SKZIoGH/ wsHWqFCHxUY3GAlYcaNlUCJ1RXcB/KN1d13mjXIakHmpbKIQIAQ8fSjRHjkwHPum 99SAYbmmV9N0sttlJG+S6Jle+7K6miZI -----END CERTIFICATE-----Generated at Sun Apr 6 21:57:26 2025 by rpki-client