$ rpki-client -vvf rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft File: KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft (raw, json) Hash identifier: WKQRztJS7mQo8ZR/fLnJ++6FcDG8HougGJiPMNxr8Bw= Subject key identifier: 0D:9D:07:D6:E4:12:C6:FA:0F:3C:97:43:F7:A5:CC:67:44:84:37:D9 Authority key identifier: 29:D1:6C:98:DB:3D:5B:F6:4B:6B:92:04:C0:96:00:86:0C:D2:94:52 Certificate issuer: /CN=A916022F/serialNumber=29D16C98DB3D5BF64B6B9204C09600860CD29452 Certificate serial: 10AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft Manifest number: 23A0 Signing time: Sun 06 Apr 2025 16:57:30 +0000 Manifest this update: Sun 06 Apr 2025 16:57:29 +0000 Manifest next update: Sun 13 Apr 2025 16:57:29 +0000 Files and hashes: 1: KdFsmNs9W_ZLa5IEwJYAhgzSlFI.crl (hash: I5PfUSKu5XIMJJejOFU7IGlayV5qMrbYkcztBcU1op4=) 2: DE0A75A605EB11EA94CD7287C4F9AE02.roa (hash: rQZ+LsPDuc4EXnC/GiBOmzFAxUE3pMz5tb4kdOhgWwA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.crl rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 16:57:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4267 (0x10ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916022F Validity Not Before: Apr 6 16:57:29 2025 GMT Not After : Apr 13 16:57:29 2025 GMT Subject: CN=67f2b279-6dae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:5e:f5:76:95:c8:79:4b:6f:b1:58:8b:75:d4: a2:33:72:e5:b0:3f:09:c9:e0:d3:f1:fe:a6:16:99: 32:83:c9:68:fe:a6:b4:99:5c:a5:6a:8a:7c:b9:3c: 94:ed:f0:6e:8d:28:b3:62:87:5e:86:e4:c8:9c:8d: fc:f8:86:0c:cf:a3:2b:5d:8a:1d:37:9a:53:83:16: bb:8a:03:22:ef:b5:0c:03:e7:97:ef:f7:65:95:46: b1:68:ff:95:2b:68:01:f3:07:47:b0:19:cd:77:9e: 97:b2:f5:6d:e9:f0:35:ce:2c:e2:df:2a:2e:5d:e0: 2e:e2:39:28:de:c2:79:01:36:64:72:bd:01:b4:b5: aa:67:0d:30:1c:57:1d:c8:0d:eb:9c:db:a6:7a:17: 1c:c1:bb:a8:2f:f7:01:27:c0:f1:e9:5b:d1:32:01: f9:31:c6:97:32:5f:5a:46:d7:3a:7c:84:c8:cc:e8: 9e:90:92:48:f9:0d:41:bc:75:64:f0:08:04:53:d9: 2a:88:96:3e:75:cf:21:28:56:f5:30:89:6d:ee:f9: 64:90:ff:24:4c:64:05:5e:c7:71:d6:43:e9:0f:e8: 60:8f:c1:cd:27:a2:06:0f:f8:18:fe:dd:e6:19:21: 8e:fc:78:1b:28:4b:11:8c:86:34:f9:52:c0:71:08: d5:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:9D:07:D6:E4:12:C6:FA:0F:3C:97:43:F7:A5:CC:67:44:84:37:D9 X509v3 Authority Key Identifier: keyid:29:D1:6C:98:DB:3D:5B:F6:4B:6B:92:04:C0:96:00:86:0C:D2:94:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:90:0c:f3:f8:61:dd:b3:88:cb:f9:06:4e:31:09:4c:9d:a3: 11:e3:4d:31:10:90:42:b6:47:5c:c9:9f:a8:0c:46:4a:0a:c7: 13:e7:9c:24:98:81:c3:7f:c9:65:8d:c6:ff:ed:ea:e3:a5:32: b5:24:01:20:7d:68:d1:15:aa:67:a0:4f:7a:62:da:54:79:97: 62:ac:2a:00:be:7f:26:fc:d5:be:f9:0f:05:3c:7e:69:3d:27: b6:3a:e4:b6:8f:d6:ef:27:2b:50:59:b5:1b:a2:c5:1f:51:e7: 03:7e:51:71:83:45:ed:6a:93:35:41:5a:4a:a5:5b:92:50:e8: 49:75:b0:d0:fc:de:29:72:e0:86:02:e5:29:a6:52:66:84:63: c7:eb:cf:c8:30:d3:82:5d:d6:8f:d2:06:8f:57:e2:f2:c2:97: 17:be:9d:7e:4f:f1:3f:fb:ae:67:b8:7a:d4:23:c7:fd:04:a7: cf:8f:63:69:f6:2d:60:12:c0:11:76:89:7a:42:37:63:bf:7c: 6a:d5:4a:dd:ed:f9:4a:b6:67:7a:c2:89:ed:33:ed:cc:c7:e9: 06:50:9f:e1:be:db:49:54:9d:c6:e6:b8:72:aa:e0:ca:e3:3f: 2e:ca:99:75:50:a7:f4:32:86:6b:d3:d5:79:27:a9:d9:31:35: a0:1c:13:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjAyMkYxMTAvBgNVBAUTKDI5RDE2Qzk4REIzRDVCRjY0QjZCOTIwNEMwOTYwMDg2 MENEMjk0NTIwHhcNMjUwNDA2MTY1NzI5WhcNMjUwNDEzMTY1NzI5WjAYMRYwFAYD VQQDEw02N2YyYjI3OS02ZGFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0F71dpXIeUtvsViLddSiM3LlsD8JyeDT8f6mFpkyg8lo/qa0mVylaop8uTyU 7fBujSizYodehuTInI38+IYMz6MrXYodN5pTgxa7igMi77UMA+eX7/dllUaxaP+V K2gB8wdHsBnNd56XsvVt6fA1zizi3youXeAu4jko3sJ5ATZkcr0BtLWqZw0wHFcd yA3rnNumehccwbuoL/cBJ8Dx6VvRMgH5McaXMl9aRtc6fITIzOiekJJI+Q1BvHVk 8AgEU9kqiJY+dc8hKFb1MIlt7vlkkP8kTGQFXsdx1kPpD+hgj8HNJ6IGD/gY/t3m GSGO/HgbKEsRjIY0+VLAcQjVUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA2dB9bk Esb6DzyXQ/elzGdEhDfZMB8GA1UdIwQYMBaAFCnRbJjbPVv2S2uSBMCWAIYM0pRS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDIyRi85RUM3QUZCNEFB N0QxMUU4ODYxNDQ1MjRDNEY5QUUwMi9LZEZzbU5zOVdfWkxhNUlFd0pZQWhnelNs RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tkRnNtTnM5V19aTGE1SUV3SllBaGd6U2xGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDIyRi85RUM3QUZCNEFBN0QxMUU4ODYxNDQ1MjRDNEY5QUUwMi9LZEZzbU5zOVdf WkxhNUlFd0pZQWhnelNsRkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIkAzz+GHds4jL+QZOMQlMnaMR400xEJBCtkdcyZ+oDEZKCscT55wk mIHDf8lljcb/7erjpTK1JAEgfWjRFapnoE96YtpUeZdirCoAvn8m/NW++Q8FPH5p PSe2OuS2j9bvJytQWbUbosUfUecDflFxg0XtapM1QVpKpVuSUOhJdbDQ/N4pcuCG AuUpplJmhGPH68/IMNOCXdaP0gaPV+LywpcXvp1+T/E/+65nuHrUI8f9BKfPj2Np 9i1gEsARdol6Qjdjv3xq1Urd7flKtmd6wontM+3Mx+kGUJ/hvttJVJ3G5rhyquDK 4z8uypl1UKf0MoZr09V5J6nZMTWgHBP4 -----END CERTIFICATE-----Generated at Mon Apr 7 05:37:10 2025 by rpki-client