$ rpki-client -vvf rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft File: KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft (raw, json) Hash identifier: ijs8I3jd0orlcJ8mNUL91CMStDEwBeg7/eYyPyHg+18= Subject key identifier: 84:03:28:B9:A1:CE:EA:53:47:8B:5D:96:3B:E1:52:E5:82:13:AA:B9 Authority key identifier: 2A:69:D6:99:F1:3C:04:1B:FD:A3:DA:A5:7E:21:FF:AB:3C:53:ED:5F Certificate issuer: /CN=A9171927/serialNumber=2A69D699F13C041BFDA3DAA57E21FFAB3C53ED5F Certificate serial: 0197 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmnWmfE8BBv9o9qlfiH_qzxT7V8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft Manifest number: 018C Signing time: Sat 29 Mar 2025 03:07:58 +0000 Manifest this update: Sat 29 Mar 2025 03:07:57 +0000 Manifest next update: Sat 05 Apr 2025 03:07:57 +0000 Files and hashes: 1: KmnWmfE8BBv9o9qlfiH_qzxT7V8.crl (hash: ayOSZ+xYvyz9b07625WIfbSrQU6KuPmtxpB+EalpfRQ=) 2: 6AA5FC16905211EE840DED1DC4F9AE02.roa (hash: MC0BNQ8WSdb9k6lw5PW7hJBMQ3Zo5Nq5ihUjlKmX1lo=) 3: FD41FC5EEA6811EDBE3EE23CC4F9AE02.roa (hash: RACB3YknB3cdpFyJZW5lQ48vMsl9eTtZug3dtaWvByM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.crl rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmnWmfE8BBv9o9qlfiH_qzxT7V8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 03:07:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 407 (0x197) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171927 Validity Not Before: Mar 29 03:07:57 2025 GMT Not After : Apr 5 03:07:57 2025 GMT Subject: CN=67e7640d-6c81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b7:05:15:38:ef:2e:94:32:a1:91:f6:cf:62: ee:79:ed:70:e3:02:4d:3d:45:19:7e:5c:87:dd:ef: ff:86:c4:72:e7:18:41:9d:51:d1:8e:ae:a1:18:41: 08:d7:35:fe:e3:8e:62:c3:51:cc:b1:ec:81:17:a2: f8:71:b4:d0:c4:55:4c:46:1b:d2:bd:fd:9a:9e:1b: 77:22:d9:14:76:79:ad:63:3b:3f:97:b2:c8:7c:48: ed:6d:a1:4f:e1:a9:87:8f:6d:54:70:fb:22:33:23: 1f:e5:cf:f6:a8:a8:f9:18:d0:f3:e6:45:49:5a:cd: d1:64:3e:dd:62:5f:6f:2e:57:f3:a7:3e:22:9e:5a: 6d:29:e8:72:eb:73:cb:9e:b9:50:72:90:0f:1d:4c: f2:c0:df:be:06:3c:34:5d:7c:54:34:78:61:92:85: 69:6b:29:2e:33:1d:2c:f6:d3:5c:0f:f9:4c:f0:c6: 36:b1:9f:c3:4d:47:11:23:8c:02:52:b3:b3:38:3a: 7d:98:b1:05:be:42:48:ff:65:2e:3d:21:35:fc:dc: 4d:be:de:28:7a:4c:18:10:5c:21:67:64:0a:28:12: 20:bc:2f:2a:dc:85:ef:cd:d4:5e:d2:48:84:c4:0e: 60:e3:f7:6e:db:02:06:3f:ff:a2:2b:87:37:92:83: 2a:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:03:28:B9:A1:CE:EA:53:47:8B:5D:96:3B:E1:52:E5:82:13:AA:B9 X509v3 Authority Key Identifier: keyid:2A:69:D6:99:F1:3C:04:1B:FD:A3:DA:A5:7E:21:FF:AB:3C:53:ED:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmnWmfE8BBv9o9qlfiH_qzxT7V8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:93:85:35:82:fd:dd:16:27:83:94:94:98:78:e0:b2:1b:6f: 19:5a:a5:61:f3:1e:5a:7d:db:4d:12:3b:58:33:79:23:29:9c: 3f:99:fe:48:81:bb:4f:b8:ca:3a:98:73:73:01:03:f0:52:d1: 55:83:dc:8d:27:95:bf:aa:30:cb:4c:40:90:e6:7d:c9:ce:2b: 7b:db:10:ec:02:1c:90:70:b5:61:12:63:28:f8:78:5a:a8:48: dd:4a:01:d6:cc:4c:f3:5c:3e:07:b4:76:40:9d:08:f4:a7:21: 8d:ef:8a:9c:70:b2:3e:8c:34:71:f7:bf:13:c5:0d:c5:d8:25: de:91:21:09:59:ae:f3:c2:20:5c:c2:17:3b:35:43:12:6b:3b: a1:21:23:1f:5a:70:6c:9a:fb:30:60:01:b0:d2:5a:a7:e8:3c: 9e:0a:db:ad:d8:f4:65:1a:fe:fd:ce:13:29:54:59:60:f9:cc: 46:fe:a2:3f:dd:72:b0:6a:fe:31:5e:7d:f2:94:11:13:22:bb: 25:55:fa:d9:ef:3d:7b:7c:22:74:5f:41:d9:9f:bc:61:ea:6e: a8:b7:cc:28:6b:13:61:8c:a4:01:95:ef:96:ae:1c:58:c9:30: 2d:bf:97:7a:5b:b8:c8:98:ee:8f:3b:fc:4a:20:6d:ea:fb:a8: 33:be:2f:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE5MjcxMTAvBgNVBAUTKDJBNjlENjk5RjEzQzA0MUJGREEzREFBNTdFMjFGRkFC M0M1M0VENUYwHhcNMjUwMzI5MDMwNzU3WhcNMjUwNDA1MDMwNzU3WjAYMRYwFAYD VQQDEw02N2U3NjQwZC02YzgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvbcFFTjvLpQyoZH2z2Luee1w4wJNPUUZflyH3e//hsRy5xhBnVHRjq6hGEEI 1zX+445iw1HMseyBF6L4cbTQxFVMRhvSvf2anht3ItkUdnmtYzs/l7LIfEjtbaFP 4amHj21UcPsiMyMf5c/2qKj5GNDz5kVJWs3RZD7dYl9vLlfzpz4inlptKehy63PL nrlQcpAPHUzywN++Bjw0XXxUNHhhkoVpaykuMx0s9tNcD/lM8MY2sZ/DTUcRI4wC UrOzODp9mLEFvkJI/2UuPSE1/NxNvt4oekwYEFwhZ2QKKBIgvC8q3IXvzdRe0kiE xA5g4/du2wIGP/+iK4c3koMqLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIQDKLmh zupTR4tdljvhUuWCE6q5MB8GA1UdIwQYMBaAFCpp1pnxPAQb/aPapX4h/6s8U+1f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTkyNy9GRDhCMjJCMEJD MkYxMUVEQThGNzY1M0VDNEY5QUUwMi9LbW5XbWZFOEJCdjlvOXFsZmlIX3F6eFQ3 VjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ttbldtZkU4QkJ2OW85cWxmaUhfcXp4VDdWOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTkyNy9GRDhCMjJCMEJDMkYxMUVEQThGNzY1M0VDNEY5QUUwMi9LbW5XbWZFOEJC djlvOXFsZmlIX3F6eFQ3VjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCck4U1gv3dFieDlJSYeOCyG28ZWqVh8x5afdtNEjtYM3kjKZw/mf5I gbtPuMo6mHNzAQPwUtFVg9yNJ5W/qjDLTECQ5n3Jzit72xDsAhyQcLVhEmMo+Hha qEjdSgHWzEzzXD4HtHZAnQj0pyGN74qccLI+jDRx978TxQ3F2CXekSEJWa7zwiBc whc7NUMSazuhISMfWnBsmvswYAGw0lqn6DyeCtut2PRlGv79zhMpVFlg+cxG/qI/ 3XKwav4xXn3ylBETIrslVfrZ7z17fCJ0X0HZn7xh6m6ot8woaxNhjKQBle+WrhxY yTAtv5d6W7jImO6PO/xKIG3q+6gzvi8A -----END CERTIFICATE-----Generated at Fri Apr 4 21:47:31 2025 by rpki-client