$ rpki-client -vvf rpki.apnic.net/member_repository/A917F241/EB2136880BF611EF9CA9C151C4F9AE02/Kc2N-IBuEWdMvF-d9Nv40j4MIoM.mft File: Kc2N-IBuEWdMvF-d9Nv40j4MIoM.mft (raw, json) Hash identifier: /U/+m5boks7YOwVm8nh6vD4ddaJb/FtFLg0mx9hxi44= Subject key identifier: 85:05:DF:5E:86:B7:24:C1:C8:CC:8F:60:89:3F:11:E7:A5:4C:64:22 Authority key identifier: 29:CD:8D:F8:80:6E:11:67:4C:BC:5F:9D:F4:DB:F8:D2:3E:0C:22:83 Certificate issuer: /CN=A917F241/serialNumber=29CD8DF8806E11674CBC5F9DF4DBF8D23E0C2283 Certificate serial: B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kc2N-IBuEWdMvF-d9Nv40j4MIoM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F241/EB2136880BF611EF9CA9C151C4F9AE02/Kc2N-IBuEWdMvF-d9Nv40j4MIoM.mft Manifest number: B3 Signing time: Sat 05 Apr 2025 05:23:27 +0000 Manifest this update: Sat 05 Apr 2025 05:23:27 +0000 Manifest next update: Sat 12 Apr 2025 05:23:27 +0000 Files and hashes: 1: Kc2N-IBuEWdMvF-d9Nv40j4MIoM.crl (hash: H+s/aLsWVYMK8/LRaODtYLoTN8Dsy8376o+GDN0GM88=) 2: A0B44D9C60E211EFB1283930C4F9AE02.roa (hash: We+bh/dPouK8NlGju2k+lFoIHBb/HkpPfF89DMkSLSg=) 3: 7434811060E211EFBAE0C52FC4F9AE02.roa (hash: OvtEst3O8Yb7GSI88hSTYs6uncMGZjm+NzSGzxQ2axk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F241/EB2136880BF611EF9CA9C151C4F9AE02/Kc2N-IBuEWdMvF-d9Nv40j4MIoM.crl rsync://rpki.apnic.net/member_repository/A917F241/EB2136880BF611EF9CA9C151C4F9AE02/Kc2N-IBuEWdMvF-d9Nv40j4MIoM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kc2N-IBuEWdMvF-d9Nv40j4MIoM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 05:23:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 185 (0xb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F241 Validity Not Before: Apr 5 05:23:27 2025 GMT Not After : Apr 12 05:23:27 2025 GMT Subject: CN=67f0be4f-d505 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:29:05:b1:f3:3f:16:70:45:a3:07:c4:81:b8: 3f:29:98:6d:30:89:ec:b8:d3:93:8c:e1:49:aa:23: 15:8b:b6:44:c7:b4:0d:94:82:3b:fc:5b:0e:3f:bc: 20:a4:9e:ea:0e:db:91:1d:62:d3:ac:44:a5:63:77: 42:f3:b1:21:42:46:a2:db:bb:99:7f:d4:a4:2a:e9: d8:eb:ca:b0:f4:d7:e2:4f:4f:7f:a9:c6:28:cd:1d: 0f:a3:9e:ef:0b:a5:40:43:cb:e1:d5:ab:b9:6c:e3: 36:8c:37:aa:56:d4:24:94:ba:dd:04:d7:f6:61:ee: 75:aa:85:5a:f5:21:9c:c4:26:4c:4c:c6:de:99:8a: 90:d4:bb:e3:c1:7a:71:c8:48:1b:65:06:35:1f:60: 9d:0a:7f:67:a7:95:dd:0a:49:18:97:8b:80:8d:ab: 6f:59:63:78:e2:0d:b6:e2:1a:56:7c:26:dd:92:0f: 7b:c8:b7:7a:9d:bf:2f:df:70:50:d3:a5:8a:b6:d0: 9d:37:08:fd:f0:b8:31:e5:59:f9:d6:62:67:d9:a8: d0:5b:97:be:f0:16:61:b8:8c:f8:01:cd:df:e7:34: 9c:6b:6a:53:ce:b4:26:6b:b0:a8:39:02:5d:86:fa: 6c:f2:f8:90:d5:f9:72:78:22:af:04:47:75:48:b5: 35:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:05:DF:5E:86:B7:24:C1:C8:CC:8F:60:89:3F:11:E7:A5:4C:64:22 X509v3 Authority Key Identifier: keyid:29:CD:8D:F8:80:6E:11:67:4C:BC:5F:9D:F4:DB:F8:D2:3E:0C:22:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F241/EB2136880BF611EF9CA9C151C4F9AE02/Kc2N-IBuEWdMvF-d9Nv40j4MIoM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kc2N-IBuEWdMvF-d9Nv40j4MIoM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F241/EB2136880BF611EF9CA9C151C4F9AE02/Kc2N-IBuEWdMvF-d9Nv40j4MIoM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:f6:ce:4c:20:e3:43:af:4d:39:9d:46:08:eb:85:12:2c:62: 65:89:52:0e:6c:29:28:10:6e:b0:6c:cb:02:0a:ea:83:f0:72: 74:15:de:8e:1e:5e:3f:8b:14:e1:43:53:54:93:15:2a:55:48: 79:6d:d9:98:4e:84:4f:94:a7:59:51:6d:bb:25:52:c5:09:b5: 53:21:3e:a6:8f:ed:b2:d4:c6:50:8d:92:02:ed:67:9a:f8:21: 3c:9b:c2:54:69:dd:56:af:7c:02:da:01:2f:29:04:39:e4:a1: 68:f4:1a:b8:bc:4a:c1:41:9e:a0:86:98:c1:87:97:d7:b2:05: 5f:ad:f5:3d:5d:b6:d0:3f:94:b3:32:ad:9f:23:b1:5d:3f:ae: 5d:77:2f:cf:36:a0:f5:65:ea:e6:72:8a:58:3c:61:5a:24:21: 83:c6:39:00:87:bf:f3:ab:d3:f7:e9:0d:1f:1e:72:80:27:11: 79:62:2a:15:7f:e7:87:88:f0:61:1d:8b:d7:94:b3:eb:a9:e2: e7:67:14:52:e1:fa:6c:a3:1d:fc:d7:5c:13:64:58:ed:88:9a: 69:19:3a:26:a5:c3:48:1c:1e:c7:66:2f:3e:23:ce:64:34:46: cc:ee:24:0b:c3:35:ae:3c:96:99:bb:8c:a0:c4:3f:7a:6a:34: 60:20:e0:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0YyNDExMTAvBgNVBAUTKDI5Q0Q4REY4ODA2RTExNjc0Q0JDNUY5REY0REJGOEQy M0UwQzIyODMwHhcNMjUwNDA1MDUyMzI3WhcNMjUwNDEyMDUyMzI3WjAYMRYwFAYD VQQDEw02N2YwYmU0Zi1kNTA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuCkFsfM/FnBFowfEgbg/KZhtMInsuNOTjOFJqiMVi7ZEx7QNlII7/FsOP7wg pJ7qDtuRHWLTrESlY3dC87EhQkai27uZf9SkKunY68qw9NfiT09/qcYozR0Po57v C6VAQ8vh1au5bOM2jDeqVtQklLrdBNf2Ye51qoVa9SGcxCZMTMbemYqQ1LvjwXpx yEgbZQY1H2CdCn9np5XdCkkYl4uAjatvWWN44g224hpWfCbdkg97yLd6nb8v33BQ 06WKttCdNwj98Lgx5Vn51mJn2ajQW5e+8BZhuIz4Ac3f5zSca2pTzrQma7CoOQJd hvps8viQ1flyeCKvBEd1SLU1dQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIUF316G tyTByMyPYIk/EeelTGQiMB8GA1UdIwQYMBaAFCnNjfiAbhFnTLxfnfTb+NI+DCKD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjI0MS9FQjIxMzY4ODBC RjYxMUVGOUNBOUMxNTFDNEY5QUUwMi9LYzJOLUlCdUVXZE12Ri1kOU52NDBqNE1J b00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tjMk4tSUJ1RVdkTXZGLWQ5TnY0MGo0TUlvTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjI0MS9FQjIxMzY4ODBCRjYxMUVGOUNBOUMxNTFDNEY5QUUwMi9LYzJOLUlCdUVX ZE12Ri1kOU52NDBqNE1Jb00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCC9s5MIONDr005nUYI64USLGJliVIObCkoEG6wbMsCCuqD8HJ0Fd6O Hl4/ixThQ1NUkxUqVUh5bdmYToRPlKdZUW27JVLFCbVTIT6mj+2y1MZQjZIC7Wea +CE8m8JUad1Wr3wC2gEvKQQ55KFo9Bq4vErBQZ6ghpjBh5fXsgVfrfU9XbbQP5Sz Mq2fI7FdP65ddy/PNqD1ZermcopYPGFaJCGDxjkAh7/zq9P36Q0fHnKAJxF5YioV f+eHiPBhHYvXlLPrqeLnZxRS4fpsox3811wTZFjtiJppGTompcNIHB7HZi8+I85k NEbM7iQLwzWuPJaZu4ygxD96ajRgIOCy -----END CERTIFICATE-----Generated at Sat Apr 5 13:25:15 2025 by rpki-client