$ rpki-client -vvf rpki.apnic.net/member_repository/A918424C/ABCBEBD623D411EF9575324EC4F9AE02/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.mft File: KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.mft (raw, json) Hash identifier: Gd1ZxVZfN+di+J6PkNqXwhmLLFvfCv0ZMaSnW3ltjqs= Subject key identifier: DF:04:9B:1C:71:FD:51:0B:DB:01:08:3E:84:07:E1:0A:51:C3:30:B2 Authority key identifier: 2A:44:56:D1:72:B2:B8:6D:CD:A7:12:E6:61:F6:D9:F2:FF:19:20:38 Certificate issuer: /CN=A918424C/serialNumber=2A4456D172B2B86DCDA712E661F6D9F2FF192038 Certificate serial: 9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918424C/ABCBEBD623D411EF9575324EC4F9AE02/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.mft Manifest number: 9D Signing time: Mon 07 Apr 2025 05:06:51 +0000 Manifest this update: Mon 07 Apr 2025 05:06:50 +0000 Manifest next update: Mon 14 Apr 2025 05:06:50 +0000 Files and hashes: 1: KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.crl (hash: UVirm1t9UlBb/GuL9YQqwVCVSvPyRrN8iOvjNyPNt98=) 2: 4394064223D511EF9AB13E4FC4F9AE02.roa (hash: uOPt38YEsEAnQYMhJ/vWZ8Bh0zzqI6ovkE/WceLABSs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918424C/ABCBEBD623D411EF9575324EC4F9AE02/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.crl rsync://rpki.apnic.net/member_repository/A918424C/ABCBEBD623D411EF9575324EC4F9AE02/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 05:06:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 158 (0x9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918424C Validity Not Before: Apr 7 05:06:50 2025 GMT Not After : Apr 14 05:06:50 2025 GMT Subject: CN=67f35d6b-f220 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c7:79:99:b0:37:f0:a2:82:0b:76:f1:e7:84: 12:e2:e9:64:d6:34:e9:57:52:65:d8:0b:2e:9a:e3: ee:06:18:bd:22:1d:40:5b:6a:19:d3:33:9d:3f:af: 0e:3d:d8:8e:80:02:b7:2a:69:45:b5:a2:0d:6d:c8: f7:e6:b3:68:a3:04:2c:d5:45:18:85:27:33:7b:5f: de:90:ac:cc:ed:49:41:67:1e:09:de:54:67:ff:7d: 06:f4:f7:39:34:41:ba:42:a5:d5:a4:15:ad:cd:e5: 6b:26:19:66:84:03:05:f2:b8:ad:bd:b0:f9:0f:5c: b4:f4:b1:3f:de:1c:2d:2b:f3:6c:b8:85:12:57:97: 24:94:87:4f:7f:72:9e:48:50:22:13:7a:70:59:93: 11:9d:2d:9b:34:e7:ec:9a:23:8b:76:cd:9c:e3:ff: 8b:96:78:5d:54:f7:2c:fe:78:85:b3:2b:53:46:ed: 31:c2:16:9d:1d:bc:ea:06:c8:7a:de:cb:9b:32:0c: 72:00:c8:84:6f:76:2e:70:af:79:60:06:3f:17:f6: 51:8d:7c:3e:18:a3:dc:24:a2:63:3e:24:57:bc:f9: 61:bc:02:96:4c:a7:a8:05:bf:6b:de:97:7b:01:19: ee:b3:4c:f1:e8:df:44:89:de:17:27:54:d9:85:01: 06:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:04:9B:1C:71:FD:51:0B:DB:01:08:3E:84:07:E1:0A:51:C3:30:B2 X509v3 Authority Key Identifier: keyid:2A:44:56:D1:72:B2:B8:6D:CD:A7:12:E6:61:F6:D9:F2:FF:19:20:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918424C/ABCBEBD623D411EF9575324EC4F9AE02/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918424C/ABCBEBD623D411EF9575324EC4F9AE02/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:1d:07:35:c0:3b:01:cc:30:73:5c:ec:92:83:eb:e0:4a:1c: b7:7b:c3:4e:ea:76:88:e4:ee:37:c0:3e:9f:4c:33:2d:de:2b: 21:22:ac:f1:9d:87:f2:dd:90:00:2c:54:53:26:5a:b0:6f:95: 29:14:5a:42:26:bb:35:1c:8f:9c:19:35:8b:a4:72:50:8e:cc: b3:25:59:4f:c5:7a:a8:3a:cd:48:0d:f5:b2:b8:ff:7d:0f:d3: ad:28:4f:7d:52:26:32:1d:1e:1a:d0:2f:99:38:b9:9b:22:c8: 83:a1:b7:4f:fc:a2:c2:26:f8:55:17:03:5d:d9:0c:a3:cd:25: 54:a7:90:61:16:b7:58:64:e0:50:75:a5:e3:e9:1b:b7:c1:4e: 30:9e:5b:d2:5c:67:7a:1c:70:51:16:bd:20:77:03:09:8c:ff: 8c:d6:31:ea:2f:dc:2f:f4:73:9e:62:b6:3c:3a:67:34:20:97: 54:62:12:a2:a5:da:6a:76:50:7b:3b:1d:61:17:4d:78:68:6a: eb:35:c7:dd:af:2a:e4:9f:c1:42:c2:e5:fc:a4:a2:0a:03:6a: eb:59:80:63:c9:84:88:a2:90:ea:10:29:be:d1:b1:c0:ec:40: 6d:43:f8:fd:f5:16:80:f9:c0:1f:36:9b:69:09:f4:9c:58:85: a0:ef:45:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQyNEMxMTAvBgNVBAUTKDJBNDQ1NkQxNzJCMkI4NkRDREE3MTJFNjYxRjZEOUYy RkYxOTIwMzgwHhcNMjUwNDA3MDUwNjUwWhcNMjUwNDE0MDUwNjUwWjAYMRYwFAYD VQQDEw02N2YzNWQ2Yi1mMjIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuMd5mbA38KKCC3bx54QS4ulk1jTpV1Jl2AsumuPuBhi9Ih1AW2oZ0zOdP68O PdiOgAK3KmlFtaINbcj35rNoowQs1UUYhScze1/ekKzM7UlBZx4J3lRn/30G9Pc5 NEG6QqXVpBWtzeVrJhlmhAMF8ritvbD5D1y09LE/3hwtK/NsuIUSV5cklIdPf3Ke SFAiE3pwWZMRnS2bNOfsmiOLds2c4/+LlnhdVPcs/niFsytTRu0xwhadHbzqBsh6 3subMgxyAMiEb3YucK95YAY/F/ZRjXw+GKPcJKJjPiRXvPlhvAKWTKeoBb9r3pd7 ARnus0zx6N9Eid4XJ1TZhQEGCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN8Emxxx /VEL2wEIPoQH4QpRwzCyMB8GA1UdIwQYMBaAFCpEVtFysrhtzacS5mH22fL/GSA4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDI0Qy9BQkNCRUJENjIz RDQxMUVGOTU3NTMyNEVDNEY5QUUwMi9La1JXMFhLeXVHM05weExtWWZiWjh2OFpJ RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0trUlcwWEt5dUczTnB4TG1ZZmJaOHY4WklEZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDI0Qy9BQkNCRUJENjIzRDQxMUVGOTU3NTMyNEVDNEY5QUUwMi9La1JXMFhLeXVH M05weExtWWZiWjh2OFpJRGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfHQc1wDsBzDBzXOySg+vgShy3e8NO6naI5O43wD6fTDMt3ishIqzx nYfy3ZAALFRTJlqwb5UpFFpCJrs1HI+cGTWLpHJQjsyzJVlPxXqoOs1IDfWyuP99 D9OtKE99UiYyHR4a0C+ZOLmbIsiDobdP/KLCJvhVFwNd2QyjzSVUp5BhFrdYZOBQ daXj6Ru3wU4wnlvSXGd6HHBRFr0gdwMJjP+M1jHqL9wv9HOeYrY8Omc0IJdUYhKi pdpqdlB7Ox1hF014aGrrNcfdryrkn8FCwuX8pKIKA2rrWYBjyYSIopDqECm+0bHA 7EBtQ/j99RaA+cAfNptpCfScWIWg70VW -----END CERTIFICATE-----Generated at Tue Apr 8 15:25:44 2025 by rpki-client