$ rpki-client -vvf rpki.apnic.net/member_repository/A9195393/886E8344431711EAAE88C720C4F9AE02/KAsuk7Sv0gMgo9CCpbPNo7ANLh0.mft File: KAsuk7Sv0gMgo9CCpbPNo7ANLh0.mft (raw, json) Hash identifier: YcKaPdc2khysRBvOgIZh2JQ9Gho6C5YLPhBsUNTzwt8= Subject key identifier: 8B:11:C3:01:96:78:F2:0E:1D:44:26:B0:C5:1E:F4:AF:17:BB:4D:75 Authority key identifier: 28:0B:2E:93:B4:AF:D2:03:20:A3:D0:82:A5:B3:CD:A3:B0:0D:2E:1D Certificate issuer: /CN=A9195393/serialNumber=280B2E93B4AFD20320A3D082A5B3CDA3B00D2E1D Certificate serial: 0AFB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KAsuk7Sv0gMgo9CCpbPNo7ANLh0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195393/886E8344431711EAAE88C720C4F9AE02/KAsuk7Sv0gMgo9CCpbPNo7ANLh0.mft Manifest number: 0AF3 Signing time: Sun 20 Apr 2025 19:09:54 +0000 Manifest this update: Sun 20 Apr 2025 19:09:54 +0000 Manifest next update: Sun 27 Apr 2025 19:09:53 +0000 Files and hashes: 1: KAsuk7Sv0gMgo9CCpbPNo7ANLh0.crl (hash: ++ficiFCLPSbWEackOqJmBQg9Z3HacPduAle7y1aYTA=) 2: 784507FC9F4211ECB5BC4D14C4F9AE02.roa (hash: PBxuOjfrdrDDuEDomrmcRpD3hGyzwGEVv00t5Rb1VZI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195393/886E8344431711EAAE88C720C4F9AE02/KAsuk7Sv0gMgo9CCpbPNo7ANLh0.crl rsync://rpki.apnic.net/member_repository/A9195393/886E8344431711EAAE88C720C4F9AE02/KAsuk7Sv0gMgo9CCpbPNo7ANLh0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KAsuk7Sv0gMgo9CCpbPNo7ANLh0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 19:09:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2811 (0xafb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195393, serialNumber=280B2E93B4AFD20320A3D082A5B3CDA3B00D2E1D Validity Not Before: Apr 20 19:09:54 2025 GMT Not After : Apr 27 19:09:53 2025 GMT Subject: CN=68054682-dd77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:f0:5d:75:72:30:0d:4e:2b:40:28:03:be:7e: 73:7e:da:c5:87:2c:c8:7d:7c:30:47:6a:af:0f:89: 49:d7:2e:90:ae:f7:29:b8:00:15:4c:39:3f:14:00: 3a:2d:fd:b7:6b:f9:bd:83:81:f7:f5:eb:f3:82:e4: a6:7e:fe:a6:f1:5b:52:77:38:68:39:a3:ad:7f:64: a5:b9:17:ce:d7:b4:ae:0f:7e:12:6d:70:a9:32:f6: 4f:a5:fb:2d:4d:da:90:49:fb:f1:5b:bc:33:28:66: f0:c3:33:28:2f:f6:1f:e6:23:54:5d:be:b7:e2:ed: 5f:33:51:93:a4:3d:68:0a:86:3d:24:1e:d1:ff:c7: 15:1e:c3:15:71:24:05:a3:98:7b:dc:70:e7:84:de: 64:ad:c2:c4:ec:e7:35:9d:5f:a6:13:45:aa:59:d1: 9e:8f:bd:3b:ae:20:68:f6:bb:22:c0:d3:39:0f:07: 56:d1:c3:b2:75:46:52:d3:9e:45:44:68:31:22:e9: b6:25:cd:83:b5:8c:30:dc:fe:88:fc:2b:ba:89:d1: b7:ee:c9:fd:a4:4d:c6:09:de:b4:cd:3a:e3:0b:7e: ae:1e:c9:f9:6a:eb:f8:21:35:2e:aa:ed:06:56:16: 5b:ca:91:aa:30:75:ee:f1:7f:47:5e:2b:15:fe:cc: 73:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:11:C3:01:96:78:F2:0E:1D:44:26:B0:C5:1E:F4:AF:17:BB:4D:75 X509v3 Authority Key Identifier: keyid:28:0B:2E:93:B4:AF:D2:03:20:A3:D0:82:A5:B3:CD:A3:B0:0D:2E:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195393/886E8344431711EAAE88C720C4F9AE02/KAsuk7Sv0gMgo9CCpbPNo7ANLh0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KAsuk7Sv0gMgo9CCpbPNo7ANLh0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195393/886E8344431711EAAE88C720C4F9AE02/KAsuk7Sv0gMgo9CCpbPNo7ANLh0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:b5:c4:09:1f:cd:70:08:af:39:77:5d:ae:1a:7f:15:26:11: 63:96:5b:26:a5:7a:df:38:20:c3:5b:6c:7a:43:0f:f7:a6:ed: 24:7a:1a:5c:68:ca:c4:3e:61:47:8e:f0:fb:99:77:c4:e7:08: 20:95:42:8d:e8:34:ab:88:0d:ee:19:6a:c6:78:d1:77:f1:63: 35:10:29:af:f6:da:46:53:96:95:4c:9d:28:39:db:a9:4b:8d: 0c:29:26:37:0b:1c:82:90:b3:0c:1f:34:68:9e:29:af:21:24: 67:09:17:ec:73:a6:1e:37:4f:16:c1:12:e8:f1:f5:5c:d1:7a: 21:c2:fb:6c:fb:f4:f0:33:fc:39:b1:82:62:f9:f5:84:f4:a3: fc:b2:d3:99:6b:46:86:85:bd:94:8f:e3:e8:d4:ad:6e:e1:15: 89:f5:fd:e6:0d:e7:d2:bb:95:bd:db:ff:f0:ea:5e:f8:36:95: 60:46:c8:3c:06:74:98:53:37:d6:79:14:9c:87:8f:de:82:d6: be:13:33:17:bb:c2:60:49:15:89:f7:2a:21:04:7f:97:3d:64: 53:fe:96:fd:0d:77:e9:50:b2:e6:3e:78:52:c3:53:90:10:f4: d4:5a:f6:6c:c1:3d:27:ad:4b:fc:7a:93:c1:77:a5:c4:13:70: 4a:a3:46:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCvswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTUzOTMxMTAvBgNVBAUTKDI4MEIyRTkzQjRBRkQyMDMyMEEzRDA4MkE1QjNDREEz QjAwRDJFMUQwHhcNMjUwNDIwMTkwOTU0WhcNMjUwNDI3MTkwOTUzWjAYMRYwFAYD VQQDEw02ODA1NDY4Mi1kZDc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1PBddXIwDU4rQCgDvn5zftrFhyzIfXwwR2qvD4lJ1y6QrvcpuAAVTDk/FAA6 Lf23a/m9g4H39evzguSmfv6m8VtSdzhoOaOtf2SluRfO17SuD34SbXCpMvZPpfst TdqQSfvxW7wzKGbwwzMoL/Yf5iNUXb634u1fM1GTpD1oCoY9JB7R/8cVHsMVcSQF o5h73HDnhN5krcLE7Oc1nV+mE0WqWdGej707riBo9rsiwNM5DwdW0cOydUZS055F RGgxIum2Jc2DtYww3P6I/Cu6idG37sn9pE3GCd60zTrjC36uHsn5auv4ITUuqu0G VhZbypGqMHXu8X9HXisV/sxzrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIsRwwGW ePIOHUQmsMUe9K8Xu011MB8GA1UdIwQYMBaAFCgLLpO0r9IDIKPQgqWzzaOwDS4d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTM5My84ODZFODM0NDQz MTcxMUVBQUU4OEM3MjBDNEY5QUUwMi9LQXN1azdTdjBnTWdvOUNDcGJQTm83QU5M aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tBc3VrN1N2MGdNZ285Q0NwYlBObzdBTkxoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTM5My84ODZFODM0NDQzMTcxMUVBQUU4OEM3MjBDNEY5QUUwMi9LQXN1azdTdjBn TWdvOUNDcGJQTm83QU5MaDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwtcQJH81wCK85d12uGn8VJhFjllsmpXrfOCDDW2x6Qw/3pu0kehpc aMrEPmFHjvD7mXfE5wgglUKN6DSriA3uGWrGeNF38WM1ECmv9tpGU5aVTJ0oOdup S40MKSY3CxyCkLMMHzRonimvISRnCRfsc6YeN08WwRLo8fVc0Xohwvts+/TwM/w5 sYJi+fWE9KP8stOZa0aGhb2Uj+Po1K1u4RWJ9f3mDefSu5W92//w6l74NpVgRsg8 BnSYUzfWeRSch4/egta+EzMXu8JgSRWJ9yohBH+XPWRT/pb9DXfpULLmPnhSw1OQ EPTUWvZswT0nrUv8epPBd6XEE3BKo0aK -----END CERTIFICATE-----Generated at Mon Apr 21 21:14:34 2025 by rpki-client