$ rpki-client -vvf rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.mft File: klUgH_qh5mcsBsLfbovhFYLML64.mft (raw, json) Hash identifier: gy9DuspxJsZRvG5f3q2W4fP63wmKZ5JKFO5H7mR0Xoo= Subject key identifier: F3:41:DD:30:87:7A:7E:1A:C5:83:75:3D:6C:23:E2:6A:39:9F:EB:4D Authority key identifier: 92:55:20:1F:FA:A1:E6:67:2C:06:C2:DF:6E:8B:E1:15:82:CC:2F:AE Certificate issuer: /CN=A9112A7D/serialNumber=9255201FFAA1E6672C06C2DF6E8BE11582CC2FAE Certificate serial: 023F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/klUgH_qh5mcsBsLfbovhFYLML64.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.mft Manifest number: 023C Signing time: Sat 31 May 2025 02:04:08 +0000 Manifest this update: Sat 31 May 2025 02:04:07 +0000 Manifest next update: Sat 07 Jun 2025 02:04:07 +0000 Files and hashes: 1: klUgH_qh5mcsBsLfbovhFYLML64.crl (hash: xyBZzF6W1pH9NsskfY5f00MgBovDr13mo4GfJvqSPqY=) 2: 6DE1A436246811ED82556323C4F9AE02.roa (hash: 6xgX7RCx1jR+s1bDY/KUKo4N6DkkwUVmskiN+xXDBfc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.crl rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/klUgH_qh5mcsBsLfbovhFYLML64.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:04:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 575 (0x23f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112A7D, serialNumber=9255201FFAA1E6672C06C2DF6E8BE11582CC2FAE Validity Not Before: May 31 02:04:07 2025 GMT Not After : Jun 7 02:04:07 2025 GMT Subject: CN=683a6397-5d39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:8e:35:83:bb:3e:f6:8a:87:c8:03:e3:5d:3e: c3:c4:f6:33:fd:9d:74:c7:ee:e9:c1:51:4e:06:49: f3:ba:c7:f5:b5:91:03:14:cb:31:22:fb:94:32:d4: 41:d3:18:16:55:91:39:9a:77:0f:e0:b8:55:00:28: 87:82:39:e8:6a:d1:2b:9e:5c:9e:1c:6b:ed:91:62: 5e:ec:c1:0f:26:1a:98:6a:f1:ea:41:cc:1b:23:fd: 58:d3:21:f4:50:fe:52:f3:00:41:2f:d7:61:4a:33: 09:2b:dc:1f:6e:4b:d7:38:6b:b5:cb:12:98:83:89: 32:ae:cc:ec:47:72:61:bc:54:86:4d:15:aa:bd:f2: 7e:2a:2b:40:75:30:ba:5c:f1:9f:08:ba:d0:99:01: 0c:38:7f:a5:da:bc:33:43:41:37:dc:dd:f0:12:40: 83:c0:51:84:d4:c2:2f:7b:91:81:34:04:0e:c4:8b: 85:70:e6:03:7a:03:89:56:cd:55:f0:bc:91:3a:ff: cf:4a:97:47:81:ec:dc:4a:3f:b3:cf:04:d8:bf:b8: f1:1b:3e:b7:c1:4c:8b:26:1e:87:bc:60:93:cd:64: 4a:2a:c3:4e:fd:4e:df:b1:73:6b:1b:af:12:b8:ee: 3a:87:24:ec:f5:2e:fb:c7:57:76:96:b7:a6:3f:dd: 55:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:41:DD:30:87:7A:7E:1A:C5:83:75:3D:6C:23:E2:6A:39:9F:EB:4D X509v3 Authority Key Identifier: keyid:92:55:20:1F:FA:A1:E6:67:2C:06:C2:DF:6E:8B:E1:15:82:CC:2F:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/klUgH_qh5mcsBsLfbovhFYLML64.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:fc:76:c9:67:60:31:ba:7a:b1:b3:0e:d9:ae:71:8e:b1:68: 16:c0:62:3e:47:f9:c8:62:fd:56:6d:73:70:6b:7e:0d:e2:5f: 14:c2:51:bb:65:ee:3e:16:73:0a:fc:ee:c6:30:30:a2:08:fd: 25:b7:9d:0b:7f:89:c2:d5:6f:ea:75:82:14:ff:58:72:f1:28: 6f:6f:c4:a3:14:85:75:bb:92:ff:fa:a5:4d:13:f0:c7:af:7a: c0:86:36:42:f1:a1:4b:cb:8a:81:a3:f0:aa:c4:9e:26:26:b4: a0:6c:82:c7:dc:15:f0:e7:3d:34:7c:b2:31:0c:93:75:1e:fe: ac:cd:cf:5a:c5:1e:bf:17:97:8b:18:c2:a2:96:02:04:23:ac: 82:e1:3f:51:ea:28:3d:7c:20:df:34:3b:c8:42:68:f6:9e:00: 9a:9d:44:c0:cd:5d:10:1e:35:4e:30:5e:de:e3:68:b3:82:fd: 77:b4:5f:89:49:42:b7:83:28:2d:05:4b:f2:7e:ae:14:86:56: 81:17:e9:c6:05:68:5d:c4:dd:8b:4d:4e:34:76:9f:64:dc:92: 6a:ff:42:9d:98:e8:87:39:84:a9:1d:e4:2a:de:3c:9c:9c:44: 2c:f7:98:73:8e:4f:7e:32:89:5a:59:93:dc:28:79:11:5f:a2: d6:22:46:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAj8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTJBN0QxMTAvBgNVBAUTKDkyNTUyMDFGRkFBMUU2NjcyQzA2QzJERjZFOEJFMTE1 ODJDQzJGQUUwHhcNMjUwNTMxMDIwNDA3WhcNMjUwNjA3MDIwNDA3WjAYMRYwFAYD VQQDEw02ODNhNjM5Ny01ZDM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt441g7s+9oqHyAPjXT7DxPYz/Z10x+7pwVFOBknzusf1tZEDFMsxIvuUMtRB 0xgWVZE5mncP4LhVACiHgjnoatErnlyeHGvtkWJe7MEPJhqYavHqQcwbI/1Y0yH0 UP5S8wBBL9dhSjMJK9wfbkvXOGu1yxKYg4kyrszsR3JhvFSGTRWqvfJ+KitAdTC6 XPGfCLrQmQEMOH+l2rwzQ0E33N3wEkCDwFGE1MIve5GBNAQOxIuFcOYDegOJVs1V 8LyROv/PSpdHgezcSj+zzwTYv7jxGz63wUyLJh6HvGCTzWRKKsNO/U7fsXNrG68S uO46hyTs9S77x1d2lremP91VMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPNB3TCH en4axYN1PWwj4mo5n+tNMB8GA1UdIwQYMBaAFJJVIB/6oeZnLAbC326L4RWCzC+u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMkE3RC9BMDRBNjBCNDI0 NjUxMUVEQjhENDIwMjFDNEY5QUUwMi9rbFVnSF9xaDVtY3NCc0xmYm92aEZZTE1M NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tsVWdIX3FoNW1jc0JzTGZib3ZoRllMTUw2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MkE3RC9BMDRBNjBCNDI0NjUxMUVEQjhENDIwMjFDNEY5QUUwMi9rbFVnSF9xaDVt Y3NCc0xmYm92aEZZTE1MNjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCw/HbJZ2Axunqxsw7ZrnGOsWgWwGI+R/nIYv1WbXNwa34N4l8UwlG7 Ze4+FnMK/O7GMDCiCP0lt50Lf4nC1W/qdYIU/1hy8Shvb8SjFIV1u5L/+qVNE/DH r3rAhjZC8aFLy4qBo/CqxJ4mJrSgbILH3BXw5z00fLIxDJN1Hv6szc9axR6/F5eL GMKilgIEI6yC4T9R6ig9fCDfNDvIQmj2ngCanUTAzV0QHjVOMF7e42izgv13tF+J SUK3gygtBUvyfq4UhlaBF+nGBWhdxN2LTU40dp9k3JJq/0KdmOiHOYSpHeQq3jyc nEQs95hzjk9+MolaWZPcKHkRX6LWIkYv -----END CERTIFICATE-----Generated at Sat May 31 16:43:06 2025 by rpki-client