$ rpki-client -vvf rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/kfSTmrrtQPo2bsx2NZ3KK8tozkc.mft File: kfSTmrrtQPo2bsx2NZ3KK8tozkc.mft (raw, json) Hash identifier: a0lxroy/LaOeWCFlR6QslYvZtCXDy1aj7JF7Q2e4NCo= Subject key identifier: C8:17:13:FA:0C:B9:94:8D:98:03:85:A3:6A:ED:20:5D:23:7A:8F:C1 Authority key identifier: 91:F4:93:9A:BA:ED:40:FA:36:6E:CC:76:35:9D:CA:2B:CB:68:CE:47 Certificate issuer: /CN=A9115CB5/serialNumber=91F4939ABAED40FA366ECC76359DCA2BCB68CE47 Certificate serial: 0551 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfSTmrrtQPo2bsx2NZ3KK8tozkc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/kfSTmrrtQPo2bsx2NZ3KK8tozkc.mft Manifest number: 0546 Signing time: Fri 30 May 2025 23:38:22 +0000 Manifest this update: Fri 30 May 2025 23:38:22 +0000 Manifest next update: Fri 06 Jun 2025 23:38:22 +0000 Files and hashes: 1: kfSTmrrtQPo2bsx2NZ3KK8tozkc.crl (hash: 8qmTwGPKxHLahEtjmbBb+5ScnI3t5XQLu2YB8oo/39Y=) 2: C41538940B4711EC99840631C4F9AE02.roa (hash: li3UtGYjrBf3C8NwlkMmtocNy8KFUcDjCj/BKLVAeWQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/kfSTmrrtQPo2bsx2NZ3KK8tozkc.crl rsync://rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/kfSTmrrtQPo2bsx2NZ3KK8tozkc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfSTmrrtQPo2bsx2NZ3KK8tozkc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 23:38:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1361 (0x551) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9115CB5, serialNumber=91F4939ABAED40FA366ECC76359DCA2BCB68CE47 Validity Not Before: May 30 23:38:22 2025 GMT Not After : Jun 6 23:38:22 2025 GMT Subject: CN=683a416e-a437 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:5c:48:7a:23:c9:f9:bd:da:05:c6:77:43:22: d7:98:ee:2b:a5:a4:49:b7:9e:c4:08:9e:43:07:ef: 2e:81:84:8b:d6:59:a0:c1:3c:4a:24:45:a4:9e:46: ed:c0:60:9e:f3:7a:7c:61:da:ac:d8:16:36:9c:e3: e5:b4:15:b8:ee:2e:a3:3d:94:a1:e0:83:55:3c:55: 09:bf:5e:90:4e:9e:12:c4:f6:b0:b1:c2:ba:0b:ec: 04:b1:e1:15:56:9e:ec:89:f4:19:1c:77:ca:75:e1: 6b:26:c7:bb:f2:e8:bf:c1:e0:4d:c5:ff:3d:da:7a: 3c:f6:93:48:86:06:93:bd:92:be:e2:a0:8b:b9:de: 41:a1:c6:63:b7:db:1a:43:15:4e:c9:92:82:a7:8e: 5b:f3:50:ae:f9:fd:49:07:7a:d8:92:d4:08:39:7a: 58:f2:be:05:52:3c:9b:7d:9f:7f:a8:ec:2a:cc:ab: a4:c9:74:82:ef:11:5f:a5:eb:ba:25:50:bf:67:3c: 0d:ab:e6:c5:7c:67:f7:55:80:f2:93:d4:e0:50:0d: e3:56:86:f7:99:5e:c7:b0:07:89:d7:51:81:85:30: b6:d5:10:79:a8:04:f2:6a:a1:ad:83:e5:2b:60:d0: 2f:6b:b0:33:89:4c:2a:c8:b8:47:92:25:97:33:7f: ed:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:17:13:FA:0C:B9:94:8D:98:03:85:A3:6A:ED:20:5D:23:7A:8F:C1 X509v3 Authority Key Identifier: keyid:91:F4:93:9A:BA:ED:40:FA:36:6E:CC:76:35:9D:CA:2B:CB:68:CE:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/kfSTmrrtQPo2bsx2NZ3KK8tozkc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfSTmrrtQPo2bsx2NZ3KK8tozkc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/kfSTmrrtQPo2bsx2NZ3KK8tozkc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:99:0f:4f:17:20:65:85:3d:b3:58:ed:e3:11:1d:72:48:d9: b3:6a:53:37:69:75:ca:26:b3:57:df:e5:b5:d2:d5:5c:85:45: 69:db:f4:aa:a8:18:2f:05:be:5b:a1:93:cd:d8:4c:f1:ba:cb: c0:97:ed:20:84:f0:fc:62:5e:5c:d9:c0:43:15:0a:cb:cf:d7: 10:08:ab:9e:90:ed:77:cd:32:21:6f:36:62:38:f4:43:65:1f: 1c:22:7c:73:3e:4a:c4:e7:87:da:89:bc:fe:1e:43:2f:85:be: 17:10:72:f2:3d:77:dd:fa:2b:45:ee:09:2a:0b:0b:dc:cd:60: 36:6b:b4:dd:b0:d2:bd:e9:0e:7d:d9:f8:36:8b:c7:81:82:9c: c2:df:dc:77:8f:59:a9:f5:79:21:b9:55:41:ea:36:44:ee:e4: 9e:63:f7:e7:6a:05:6d:07:78:da:ea:91:52:21:a7:fe:f9:1c: 6f:c2:68:8a:82:7b:de:a4:ad:20:c3:a2:53:40:33:f5:9a:91: a9:1d:3b:68:15:7d:36:4e:0a:25:e0:67:4a:b0:c0:7c:1f:45: 3c:5c:58:56:33:dc:d3:f3:d7:ba:58:a5:74:b0:a2:67:61:40: 3e:51:6a:e1:4a:9f:e3:a2:54:8f:45:f6:1a:3c:e5:af:48:a8: dd:27:41:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTVDQjUxMTAvBgNVBAUTKDkxRjQ5MzlBQkFFRDQwRkEzNjZFQ0M3NjM1OURDQTJC Q0I2OENFNDcwHhcNMjUwNTMwMjMzODIyWhcNMjUwNjA2MjMzODIyWjAYMRYwFAYD VQQDEw02ODNhNDE2ZS1hNDM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7FxIeiPJ+b3aBcZ3QyLXmO4rpaRJt57ECJ5DB+8ugYSL1lmgwTxKJEWknkbt wGCe83p8Ydqs2BY2nOPltBW47i6jPZSh4INVPFUJv16QTp4SxPawscK6C+wEseEV Vp7sifQZHHfKdeFrJse78ui/weBNxf892no89pNIhgaTvZK+4qCLud5BocZjt9sa QxVOyZKCp45b81Cu+f1JB3rYktQIOXpY8r4FUjybfZ9/qOwqzKukyXSC7xFfpeu6 JVC/ZzwNq+bFfGf3VYDyk9TgUA3jVob3mV7HsAeJ11GBhTC21RB5qATyaqGtg+Ur YNAva7AziUwqyLhHkiWXM3/tPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMgXE/oM uZSNmAOFo2rtIF0jeo/BMB8GA1UdIwQYMBaAFJH0k5q67UD6Nm7MdjWdyivLaM5H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNUNCNS9EOUZEMkRGRUYz N0YxMUVCQjI4M0U3NEFDNEY5QUUwMi9rZlNUbXJydFFQbzJic3gyTlozS0s4dG96 a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tmU1RtcnJ0UVBvMmJzeDJOWjNLSzh0b3prYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NUNCNS9EOUZEMkRGRUYzN0YxMUVCQjI4M0U3NEFDNEY5QUUwMi9rZlNUbXJydFFQ bzJic3gyTlozS0s4dG96a2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtmQ9PFyBlhT2zWO3jER1ySNmzalM3aXXKJrNX3+W10tVchUVp2/Sq qBgvBb5boZPN2EzxusvAl+0ghPD8Yl5c2cBDFQrLz9cQCKuekO13zTIhbzZiOPRD ZR8cInxzPkrE54faibz+HkMvhb4XEHLyPXfd+itF7gkqCwvczWA2a7TdsNK96Q59 2fg2i8eBgpzC39x3j1mp9XkhuVVB6jZE7uSeY/fnagVtB3ja6pFSIaf++RxvwmiK gnvepK0gw6JTQDP1mpGpHTtoFX02Tgol4GdKsMB8H0U8XFhWM9zT89e6WKV0sKJn YUA+UWrhSp/jolSPRfYaPOWvSKjdJ0Ex -----END CERTIFICATE-----Generated at Sat May 31 16:57:50 2025 by rpki-client