$ rpki-client -vvf rpki.apnic.net/member_repository/A912B75A/1B22E1FE5B9A11EF82027640C4F9AE02/Kz0hH8mZjfIDXiDZGqVe3sYo8KM.mft File: Kz0hH8mZjfIDXiDZGqVe3sYo8KM.mft (raw, json) Hash identifier: i5CAhBlBS7n/kgTlJ22HrxIweU3fHbJGKLJ7O354yhE= Subject key identifier: 74:14:47:A6:D2:A5:72:E1:D6:DF:A2:32:26:D9:78:ED:F8:26:D2:B8 Authority key identifier: 2B:3D:21:1F:C9:99:8D:F2:03:5E:20:D9:1A:A5:5E:DE:C6:28:F0:A3 Certificate issuer: /CN=A912B75A/serialNumber=2B3D211FC9998DF2035E20D91AA55EDEC628F0A3 Certificate serial: 95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz0hH8mZjfIDXiDZGqVe3sYo8KM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B75A/1B22E1FE5B9A11EF82027640C4F9AE02/Kz0hH8mZjfIDXiDZGqVe3sYo8KM.mft Manifest number: 95 Signing time: Sat 31 May 2025 05:56:19 +0000 Manifest this update: Sat 31 May 2025 05:56:18 +0000 Manifest next update: Sat 07 Jun 2025 05:56:18 +0000 Files and hashes: 1: Kz0hH8mZjfIDXiDZGqVe3sYo8KM.crl (hash: 9FCVZcDuF3HPx+xjbIChnQOj1mZ2XdXBnzy436iPRfo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B75A/1B22E1FE5B9A11EF82027640C4F9AE02/Kz0hH8mZjfIDXiDZGqVe3sYo8KM.crl rsync://rpki.apnic.net/member_repository/A912B75A/1B22E1FE5B9A11EF82027640C4F9AE02/Kz0hH8mZjfIDXiDZGqVe3sYo8KM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz0hH8mZjfIDXiDZGqVe3sYo8KM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:56:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 149 (0x95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B75A, serialNumber=2B3D211FC9998DF2035E20D91AA55EDEC628F0A3 Validity Not Before: May 31 05:56:18 2025 GMT Not After : Jun 7 05:56:18 2025 GMT Subject: CN=683a9a03-14b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:dd:70:f6:87:c4:40:b2:1d:3f:73:0e:1a:46: 04:92:7e:0e:74:15:64:d8:cb:4b:6b:1e:ab:54:2f: 7b:c4:33:84:bd:2c:07:b9:87:f2:a8:f1:c8:bc:04: d0:10:d3:5d:ff:f2:78:e1:01:da:9b:11:08:52:82: 00:fb:bb:5a:59:92:31:a0:93:ec:8a:8c:c4:25:c5: e9:75:3c:94:59:ce:0d:35:ac:e3:b8:7f:5d:d4:15: 90:e9:dd:c9:94:2a:2c:7e:9a:db:2d:82:68:c6:70: bf:af:23:9a:7a:f0:4c:75:f0:eb:77:dd:cf:0b:18: 4d:47:02:24:5e:22:08:bd:06:72:e2:21:6a:ce:97: 74:bb:7f:d5:9e:63:3c:ef:c3:1b:64:f4:ce:67:58: b1:9e:a6:d9:c0:0d:8c:12:79:e7:5c:db:7c:59:30: f3:bd:19:32:2e:7d:63:8b:24:ec:0b:30:66:12:de: 84:b9:27:98:8d:eb:13:e0:fc:eb:c4:ac:9c:85:6f: 70:b5:9a:05:4e:a8:74:72:ed:9b:b0:39:d3:c7:c9: a6:b0:bf:a5:1e:01:e0:57:48:86:8d:c5:23:1e:9a: a0:7c:d3:2b:28:5d:49:ae:a4:a6:0a:87:71:d4:22: 7e:47:74:16:82:d4:3a:01:65:3a:bb:78:70:7f:d0: 3e:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:14:47:A6:D2:A5:72:E1:D6:DF:A2:32:26:D9:78:ED:F8:26:D2:B8 X509v3 Authority Key Identifier: keyid:2B:3D:21:1F:C9:99:8D:F2:03:5E:20:D9:1A:A5:5E:DE:C6:28:F0:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B75A/1B22E1FE5B9A11EF82027640C4F9AE02/Kz0hH8mZjfIDXiDZGqVe3sYo8KM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz0hH8mZjfIDXiDZGqVe3sYo8KM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B75A/1B22E1FE5B9A11EF82027640C4F9AE02/Kz0hH8mZjfIDXiDZGqVe3sYo8KM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:c2:27:95:2a:be:3b:a6:e5:a1:f6:d1:18:98:b0:a9:95:f0: 39:f7:52:1f:4d:ae:fa:8a:f1:0d:62:b0:ab:c8:da:db:cb:ed: 92:9a:3d:47:6c:46:3c:d8:e7:da:ec:a9:f3:50:4f:6c:63:83: 9e:39:60:b1:00:d7:fb:7b:31:b9:3b:9c:0c:7e:06:85:24:79: 6e:53:67:a8:64:19:30:71:48:e2:0e:6f:75:ce:42:3e:1e:62: 33:dc:e2:ad:0d:6c:5f:dc:d2:7a:c9:96:b9:0a:e6:aa:d1:93: 72:f7:7f:31:a3:05:23:23:41:13:25:8a:11:99:e1:78:91:e7: 68:04:d1:b6:4f:39:56:ab:40:4f:4b:97:08:1e:4a:c2:91:f6: ef:72:8c:e7:80:8e:33:77:84:11:75:8c:3e:6b:6d:53:04:75: 7b:32:61:71:b6:c4:7f:17:22:a4:97:15:df:f3:34:19:16:4f: cd:24:8b:c5:64:c8:97:cb:8c:3d:ae:db:48:4c:15:88:bd:a7: 2e:7e:53:6f:fc:dc:29:64:39:0d:bb:81:5c:38:6f:ce:3b:c9: ff:d4:05:72:e0:8b:ec:4f:68:e1:40:04:22:6c:9b:d0:b5:67: 0e:bd:0a:bb:e6:96:52:7d:c6:82:d2:23:30:17:4c:8d:3f:26: e8:d6:05:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkI3NUExMTAvBgNVBAUTKDJCM0QyMTFGQzk5OThERjIwMzVFMjBEOTFBQTU1RURF QzYyOEYwQTMwHhcNMjUwNTMxMDU1NjE4WhcNMjUwNjA3MDU1NjE4WjAYMRYwFAYD VQQDEw02ODNhOWEwMy0xNGIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA191w9ofEQLIdP3MOGkYEkn4OdBVk2MtLax6rVC97xDOEvSwHuYfyqPHIvATQ ENNd//J44QHamxEIUoIA+7taWZIxoJPsiozEJcXpdTyUWc4NNazjuH9d1BWQ6d3J lCosfprbLYJoxnC/ryOaevBMdfDrd93PCxhNRwIkXiIIvQZy4iFqzpd0u3/VnmM8 78MbZPTOZ1ixnqbZwA2MEnnnXNt8WTDzvRkyLn1jiyTsCzBmEt6EuSeYjesT4Pzr xKychW9wtZoFTqh0cu2bsDnTx8mmsL+lHgHgV0iGjcUjHpqgfNMrKF1JrqSmCodx 1CJ+R3QWgtQ6AWU6u3hwf9A+AQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHQUR6bS pXLh1t+iMibZeO34JtK4MB8GA1UdIwQYMBaAFCs9IR/JmY3yA14g2RqlXt7GKPCj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjc1QS8xQjIyRTFGRTVC OUExMUVGODIwMjc2NDBDNEY5QUUwMi9LejBoSDhtWmpmSURYaURaR3FWZTNzWW84 S00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t6MGhIOG1aamZJRFhpRFpHcVZlM3NZbzhLTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy Qjc1QS8xQjIyRTFGRTVCOUExMUVGODIwMjc2NDBDNEY5QUUwMi9LejBoSDhtWmpm SURYaURaR3FWZTNzWW84S00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuwieVKr47puWh9tEYmLCplfA591IfTa76ivENYrCryNrby+2Smj1H bEY82Ofa7KnzUE9sY4OeOWCxANf7ezG5O5wMfgaFJHluU2eoZBkwcUjiDm91zkI+ HmIz3OKtDWxf3NJ6yZa5Cuaq0ZNy938xowUjI0ETJYoRmeF4kedoBNG2TzlWq0BP S5cIHkrCkfbvcozngI4zd4QRdYw+a21TBHV7MmFxtsR/FyKklxXf8zQZFk/NJIvF ZMiXy4w9rttITBWIvacuflNv/NwpZDkNu4FcOG/OO8n/1AVy4IvsT2jhQAQibJvQ tWcOvQq75pZSfcaC0iMwF0yNPybo1gVI -----END CERTIFICATE-----Generated at Sat May 31 17:46:29 2025 by rpki-client