$ rpki-client -vvf rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft File: kB-Ykfv38n1Bah7gazGwFlquHcU.mft (raw, json) Hash identifier: OadBM3yHjdj251DglDVG3gKFAQbIfevkggpHLkODJTw= Subject key identifier: 90:AA:99:6E:26:77:79:B5:2A:80:FF:DB:8A:0E:D7:B7:F8:C7:2B:2B Authority key identifier: 90:1F:98:91:FB:F7:F2:7D:41:6A:1E:E0:6B:31:B0:16:5A:AE:1D:C5 Certificate issuer: /CN=A9132D93/serialNumber=901F9891FBF7F27D416A1EE06B31B0165AAE1DC5 Certificate serial: 03E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft Manifest number: 03E3 Signing time: Sat 31 May 2025 00:43:52 +0000 Manifest this update: Sat 31 May 2025 00:43:52 +0000 Manifest next update: Sat 07 Jun 2025 00:43:52 +0000 Files and hashes: 1: kB-Ykfv38n1Bah7gazGwFlquHcU.crl (hash: IekzE9JRdTW71Cmt2s9MD3YBz+T5PnccABxJ4cmlChg=) 2: 4E0503CA7F3F11ECBB0EA972C4F9AE02.roa (hash: zGO+SfCUiN93pLbUpzCLUs56wrah6tVni3k+tYi9qSM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.crl rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:43:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 999 (0x3e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132D93, serialNumber=901F9891FBF7F27D416A1EE06B31B0165AAE1DC5 Validity Not Before: May 31 00:43:52 2025 GMT Not After : Jun 7 00:43:52 2025 GMT Subject: CN=683a50c8-3549 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:25:b0:a5:b8:0a:d7:d8:d8:f8:eb:7e:1d:e7: e6:aa:d8:f3:63:2c:bc:f5:4e:55:d5:9d:bd:18:8b: 7a:5a:cf:43:b2:cd:ef:12:d8:25:03:6c:9c:58:37: 62:7e:df:c1:a2:30:47:5e:96:73:fa:74:a9:39:75: 7b:aa:6e:2e:b2:40:29:15:d4:cd:83:2e:0f:d4:bd: 6a:2a:40:8d:33:bb:65:6b:98:2d:8b:e7:71:c6:dd: 3b:58:97:1a:34:3b:16:17:d9:e2:75:4f:51:44:3b: 18:4e:2a:ad:b7:3e:e0:f1:4a:cf:f5:6d:30:15:c0: a6:94:4a:0a:74:53:47:99:e0:f7:26:37:bf:73:61: 29:1b:4e:eb:e4:53:e1:36:0a:44:06:22:e9:b2:d1: ab:de:d7:9a:6f:3b:15:30:6f:b6:a7:10:12:5d:2e: a1:15:d7:ac:e8:b3:bb:44:76:92:95:ed:82:8a:5b: 32:2a:5d:54:e5:68:cf:42:2c:36:55:5f:3e:71:21: dd:d2:a9:65:13:eb:2f:6b:24:30:ec:bb:1d:d1:ea: 01:53:d7:70:14:a4:ea:97:84:1d:bf:c3:e8:cc:35: 08:de:49:01:59:94:61:16:5a:18:64:7e:58:be:5b: dd:4c:63:d8:47:fc:36:e2:b0:1d:ff:47:72:a2:dd: a9:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:AA:99:6E:26:77:79:B5:2A:80:FF:DB:8A:0E:D7:B7:F8:C7:2B:2B X509v3 Authority Key Identifier: keyid:90:1F:98:91:FB:F7:F2:7D:41:6A:1E:E0:6B:31:B0:16:5A:AE:1D:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:44:2d:36:f5:52:53:bb:6d:19:90:6b:aa:3e:4e:56:1e:d3: 1a:46:ff:ee:fd:f0:a5:e3:41:03:e7:91:e3:50:46:c2:0f:34: 5d:f0:f6:07:ff:7d:13:d1:58:f6:12:70:ed:51:fd:86:d3:07: b0:00:77:a3:b0:fc:bd:82:73:6a:5b:10:57:1c:97:fc:e1:7d: 29:35:e1:51:89:ad:2f:ec:71:dd:3a:bc:d1:48:98:19:56:fc: 39:89:02:95:58:7e:8c:62:9e:a5:0d:28:f6:bb:88:1d:df:09: 26:23:69:5e:9d:ce:08:29:42:e7:f0:3e:25:ad:9e:d2:be:e9: a8:b6:90:73:b5:d7:aa:d3:4b:60:19:c2:ff:f3:3a:a5:22:ee: 0a:e3:65:e7:01:2c:21:08:e5:04:4b:ab:f4:95:65:a1:f1:dc: 27:32:b5:3a:3d:c8:b6:b1:da:07:18:c9:a1:d0:39:ae:49:bc: 64:27:3e:fe:da:6c:55:cc:00:ca:37:3c:94:53:85:46:a1:3e: 0a:ac:74:03:0c:f3:ab:35:ca:ce:42:bc:d7:80:d3:ce:3f:4f: a6:8f:52:24:7b:53:3d:6f:ff:8a:e6:0c:83:a7:fd:be:bd:02: ec:25:fe:28:32:85:67:e8:33:71:87:29:71:e0:c2:57:a8:6d: f8:01:23:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJEOTMxMTAvBgNVBAUTKDkwMUY5ODkxRkJGN0YyN0Q0MTZBMUVFMDZCMzFCMDE2 NUFBRTFEQzUwHhcNMjUwNTMxMDA0MzUyWhcNMjUwNjA3MDA0MzUyWjAYMRYwFAYD VQQDEw02ODNhNTBjOC0zNTQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApCWwpbgK19jY+Ot+HefmqtjzYyy89U5V1Z29GIt6Ws9Dss3vEtglA2ycWDdi ft/BojBHXpZz+nSpOXV7qm4uskApFdTNgy4P1L1qKkCNM7tla5gti+dxxt07WJca NDsWF9nidU9RRDsYTiqttz7g8UrP9W0wFcCmlEoKdFNHmeD3Jje/c2EpG07r5FPh NgpEBiLpstGr3teabzsVMG+2pxASXS6hFdes6LO7RHaSle2CilsyKl1U5WjPQiw2 VV8+cSHd0qllE+svayQw7Lsd0eoBU9dwFKTql4Qdv8PozDUI3kkBWZRhFloYZH5Y vlvdTGPYR/w24rAd/0dyot2pnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJCqmW4m d3m1KoD/24oO17f4xysrMB8GA1UdIwQYMBaAFJAfmJH79/J9QWoe4GsxsBZarh3F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkQ5My8wRjg3NEE3NDdG M0QxMUVDOEExRENDNzFDNEY5QUUwMi9rQi1Za2Z2MzhuMUJhaDdnYXpHd0ZscXVI Y1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tCLVlrZnYzOG4xQmFoN2dhekd3RmxxdUhjVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkQ5My8wRjg3NEE3NDdGM0QxMUVDOEExRENDNzFDNEY5QUUwMi9rQi1Za2Z2Mzhu MUJhaDdnYXpHd0ZscXVIY1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYRC029VJTu20ZkGuqPk5WHtMaRv/u/fCl40ED55HjUEbCDzRd8PYH /30T0Vj2EnDtUf2G0wewAHejsPy9gnNqWxBXHJf84X0pNeFRia0v7HHdOrzRSJgZ Vvw5iQKVWH6MYp6lDSj2u4gd3wkmI2lenc4IKULn8D4lrZ7SvumotpBztdeq00tg GcL/8zqlIu4K42XnASwhCOUES6v0lWWh8dwnMrU6Pci2sdoHGMmh0DmuSbxkJz7+ 2mxVzADKNzyUU4VGoT4KrHQDDPOrNcrOQrzXgNPOP0+mj1Ike1M9b/+K5gyDp/2+ vQLsJf4oMoVn6DNxhylx4MJXqG34ASN5 -----END CERTIFICATE-----Generated at Sat May 31 17:56:25 2025 by rpki-client