$ rpki-client -vvf rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft File: KtPYi16OCwUUGjvJL4XkJzoFYqE.mft (raw, json) Hash identifier: +mH3hJufZ8j4hGuq3GLjBPibomf5KrPCafRYWVQ3s1E= Subject key identifier: EC:7F:CD:49:B7:37:61:6A:DB:97:B7:0B:92:47:FC:B6:A1:FF:A2:59 Authority key identifier: 2A:D3:D8:8B:5E:8E:0B:05:14:1A:3B:C9:2F:85:E4:27:3A:05:62:A1 Certificate issuer: /CN=A9132F27/serialNumber=2AD3D88B5E8E0B05141A3BC92F85E4273A0562A1 Certificate serial: FF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft Manifest number: FD Signing time: Sun 01 Jun 2025 04:50:00 +0000 Manifest this update: Sun 01 Jun 2025 04:50:00 +0000 Manifest next update: Sun 08 Jun 2025 04:50:00 +0000 Files and hashes: 1: KtPYi16OCwUUGjvJL4XkJzoFYqE.crl (hash: e6+zb0itqtJ5MhkpHWzUNb7ZZl9YPK/lEYzELex0mtY=) 2: 1D74CCE2BB6D11EEB670B00CC4F9AE02.roa (hash: c7azquHGHrdqjZWXwOVhESd2h6ZSF7h+7L/HwU2cJDw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.crl rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 04:49:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 255 (0xff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132F27, serialNumber=2AD3D88B5E8E0B05141A3BC92F85E4273A0562A1 Validity Not Before: Jun 1 04:50:00 2025 GMT Not After : Jun 8 04:50:00 2025 GMT Subject: CN=683bdbf8-5f72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:95:c6:32:1b:fb:6c:8c:8b:f9:a0:08:26:13: d9:cc:40:8e:b2:bb:9c:66:2d:13:d0:c0:37:a7:1b: 2f:6e:1a:be:7a:e3:f3:a6:97:30:f4:1f:87:85:fb: 26:d4:13:8e:ce:ab:ff:4d:7c:3e:62:62:37:68:12: ca:c8:e0:cd:91:7c:8e:13:8b:59:93:53:e9:81:48: 2c:d5:03:de:0a:3f:09:a0:88:47:6a:f6:e6:4b:16: 63:e0:ed:a4:d5:14:84:d7:de:68:e9:24:dd:4d:c1: 90:38:c1:2b:a5:17:25:be:d9:9f:5f:8b:38:96:60: d3:4e:45:7e:d2:de:80:07:fe:94:1c:1c:1a:0d:fa: 26:63:ab:6e:6b:94:1b:a8:20:f2:da:f7:9c:8c:a7: 2a:80:bf:87:ba:8f:a3:b0:35:20:a0:e9:17:b9:cf: 41:96:6b:62:65:26:c6:be:5c:f9:78:4c:2b:f9:3c: 92:92:fd:d6:fb:dc:e2:6f:65:33:56:4d:49:2a:52: 06:6c:23:63:6a:4f:3f:65:de:75:2c:7d:1f:f5:a0: c7:c1:98:75:92:a0:2b:3e:05:15:de:9e:72:21:75: 53:0a:57:d3:7b:ce:a8:83:27:a7:e3:f5:2b:d3:c3: 6b:03:7b:26:d1:6a:28:d2:d5:e0:da:30:d3:79:bf: dd:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:7F:CD:49:B7:37:61:6A:DB:97:B7:0B:92:47:FC:B6:A1:FF:A2:59 X509v3 Authority Key Identifier: keyid:2A:D3:D8:8B:5E:8E:0B:05:14:1A:3B:C9:2F:85:E4:27:3A:05:62:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:cf:da:60:bc:bd:4b:92:6d:48:a5:b4:28:ae:3b:6e:61:43: 4e:75:81:44:aa:33:7b:1d:34:41:49:f2:3a:59:bf:10:cd:4d: a3:ab:6b:56:99:2b:0d:38:9b:c5:e0:9b:7c:b2:e1:00:6f:d3: 30:4c:30:78:fc:19:d3:95:c1:bd:6a:5d:4e:f6:de:23:5a:53: 18:8e:88:6b:b5:43:45:a2:65:2b:46:7b:3b:41:44:00:7c:fb: d8:aa:81:f9:b4:78:a3:14:20:41:23:d0:41:1b:f3:66:ce:18: e1:a1:80:60:e6:8f:08:0b:86:a5:c0:f6:ab:ef:e2:df:71:46: c9:76:c1:90:09:d0:ba:21:1d:87:59:93:fb:8a:d4:36:fb:e2: 45:9e:33:ac:47:85:0d:18:ba:0b:01:17:b2:07:69:3e:79:66: 21:b8:88:87:5e:d4:5e:47:4d:e3:8b:66:54:d7:11:91:a1:80: 29:c6:df:c0:d6:33:df:d0:b0:33:b8:9e:25:c0:2c:5b:5b:c3: f9:22:02:e3:99:30:aa:14:72:c2:61:0c:a7:fd:46:59:f3:9d: f4:95:7a:05:87:68:29:43:89:87:d7:92:2a:a9:a8:6f:56:f2: 1e:1f:af:e3:ff:a8:44:d0:60:b1:26:31:78:fa:fc:6a:4e:a7: 02:71:e6:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAP8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJGMjcxMTAvBgNVBAUTKDJBRDNEODhCNUU4RTBCMDUxNDFBM0JDOTJGODVFNDI3 M0EwNTYyQTEwHhcNMjUwNjAxMDQ1MDAwWhcNMjUwNjA4MDQ1MDAwWjAYMRYwFAYD VQQDEw02ODNiZGJmOC01ZjcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzJXGMhv7bIyL+aAIJhPZzECOsrucZi0T0MA3pxsvbhq+euPzppcw9B+Hhfsm 1BOOzqv/TXw+YmI3aBLKyODNkXyOE4tZk1PpgUgs1QPeCj8JoIhHavbmSxZj4O2k 1RSE195o6STdTcGQOMErpRclvtmfX4s4lmDTTkV+0t6AB/6UHBwaDfomY6tua5Qb qCDy2vecjKcqgL+Huo+jsDUgoOkXuc9BlmtiZSbGvlz5eEwr+TySkv3W+9zib2Uz Vk1JKlIGbCNjak8/Zd51LH0f9aDHwZh1kqArPgUV3p5yIXVTClfTe86ogyen4/Ur 08NrA3sm0Woo0tXg2jDTeb/dIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOx/zUm3 N2Fq25e3C5JH/Lah/6JZMB8GA1UdIwQYMBaAFCrT2ItejgsFFBo7yS+F5Cc6BWKh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkYyNy83QUNERjlBQUJC NkMxMUVFQTY4MEFFNkRDNEY5QUUwMi9LdFBZaTE2T0N3VVVHanZKTDRYa0p6b0ZZ cUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0t0UFlpMTZPQ3dVVUdqdkpMNFhrSnpvRllxRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkYyNy83QUNERjlBQUJCNkMxMUVFQTY4MEFFNkRDNEY5QUUwMi9LdFBZaTE2T0N3 VVVHanZKTDRYa0p6b0ZZcUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARz9pgvL1Lkm1IpbQorjtuYUNOdYFEqjN7HTRBSfI6Wb8QzU2jq2tW mSsNOJvF4Jt8suEAb9MwTDB4/BnTlcG9al1O9t4jWlMYjohrtUNFomUrRns7QUQA fPvYqoH5tHijFCBBI9BBG/NmzhjhoYBg5o8IC4alwPar7+LfcUbJdsGQCdC6IR2H WZP7itQ2++JFnjOsR4UNGLoLAReyB2k+eWYhuIiHXtReR03ji2ZU1xGRoYApxt/A 1jPf0LAzuJ4lwCxbW8P5IgLjmTCqFHLCYQyn/UZZ8530lXoFh2gpQ4mH15Iqqahv VvIeH6/j/6hE0GCxJjF4+vxqTqcCceZw -----END CERTIFICATE-----Generated at Mon Jun 2 20:18:05 2025 by rpki-client