$ rpki-client -vvf rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft File: koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft (raw, json) Hash identifier: 2ejxHttmZf1Mjw63X2fQhcft2664fyWGRAPQxm+pqmw= Subject key identifier: F2:88:EF:B9:18:67:EE:1C:3A:BF:3A:62:CC:A2:E0:DD:79:0A:AE:8F Authority key identifier: 92:80:F0:70:74:77:53:38:7B:6B:A6:57:32:D6:DD:79:92:B3:50:C1 Certificate issuer: /CN=A9138679/serialNumber=9280F070747753387B6BA65732D6DD7992B350C1 Certificate serial: 38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/koDwcHR3Uzh7a6ZXMtbdeZKzUME.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft Manifest number: 37 Signing time: Sat 31 May 2025 07:09:13 +0000 Manifest this update: Sat 31 May 2025 07:09:12 +0000 Manifest next update: Sat 07 Jun 2025 07:09:12 +0000 Files and hashes: 1: koDwcHR3Uzh7a6ZXMtbdeZKzUME.crl (hash: 7xU0lGtds4/+7AvlcgsN570RIaDwi/INn6R4yBjVhvU=) 2: 2CD223FCEA7811EF92D8DC39C4F9AE02.roa (hash: zvy+2HhQd/n3VOaiuMrL5/OccoJAnqCm0UAKCkrWeWw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.crl rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/koDwcHR3Uzh7a6ZXMtbdeZKzUME.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 07:09:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56 (0x38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138679, serialNumber=9280F070747753387B6BA65732D6DD7992B350C1 Validity Not Before: May 31 07:09:12 2025 GMT Not After : Jun 7 07:09:12 2025 GMT Subject: CN=683aab19-75d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:06:5d:a9:e0:ec:65:81:82:24:af:48:3f:22: e6:83:cd:f0:db:24:66:91:61:72:5a:4b:af:6c:1a: 02:2f:01:26:2f:d5:c7:5d:00:e9:38:39:ba:2d:d9: 72:54:3d:f1:92:7c:e2:d4:c1:c6:09:7b:35:21:e5: 9a:d9:f7:25:81:eb:b5:37:23:7c:7e:1b:b9:51:cb: 10:41:f2:a0:62:b7:c3:8a:aa:bd:dd:a9:44:55:31: ff:c5:d6:c1:71:7c:be:20:24:7a:5a:da:dc:6b:6c: 86:51:e7:02:ce:36:58:94:bb:ad:a5:31:c9:1a:b0: 32:b4:98:9d:e1:11:d4:90:0e:f0:60:8b:d4:d0:07: 1e:87:7c:17:64:c9:e2:e0:8e:42:fb:0c:c4:87:40: 49:27:7e:4b:5e:24:4f:62:df:ef:f9:be:11:dc:34: 39:84:c3:10:71:73:a2:a5:80:18:b8:54:56:fb:21: d4:77:14:ce:8c:27:92:33:65:a1:47:00:a7:04:dc: 1f:fa:56:5a:37:c4:6e:d8:b4:99:22:3d:bf:68:00: e3:5b:a7:a4:31:20:22:6b:fe:6c:2a:04:1d:b9:a7: 9c:14:96:3f:6b:cd:6f:bf:7f:12:26:08:94:2c:46: a4:d1:89:9a:d0:74:45:94:6b:23:23:81:90:c6:c2: 25:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:88:EF:B9:18:67:EE:1C:3A:BF:3A:62:CC:A2:E0:DD:79:0A:AE:8F X509v3 Authority Key Identifier: keyid:92:80:F0:70:74:77:53:38:7B:6B:A6:57:32:D6:DD:79:92:B3:50:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/koDwcHR3Uzh7a6ZXMtbdeZKzUME.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138679/CB2CB3CEEA7711EFA5635680C4F9AE02/koDwcHR3Uzh7a6ZXMtbdeZKzUME.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:81:fa:a7:dd:90:96:1d:94:22:a8:23:f8:69:bb:0d:00:0d: 04:95:0b:e1:e6:37:86:17:21:05:b2:f7:26:9b:da:e4:e8:b1: f4:d0:08:9c:cb:ee:50:e9:f5:28:76:05:88:ab:0a:38:55:fb: 29:3b:ba:ad:f3:0f:ed:1e:ea:53:1a:e6:c5:43:b0:30:f0:38: b2:2a:61:0d:84:da:92:3e:1f:b9:e7:ba:2a:c9:4d:43:d4:95: 9d:e6:f5:15:45:15:75:5f:f4:78:f8:5b:76:13:4a:45:53:e0: 64:c2:07:30:e1:76:c3:73:8e:c1:04:41:0b:a0:56:fa:91:18: bf:97:06:cc:95:33:af:57:20:9c:5e:5e:5c:b7:2c:19:ff:a9: 1b:2d:e2:6f:1a:0e:bf:8b:7b:0f:28:0a:3b:80:44:b1:90:06: ee:ef:1a:df:b2:86:d4:c5:06:2e:9b:af:46:81:52:ad:3e:d4: a9:4b:2e:1f:b5:15:f3:f5:7b:35:e6:b3:db:81:82:c8:56:44: 29:53:1a:7b:f1:07:a3:45:a6:35:29:3e:70:bf:d1:3c:a8:c7: 4f:18:99:5c:a1:e3:1e:ae:dc:5c:58:12:70:78:80:4b:4a:ac: 2e:0c:a8:1f:79:8d:b0:b9:a1:23:a6:89:8b:49:99:99:72:b3: 41:d5:96:91 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBODANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz ODY3OTExMC8GA1UEBRMoOTI4MEYwNzA3NDc3NTMzODdCNkJBNjU3MzJENkRENzk5 MkIzNTBDMTAeFw0yNTA1MzEwNzA5MTJaFw0yNTA2MDcwNzA5MTJaMBgxFjAUBgNV BAMTDTY4M2FhYjE5LTc1ZDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCBl2p4OxlgYIkr0g/IuaDzfDbJGaRYXJaS69sGgIvASYv1cddAOk4Obot2XJU PfGSfOLUwcYJezUh5ZrZ9yWB67U3I3x+G7lRyxBB8qBit8OKqr3dqURVMf/F1sFx fL4gJHpa2txrbIZR5wLONliUu62lMckasDK0mJ3hEdSQDvBgi9TQBx6HfBdkyeLg jkL7DMSHQEknfkteJE9i3+/5vhHcNDmEwxBxc6KlgBi4VFb7IdR3FM6MJ5IzZaFH AKcE3B/6Vlo3xG7YtJkiPb9oAONbp6QxICJr/mwqBB25p5wUlj9rzW+/fxImCJQs RqTRiZrQdEWUayMjgZDGwiV7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU8ojvuRhn 7hw6vzpizKLg3XkKro8wHwYDVR0jBBgwFoAUkoDwcHR3Uzh7a6ZXMtbdeZKzUMEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM4Njc5L0NCMkNCM0NFRUE3 NzExRUZBNTYzNTY4MEM0RjlBRTAyL2tvRHdjSFIzVXpoN2E2WlhNdGJkZVpLelVN RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIva29Ed2NIUjNVemg3YTZaWE10YmRlWkt6VU1FLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM4 Njc5L0NCMkNCM0NFRUE3NzExRUZBNTYzNTY4MEM0RjlBRTAyL2tvRHdjSFIzVXpo N2E2WlhNdGJkZVpLelVNRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABqB+qfdkJYdlCKoI/hpuw0ADQSVC+HmN4YXIQWy9yab2uTosfTQCJzL 7lDp9Sh2BYirCjhV+yk7uq3zD+0e6lMa5sVDsDDwOLIqYQ2E2pI+H7nnuirJTUPU lZ3m9RVFFXVf9Hj4W3YTSkVT4GTCBzDhdsNzjsEEQQugVvqRGL+XBsyVM69XIJxe Xly3LBn/qRst4m8aDr+Lew8oCjuARLGQBu7vGt+yhtTFBi6br0aBUq0+1KlLLh+1 FfP1ezXms9uBgshWRClTGnvxB6NFpjUpPnC/0Tyox08YmVyh4x6u3FxYEnB4gEtK rC4MqB95jbC5oSOmiYtJmZlys0HVlpE= -----END CERTIFICATE-----Generated at Sat May 31 16:44:50 2025 by rpki-client