$ rpki-client -vvf rpki.apnic.net/member_repository/A9140E40/E3611BD6D38B11E58392F54DC4F9AE02/K5TrpHjp0RKx5QoN4zDSrYWOHNA.mft File: K5TrpHjp0RKx5QoN4zDSrYWOHNA.mft (raw, json) Hash identifier: 5g6ctPX9UvUP10TvHR3p7t2zDP7TQ3tkz4V+maeEwQc= Subject key identifier: 4D:76:F4:A1:10:AA:1B:B1:C8:4F:CB:0E:1B:F8:8B:E0:65:5C:B8:D1 Authority key identifier: 2B:94:EB:A4:78:E9:D1:12:B1:E5:0A:0D:E3:30:D2:AD:85:8E:1C:D0 Certificate issuer: /CN=A9140E40/serialNumber=2B94EBA478E9D112B1E50A0DE330D2AD858E1CD0 Certificate serial: 2198 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5TrpHjp0RKx5QoN4zDSrYWOHNA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140E40/E3611BD6D38B11E58392F54DC4F9AE02/K5TrpHjp0RKx5QoN4zDSrYWOHNA.mft Manifest number: 2198 Signing time: Fri 30 May 2025 16:04:37 +0000 Manifest this update: Fri 30 May 2025 16:04:36 +0000 Manifest next update: Fri 06 Jun 2025 16:04:36 +0000 Files and hashes: 1: K5TrpHjp0RKx5QoN4zDSrYWOHNA.crl (hash: Mxp6HQUWHtOHwUv31qkGtua7AeGgfpc0jxXZKwU/WgY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140E40/E3611BD6D38B11E58392F54DC4F9AE02/K5TrpHjp0RKx5QoN4zDSrYWOHNA.crl rsync://rpki.apnic.net/member_repository/A9140E40/E3611BD6D38B11E58392F54DC4F9AE02/K5TrpHjp0RKx5QoN4zDSrYWOHNA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5TrpHjp0RKx5QoN4zDSrYWOHNA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 16:04:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8600 (0x2198) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140E40, serialNumber=2B94EBA478E9D112B1E50A0DE330D2AD858E1CD0 Validity Not Before: May 30 16:04:36 2025 GMT Not After : Jun 6 16:04:36 2025 GMT Subject: CN=6839d714-d36d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:7c:b3:a0:e9:26:78:55:ba:98:60:58:e4:a5: 96:19:24:2b:ae:39:c0:cd:91:e2:c7:6d:37:ae:d7: 56:fa:22:80:0d:53:32:e8:5b:31:ab:56:b0:51:a1: 3d:10:3e:91:4d:09:1c:be:05:15:be:cf:f9:8f:86: 80:de:45:8f:41:a2:a3:ea:ae:77:15:96:52:63:d3: f5:b5:ac:1a:66:7e:9a:f5:0f:25:39:b9:55:37:8b: 9f:86:55:5f:d8:5d:88:9e:e9:2a:c8:94:bd:f3:16: 47:0a:8f:c5:ca:3a:aa:ef:fa:9f:c1:c5:cb:24:13: 6b:d6:fa:c8:5a:de:55:bd:e8:0f:4a:7e:1d:20:96: cc:50:c5:47:59:54:f8:b0:f7:f2:65:de:e5:05:9e: 9e:0d:83:5d:13:cf:47:1d:f3:e6:33:dd:3a:8c:e1: 09:79:de:f4:91:45:82:3c:dc:27:4b:80:37:a6:74: 3a:41:97:59:2c:e7:fe:71:ba:6f:d2:80:46:eb:20: cf:9e:58:a8:82:94:6b:c1:38:ee:d3:ec:6e:da:6e: 74:fe:5a:03:7a:a8:bb:9b:2b:4e:56:93:3e:60:d1: ed:5f:f3:b4:41:7c:d8:19:ee:62:77:e3:d0:1b:d3: 2c:3c:15:80:eb:11:ee:d4:52:8f:66:e7:72:58:c6: 9d:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:76:F4:A1:10:AA:1B:B1:C8:4F:CB:0E:1B:F8:8B:E0:65:5C:B8:D1 X509v3 Authority Key Identifier: keyid:2B:94:EB:A4:78:E9:D1:12:B1:E5:0A:0D:E3:30:D2:AD:85:8E:1C:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140E40/E3611BD6D38B11E58392F54DC4F9AE02/K5TrpHjp0RKx5QoN4zDSrYWOHNA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5TrpHjp0RKx5QoN4zDSrYWOHNA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140E40/E3611BD6D38B11E58392F54DC4F9AE02/K5TrpHjp0RKx5QoN4zDSrYWOHNA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:83:99:84:32:07:56:aa:7f:0a:cb:ff:01:a2:6b:e8:2c:3d: 82:d7:5a:9a:05:b0:10:c5:df:5a:23:1b:e7:68:cf:6b:aa:d2: 69:8f:ac:8e:05:52:81:6a:d5:e3:1c:16:5a:d2:b7:92:5a:19: da:7b:34:5a:22:a8:46:fd:46:0e:90:34:ac:e0:92:c9:f3:27: 85:01:f3:f6:b5:aa:63:93:dc:52:3d:62:4e:89:0a:1d:1c:79: 70:95:64:e8:3b:10:3b:fd:34:96:04:93:49:8d:10:46:34:9c: 71:02:c7:3f:47:31:2d:ad:17:ba:27:c2:4e:b4:fa:dc:24:08: f7:ce:51:1c:99:18:c2:12:24:a0:36:8d:a5:b9:e5:75:cb:27: 4b:1d:a6:ad:4c:ec:6c:92:49:49:7e:5e:32:be:71:45:b3:3a: 53:18:3e:8d:ae:c7:4a:fd:e4:4c:e8:fc:8b:31:38:3c:ad:a1: 2d:be:73:93:ec:2c:51:dc:44:7c:c8:76:d2:c0:8d:69:84:49: 94:32:81:b4:12:a0:90:d6:ac:18:c1:c7:0c:c2:11:01:6f:49: d1:48:f0:4a:3c:e3:25:d4:d3:c1:db:1e:2a:f2:38:81:e2:b0: 92:b1:37:5c:d6:68:74:e4:a6:8f:9d:f4:1a:83:50:50:dc:25: 68:72:63:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBFNDAxMTAvBgNVBAUTKDJCOTRFQkE0NzhFOUQxMTJCMUU1MEEwREUzMzBEMkFE ODU4RTFDRDAwHhcNMjUwNTMwMTYwNDM2WhcNMjUwNjA2MTYwNDM2WjAYMRYwFAYD VQQDEw02ODM5ZDcxNC1kMzZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyXyzoOkmeFW6mGBY5KWWGSQrrjnAzZHix203rtdW+iKADVMy6Fsxq1awUaE9 ED6RTQkcvgUVvs/5j4aA3kWPQaKj6q53FZZSY9P1tawaZn6a9Q8lOblVN4ufhlVf 2F2InukqyJS98xZHCo/Fyjqq7/qfwcXLJBNr1vrIWt5VvegPSn4dIJbMUMVHWVT4 sPfyZd7lBZ6eDYNdE89HHfPmM906jOEJed70kUWCPNwnS4A3pnQ6QZdZLOf+cbpv 0oBG6yDPnliogpRrwTju0+xu2m50/loDeqi7mytOVpM+YNHtX/O0QXzYGe5id+PQ G9MsPBWA6xHu1FKPZudyWMadIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE129KEQ qhuxyE/LDhv4i+BlXLjRMB8GA1UdIwQYMBaAFCuU66R46dESseUKDeMw0q2FjhzQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEU0MC9FMzYxMUJENkQz OEIxMUU1ODM5MkY1NERDNEY5QUUwMi9LNVRycEhqcDBSS3g1UW9ONHpEU3JZV09I TkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s1VHJwSGpwMFJLeDVRb040ekRTcllXT0hOQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEU0MC9FMzYxMUJENkQzOEIxMUU1ODM5MkY1NERDNEY5QUUwMi9LNVRycEhqcDBS S3g1UW9ONHpEU3JZV09ITkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8g5mEMgdWqn8Ky/8BomvoLD2C11qaBbAQxd9aIxvnaM9rqtJpj6yO BVKBatXjHBZa0reSWhnaezRaIqhG/UYOkDSs4JLJ8yeFAfP2tapjk9xSPWJOiQod HHlwlWToOxA7/TSWBJNJjRBGNJxxAsc/RzEtrRe6J8JOtPrcJAj3zlEcmRjCEiSg No2lueV1yydLHaatTOxskklJfl4yvnFFszpTGD6NrsdK/eRM6PyLMTg8raEtvnOT 7CxR3ER8yHbSwI1phEmUMoG0EqCQ1qwYwccMwhEBb0nRSPBKPOMl1NPB2x4q8jiB 4rCSsTdc1mh05KaPnfQag1BQ3CVocmP9 -----END CERTIFICATE-----Generated at Sat May 31 15:19:46 2025 by rpki-client