$ rpki-client -vvf rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.mft File: KO2nuV1ejUVip1l0xt19pkwqKoY.mft (raw, json) Hash identifier: QtISEA6gc2dznDT1RT2VYgOS3CEIjiOORjKKsFcFcn0= Subject key identifier: ED:DB:D8:70:00:4B:B6:92:FD:11:C7:19:E7:44:74:E1:15:34:91:E6 Authority key identifier: 28:ED:A7:B9:5D:5E:8D:45:62:A7:59:74:C6:DD:7D:A6:4C:2A:2A:86 Certificate issuer: /CN=A9142E1E/serialNumber=28EDA7B95D5E8D4562A75974C6DD7DA64C2A2A86 Certificate serial: 4A Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/KO2nuV1ejUVip1l0xt19pkwqKoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.mft Manifest number: 4A Signing time: Tue 03 Jun 2025 06:27:35 +0000 Manifest this update: Tue 03 Jun 2025 06:27:34 +0000 Manifest next update: Tue 10 Jun 2025 06:27:34 +0000 Files and hashes: 1: KO2nuV1ejUVip1l0xt19pkwqKoY.crl (hash: yN7T932n4hxbi58Hdl0SXJbFb/ogviClP+WuUURCwxc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.crl rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/KO2nuV1ejUVip1l0xt19pkwqKoY.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 06:27:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74 (0x4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142E1E, serialNumber=28EDA7B95D5E8D4562A75974C6DD7DA64C2A2A86 Validity Not Before: Jun 3 06:27:34 2025 GMT Not After : Jun 10 06:27:34 2025 GMT Subject: CN=683e95d6-2b54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ef:af:9e:dd:a3:67:db:56:ee:b5:6d:86:10: a1:a5:ec:f7:c8:38:81:9d:92:c3:b5:cb:70:c8:41: 84:71:04:c3:18:3a:b5:21:60:b9:27:0d:fc:f5:bb: b7:43:32:f0:84:a0:df:45:7f:41:a2:a0:80:a4:6f: 23:0b:af:65:40:09:ce:3d:5f:ed:28:10:81:d2:5b: 0e:e1:97:00:76:de:78:28:ae:15:05:3d:ba:95:8d: 42:31:aa:0c:8a:2a:2d:27:8b:34:70:01:f2:0d:06: f3:d8:e9:a8:68:7b:61:de:32:73:44:b0:52:f7:d3: b2:a0:b2:2b:80:8b:c2:9e:6d:b4:f9:b7:7d:ae:ab: 6a:27:69:2c:ad:94:64:66:3d:7e:ab:ee:ad:cd:ab: fb:3e:22:f5:6b:59:6f:8c:2a:3b:03:88:19:98:d9: 2b:ca:d8:58:72:48:37:06:ca:fa:77:f5:fe:0c:c1: a5:78:f7:db:f6:b8:a5:20:e9:65:97:6d:24:c6:b8: 37:df:ec:e7:f8:23:21:7b:00:6a:bb:7c:95:2b:b9: aa:29:22:3c:9d:c2:79:e8:ce:9d:d2:d9:3d:cf:5f: 37:40:e4:d6:97:3e:d6:03:b7:d5:fb:e4:f8:16:db: a4:92:1f:40:4d:d9:2d:66:d5:98:31:7c:b0:c6:1b: 6a:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:DB:D8:70:00:4B:B6:92:FD:11:C7:19:E7:44:74:E1:15:34:91:E6 X509v3 Authority Key Identifier: keyid:28:ED:A7:B9:5D:5E:8D:45:62:A7:59:74:C6:DD:7D:A6:4C:2A:2A:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/KO2nuV1ejUVip1l0xt19pkwqKoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142E1E/D409F82AD16911EFB76FB520C4F9AE02/KO2nuV1ejUVip1l0xt19pkwqKoY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ed:18:ca:1f:17:21:d6:06:5b:b3:ae:f0:80:33:4b:e4:3a:64: 7a:ea:71:5e:d6:32:3d:ca:e7:64:56:8e:6f:5d:6e:f8:c0:94: 93:46:f3:4e:ea:e4:98:27:d0:fd:64:1b:72:7d:b7:b3:f8:3a: 80:93:e8:30:ca:fb:0f:ad:f3:5f:b0:88:31:68:e8:e9:76:d8: e2:d5:07:19:70:37:c2:f2:e9:6f:12:ce:3a:e6:2e:cd:f5:a3: 6b:19:38:f2:4c:d6:2d:66:41:41:7f:2f:ee:b4:7a:aa:46:39: da:c2:a9:5c:df:1d:dd:9a:4d:2b:b7:9a:cc:74:46:ba:06:2a: 1e:61:1c:15:d2:33:52:7c:4b:41:de:90:b6:ee:15:c1:29:b2: 64:d6:1e:8b:22:8d:00:51:d4:74:32:2f:54:90:f2:ae:a1:62: 2f:a3:8f:52:9d:ae:9a:26:3d:49:c8:af:e3:ae:f0:bb:45:4e: 0f:8f:59:21:5c:96:b3:44:4b:28:60:15:a6:ea:d7:12:fa:81: f0:ea:b8:a0:62:a8:e1:15:e3:31:88:bf:49:7e:15:6b:f5:75: 9e:1d:9e:2e:ce:c3:d4:8c:5d:bf:2d:1b:60:f0:3a:57:c0:bd: 3a:f4:1b:9f:e3:1c:52:bd:37:c0:b5:17:80:4b:b6:59:95:67: fe:b9:66:d8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MkUxRTExMC8GA1UEBRMoMjhFREE3Qjk1RDVFOEQ0NTYyQTc1OTc0QzZERDdEQTY0 QzJBMkE4NjAeFw0yNTA2MDMwNjI3MzRaFw0yNTA2MTAwNjI3MzRaMBgxFjAUBgNV BAMTDTY4M2U5NWQ2LTJiNTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC276+e3aNn21butW2GEKGl7PfIOIGdksO1y3DIQYRxBMMYOrUhYLknDfz1u7dD MvCEoN9Ff0GioICkbyMLr2VACc49X+0oEIHSWw7hlwB23ngorhUFPbqVjUIxqgyK Ki0nizRwAfINBvPY6ahoe2HeMnNEsFL307KgsiuAi8KebbT5t32uq2onaSytlGRm PX6r7q3Nq/s+IvVrWW+MKjsDiBmY2SvK2FhySDcGyvp39f4MwaV499v2uKUg6WWX bSTGuDff7Of4IyF7AGq7fJUruaopIjydwnnozp3S2T3PXzdA5NaXPtYDt9X75PgW 26SSH0BN2S1m1ZgxfLDGG2rFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU7dvYcABL tpL9EccZ50R04RU0keYwHwYDVR0jBBgwFoAUKO2nuV1ejUVip1l0xt19pkwqKoYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQyRTFFL0Q0MDlGODJBRDE2 OTExRUZCNzZGQjUyMEM0RjlBRTAyL0tPMm51VjFlalVWaXAxbDB4dDE5cGt3cUtv WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvS08ybnVWMWVqVVZpcDFsMHh0MTlwa3dxS29ZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQy RTFFL0Q0MDlGODJBRDE2OTExRUZCNzZGQjUyMEM0RjlBRTAyL0tPMm51VjFlalVW aXAxbDB4dDE5cGt3cUtvWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAO0Yyh8XIdYGW7Ou8IAzS+Q6ZHrqcV7WMj3K52RWjm9dbvjAlJNG807q 5Jgn0P1kG3J9t7P4OoCT6DDK+w+t81+wiDFo6Ol22OLVBxlwN8Ly6W8SzjrmLs31 o2sZOPJM1i1mQUF/L+60eqpGOdrCqVzfHd2aTSu3msx0RroGKh5hHBXSM1J8S0He kLbuFcEpsmTWHosijQBR1HQyL1SQ8q6hYi+jj1KdrpomPUnIr+Ou8LtFTg+PWSFc lrNESyhgFabq1xL6gfDquKBiqOEV4zGIv0l+FWv1dZ4dni7Ow9SMXb8tG2DwOlfA vTr0G5/jHFK9N8C1F4BLtlmVZ/65Ztg= -----END CERTIFICATE-----Generated at Wed Jun 4 00:55:40 2025 by rpki-client