$ rpki-client -vvf rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.mft File: K8rPYWW1h0BZDllxhDPYGD_5Rm0.mft (raw, json) Hash identifier: Ofy9zsBScaYHkdX3q/aRdl4AzB142Un/UyY6sI7IWGA= Subject key identifier: B8:F8:1B:55:62:B0:4D:B9:B8:07:41:43:06:79:5B:B7:5E:13:03:32 Authority key identifier: 2B:CA:CF:61:65:B5:87:40:59:0E:59:71:84:33:D8:18:3F:F9:46:6D Certificate issuer: /CN=A9144DEA/serialNumber=2BCACF6165B58740590E59718433D8183FF9466D Certificate serial: 9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8rPYWW1h0BZDllxhDPYGD_5Rm0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.mft Manifest number: 99 Signing time: Thu 05 Jun 2025 05:40:37 +0000 Manifest this update: Thu 05 Jun 2025 05:40:37 +0000 Manifest next update: Thu 12 Jun 2025 05:40:37 +0000 Files and hashes: 1: K8rPYWW1h0BZDllxhDPYGD_5Rm0.crl (hash: k3EkP7rBELWyuuFKi0ZRDceRNzkI5C9hHNIEv0K644M=) 2: 7490D0DE5AE111EFAD7EB82CC4F9AE02.roa (hash: 2zLHgEDWGwo9zlyqNnj3rIHawpIWGW43p4pSnf/kapk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.crl rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8rPYWW1h0BZDllxhDPYGD_5Rm0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 05:40:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 155 (0x9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144DEA, serialNumber=2BCACF6165B58740590E59718433D8183FF9466D Validity Not Before: Jun 5 05:40:37 2025 GMT Not After : Jun 12 05:40:37 2025 GMT Subject: CN=68412dd5-efa5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:8f:a3:26:a3:93:f4:66:82:ea:1c:ed:0f:8c: 8f:ae:e9:06:82:95:c3:c5:57:92:65:9b:ea:31:71: c9:14:58:a8:94:00:b3:03:d4:11:28:5d:30:7b:22: b3:35:c3:53:90:d6:a0:9d:78:ba:e0:d4:34:5b:90: 45:44:74:12:fa:e3:3a:07:11:de:5e:fb:f8:fa:35: 49:52:e5:81:da:a6:49:d8:14:65:c5:e7:c2:ce:d5: e3:7e:ea:61:41:47:53:3a:7e:f5:2e:f7:92:fe:cc: cd:8d:04:9c:dd:ad:d9:4e:54:83:22:e8:53:95:94: fd:a5:37:02:61:fa:7a:fc:0f:2d:f7:66:e2:4b:66: ba:e7:5d:dc:ff:67:66:84:91:f3:12:95:a0:98:ee: 72:47:b5:06:e1:b9:0e:05:39:c6:e2:fd:c0:26:08: 77:f4:cc:f5:d6:6c:9d:52:f3:9c:e2:93:9d:5b:ce: 15:f5:f4:2e:79:ce:6c:af:e2:63:be:3e:98:da:6e: 3d:26:51:5f:25:21:36:d0:6c:a8:92:54:7b:bc:bb: 65:45:4b:fa:97:be:ce:1a:c7:44:ce:99:97:97:f6: 7b:e0:83:ea:59:b4:be:96:63:e2:00:5d:2f:d4:e5: eb:37:3c:17:e3:80:6a:29:2a:46:b2:b1:91:10:f6: a8:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:F8:1B:55:62:B0:4D:B9:B8:07:41:43:06:79:5B:B7:5E:13:03:32 X509v3 Authority Key Identifier: keyid:2B:CA:CF:61:65:B5:87:40:59:0E:59:71:84:33:D8:18:3F:F9:46:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8rPYWW1h0BZDllxhDPYGD_5Rm0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144DEA/3BF5F2E05AE111EFA7563C2CC4F9AE02/K8rPYWW1h0BZDllxhDPYGD_5Rm0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:76:c4:66:e0:3e:77:65:12:bd:b2:fc:34:73:59:33:ba:2f: 51:9a:9e:7e:51:54:f2:61:64:41:06:3a:c2:d9:d7:61:8a:23: 8b:81:7b:15:1e:d8:e5:ca:b3:49:1a:4d:d1:67:1f:41:ee:dd: 3e:3e:ee:a3:62:0d:89:d8:49:a1:81:04:98:58:9c:88:26:de: 46:7a:c7:6e:81:c6:b0:05:bf:61:27:a6:8d:ab:2b:c9:8f:ed: 6e:7c:2c:a1:ed:16:96:f7:19:d1:06:96:e1:01:ad:6b:0e:5e: 28:e5:f2:f8:6e:3b:ee:44:1c:3e:5b:3e:df:91:84:8b:46:ac: 4c:80:41:a9:ba:ca:48:c7:9e:ed:74:2d:fb:cf:ef:b4:60:e8: ba:b8:34:4c:dc:fd:16:0b:20:7f:c2:cc:e4:c7:da:e4:49:eb: 2d:21:52:3a:2e:f6:a7:be:de:af:bc:bc:57:93:b9:33:f7:70: f0:19:d6:ad:af:97:f0:92:47:9a:22:06:fb:4f:6b:71:6d:f6: 41:29:50:68:9a:51:39:d3:36:2a:84:55:ce:8d:02:28:fa:36: aa:c0:25:0d:bc:65:0b:11:2b:d2:7d:d4:e1:74:40:36:be:c3: b7:0c:5b:69:42:7d:89:7b:a7:76:26:c6:f9:99:ee:00:2a:c9: b3:c9:ee:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRERUExMTAvBgNVBAUTKDJCQ0FDRjYxNjVCNTg3NDA1OTBFNTk3MTg0MzNEODE4 M0ZGOTQ2NkQwHhcNMjUwNjA1MDU0MDM3WhcNMjUwNjEyMDU0MDM3WjAYMRYwFAYD VQQDEw02ODQxMmRkNS1lZmE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAto+jJqOT9GaC6hztD4yPrukGgpXDxVeSZZvqMXHJFFiolACzA9QRKF0weyKz NcNTkNagnXi64NQ0W5BFRHQS+uM6BxHeXvv4+jVJUuWB2qZJ2BRlxefCztXjfuph QUdTOn71LveS/szNjQSc3a3ZTlSDIuhTlZT9pTcCYfp6/A8t92biS2a6513c/2dm hJHzEpWgmO5yR7UG4bkOBTnG4v3AJgh39Mz11mydUvOc4pOdW84V9fQuec5sr+Jj vj6Y2m49JlFfJSE20GyoklR7vLtlRUv6l77OGsdEzpmXl/Z74IPqWbS+lmPiAF0v 1OXrNzwX44BqKSpGsrGREPaoGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLj4G1Vi sE25uAdBQwZ5W7deEwMyMB8GA1UdIwQYMBaAFCvKz2FltYdAWQ5ZcYQz2Bg/+UZt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NERFQS8zQkY1RjJFMDVB RTExMUVGQTc1NjNDMkNDNEY5QUUwMi9LOHJQWVdXMWgwQlpEbGx4aERQWUdEXzVS bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s4clBZV1cxaDBCWkRsbHhoRFBZR0RfNVJtMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NERFQS8zQkY1RjJFMDVBRTExMUVGQTc1NjNDMkNDNEY5QUUwMi9LOHJQWVdXMWgw QlpEbGx4aERQWUdEXzVSbTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAudsRm4D53ZRK9svw0c1kzui9Rmp5+UVTyYWRBBjrC2ddhiiOLgXsV HtjlyrNJGk3RZx9B7t0+Pu6jYg2J2EmhgQSYWJyIJt5GesdugcawBb9hJ6aNqyvJ j+1ufCyh7RaW9xnRBpbhAa1rDl4o5fL4bjvuRBw+Wz7fkYSLRqxMgEGpuspIx57t dC37z++0YOi6uDRM3P0WCyB/wszkx9rkSestIVI6Lvanvt6vvLxXk7kz93DwGdat r5fwkkeaIgb7T2txbfZBKVBomlE50zYqhFXOjQIo+jaqwCUNvGULESvSfdThdEA2 vsO3DFtpQn2Je6d2Jsb5me4AKsmzye7G -----END CERTIFICATE-----Generated at Sat Jun 7 06:14:37 2025 by rpki-client