$ rpki-client -vvf rpki.apnic.net/member_repository/A9146C84/2A9BB026EBB111EC86DE3565C4F9AE02/KWYvUTolTw218H21gZ--rkD3vxU.mft File: KWYvUTolTw218H21gZ--rkD3vxU.mft (raw, json) Hash identifier: 2NHWQ+ncGZy7KktkAT1N5ZgyZWOOLOnn6+uA4J4Q6rg= Subject key identifier: D0:F3:6F:23:EC:25:A0:A7:FA:7D:4F:C5:B0:46:BE:14:DB:83:11:B4 Authority key identifier: 29:66:2F:51:3A:25:4F:0D:B5:F0:7D:B5:81:9F:BE:AE:40:F7:BF:15 Certificate issuer: /CN=A9146C84/serialNumber=29662F513A254F0DB5F07DB5819FBEAE40F7BF15 Certificate serial: 02DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KWYvUTolTw218H21gZ--rkD3vxU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146C84/2A9BB026EBB111EC86DE3565C4F9AE02/KWYvUTolTw218H21gZ--rkD3vxU.mft Manifest number: 02CF Signing time: Sat 31 May 2025 01:33:56 +0000 Manifest this update: Sat 31 May 2025 01:33:55 +0000 Manifest next update: Sat 07 Jun 2025 01:33:55 +0000 Files and hashes: 1: KWYvUTolTw218H21gZ--rkD3vxU.crl (hash: F5cWaqe5Yx1nzmn9vrg5OY8A9pAkRYDdG7POTqeJ0V4=) 2: F09C691AEBB511ECA410BF6DC4F9AE02.roa (hash: 3t64o2UXNsxTNPIx1fcvAHHTrkMYu5vuFZ50YkMkLZI=) 3: EF6D9D70EBB511ECA410BF6DC4F9AE02.roa (hash: HZusuoH1up8FDoOQyhT/1qoC+ff/aBBAonRcZ28YjMI=) 4: F123461AEBB511ECA410BF6DC4F9AE02.roa (hash: Eku/YHWxKxpsRX6ogTNh3LDNRp5rXVLPBXYqCNfR56g=) 5: EFF97098EBB511ECA410BF6DC4F9AE02.roa (hash: 3ncZT46pze+jMf4M4LYzFO82k2evN1uShAP1OkhdIKI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146C84/2A9BB026EBB111EC86DE3565C4F9AE02/KWYvUTolTw218H21gZ--rkD3vxU.crl rsync://rpki.apnic.net/member_repository/A9146C84/2A9BB026EBB111EC86DE3565C4F9AE02/KWYvUTolTw218H21gZ--rkD3vxU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KWYvUTolTw218H21gZ--rkD3vxU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:33:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 735 (0x2df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146C84, serialNumber=29662F513A254F0DB5F07DB5819FBEAE40F7BF15 Validity Not Before: May 31 01:33:55 2025 GMT Not After : Jun 7 01:33:55 2025 GMT Subject: CN=683a5c84-d344 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:78:36:34:01:89:4a:d4:62:c9:05:35:9c:4b: c9:96:4a:aa:ae:f5:da:73:90:80:39:53:81:fb:6a: ff:92:04:5d:44:8f:cb:02:6f:b8:0b:56:66:12:19: d3:e1:86:c0:11:6f:66:01:2e:9f:4d:ed:5b:23:fb: d4:d4:11:8e:ae:94:f8:a8:8e:38:dc:db:56:d7:c7: 91:8a:19:15:66:45:8b:44:f8:16:fe:64:53:b2:ca: c9:e8:ca:d7:09:69:5e:70:f3:af:5f:92:58:2e:aa: 03:31:3e:a4:f7:1e:74:45:05:f7:33:68:ea:28:72: de:f9:8e:38:fe:89:d0:98:94:d9:0a:57:7f:d2:31: 30:57:8d:83:fb:8a:01:d1:ea:0d:94:91:dd:31:19: 59:90:39:82:a3:66:07:67:89:60:c3:99:f8:7e:8f: 82:03:ca:86:ad:b0:d9:5b:b0:c4:61:2f:f5:58:7b: 97:06:2c:ea:af:e2:7a:dd:e5:70:65:35:2a:b8:85: 40:3b:68:35:5c:dc:ca:5b:4b:f1:63:6d:bf:15:30: c0:23:7a:ec:f1:b3:36:de:eb:de:da:19:2e:be:e8: f6:c8:ce:3f:1b:25:9d:b9:b8:7e:35:e4:06:a7:3e: 74:c6:69:8b:ac:92:66:81:80:00:71:78:9e:9a:92: b2:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:F3:6F:23:EC:25:A0:A7:FA:7D:4F:C5:B0:46:BE:14:DB:83:11:B4 X509v3 Authority Key Identifier: keyid:29:66:2F:51:3A:25:4F:0D:B5:F0:7D:B5:81:9F:BE:AE:40:F7:BF:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146C84/2A9BB026EBB111EC86DE3565C4F9AE02/KWYvUTolTw218H21gZ--rkD3vxU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KWYvUTolTw218H21gZ--rkD3vxU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146C84/2A9BB026EBB111EC86DE3565C4F9AE02/KWYvUTolTw218H21gZ--rkD3vxU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:34:9b:b4:5a:e0:85:58:54:f2:00:54:a2:ad:b7:54:c3:00: ed:b7:ef:c6:43:9e:fb:4f:89:d5:d8:83:02:f2:c3:17:62:7c: 7c:42:f6:f8:75:af:a2:cb:6e:2b:0a:b8:a7:92:d9:d0:d1:1a: aa:7c:8f:42:9a:04:43:32:10:54:7f:30:72:0a:c3:b5:66:df: 96:bb:72:5e:0b:e3:ff:ee:85:1d:51:93:43:3f:51:80:4d:9a: dd:94:1a:e9:2c:01:cd:f7:8f:42:8e:fe:96:15:dd:32:e6:14: 25:a3:56:5b:2d:28:42:a9:29:ab:74:50:3b:0d:86:df:3b:30: cb:60:ab:b4:3f:7c:49:ee:09:e9:d6:09:74:0f:7f:e0:4c:ef: 25:ed:e8:0f:6e:33:3f:70:07:ad:15:73:1f:79:71:88:56:01: d2:ae:13:d0:ec:d0:1e:b8:15:55:26:e0:2d:51:d8:64:fe:93: 9b:4a:99:c4:3d:08:ac:05:69:13:a0:7d:b6:ea:73:36:9b:02: ba:1a:a4:c3:76:91:91:43:c4:8d:c9:ce:6b:82:a9:ee:92:31: 51:1f:a5:bd:63:01:8b:80:dd:b5:16:d1:22:b9:f1:84:d7:be: b0:50:89:cc:55:1d:fa:e8:50:be:90:d2:4b:9f:f1:a2:e3:c8: 43:ab:64:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAt8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZDODQxMTAvBgNVBAUTKDI5NjYyRjUxM0EyNTRGMERCNUYwN0RCNTgxOUZCRUFF NDBGN0JGMTUwHhcNMjUwNTMxMDEzMzU1WhcNMjUwNjA3MDEzMzU1WjAYMRYwFAYD VQQDEw02ODNhNWM4NC1kMzQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs3g2NAGJStRiyQU1nEvJlkqqrvXac5CAOVOB+2r/kgRdRI/LAm+4C1ZmEhnT 4YbAEW9mAS6fTe1bI/vU1BGOrpT4qI443NtW18eRihkVZkWLRPgW/mRTssrJ6MrX CWlecPOvX5JYLqoDMT6k9x50RQX3M2jqKHLe+Y44/onQmJTZCld/0jEwV42D+4oB 0eoNlJHdMRlZkDmCo2YHZ4lgw5n4fo+CA8qGrbDZW7DEYS/1WHuXBizqr+J63eVw ZTUquIVAO2g1XNzKW0vxY22/FTDAI3rs8bM23uve2hkuvuj2yM4/GyWdubh+NeQG pz50xmmLrJJmgYAAcXiempKyxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNDzbyPs JaCn+n1PxbBGvhTbgxG0MB8GA1UdIwQYMBaAFClmL1E6JU8NtfB9tYGfvq5A978V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkM4NC8yQTlCQjAyNkVC QjExMUVDODZERTM1NjVDNEY5QUUwMi9LV1l2VVRvbFR3MjE4SDIxZ1otLXJrRDN2 eFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXWXZVVG9sVHcyMThIMjFnWi0tcmtEM3Z4VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NkM4NC8yQTlCQjAyNkVCQjExMUVDODZERTM1NjVDNEY5QUUwMi9LV1l2VVRvbFR3 MjE4SDIxZ1otLXJrRDN2eFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+NJu0WuCFWFTyAFSirbdUwwDtt+/GQ577T4nV2IMC8sMXYnx8Qvb4 da+iy24rCrinktnQ0RqqfI9CmgRDMhBUfzByCsO1Zt+Wu3JeC+P/7oUdUZNDP1GA TZrdlBrpLAHN949Cjv6WFd0y5hQlo1ZbLShCqSmrdFA7DYbfOzDLYKu0P3xJ7gnp 1gl0D3/gTO8l7egPbjM/cAetFXMfeXGIVgHSrhPQ7NAeuBVVJuAtUdhk/pObSpnE PQisBWkToH226nM2mwK6GqTDdpGRQ8SNyc5rgqnukjFRH6W9YwGLgN21FtEiufGE 176wUInMVR366FC+kNJLn/Gi48hDq2Ro -----END CERTIFICATE-----Generated at Sat May 31 17:56:21 2025 by rpki-client