$ rpki-client -vvf rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft File: kDo4Q2eaCxBdykhcPWSPPREnL7c.mft (raw, json) Hash identifier: /bDwX6ZMbh0e/aj1q9Ur5lGLCyJeZMGOc1VmPQ5a/pk= Subject key identifier: 9F:3B:8B:95:E9:5E:52:48:5F:E6:57:98:4F:CF:C4:7B:39:00:3E:4C Authority key identifier: 90:3A:38:43:67:9A:0B:10:5D:CA:48:5C:3D:64:8F:3D:11:27:2F:B7 Certificate issuer: /CN=A914E488/serialNumber=903A3843679A0B105DCA485C3D648F3D11272FB7 Certificate serial: 0243 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDo4Q2eaCxBdykhcPWSPPREnL7c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft Manifest number: 023F Signing time: Sat 31 May 2025 02:03:24 +0000 Manifest this update: Sat 31 May 2025 02:03:24 +0000 Manifest next update: Sat 07 Jun 2025 02:03:24 +0000 Files and hashes: 1: kDo4Q2eaCxBdykhcPWSPPREnL7c.crl (hash: 6ex5zVMxMczxu56sQj+yRRObXmfqwWRQlzlMETJyjuQ=) 2: 606EB6AE240911EDBFA59C27C4F9AE02.roa (hash: NNo4SAwO23W3h7iwFhvtQVGgAhn5LQhxSRbEa+xKr7I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.crl rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDo4Q2eaCxBdykhcPWSPPREnL7c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 02:03:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 579 (0x243) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E488, serialNumber=903A3843679A0B105DCA485C3D648F3D11272FB7 Validity Not Before: May 31 02:03:24 2025 GMT Not After : Jun 7 02:03:24 2025 GMT Subject: CN=683a636c-8b9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:56:87:47:9b:e9:c3:3b:ad:21:13:7c:c8:b5: 20:66:28:98:e5:b8:e9:3a:3f:b4:16:aa:7e:64:89: 38:6d:0d:e7:cf:72:54:20:3c:d9:c1:83:2e:39:0e: 76:82:75:32:48:60:17:66:e6:da:21:1a:53:43:68: e9:ee:31:68:6f:8f:50:95:14:31:3f:13:53:fa:07: 53:0a:92:b7:be:e3:e3:cc:66:d3:e8:68:36:10:e7: ef:b1:c9:76:81:7f:c2:9c:a0:d5:d5:c7:6b:b7:d0: 2a:19:17:7a:09:91:05:d6:e5:99:45:a6:a7:e5:86: 78:d5:ff:57:8f:f4:36:ef:20:f7:1d:87:17:7f:3e: c8:5a:6c:24:3d:d4:41:b1:81:88:d4:c4:2a:c3:51: 9a:7f:4e:21:ae:d8:17:41:7f:69:9a:7e:51:3f:bd: f8:7c:5a:f0:8b:f2:df:c5:2d:22:75:84:c8:e1:d5: 53:6e:3e:39:a4:1e:82:a5:14:0d:2f:70:87:2f:69: cf:90:86:93:7e:17:9c:93:49:e7:68:16:a7:37:c7: e8:38:0b:75:6e:b8:63:ae:6a:1c:35:8e:25:a1:c1: e5:65:0e:5f:4b:9c:a6:07:db:79:7d:db:6f:7b:f1: db:73:82:83:0f:19:ae:8a:d4:f5:72:75:3d:d7:22: 1b:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:3B:8B:95:E9:5E:52:48:5F:E6:57:98:4F:CF:C4:7B:39:00:3E:4C X509v3 Authority Key Identifier: keyid:90:3A:38:43:67:9A:0B:10:5D:CA:48:5C:3D:64:8F:3D:11:27:2F:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDo4Q2eaCxBdykhcPWSPPREnL7c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:6c:3d:8d:b6:4b:26:b1:25:44:5f:c9:17:31:1f:f2:65:38: 32:7c:ca:cd:47:5d:f1:29:56:82:19:c0:f1:29:92:42:ef:5c: 84:99:ef:2b:bc:bc:2f:ed:d9:e0:44:cc:3d:ed:f1:ca:f5:fd: 43:56:fd:c2:eb:81:65:bf:87:d3:b4:c3:50:f5:92:0d:b3:ca: 51:44:83:32:76:5e:b0:d3:6c:a6:79:70:e0:f5:aa:b4:ac:39: 22:a8:2c:65:29:3e:c4:33:c1:b1:8d:06:32:03:09:5d:9a:ce: 89:12:bd:c8:02:eb:3a:48:d2:b1:d5:e1:d9:80:f3:a5:1e:4f: bb:12:7c:7f:94:bd:8d:00:37:5d:65:7c:3c:f7:b8:02:ba:1a: 73:c8:32:5b:77:d4:95:84:2f:bf:e4:6f:e0:c2:82:fb:79:f0: 8e:13:a9:3b:0e:e2:31:9c:33:9b:b6:c9:7e:ce:46:53:8b:f7: f6:aa:af:d3:c0:97:ab:52:70:c7:be:68:78:b6:16:10:a2:2f: 02:ff:a7:b5:d8:69:ea:a1:ed:e4:63:49:63:8f:41:e2:5f:61: e1:4d:d0:2a:6f:d1:24:e8:c7:05:11:d3:77:6e:a7:74:29:80: 3f:15:30:02:e3:63:b3:f0:1e:e0:34:54:33:19:03:5e:59:24: cc:2e:8d:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU0ODgxMTAvBgNVBAUTKDkwM0EzODQzNjc5QTBCMTA1RENBNDg1QzNENjQ4RjNE MTEyNzJGQjcwHhcNMjUwNTMxMDIwMzI0WhcNMjUwNjA3MDIwMzI0WjAYMRYwFAYD VQQDEw02ODNhNjM2Yy04YjlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3laHR5vpwzutIRN8yLUgZiiY5bjpOj+0Fqp+ZIk4bQ3nz3JUIDzZwYMuOQ52 gnUySGAXZubaIRpTQ2jp7jFob49QlRQxPxNT+gdTCpK3vuPjzGbT6Gg2EOfvscl2 gX/CnKDV1cdrt9AqGRd6CZEF1uWZRaan5YZ41f9Xj/Q27yD3HYcXfz7IWmwkPdRB sYGI1MQqw1Gaf04hrtgXQX9pmn5RP734fFrwi/LfxS0idYTI4dVTbj45pB6CpRQN L3CHL2nPkIaTfheck0nnaBanN8foOAt1brhjrmocNY4locHlZQ5fS5ymB9t5fdtv e/Hbc4KDDxmuitT1cnU91yIbzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ87i5Xp XlJIX+ZXmE/PxHs5AD5MMB8GA1UdIwQYMBaAFJA6OENnmgsQXcpIXD1kjz0RJy+3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTQ4OC9GODg2OThDQTI0 MDUxMUVEQjk4N0I4MjNDNEY5QUUwMi9rRG80UTJlYUN4QmR5a2hjUFdTUFBSRW5M N2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tEbzRRMmVhQ3hCZHlraGNQV1NQUFJFbkw3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTQ4OC9GODg2OThDQTI0MDUxMUVEQjk4N0I4MjNDNEY5QUUwMi9rRG80UTJlYUN4 QmR5a2hjUFdTUFBSRW5MN2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkbD2NtksmsSVEX8kXMR/yZTgyfMrNR13xKVaCGcDxKZJC71yEme8r vLwv7dngRMw97fHK9f1DVv3C64Flv4fTtMNQ9ZINs8pRRIMydl6w02ymeXDg9aq0 rDkiqCxlKT7EM8GxjQYyAwldms6JEr3IAus6SNKx1eHZgPOlHk+7Enx/lL2NADdd ZXw897gCuhpzyDJbd9SVhC+/5G/gwoL7efCOE6k7DuIxnDObtsl+zkZTi/f2qq/T wJerUnDHvmh4thYQoi8C/6e12Gnqoe3kY0ljj0HiX2HhTdAqb9Ek6McFEdN3bqd0 KYA/FTAC42Oz8B7gNFQzGQNeWSTMLo1n -----END CERTIFICATE-----Generated at Sat May 31 17:30:23 2025 by rpki-client