$ rpki-client -vvf rpki.apnic.net/member_repository/A9151265/05709AEA521F11ECB3D0192BC4F9AE02/kakyPLNEJvPZyJDjl4Ag1BezWfU.mft File: kakyPLNEJvPZyJDjl4Ag1BezWfU.mft (raw, json) Hash identifier: +mRDwtiu6lRgm4NrMnPCcxfgOXdB0LHMxMd8n1KvJEA= Subject key identifier: 1F:60:41:54:8E:4D:90:E7:09:8D:C8:BC:CE:D3:54:DE:8B:12:81:8F Authority key identifier: 91:A9:32:3C:B3:44:26:F3:D9:C8:90:E3:97:80:20:D4:17:B3:59:F5 Certificate issuer: /CN=A9151265/serialNumber=91A9323CB34426F3D9C890E3978020D417B359F5 Certificate serial: 045C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kakyPLNEJvPZyJDjl4Ag1BezWfU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151265/05709AEA521F11ECB3D0192BC4F9AE02/kakyPLNEJvPZyJDjl4Ag1BezWfU.mft Manifest number: 0457 Signing time: Sat 31 May 2025 00:23:26 +0000 Manifest this update: Sat 31 May 2025 00:23:26 +0000 Manifest next update: Sat 07 Jun 2025 00:23:26 +0000 Files and hashes: 1: kakyPLNEJvPZyJDjl4Ag1BezWfU.crl (hash: CgxHzW8RIrIpdDB+GqLLWztolpJh3CKvfsUtCQ2U/eo=) 2: B1334FD4522011ECB0594C2BC4F9AE02.roa (hash: /FpsHXLPYXsoHcGNcebXfdYyitx9/IlpkTRLrZlFe1o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151265/05709AEA521F11ECB3D0192BC4F9AE02/kakyPLNEJvPZyJDjl4Ag1BezWfU.crl rsync://rpki.apnic.net/member_repository/A9151265/05709AEA521F11ECB3D0192BC4F9AE02/kakyPLNEJvPZyJDjl4Ag1BezWfU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kakyPLNEJvPZyJDjl4Ag1BezWfU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:23:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1116 (0x45c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151265, serialNumber=91A9323CB34426F3D9C890E3978020D417B359F5 Validity Not Before: May 31 00:23:26 2025 GMT Not After : Jun 7 00:23:26 2025 GMT Subject: CN=683a4bfe-c2d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:8a:a6:d0:db:a0:14:de:6b:c2:d2:ef:61:f0: f2:9d:85:45:58:52:1b:0b:85:1a:bd:90:e8:79:82: da:10:c9:69:0e:9a:cb:a8:3d:65:07:50:40:47:96: 7f:47:c1:02:6a:1e:e4:36:58:3d:50:76:5f:fb:15: fb:f8:16:b5:7e:86:c5:b9:1c:08:94:c6:ea:00:5c: 8c:65:66:e2:87:52:03:22:99:c8:6a:57:f9:04:8a: 13:55:39:bb:8c:33:3a:ee:d4:25:dc:a5:7c:7c:9a: d7:e4:a5:89:1d:e7:a6:0e:99:0c:b7:03:f2:76:e7: f1:ce:16:da:61:fa:5c:42:07:ba:ac:8f:28:8c:f4: 0f:71:cf:73:56:8f:5a:70:b1:00:51:1a:63:bb:fd: f6:d9:42:68:f6:f9:08:0c:9f:61:83:45:ab:8a:10: 18:68:00:d5:97:73:4a:64:39:83:b9:ba:98:71:63: 4f:50:4b:6a:b9:5e:50:d8:8e:41:64:98:ff:1f:a5: 58:90:7c:f6:50:2a:66:5b:bd:91:c5:57:42:43:7f: 31:e1:a0:18:42:32:22:9c:d9:bf:75:40:d0:f4:57: 5b:a3:b3:24:33:ec:a6:ca:e0:fe:54:1c:2c:a1:ac: 33:12:19:03:c2:5e:55:35:67:93:54:dc:37:09:76: f1:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:60:41:54:8E:4D:90:E7:09:8D:C8:BC:CE:D3:54:DE:8B:12:81:8F X509v3 Authority Key Identifier: keyid:91:A9:32:3C:B3:44:26:F3:D9:C8:90:E3:97:80:20:D4:17:B3:59:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151265/05709AEA521F11ECB3D0192BC4F9AE02/kakyPLNEJvPZyJDjl4Ag1BezWfU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kakyPLNEJvPZyJDjl4Ag1BezWfU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151265/05709AEA521F11ECB3D0192BC4F9AE02/kakyPLNEJvPZyJDjl4Ag1BezWfU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:0d:d0:0d:60:2c:6a:24:56:94:a0:7f:2b:3b:cd:84:5a:3d: f1:79:e9:16:d6:a6:bf:32:98:26:ea:0f:f5:83:26:0b:25:6b: 7b:f9:45:b9:7f:89:bd:8a:f7:39:67:77:ad:8f:98:17:3b:67: cf:40:41:12:7c:71:c6:24:ba:64:b3:37:1e:fc:c6:6b:82:40: 8d:88:aa:44:b6:24:76:15:55:ac:58:9a:39:ea:97:d3:dd:6b: a4:b4:48:57:63:61:88:0a:fa:86:77:89:95:c7:7c:67:92:84: 52:fb:a1:d7:40:7e:74:84:cf:60:b1:d9:10:6e:e0:b8:21:7d: a2:fe:d0:29:3a:f6:82:ac:08:d5:b7:3a:a4:4d:07:b9:6e:51: 69:9c:9d:e2:06:35:73:4a:48:27:83:12:ea:92:4a:b7:a0:f8: f9:d2:ee:b8:b2:7f:d0:ac:be:bd:30:0c:e2:38:37:75:58:19: 22:44:9a:e4:87:cb:39:05:92:fe:09:86:35:e3:9c:ab:6b:03: 3c:4f:50:36:b7:cf:c4:55:df:8b:7f:5e:df:e9:f2:03:85:ca: 25:4a:7f:5a:f7:17:4a:a6:e5:89:04:3d:3b:4b:e8:98:99:ce: 2a:d3:ce:2c:69:29:ff:a0:ec:c9:07:d4:8d:14:54:38:9a:5a: 23:42:3a:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTEyNjUxMTAvBgNVBAUTKDkxQTkzMjNDQjM0NDI2RjNEOUM4OTBFMzk3ODAyMEQ0 MTdCMzU5RjUwHhcNMjUwNTMxMDAyMzI2WhcNMjUwNjA3MDAyMzI2WjAYMRYwFAYD VQQDEw02ODNhNGJmZS1jMmQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz4qm0NugFN5rwtLvYfDynYVFWFIbC4UavZDoeYLaEMlpDprLqD1lB1BAR5Z/ R8ECah7kNlg9UHZf+xX7+Ba1fobFuRwIlMbqAFyMZWbih1IDIpnIalf5BIoTVTm7 jDM67tQl3KV8fJrX5KWJHeemDpkMtwPydufxzhbaYfpcQge6rI8ojPQPcc9zVo9a cLEAURpju/322UJo9vkIDJ9hg0WrihAYaADVl3NKZDmDubqYcWNPUEtquV5Q2I5B ZJj/H6VYkHz2UCpmW72RxVdCQ38x4aAYQjIinNm/dUDQ9Fdbo7MkM+ymyuD+VBws oawzEhkDwl5VNWeTVNw3CXbxmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB9gQVSO TZDnCY3IvM7TVN6LEoGPMB8GA1UdIwQYMBaAFJGpMjyzRCbz2ciQ45eAINQXs1n1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTI2NS8wNTcwOUFFQTUy MUYxMUVDQjNEMDE5MkJDNEY5QUUwMi9rYWt5UExORUp2UFp5SkRqbDRBZzFCZXpX ZlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tha3lQTE5FSnZQWnlKRGpsNEFnMUJleldmVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTI2NS8wNTcwOUFFQTUyMUYxMUVDQjNEMDE5MkJDNEY5QUUwMi9rYWt5UExORUp2 UFp5SkRqbDRBZzFCZXpXZlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHDdANYCxqJFaUoH8rO82EWj3xeekW1qa/Mpgm6g/1gyYLJWt7+UW5 f4m9ivc5Z3etj5gXO2fPQEESfHHGJLpkszce/MZrgkCNiKpEtiR2FVWsWJo56pfT 3WuktEhXY2GICvqGd4mVx3xnkoRS+6HXQH50hM9gsdkQbuC4IX2i/tApOvaCrAjV tzqkTQe5blFpnJ3iBjVzSkgngxLqkkq3oPj50u64sn/QrL69MAziODd1WBkiRJrk h8s5BZL+CYY145yrawM8T1A2t8/EVd+Lf17f6fIDhcolSn9a9xdKpuWJBD07S+iY mc4q084saSn/oOzJB9SNFFQ4mlojQjqw -----END CERTIFICATE-----Generated at Sat May 31 17:23:41 2025 by rpki-client