$ rpki-client -vvf rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft File: KrJDLDrVEo7XPpnEYNBhH69NIg4.mft (raw, json) Hash identifier: tssWIJYKzTyuZBBRhCUbP9vITuj7u3JQUOsQ/TFukOI= Subject key identifier: A7:06:36:8E:21:E2:D1:25:8D:B9:4E:19:65:C7:B6:CE:E9:15:89:D9 Authority key identifier: 2A:B2:43:2C:3A:D5:12:8E:D7:3E:99:C4:60:D0:61:1F:AF:4D:22:0E Certificate issuer: /CN=A9153850/serialNumber=2AB2432C3AD5128ED73E99C460D0611FAF4D220E Certificate serial: 3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KrJDLDrVEo7XPpnEYNBhH69NIg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft Manifest number: 32 Signing time: Sat 31 May 2025 07:20:42 +0000 Manifest this update: Sat 31 May 2025 07:20:41 +0000 Manifest next update: Sat 07 Jun 2025 07:20:41 +0000 Files and hashes: 1: KrJDLDrVEo7XPpnEYNBhH69NIg4.crl (hash: 8nF0Ne5A9LSLQP3T2KDf1oi5upBZQk+++92p7SSTMJg=) 2: E40AC356018611F0B7E46C83C4F9AE02.roa (hash: xnpORZ2MtPoqtzWOcmsiFxPYNxl3p5FaKDYctBVtkjc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.crl rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KrJDLDrVEo7XPpnEYNBhH69NIg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 07:20:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58 (0x3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153850, serialNumber=2AB2432C3AD5128ED73E99C460D0611FAF4D220E Validity Not Before: May 31 07:20:41 2025 GMT Not After : Jun 7 07:20:41 2025 GMT Subject: CN=683aadc9-d22a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:08:16:3e:c7:5f:8f:27:5f:16:bf:f7:df:6e: a0:d3:63:44:45:eb:cb:c7:fc:c3:19:a1:b4:de:c6: 1d:4e:5a:07:d7:e8:dc:3b:72:aa:3c:0e:28:58:0b: ce:ed:b9:a0:a6:32:b6:5d:0f:df:37:73:e2:69:36: 07:a0:de:fb:ae:bc:c6:8d:c2:fb:f3:63:8a:d4:75: ce:be:67:d2:f2:8c:61:c7:fc:10:6c:70:3b:9b:d8: 89:b9:c4:9a:ba:23:fd:09:b3:61:e1:02:8a:6c:72: c2:d6:bd:f1:00:42:3a:2d:b3:55:bf:64:29:67:ec: 6c:22:7f:59:5e:9e:3c:13:b1:27:00:35:1b:4f:29: 52:61:b0:ce:22:85:c7:6a:cb:77:52:03:50:96:06: d3:82:36:1c:35:e8:13:33:e3:bc:24:a0:ef:09:c0: db:3f:9c:30:44:7b:2c:61:22:4d:b7:ad:8b:57:6a: d3:38:db:0e:ae:9e:25:c2:88:ab:1d:87:46:b6:c3: 1a:85:98:1d:8d:2c:01:87:cd:59:1b:20:a6:d4:3d: e2:40:1c:77:c8:da:5d:19:67:ed:37:bf:d7:a5:b9: a2:bd:d9:35:2b:2d:99:78:fe:54:dc:a8:84:9b:5f: 55:40:f9:46:29:43:19:79:4f:a7:b2:04:2e:e5:9b: 30:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:06:36:8E:21:E2:D1:25:8D:B9:4E:19:65:C7:B6:CE:E9:15:89:D9 X509v3 Authority Key Identifier: keyid:2A:B2:43:2C:3A:D5:12:8E:D7:3E:99:C4:60:D0:61:1F:AF:4D:22:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KrJDLDrVEo7XPpnEYNBhH69NIg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:19:6b:58:cb:cb:a4:27:0f:dc:af:98:74:7f:7e:86:35:03: 75:ce:93:bb:2d:5b:47:d2:9b:d7:f1:c8:b0:61:d0:4f:02:83: 24:d5:34:0e:07:7e:84:26:f1:03:55:98:67:03:ae:af:81:dc: de:42:ac:fd:df:81:c1:7f:c7:8f:0a:d1:da:1a:33:04:09:e0: 26:5b:82:fd:fc:c3:00:9e:c6:97:f6:e6:6b:ab:60:4c:70:d7: b1:35:34:22:7f:4f:c4:e3:e4:6f:67:ac:99:57:8e:cc:79:18: 8f:ee:33:ba:63:28:b2:c2:3d:dc:28:3f:a5:d4:b7:77:0c:fa: ec:3f:00:a7:fb:23:cc:6f:68:e6:29:55:5d:ed:52:7e:b5:22: 70:62:ba:71:2c:78:80:88:62:e7:2d:75:34:01:da:b7:17:82: cc:d9:08:d6:a9:a6:29:e7:f2:31:01:bb:ad:95:04:fb:32:bf: 66:85:9f:4c:b6:ac:cc:90:13:13:3e:57:06:ab:d9:b3:01:ac: 5b:d7:80:dc:99:7d:a7:fc:33:a5:94:5b:6d:01:73:f7:9e:ad: d7:8e:8b:1d:48:fb:fc:8f:07:67:ff:a0:d0:78:dd:e7:69:05: 77:2c:1d:ed:c8:e4:76:00:94:75:c3:f0:e8:67:67:6d:9d:e3: eb:d8:b1:94 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 Mzg1MDExMC8GA1UEBRMoMkFCMjQzMkMzQUQ1MTI4RUQ3M0U5OUM0NjBEMDYxMUZB RjREMjIwRTAeFw0yNTA1MzEwNzIwNDFaFw0yNTA2MDcwNzIwNDFaMBgxFjAUBgNV BAMTDTY4M2FhZGM5LWQyMmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDjCBY+x1+PJ18Wv/ffbqDTY0RF68vH/MMZobTexh1OWgfX6Nw7cqo8DihYC87t uaCmMrZdD983c+JpNgeg3vuuvMaNwvvzY4rUdc6+Z9LyjGHH/BBscDub2Im5xJq6 I/0Js2HhAopscsLWvfEAQjots1W/ZCln7Gwif1lenjwTsScANRtPKVJhsM4ihcdq y3dSA1CWBtOCNhw16BMz47wkoO8JwNs/nDBEeyxhIk23rYtXatM42w6uniXCiKsd h0a2wxqFmB2NLAGHzVkbIKbUPeJAHHfI2l0ZZ+03v9eluaK92TUrLZl4/lTcqISb X1VA+UYpQxl5T6eyBC7lmzDrAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUpwY2jiHi 0SWNuU4ZZce2zukVidkwHwYDVR0jBBgwFoAUKrJDLDrVEo7XPpnEYNBhH69NIg4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUzODUwLzdCM0IzN0Q0MDE4 NjExRjBCMDVCNEM1OUM0RjlBRTAyL0tySkRMRHJWRW83WFBwbkVZTkJoSDY5Tkln NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS3JKRExEclZFbzdYUHBuRVlOQmhINjlOSWc0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUz ODUwLzdCM0IzN0Q0MDE4NjExRjBCMDVCNEM1OUM0RjlBRTAyL0tySkRMRHJWRW83 WFBwbkVZTkJoSDY5TklnNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAF8Za1jLy6QnD9yvmHR/foY1A3XOk7stW0fSm9fxyLBh0E8CgyTVNA4H foQm8QNVmGcDrq+B3N5CrP3fgcF/x48K0doaMwQJ4CZbgv38wwCexpf25murYExw 17E1NCJ/T8Tj5G9nrJlXjsx5GI/uM7pjKLLCPdwoP6XUt3cM+uw/AKf7I8xvaOYp VV3tUn61InBiunEseICIYuctdTQB2rcXgszZCNappinn8jEBu62VBPsyv2aFn0y2 rMyQExM+Vwar2bMBrFvXgNyZfaf8M6WUW20Bc/eerdeOix1I+/yPB2f/oNB43edp BXcsHe3I5HYAlHXD8OhnZ22d4+vYsZQ= -----END CERTIFICATE-----Generated at Sat May 31 17:48:39 2025 by rpki-client