$ rpki-client -vvf rpki.apnic.net/member_repository/A9154E3F/3C3E620E18E211F09BE99557C4F9AE02/KL7nBASyQwlkwwKSkNPqYEyRDrE.mft File: KL7nBASyQwlkwwKSkNPqYEyRDrE.mft (raw, json) Hash identifier: 1qPElkAOn7Rgjb+62flSrfNY7YMb9iHwESsAP3WaM8k= Subject key identifier: 28:9E:A9:EC:E1:AC:C5:DD:D4:C6:89:C8:7C:26:AE:6A:FC:BB:DD:EC Authority key identifier: 28:BE:E7:04:04:B2:43:09:64:C3:02:92:90:D3:EA:60:4C:91:0E:B1 Certificate issuer: /CN=A9154E3F/serialNumber=28BEE70404B2430964C3029290D3EA604C910EB1 Certificate serial: 19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KL7nBASyQwlkwwKSkNPqYEyRDrE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154E3F/3C3E620E18E211F09BE99557C4F9AE02/KL7nBASyQwlkwwKSkNPqYEyRDrE.mft Manifest number: 18 Signing time: Sat 31 May 2025 07:31:22 +0000 Manifest this update: Sat 31 May 2025 07:31:21 +0000 Manifest next update: Sat 07 Jun 2025 07:31:21 +0000 Files and hashes: 1: KL7nBASyQwlkwwKSkNPqYEyRDrE.crl (hash: 5CEuRptaBrgKosSFC/FlLaUhEOk8torM6q10Y4WZMxs=) 2: C028C06E18E211F081A75558C4F9AE02.roa (hash: +HdHyMhgt4vT3DS5nsB5YQiE8tKIuj7aqeWwrUFKUm0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154E3F/3C3E620E18E211F09BE99557C4F9AE02/KL7nBASyQwlkwwKSkNPqYEyRDrE.crl rsync://rpki.apnic.net/member_repository/A9154E3F/3C3E620E18E211F09BE99557C4F9AE02/KL7nBASyQwlkwwKSkNPqYEyRDrE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KL7nBASyQwlkwwKSkNPqYEyRDrE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 07:31:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25 (0x19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154E3F, serialNumber=28BEE70404B2430964C3029290D3EA604C910EB1 Validity Not Before: May 31 07:31:21 2025 GMT Not After : Jun 7 07:31:21 2025 GMT Subject: CN=683ab04a-1b20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:09:e2:40:f8:88:ae:ad:04:2d:2a:b1:0b:d7: ce:ea:6f:ef:3f:8a:b4:3d:6d:04:41:ed:b2:f6:82: 3c:6e:ea:31:7e:1d:18:d9:50:71:6d:76:da:6b:5f: 9b:5d:47:83:f5:16:13:8d:36:a8:f1:95:03:68:63: a6:43:41:21:b0:c0:3e:ff:65:a7:87:6d:50:f0:7c: cf:51:57:9c:4e:e2:05:e5:66:78:86:8c:28:4f:a0: 9d:05:16:bb:ab:62:86:ca:c1:11:66:da:db:0c:74: 7e:71:74:36:81:fd:7d:be:bb:6e:94:3b:ad:64:c2: 6f:4e:74:09:f4:2b:97:6b:fe:2d:4a:b4:ee:9a:b6: b3:e2:15:1b:e0:a8:1d:d2:44:b8:e0:3b:ad:d5:2c: 8c:c6:97:a8:97:f5:20:f7:de:0a:f6:c9:ed:a6:d7: a9:2d:38:ba:17:1d:0e:16:64:d3:62:1e:ad:14:33: d4:6d:08:08:58:bb:14:0e:06:71:69:3c:36:b4:6d: 6c:bb:9d:73:fa:36:a1:fe:74:15:16:43:46:0c:8b: bc:f3:ec:fa:52:e5:0e:32:1d:ef:8b:90:34:09:25: a4:db:d9:43:8b:57:15:c3:27:4f:af:7a:ac:08:8b: 28:19:b0:2e:05:c7:8b:6b:16:32:98:b2:e6:b2:18: 86:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:9E:A9:EC:E1:AC:C5:DD:D4:C6:89:C8:7C:26:AE:6A:FC:BB:DD:EC X509v3 Authority Key Identifier: keyid:28:BE:E7:04:04:B2:43:09:64:C3:02:92:90:D3:EA:60:4C:91:0E:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154E3F/3C3E620E18E211F09BE99557C4F9AE02/KL7nBASyQwlkwwKSkNPqYEyRDrE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KL7nBASyQwlkwwKSkNPqYEyRDrE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154E3F/3C3E620E18E211F09BE99557C4F9AE02/KL7nBASyQwlkwwKSkNPqYEyRDrE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:0a:4d:ed:60:2d:d1:e0:95:01:b2:bb:dd:70:e5:8d:87:90: c0:8c:17:6b:0b:ee:a7:24:6c:d6:62:83:e3:4f:4c:d3:dd:5a: 81:a1:49:28:05:a6:4a:33:af:42:b0:49:fc:dc:c6:e2:ff:60: ed:d5:16:78:4a:0d:23:42:df:6b:3e:1e:15:6e:23:7c:e7:4a: a4:27:df:a3:7a:1f:bb:34:a7:98:7f:64:43:57:e3:3a:77:7a: 7e:30:81:ac:c4:87:c6:a4:ac:50:b4:80:54:ca:3f:23:f3:00: af:0f:7b:f3:f3:90:a0:e5:b1:2b:36:8c:57:d7:2d:67:da:19: 13:23:dd:1d:58:5b:32:40:d4:66:d1:57:9f:06:30:05:f7:0a: cf:8b:b7:04:7d:38:91:73:70:9d:4b:f0:fd:b7:96:f8:83:a2: f2:bc:07:d0:91:46:e9:5e:26:eb:31:88:d0:b8:87:71:c5:dc: ce:3a:d6:f0:a5:5b:5c:f3:61:48:76:92:cd:97:3b:70:b6:9f: 21:f9:f0:cc:83:bb:0b:32:57:cf:dd:13:e6:35:c3:55:01:76: e5:e6:d0:15:bb:57:a2:74:26:c6:d6:8d:51:cc:4b:15:98:dd: eb:95:24:07:81:5f:29:86:b8:6c:c5:18:f0:f6:1b:8b:7b:a9: 4f:6f:19:9d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NEUzRjExMC8GA1UEBRMoMjhCRUU3MDQwNEIyNDMwOTY0QzMwMjkyOTBEM0VBNjA0 QzkxMEVCMTAeFw0yNTA1MzEwNzMxMjFaFw0yNTA2MDcwNzMxMjFaMBgxFjAUBgNV BAMTDTY4M2FiMDRhLTFiMjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCxCeJA+IiurQQtKrEL187qb+8/irQ9bQRB7bL2gjxu6jF+HRjZUHFtdtprX5td R4P1FhONNqjxlQNoY6ZDQSGwwD7/ZaeHbVDwfM9RV5xO4gXlZniGjChPoJ0FFrur YobKwRFm2tsMdH5xdDaB/X2+u26UO61kwm9OdAn0K5dr/i1KtO6atrPiFRvgqB3S RLjgO63VLIzGl6iX9SD33gr2ye2m16ktOLoXHQ4WZNNiHq0UM9RtCAhYuxQOBnFp PDa0bWy7nXP6NqH+dBUWQ0YMi7zz7PpS5Q4yHe+LkDQJJaTb2UOLVxXDJ0+veqwI iygZsC4Fx4trFjKYsuayGIbpAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUKJ6p7OGs xd3UxonIfCauavy73ewwHwYDVR0jBBgwFoAUKL7nBASyQwlkwwKSkNPqYEyRDrEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU0RTNGLzNDM0U2MjBFMThF MjExRjA5QkU5OTU1N0M0RjlBRTAyL0tMN25CQVN5UXdsa3d3S1NrTlBxWUV5UkRy RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS0w3bkJBU3lRd2xrd3dLU2tOUHFZRXlSRHJFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU0 RTNGLzNDM0U2MjBFMThFMjExRjA5QkU5OTU1N0M0RjlBRTAyL0tMN25CQVN5UXds a3d3S1NrTlBxWUV5UkRyRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEcKTe1gLdHglQGyu91w5Y2HkMCMF2sL7qckbNZig+NPTNPdWoGhSSgF pkozr0KwSfzcxuL/YO3VFnhKDSNC32s+HhVuI3znSqQn36N6H7s0p5h/ZENX4zp3 en4wgazEh8akrFC0gFTKPyPzAK8Pe/PzkKDlsSs2jFfXLWfaGRMj3R1YWzJA1GbR V58GMAX3Cs+LtwR9OJFzcJ1L8P23lviDovK8B9CRRuleJusxiNC4h3HF3M461vCl W1zzYUh2ks2XO3C2nyH58MyDuwsyV8/dE+Y1w1UBduXm0BW7V6J0JsbWjVHMSxWY 3euVJAeBXymGuGzFGPD2G4t7qU9vGZ0= -----END CERTIFICATE-----Generated at Sat May 31 16:33:06 2025 by rpki-client