$ rpki-client -vvf rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.mft File: KBfUqGRK7EGa3M7jDE6Hok0v9Xs.mft (raw, json) Hash identifier: GkThL1WEfhMVzOVLGkdHDa7fZeOosVKlkWk3Rp4N/m8= Subject key identifier: 7C:DD:A3:62:26:07:EE:36:17:E7:CD:F0:41:E3:34:A6:62:63:8D:E5 Authority key identifier: 28:17:D4:A8:64:4A:EC:41:9A:DC:CE:E3:0C:4E:87:A2:4D:2F:F5:7B Certificate issuer: /CN=A9158650/serialNumber=2817D4A8644AEC419ADCCEE30C4E87A24D2FF57B Certificate serial: 01A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.mft Manifest number: 01A3 Signing time: Sat 31 May 2025 03:00:34 +0000 Manifest this update: Sat 31 May 2025 03:00:33 +0000 Manifest next update: Sat 07 Jun 2025 03:00:33 +0000 Files and hashes: 1: KBfUqGRK7EGa3M7jDE6Hok0v9Xs.crl (hash: WWXIQ5o7If5vaZMCbqi/Kx6f4ZIfUWbVerObYv6+TJA=) 2: EA5A9A32BDAA11ED92995562C4F9AE02.roa (hash: la16kPDMZ0PGNGFfbiOJE4nU4r91VONeRM7xfP7lGe4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.crl rsync://rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 423 (0x1a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158650, serialNumber=2817D4A8644AEC419ADCCEE30C4E87A24D2FF57B Validity Not Before: May 31 03:00:33 2025 GMT Not After : Jun 7 03:00:33 2025 GMT Subject: CN=683a70d2-d35d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:cb:ed:32:b1:e2:ab:b8:f6:59:a3:33:61:b3: a0:2f:65:9d:66:a9:80:69:47:2e:99:e9:69:77:b2: 94:58:b1:32:bd:e4:bf:43:89:dc:4c:1d:89:cc:5e: 71:1c:68:3c:5b:9c:33:fa:aa:d3:5e:4f:88:7a:a7: 22:51:99:ec:e5:0f:38:78:f2:de:7e:00:1d:7c:c7: ff:f8:52:73:ef:f9:e5:dc:7b:e0:fa:15:e0:cd:d2: ab:a3:c7:34:f3:8b:db:1a:e3:18:46:24:2d:f5:45: 8c:4b:b8:3e:3c:71:5d:55:78:f2:07:d1:ea:7f:09: 25:18:9c:1e:be:a5:95:61:0d:04:e2:5b:d1:fb:78: 9f:c3:c8:b1:74:ef:77:09:f2:ec:39:a9:f0:cf:02: 9c:78:48:98:4a:78:71:8e:cf:7f:c6:1b:21:f4:f3: bf:13:73:8d:71:bc:d6:4b:b3:91:a2:32:e9:c7:8a: d5:07:36:0f:a7:18:56:10:bc:d8:57:0d:b3:23:10: 8e:d4:f5:05:51:0a:7c:64:17:bd:78:62:7b:c0:1e: 60:a2:dc:e2:17:6a:bd:7a:64:06:c4:06:50:d1:d7: c9:49:94:55:97:c4:17:3c:ae:b9:a7:3f:23:c3:0a: 74:c3:67:57:31:87:b5:f3:e1:0a:3f:ef:ce:17:c8: 62:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:DD:A3:62:26:07:EE:36:17:E7:CD:F0:41:E3:34:A6:62:63:8D:E5 X509v3 Authority Key Identifier: keyid:28:17:D4:A8:64:4A:EC:41:9A:DC:CE:E3:0C:4E:87:A2:4D:2F:F5:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:16:17:14:47:2f:bd:6d:2b:a5:e6:aa:c6:e8:06:04:99:b0: 84:49:29:3e:3d:ad:61:47:76:2e:6d:ee:62:8a:a2:2c:dc:63: c1:86:34:48:e1:b9:22:93:b0:d5:5b:e0:20:0c:81:78:8b:0b: 6a:15:bd:e7:50:24:25:b4:8e:dd:c7:f3:26:ef:c1:ce:b5:ef: 0c:7d:88:4c:bc:ed:e0:5f:ee:06:38:d1:db:8f:ab:a6:6f:b0: 11:df:df:9f:58:12:0e:28:64:c6:b4:18:50:e7:b1:77:a5:46: 8c:b4:c8:e1:25:6a:96:b9:e8:56:dc:2e:f3:db:59:43:cb:d4: d9:19:b0:12:80:f2:a5:0d:21:ca:c2:d1:a1:56:cc:58:66:bb: aa:f6:2f:62:7b:3d:54:2a:42:da:b7:e3:fc:9d:44:33:9a:5d: 19:2f:56:2c:21:2f:4d:bb:70:46:03:09:1f:bd:ec:0a:d6:43: 95:c0:36:d3:76:63:9d:b1:f6:d8:d2:96:c6:6d:9a:27:75:9d: 13:dc:55:be:cd:bd:38:d9:93:ff:bc:dc:06:d5:5a:a7:55:96: 04:c4:3c:66:4a:e7:1b:27:b0:92:bf:14:a6:8b:54:ad:be:70: 51:68:67:8f:bd:71:31:dc:74:c4:0d:7c:ad:c5:24:50:1a:5a: 5d:55:bc:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAacwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg2NTAxMTAvBgNVBAUTKDI4MTdENEE4NjQ0QUVDNDE5QURDQ0VFMzBDNEU4N0Ey NEQyRkY1N0IwHhcNMjUwNTMxMDMwMDMzWhcNMjUwNjA3MDMwMDMzWjAYMRYwFAYD VQQDEw02ODNhNzBkMi1kMzVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0svtMrHiq7j2WaMzYbOgL2WdZqmAaUcumelpd7KUWLEyveS/Q4ncTB2JzF5x HGg8W5wz+qrTXk+IeqciUZns5Q84ePLefgAdfMf/+FJz7/nl3Hvg+hXgzdKro8c0 84vbGuMYRiQt9UWMS7g+PHFdVXjyB9HqfwklGJwevqWVYQ0E4lvR+3ifw8ixdO93 CfLsOanwzwKceEiYSnhxjs9/xhsh9PO/E3ONcbzWS7ORojLpx4rVBzYPpxhWELzY Vw2zIxCO1PUFUQp8ZBe9eGJ7wB5gotziF2q9emQGxAZQ0dfJSZRVl8QXPK65pz8j wwp0w2dXMYe18+EKP+/OF8hiuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHzdo2Im B+42F+fN8EHjNKZiY43lMB8GA1UdIwQYMBaAFCgX1KhkSuxBmtzO4wxOh6JNL/V7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODY1MC83NzU4RDJDMkJE QTcxMUVEQUVDRDRBNURDNEY5QUUwMi9LQmZVcUdSSzdFR2EzTTdqREU2SG9rMHY5 WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tCZlVxR1JLN0VHYTNNN2pERTZIb2swdjlYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODY1MC83NzU4RDJDMkJEQTcxMUVEQUVDRDRBNURDNEY5QUUwMi9LQmZVcUdSSzdF R2EzTTdqREU2SG9rMHY5WHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADFhcURy+9bSul5qrG6AYEmbCESSk+Pa1hR3Yube5iiqIs3GPBhjRI 4bkik7DVW+AgDIF4iwtqFb3nUCQltI7dx/Mm78HOte8MfYhMvO3gX+4GONHbj6um b7AR39+fWBIOKGTGtBhQ57F3pUaMtMjhJWqWuehW3C7z21lDy9TZGbASgPKlDSHK wtGhVsxYZruq9i9iez1UKkLat+P8nUQzml0ZL1YsIS9Nu3BGAwkfvewK1kOVwDbT dmOdsfbY0pbGbZondZ0T3FW+zb042ZP/vNwG1VqnVZYExDxmSucbJ7CSvxSmi1St vnBRaGePvXEx3HTEDXytxSRQGlpdVbz1 -----END CERTIFICATE-----Generated at Sat May 31 16:38:09 2025 by rpki-client