$ rpki-client -vvf rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft File: KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft (raw, json) Hash identifier: wkdNVyP+25DrkabDcno8e+deB5specDlBx6XDFMThmc= Subject key identifier: EE:42:FD:62:26:39:9F:43:0F:4C:9E:2C:D5:47:C1:FE:EB:94:9E:83 Authority key identifier: 29:D1:6C:98:DB:3D:5B:F6:4B:6B:92:04:C0:96:00:86:0C:D2:94:52 Certificate issuer: /CN=A916022F/serialNumber=29D16C98DB3D5BF64B6B9204C09600860CD29452 Certificate serial: 10C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft Manifest number: 23D8 Signing time: Sat 31 May 2025 17:07:18 +0000 Manifest this update: Sat 31 May 2025 17:07:17 +0000 Manifest next update: Sat 07 Jun 2025 17:07:17 +0000 Files and hashes: 1: KdFsmNs9W_ZLa5IEwJYAhgzSlFI.crl (hash: 8nk7PhwRFha5DPoEFcilaT2T1+ovhqacqF2J2qifYD0=) 2: DE0A75A605EB11EA94CD7287C4F9AE02.roa (hash: rQZ+LsPDuc4EXnC/GiBOmzFAxUE3pMz5tb4kdOhgWwA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.crl rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 17:07:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4295 (0x10c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916022F, serialNumber=29D16C98DB3D5BF64B6B9204C09600860CD29452 Validity Not Before: May 31 17:07:17 2025 GMT Not After : Jun 7 17:07:17 2025 GMT Subject: CN=683b3745-916b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:60:1d:92:05:b7:16:62:8e:51:9d:79:12:fc: 14:b1:ad:19:36:6a:a6:04:4e:9e:bd:c8:d2:ef:04: fb:f3:3c:49:69:23:a9:83:86:05:c1:85:e8:7e:8e: 73:c9:8d:ea:1e:9e:1c:f1:e4:9d:6b:91:18:42:85: 21:7f:4c:c6:67:51:70:3d:a3:6c:2c:f4:e7:99:00: 3b:06:d0:45:02:26:80:4c:01:e7:b9:8e:0c:8c:7b: 9d:f2:78:c2:fb:10:b7:f8:0c:05:df:e6:9e:c6:98: 89:ef:82:b2:c7:b6:d9:1d:ad:7b:e8:31:89:3d:8f: 17:2c:5a:ed:e7:15:0f:de:fe:78:fa:90:6a:c7:3a: 38:4c:c9:2e:93:49:a6:cb:67:4e:31:2a:27:95:50: c8:19:db:ad:dd:ef:86:41:db:e8:5a:5e:4f:bb:f1: 0c:81:30:8d:69:fc:03:b9:54:4a:80:6b:60:e1:30: a8:35:41:a4:31:d7:19:44:aa:c2:98:7b:9b:42:8c: ce:3e:7c:43:5b:ba:1e:4d:94:e4:fa:13:73:ac:e5: 6d:c5:ca:b1:60:23:02:44:3a:e2:b9:88:9c:8b:c9: 76:9f:3f:26:5f:20:17:d4:12:8a:b0:8b:7c:62:0b: 85:53:69:f7:91:38:6c:2b:42:03:cd:42:9e:4d:e0: 04:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:42:FD:62:26:39:9F:43:0F:4C:9E:2C:D5:47:C1:FE:EB:94:9E:83 X509v3 Authority Key Identifier: keyid:29:D1:6C:98:DB:3D:5B:F6:4B:6B:92:04:C0:96:00:86:0C:D2:94:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:e4:dd:f5:c4:b1:0e:85:e0:03:cc:a6:10:2a:de:29:44:02: 4e:60:37:f6:3f:d1:56:80:55:80:d2:5f:5b:ec:1e:c9:e1:01: 61:e6:e2:72:fc:85:e3:0b:79:e0:53:92:76:d4:ef:15:84:76: 01:92:cb:80:b9:70:60:46:0f:4f:ef:4e:b4:f4:62:fb:06:c0: 3e:cf:cc:bc:b0:70:45:e0:22:d1:83:f7:15:10:23:a3:25:22: bb:6b:31:bc:40:7d:41:b4:ad:8a:9f:d1:7c:bd:27:db:e7:6a: f1:e1:01:cb:79:c1:26:e6:26:88:7b:5c:63:13:51:52:87:7f: 09:e5:c1:81:dc:bf:5f:19:15:3b:86:6a:28:a1:18:62:45:85: 9c:83:bf:67:8c:7f:f9:98:ad:e7:d1:23:2c:94:b0:71:61:be: b5:58:9b:c6:53:a3:a5:a1:e5:46:79:0b:0e:c1:71:a9:5b:11: 39:72:f5:fc:40:ae:0d:b6:95:8d:85:5c:bf:c3:bd:ac:93:f4: b2:1e:79:e4:a9:09:15:2e:86:da:6c:dc:4a:f3:ee:c4:69:26: c5:a3:53:ea:0a:34:50:fe:a5:2a:cd:2a:b7:2c:01:17:bc:03: d4:5f:1e:b1:3e:e4:c8:f4:bd:38:1a:bd:b9:a4:d3:89:26:f2: 6c:b0:30:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjAyMkYxMTAvBgNVBAUTKDI5RDE2Qzk4REIzRDVCRjY0QjZCOTIwNEMwOTYwMDg2 MENEMjk0NTIwHhcNMjUwNTMxMTcwNzE3WhcNMjUwNjA3MTcwNzE3WjAYMRYwFAYD VQQDEw02ODNiMzc0NS05MTZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8WAdkgW3FmKOUZ15EvwUsa0ZNmqmBE6evcjS7wT78zxJaSOpg4YFwYXofo5z yY3qHp4c8eSda5EYQoUhf0zGZ1FwPaNsLPTnmQA7BtBFAiaATAHnuY4MjHud8njC +xC3+AwF3+aexpiJ74Kyx7bZHa176DGJPY8XLFrt5xUP3v54+pBqxzo4TMkuk0mm y2dOMSonlVDIGdut3e+GQdvoWl5Pu/EMgTCNafwDuVRKgGtg4TCoNUGkMdcZRKrC mHubQozOPnxDW7oeTZTk+hNzrOVtxcqxYCMCRDriuYici8l2nz8mXyAX1BKKsIt8 YguFU2n3kThsK0IDzUKeTeAEUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO5C/WIm OZ9DD0yeLNVHwf7rlJ6DMB8GA1UdIwQYMBaAFCnRbJjbPVv2S2uSBMCWAIYM0pRS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDIyRi85RUM3QUZCNEFB N0QxMUU4ODYxNDQ1MjRDNEY5QUUwMi9LZEZzbU5zOVdfWkxhNUlFd0pZQWhnelNs RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tkRnNtTnM5V19aTGE1SUV3SllBaGd6U2xGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDIyRi85RUM3QUZCNEFBN0QxMUU4ODYxNDQ1MjRDNEY5QUUwMi9LZEZzbU5zOVdf WkxhNUlFd0pZQWhnelNsRkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAP5N31xLEOheADzKYQKt4pRAJOYDf2P9FWgFWA0l9b7B7J4QFh5uJy /IXjC3ngU5J21O8VhHYBksuAuXBgRg9P70609GL7BsA+z8y8sHBF4CLRg/cVECOj JSK7azG8QH1BtK2Kn9F8vSfb52rx4QHLecEm5iaIe1xjE1FSh38J5cGB3L9fGRU7 hmoooRhiRYWcg79njH/5mK3n0SMslLBxYb61WJvGU6OloeVGeQsOwXGpWxE5cvX8 QK4NtpWNhVy/w72sk/SyHnnkqQkVLobabNxK8+7EaSbFo1PqCjRQ/qUqzSq3LAEX vAPUXx6xPuTI9L04Gr25pNOJJvJssDDt -----END CERTIFICATE-----Generated at Mon Jun 2 07:12:29 2025 by rpki-client