$ rpki-client -vvf rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft File: KFO9oWOMWZqEwwlTEOab_SYKqXg.mft (raw, json) Hash identifier: LSCM+8BxsHSs41BYy8oiXlO9UvFtHV6Km+ON4F2rV0k= Subject key identifier: A9:A8:50:02:E1:DA:A2:58:3B:58:01:DC:AF:9C:F2:12:6C:D5:32:14 Authority key identifier: 28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 Certificate issuer: /CN=A916557B/serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Certificate serial: 0404 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft Manifest number: 0395 Signing time: Sat 31 May 2025 01:15:53 +0000 Manifest this update: Sat 31 May 2025 01:15:52 +0000 Manifest next update: Sat 07 Jun 2025 01:15:52 +0000 Files and hashes: 1: KFO9oWOMWZqEwwlTEOab_SYKqXg.crl (hash: iHETCpxurl+QLo/nc8sc8k37jPIiiq5b4Wnk/oNQ2hU=) 2: F7D72D3E23E211EFA47D6C68C4F9AE02.roa (hash: e+M4adDsVVtiBfslPnOBJOSyjq+6gRCvAtKsdhjHrg8=) 3: 57A7394C4B0E11EE8682CD4CC4F9AE02.roa (hash: j6YHhVIdNkPdVV6kIT6wpzB9Muw42P+/9W2kK5xhqXo=) 4: 04AB651469C211EFA06F8562C4F9AE02.roa (hash: YV6zDgOh2QMJi+TbqoW1Wt5O6E3eSYJDwfMJ3aJ2a10=) 5: F1930FBAEFE011ED81AE706DC4F9AE02.roa (hash: NP4Z7Tt6CY/HSXNtbW7GXldzu9mQG/LCVCiq7fXDLJ8=) 6: 2F24736869C111EF92B54060C4F9AE02.roa (hash: 3Y7RO9a921W0m0+KGz0aqJiJml6RthEQD034mrQPM14=) 7: 45BC5258C6F711ED9BD6E476C4F9AE02.roa (hash: wASZh3+a4jtcXdGHzHa3qDgrJcrhUIDBhkIcjHP+VMU=) 8: A336FE62609111EFB751B771C4F9AE02.roa (hash: 52bkXRq+LzImcNciZMVc/RbkFDyxds03UT8vcrTtvWc=) 9: 02734B6624D611F0B50DE20BC4F9AE02.roa (hash: kMVjaoh/nl+HaXtTqo7eTliBreBhvFCgfQya7sUAs84=) 10: 1F89C5C22CB511F08A1A9242C4F9AE02.roa (hash: baAQ8jjbDnd+yIywZELKI/f+fLzoC+yEEVRka25c/bE=) 11: 07D38A6669C011EF90EADF5CC4F9AE02.roa (hash: MZXl+TpE4PKXHu+CHp6bbz53wt0k4JzbyBQBboqTIP4=) 12: 14000EECD46811EEBDB9C07CC4F9AE02.roa (hash: riBHCo9Gmq1D+0u/pG7iCc4xDo8oVc7na3FG+hNveUk=) 13: 79AA61622C8711EFBDD6F672C4F9AE02.roa (hash: 3biVBRmslEYYBK7sgaVOapllwelbsd+exeLENbjHwjc=) 14: F83786F4030011F0984B974FC4F9AE02.roa (hash: dZbjlWTe8fWMRR6qgpL+ZoRL9VFsmU1Nz8661bmlCro=) 15: 1DBF3F2E69BF11EF9B52775AC4F9AE02.roa (hash: oEcJmw9GBlLPpcX10UQcg9xp3RCQZJ+XOY7mrRgn4Bk=) 16: 458AC21A684111EEA6632877C4F9AE02.roa (hash: rQlxlSsLfUnZ/IhD06ff6PZ8dH3kW3qdosnvLtL69I4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:15:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1028 (0x404) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916557B, serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Validity Not Before: May 31 01:15:52 2025 GMT Not After : Jun 7 01:15:52 2025 GMT Subject: CN=683a5849-0dd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:3c:9f:6f:7e:6f:a8:a1:32:a2:08:57:a7:66: 4a:a3:fc:18:fa:79:b5:be:7b:1f:c3:c8:93:c4:44: 8d:8c:75:d1:16:6b:84:27:49:28:37:46:71:dd:c9: b6:e1:7b:5f:b7:f2:c2:f9:03:99:81:0a:09:9e:dd: 20:f9:31:41:61:3c:3c:fb:b5:20:ce:c6:05:74:f6: ca:2c:ec:e2:b3:4a:83:63:bf:a4:ab:c7:d2:fd:02: 97:45:17:4c:98:a6:e3:b8:90:dd:4c:a3:ea:71:c0: b1:a2:67:8e:a5:4c:16:5b:0f:a2:f8:79:cf:86:81: 60:55:37:6d:34:c1:75:7f:b6:cb:c2:38:98:cf:d3: a1:ef:1e:b3:d3:14:e1:f1:34:0e:32:b6:40:93:11: 27:9b:e6:3d:48:71:14:37:cd:ad:50:22:c0:66:0c: d4:82:f9:b0:36:59:31:b9:d8:a3:61:e9:60:30:19: 5f:d0:9e:06:2c:f4:40:5b:e3:69:c9:01:d5:2e:fb: 70:99:00:7c:c3:b1:7c:c4:c8:d7:e0:23:5a:e5:0e: d9:9c:3d:ea:c5:8e:66:f9:0c:d4:19:7a:6b:85:a2: f7:85:1a:06:93:d7:bf:50:61:c3:2f:b7:d9:4f:b1: 96:1a:6c:42:a2:e9:ab:a4:22:1d:c5:3f:07:77:b1: 6b:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:A8:50:02:E1:DA:A2:58:3B:58:01:DC:AF:9C:F2:12:6C:D5:32:14 X509v3 Authority Key Identifier: keyid:28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:7d:2a:84:33:26:fb:eb:80:fe:5f:95:45:29:9d:67:f0:8d: 44:c2:e3:fc:99:1a:27:7e:03:74:2d:2a:af:81:d4:47:46:e1: 76:7d:72:02:10:bd:9c:27:83:b1:e9:13:1b:a6:42:30:31:da: b0:73:6b:74:e2:50:df:11:08:aa:88:cd:db:f3:6d:cd:81:7a: 48:90:79:af:16:11:f1:9f:25:12:58:34:23:f1:21:91:b5:ed: 86:ac:0a:15:4f:61:be:f6:99:52:d7:ac:37:eb:c7:17:19:86: e1:84:6f:b3:ae:c8:d9:c8:be:08:57:6e:20:d9:27:30:c9:e4: ba:c0:30:b4:8e:6d:02:be:65:ba:b1:10:4d:c8:00:b4:62:e6: ba:d3:35:e5:1a:f6:9c:f4:a6:a4:84:dd:1a:e0:08:b4:04:9d: 76:04:8e:00:94:25:d9:61:21:31:32:fc:a9:47:e2:99:dd:38: c2:fa:56:a6:30:50:50:b3:6f:fc:94:56:26:15:7e:ea:00:9e: 5e:77:99:69:be:b7:f5:8b:73:4e:4f:d9:a4:43:f7:a2:8d:93: 6e:86:e0:8a:d3:9a:bc:9b:db:cc:fa:f2:91:9e:59:ce:58:45: da:0a:2c:98:8a:50:e6:e9:45:7e:1a:b1:e8:06:af:51:36:36: 99:59:00:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBAQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1N0IxMTAvBgNVBAUTKDI4NTNCREExNjM4QzU5OUE4NEMzMDk1MzEwRTY5QkZE MjYwQUE5NzgwHhcNMjUwNTMxMDExNTUyWhcNMjUwNjA3MDExNTUyWjAYMRYwFAYD VQQDEw02ODNhNTg0OS0wZGQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1jyfb35vqKEyoghXp2ZKo/wY+nm1vnsfw8iTxESNjHXRFmuEJ0koN0Zx3cm2 4Xtft/LC+QOZgQoJnt0g+TFBYTw8+7UgzsYFdPbKLOzis0qDY7+kq8fS/QKXRRdM mKbjuJDdTKPqccCxomeOpUwWWw+i+HnPhoFgVTdtNMF1f7bLwjiYz9Oh7x6z0xTh 8TQOMrZAkxEnm+Y9SHEUN82tUCLAZgzUgvmwNlkxudijYelgMBlf0J4GLPRAW+Np yQHVLvtwmQB8w7F8xMjX4CNa5Q7ZnD3qxY5m+QzUGXprhaL3hRoGk9e/UGHDL7fZ T7GWGmxCoumrpCIdxT8Hd7FrCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKmoUALh 2qJYO1gB3K+c8hJs1TIUMB8GA1UdIwQYMBaAFChTvaFjjFmahMMJUxDmm/0mCql4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU3Qi84REE3MjY0MEMx RkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVdacUV3d2xURU9hYl9TWUtx WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tGTzlvV09NV1pxRXd3bFRFT2FiX1NZS3FYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTU3Qi84REE3MjY0MEMxRkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVda cUV3d2xURU9hYl9TWUtxWGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAafSqEMyb764D+X5VFKZ1n8I1EwuP8mRonfgN0LSqvgdRHRuF2fXIC EL2cJ4Ox6RMbpkIwMdqwc2t04lDfEQiqiM3b823NgXpIkHmvFhHxnyUSWDQj8SGR te2GrAoVT2G+9plS16w368cXGYbhhG+zrsjZyL4IV24g2ScwyeS6wDC0jm0CvmW6 sRBNyAC0Yua60zXlGvac9KakhN0a4Ai0BJ12BI4AlCXZYSExMvypR+KZ3TjC+lam MFBQs2/8lFYmFX7qAJ5ed5lpvrf1i3NOT9mkQ/eijZNuhuCK05q8m9vM+vKRnlnO WEXaCiyYilDm6UV+GrHoBq9RNjaZWQD6 -----END CERTIFICATE-----Generated at Sat May 31 16:40:47 2025 by rpki-client