$ rpki-client -vvf rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft File: KFO9oWOMWZqEwwlTEOab_SYKqXg.mft (raw, json) Hash identifier: 2qyGdpUVGsyH1NGq+G0l3Er+QRBLsaD15SeAz6tUkdg= Subject key identifier: B9:DA:1D:16:11:C2:13:63:37:8D:D6:B3:9A:BC:BE:EA:3B:2B:73:93 Authority key identifier: 28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 Certificate issuer: /CN=A916557B/serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Certificate serial: 03DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft Manifest number: 0372 Signing time: Sat 05 Apr 2025 01:17:39 +0000 Manifest this update: Sat 05 Apr 2025 01:17:38 +0000 Manifest next update: Sat 12 Apr 2025 01:17:38 +0000 Files and hashes: 1: KFO9oWOMWZqEwwlTEOab_SYKqXg.crl (hash: JFZweJd/21VvdD2WeuFqEBMOIF8tg0z3qfp528JleYc=) 2: F7D72D3E23E211EFA47D6C68C4F9AE02.roa (hash: e+M4adDsVVtiBfslPnOBJOSyjq+6gRCvAtKsdhjHrg8=) 3: 04AB651469C211EFA06F8562C4F9AE02.roa (hash: YV6zDgOh2QMJi+TbqoW1Wt5O6E3eSYJDwfMJ3aJ2a10=) 4: 45BC5258C6F711ED9BD6E476C4F9AE02.roa (hash: wASZh3+a4jtcXdGHzHa3qDgrJcrhUIDBhkIcjHP+VMU=) 5: 07D38A6669C011EF90EADF5CC4F9AE02.roa (hash: MZXl+TpE4PKXHu+CHp6bbz53wt0k4JzbyBQBboqTIP4=) 6: A59ED7A202FC11F092FE1427C4F9AE02.roa (hash: h/ZECk2qiM76omNQ7LPqAZ8/YTKk+K2qOrQa+vRgsSg=) 7: F83786F4030011F0984B974FC4F9AE02.roa (hash: oVJ6kf+KFGVlCshMtWV7VqYcw7hRShoiaCLJ9n1H0t8=) 8: 458AC21A684111EEA6632877C4F9AE02.roa (hash: rQlxlSsLfUnZ/IhD06ff6PZ8dH3kW3qdosnvLtL69I4=) 9: 57A7394C4B0E11EE8682CD4CC4F9AE02.roa (hash: j6YHhVIdNkPdVV6kIT6wpzB9Muw42P+/9W2kK5xhqXo=) 10: F1930FBAEFE011ED81AE706DC4F9AE02.roa (hash: NP4Z7Tt6CY/HSXNtbW7GXldzu9mQG/LCVCiq7fXDLJ8=) 11: 2F24736869C111EF92B54060C4F9AE02.roa (hash: 3Y7RO9a921W0m0+KGz0aqJiJml6RthEQD034mrQPM14=) 12: A336FE62609111EFB751B771C4F9AE02.roa (hash: 52bkXRq+LzImcNciZMVc/RbkFDyxds03UT8vcrTtvWc=) 13: A65F895C02FC11F092FE1427C4F9AE02.roa (hash: 7WoV+8DWGmioXQtwuVikIc1xrEpD94IWEbSN5gItlh4=) 14: BE60F6465F9A11EE86E5F045C4F9AE02.roa (hash: Zcjrd+fbgk/LU6rKFs8HexPtlHT53LzcQObHWbnBY8w=) 15: 13D58140172711ED8E3E8136C4F9AE02.roa (hash: LOrACtpPjzLqnH6mglr8TYVvqw/0+G4Q6Hlw8x23Gz8=) 16: 79AA61622C8711EFBDD6F672C4F9AE02.roa (hash: 3biVBRmslEYYBK7sgaVOapllwelbsd+exeLENbjHwjc=) 17: 14000EECD46811EEBDB9C07CC4F9AE02.roa (hash: riBHCo9Gmq1D+0u/pG7iCc4xDo8oVc7na3FG+hNveUk=) 18: 1DBF3F2E69BF11EF9B52775AC4F9AE02.roa (hash: oEcJmw9GBlLPpcX10UQcg9xp3RCQZJ+XOY7mrRgn4Bk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 01:17:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 989 (0x3dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916557B Validity Not Before: Apr 5 01:17:38 2025 GMT Not After : Apr 12 01:17:38 2025 GMT Subject: CN=67f084b2-2f0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:3b:01:94:ce:3f:ca:3f:ad:40:90:af:95:72: de:bc:19:38:d2:84:f8:1d:6f:64:b3:a3:6c:bb:a5: f5:eb:1c:00:30:e4:97:16:3e:6d:cd:75:e7:d8:25: 7a:a7:3a:77:d7:e0:b7:68:23:0e:45:2d:5b:7a:3b: 95:dd:07:93:02:20:97:13:28:92:82:41:d6:cd:0f: 6d:11:d2:5f:6d:56:d8:ff:70:48:77:e3:c1:9e:42: 36:05:df:0c:4d:a2:6c:6c:3d:f2:ba:7b:cf:38:1c: fe:37:49:21:be:e5:ce:a0:6b:04:fd:a9:9d:65:44: 8e:04:8a:c5:01:e3:fb:a7:b3:da:63:0f:3f:21:b5: d6:f5:13:4a:c1:af:94:a9:7b:04:b8:bd:8c:1e:8b: 7f:67:3d:0e:f8:b8:d7:56:37:74:93:91:18:69:2d: 7d:72:ef:dc:30:44:8a:39:8c:92:95:0a:7a:28:53: af:a6:12:ec:ec:46:b4:d2:6d:0c:0e:67:44:e3:5e: 5d:da:5e:d1:71:09:10:85:c7:e5:8f:7e:0b:60:bc: c7:73:76:03:2e:cf:d0:f7:47:4e:5a:df:45:ba:52: 0d:42:79:a7:b7:06:17:52:68:97:5e:c5:0b:c4:ff: 7e:38:07:e1:df:66:db:60:d3:14:3e:86:4e:c0:ad: e7:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:DA:1D:16:11:C2:13:63:37:8D:D6:B3:9A:BC:BE:EA:3B:2B:73:93 X509v3 Authority Key Identifier: keyid:28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:c4:6f:f0:50:04:a9:53:7b:96:8d:c5:2f:b2:e0:e3:ab:69: 0a:8e:f2:56:ba:2d:1a:0a:f9:29:0a:d3:2a:c3:c3:58:df:ef: 62:7c:df:be:31:43:02:cc:e6:ae:2c:f2:ce:1c:f5:38:0f:31: 46:85:34:c5:e6:24:d4:1b:e4:b3:2a:0c:49:ef:d3:ed:59:fc: e7:3f:e3:78:92:6e:09:4d:f0:4f:38:e1:9c:50:92:47:6d:d4: 08:93:0e:c8:f9:4e:0b:cd:f6:f1:93:bc:3c:1b:d3:4b:c0:de: 2c:8f:8e:1d:14:37:f9:8f:d9:d7:c3:40:bb:1e:de:a9:ec:72: bf:a4:a4:1c:e0:85:71:cb:d5:a6:65:06:df:97:d4:8d:1e:63: 1b:df:86:4f:d4:09:84:f0:31:f5:e1:e3:f1:16:c3:ae:7c:cd: a1:cb:26:35:ac:9f:d0:fc:16:f2:de:9e:e3:fe:66:37:9e:33: a7:9b:02:57:62:f2:11:37:f8:6a:d3:f0:5f:dd:db:4f:a5:6b: 51:d4:32:05:45:08:c2:fd:d5:30:b5:4e:87:9f:ee:a3:84:1d: 11:57:9f:24:ad:d0:b4:ff:e7:48:05:3b:79:04:66:81:77:34: 8b:75:19:44:fd:f8:88:20:f9:ed:bf:c9:9c:ef:e4:b8:3d:c5: 54:19:5c:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA90wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1N0IxMTAvBgNVBAUTKDI4NTNCREExNjM4QzU5OUE4NEMzMDk1MzEwRTY5QkZE MjYwQUE5NzgwHhcNMjUwNDA1MDExNzM4WhcNMjUwNDEyMDExNzM4WjAYMRYwFAYD VQQDEw02N2YwODRiMi0yZjBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3jsBlM4/yj+tQJCvlXLevBk40oT4HW9ks6Nsu6X16xwAMOSXFj5tzXXn2CV6 pzp31+C3aCMORS1bejuV3QeTAiCXEyiSgkHWzQ9tEdJfbVbY/3BId+PBnkI2Bd8M TaJsbD3yunvPOBz+N0khvuXOoGsE/amdZUSOBIrFAeP7p7PaYw8/IbXW9RNKwa+U qXsEuL2MHot/Zz0O+LjXVjd0k5EYaS19cu/cMESKOYySlQp6KFOvphLs7Ea00m0M DmdE415d2l7RcQkQhcflj34LYLzHc3YDLs/Q90dOWt9FulINQnmntwYXUmiXXsUL xP9+OAfh32bbYNMUPoZOwK3nEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLnaHRYR whNjN43Ws5q8vuo7K3OTMB8GA1UdIwQYMBaAFChTvaFjjFmahMMJUxDmm/0mCql4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU3Qi84REE3MjY0MEMx RkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVdacUV3d2xURU9hYl9TWUtx WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tGTzlvV09NV1pxRXd3bFRFT2FiX1NZS3FYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTU3Qi84REE3MjY0MEMxRkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVda cUV3d2xURU9hYl9TWUtxWGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOxG/wUASpU3uWjcUvsuDjq2kKjvJWui0aCvkpCtMqw8NY3+9ifN++ MUMCzOauLPLOHPU4DzFGhTTF5iTUG+SzKgxJ79PtWfznP+N4km4JTfBPOOGcUJJH bdQIkw7I+U4Lzfbxk7w8G9NLwN4sj44dFDf5j9nXw0C7Ht6p7HK/pKQc4IVxy9Wm ZQbfl9SNHmMb34ZP1AmE8DH14ePxFsOufM2hyyY1rJ/Q/Bby3p7j/mY3njOnmwJX YvIRN/hq0/Bf3dtPpWtR1DIFRQjC/dUwtU6Hn+6jhB0RV58krdC0/+dIBTt5BGaB dzSLdRlE/fiIIPntv8mc7+S4PcVUGVyP -----END CERTIFICATE-----Generated at Sun Apr 6 06:04:47 2025 by rpki-client