$ rpki-client -vvf rpki.apnic.net/member_repository/A916AC73/77512DC2251711F0B07F861DC4F9AE02/KM0J5lDCaex9K8n-99VmwQEtIEw.mft File: KM0J5lDCaex9K8n-99VmwQEtIEw.mft (raw, json) Hash identifier: PB1o45vQYB5dkBFtpTEnAx116x0SliWP8OsToIy9ec4= Subject key identifier: AE:37:7B:78:46:F8:27:4A:7B:D3:81:27:27:AE:40:08:CB:30:51:63 Authority key identifier: 28:CD:09:E6:50:C2:69:EC:7D:2B:C9:FE:F7:D5:66:C1:01:2D:20:4C Certificate issuer: /CN=A916AC73/serialNumber=28CD09E650C269EC7D2BC9FEF7D566C1012D204C Certificate serial: 1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KM0J5lDCaex9K8n-99VmwQEtIEw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916AC73/77512DC2251711F0B07F861DC4F9AE02/KM0J5lDCaex9K8n-99VmwQEtIEw.mft Manifest number: 17 Signing time: Sat 31 May 2025 07:36:34 +0000 Manifest this update: Sat 31 May 2025 07:36:33 +0000 Manifest next update: Sat 07 Jun 2025 07:36:33 +0000 Files and hashes: 1: KM0J5lDCaex9K8n-99VmwQEtIEw.crl (hash: H+OUfYmnQvSrTr+HTNCHkp2xxFwV8XXWCJvk5wKZ6tE=) 2: FAA72960259911F0953E0023C4F9AE02.roa (hash: e7nzxpCTQBDCIg5PEDtZeqSUVMOKuiFn7Ttj5SwjEWA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916AC73/77512DC2251711F0B07F861DC4F9AE02/KM0J5lDCaex9K8n-99VmwQEtIEw.crl rsync://rpki.apnic.net/member_repository/A916AC73/77512DC2251711F0B07F861DC4F9AE02/KM0J5lDCaex9K8n-99VmwQEtIEw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KM0J5lDCaex9K8n-99VmwQEtIEw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 07:36:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29 (0x1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916AC73, serialNumber=28CD09E650C269EC7D2BC9FEF7D566C1012D204C Validity Not Before: May 31 07:36:33 2025 GMT Not After : Jun 7 07:36:33 2025 GMT Subject: CN=683ab182-799e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:19:07:0a:45:9d:d8:5d:61:8b:cb:56:eb:10: 43:7d:d7:97:1e:9b:8a:40:0a:fa:ae:4f:5c:7e:a6: 8f:a3:9f:c7:b4:63:7c:fd:26:8f:71:32:51:ab:8e: 03:f7:84:a4:a7:99:58:11:5f:8a:82:24:3a:ca:92: de:28:1f:7c:18:7f:d8:57:98:4a:bb:58:81:9f:a1: 44:ec:fe:f1:18:37:7d:a3:14:88:da:9a:7c:02:c3: 1a:17:11:73:ab:c0:94:5b:3f:ea:21:f0:28:ca:3d: 48:24:1c:dc:c4:51:49:6f:19:95:d6:3d:78:85:43: 70:dd:47:03:e7:23:1c:7d:9e:c7:ca:90:98:66:85: 69:10:90:d2:c5:59:6f:5f:8e:e6:03:8c:8c:52:3e: aa:fd:1f:a8:60:fc:bf:8f:de:51:9c:51:9c:bb:3a: b9:cc:8b:69:52:3c:5f:44:6c:56:b6:e0:42:63:68: 38:ab:2d:00:11:08:85:4f:fb:57:1e:23:c8:18:c3: 6a:aa:80:fd:cf:d6:95:e8:c6:9c:74:aa:33:8f:f8: 48:26:38:c9:43:b6:43:ca:de:2e:c3:19:74:33:12: 38:eb:d6:a6:f9:2c:57:df:48:70:27:b2:13:af:03: 9f:26:d6:c1:df:8c:fe:27:d4:bd:c4:0e:c8:b3:bc: 24:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:37:7B:78:46:F8:27:4A:7B:D3:81:27:27:AE:40:08:CB:30:51:63 X509v3 Authority Key Identifier: keyid:28:CD:09:E6:50:C2:69:EC:7D:2B:C9:FE:F7:D5:66:C1:01:2D:20:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916AC73/77512DC2251711F0B07F861DC4F9AE02/KM0J5lDCaex9K8n-99VmwQEtIEw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KM0J5lDCaex9K8n-99VmwQEtIEw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916AC73/77512DC2251711F0B07F861DC4F9AE02/KM0J5lDCaex9K8n-99VmwQEtIEw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cb:1c:f2:52:6a:24:6d:4a:6b:ab:8e:f8:00:9e:43:dc:8a:db: 0f:ce:3f:9c:27:af:10:a1:2f:f5:81:1a:58:b0:c3:55:33:1f: 91:8f:76:f6:30:fe:04:1b:e3:3c:14:8c:01:a4:d6:b2:6f:57: 9d:19:67:18:d5:b8:c4:cd:5e:6d:b6:35:a3:ae:e2:5e:20:60: a0:f8:0b:e6:ce:42:43:9c:2c:d2:dd:92:c8:f2:2f:33:41:a3: 50:6b:b6:97:00:c2:30:24:0f:cc:c4:d2:18:6b:b4:e7:54:57: 71:af:27:e6:b1:99:58:ff:cb:a3:91:b6:21:a8:8f:df:02:95: b8:09:73:8a:3d:76:d1:8a:48:17:bb:db:65:fe:98:6e:d6:2e: 15:8a:f3:fb:54:7e:47:d9:e1:44:ef:05:c3:80:da:71:81:7c: d0:0e:bb:62:8f:2f:6f:af:cf:04:0f:4e:c2:41:37:47:96:95: 44:89:68:b0:49:35:1b:52:04:c9:8d:81:95:e9:4f:2b:91:ee: 08:91:4b:f0:05:fe:94:63:ac:9f:ce:33:7d:04:5f:e8:d6:7f: 41:32:3a:38:d5:7c:bd:41:7c:92:21:46:7e:f8:a8:39:3d:5b: 44:9f:7b:a1:d0:2c:18:03:9c:fa:50:fb:da:9e:d5:57:22:44: 03:32:1e:eb -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 QUM3MzExMC8GA1UEBRMoMjhDRDA5RTY1MEMyNjlFQzdEMkJDOUZFRjdENTY2QzEw MTJEMjA0QzAeFw0yNTA1MzEwNzM2MzNaFw0yNTA2MDcwNzM2MzNaMBgxFjAUBgNV BAMTDTY4M2FiMTgyLTc5OWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCzGQcKRZ3YXWGLy1brEEN915cem4pACvquT1x+po+jn8e0Y3z9Jo9xMlGrjgP3 hKSnmVgRX4qCJDrKkt4oH3wYf9hXmEq7WIGfoUTs/vEYN32jFIjamnwCwxoXEXOr wJRbP+oh8CjKPUgkHNzEUUlvGZXWPXiFQ3DdRwPnIxx9nsfKkJhmhWkQkNLFWW9f juYDjIxSPqr9H6hg/L+P3lGcUZy7OrnMi2lSPF9EbFa24EJjaDirLQARCIVP+1ce I8gYw2qqgP3P1pXoxpx0qjOP+EgmOMlDtkPK3i7DGXQzEjjr1qb5LFffSHAnshOv A58m1sHfjP4n1L3EDsizvCTFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUrjd7eEb4 J0p704EnJ65ACMswUWMwHwYDVR0jBBgwFoAUKM0J5lDCaex9K8n+99VmwQEtIEww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZBQzczLzc3NTEyREMyMjUx NzExRjBCMDdGODYxREM0RjlBRTAyL0tNMEo1bERDYWV4OUs4bi05OVZtd1FFdElF dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS00wSjVsRENhZXg5SzhuLTk5Vm13UUV0SUV3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZB QzczLzc3NTEyREMyMjUxNzExRjBCMDdGODYxREM0RjlBRTAyL0tNMEo1bERDYWV4 OUs4bi05OVZtd1FFdElFdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMsc8lJqJG1Ka6uO+ACeQ9yK2w/OP5wnrxChL/WBGliww1UzH5GPdvYw /gQb4zwUjAGk1rJvV50ZZxjVuMTNXm22NaOu4l4gYKD4C+bOQkOcLNLdksjyLzNB o1BrtpcAwjAkD8zE0hhrtOdUV3GvJ+axmVj/y6ORtiGoj98ClbgJc4o9dtGKSBe7 22X+mG7WLhWK8/tUfkfZ4UTvBcOA2nGBfNAOu2KPL2+vzwQPTsJBN0eWlUSJaLBJ NRtSBMmNgZXpTyuR7giRS/AF/pRjrJ/OM30EX+jWf0EyOjjVfL1BfJIhRn74qDk9 W0Sfe6HQLBgDnPpQ+9qe1VciRAMyHus= -----END CERTIFICATE-----Generated at Sat May 31 17:51:41 2025 by rpki-client