$ rpki-client -vvf rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft File: _-KgNynzLTIiepnJJRWMgspUuVc.mft (raw, json) Hash identifier: JRg5bNySp+gbrwcVvVUv2MTIBJT2qAnAV65UrDS1gSk= Subject key identifier: CF:6B:A2:A5:2C:C4:37:D6:C8:87:BD:86:F3:64:D1:F6:22:D2:F4:65 Authority key identifier: FF:E2:A0:37:29:F3:2D:32:22:7A:99:C9:25:15:8C:82:CA:54:B9:57 Certificate issuer: /CN=A917225D/serialNumber=FFE2A03729F32D32227A99C925158C82CA54B957 Certificate serial: 34B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-KgNynzLTIiepnJJRWMgspUuVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft Manifest number: 349F Signing time: Sat 31 May 2025 14:23:37 +0000 Manifest this update: Sat 31 May 2025 14:23:37 +0000 Manifest next update: Sat 07 Jun 2025 14:23:37 +0000 Files and hashes: 1: _-KgNynzLTIiepnJJRWMgspUuVc.crl (hash: eWBClWor4gxb6tIYZ0LABkuGv+OClIldjNhUvE38fVI=) 2: A0121BD4871711EA924C6626C4F9AE02.roa (hash: nOTO05trzCD6uEEv4FInP/xVHgXMSyk7YCzU2yFeaPI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.crl rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-KgNynzLTIiepnJJRWMgspUuVc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 14:23:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13488 (0x34b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917225D, serialNumber=FFE2A03729F32D32227A99C925158C82CA54B957 Validity Not Before: May 31 14:23:37 2025 GMT Not After : Jun 7 14:23:37 2025 GMT Subject: CN=683b10e9-1a19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:54:75:cf:2e:7b:b6:a0:84:a4:56:e6:0d:5c: 4d:74:1e:69:d6:2a:fd:86:db:63:60:f1:97:76:75: b7:14:c9:0c:91:19:fc:6a:17:0d:26:42:c2:68:0e: 20:be:57:b8:7f:cc:85:36:ff:f8:cd:cc:3f:c9:af: 4f:97:47:85:4f:0f:24:9c:4e:95:fe:ea:91:6d:3b: d9:5a:02:2e:a5:2a:70:8e:cc:80:be:c8:41:bc:f7: d9:02:c2:50:6a:f9:39:cf:51:25:32:ab:25:73:a0: 3d:92:ea:bf:8e:b9:ec:3c:5c:94:78:5a:bb:fb:bf: a1:80:48:df:f4:4d:e3:b6:cc:5e:a1:f9:2f:6d:48: aa:27:eb:11:a7:ff:b0:37:66:60:c5:a3:4b:a5:af: 9d:2c:f2:a8:3d:64:88:6b:4d:bd:41:c2:48:5a:40: b5:3f:10:4b:e7:a3:c4:d8:62:16:77:53:12:e1:da: 52:e0:ca:6c:eb:94:72:db:40:ab:f3:6b:0a:d8:40: 63:02:a8:21:6d:ad:d4:dc:58:76:a5:46:e0:ae:4a: 75:79:7c:b7:62:4f:64:d3:28:38:91:0f:fd:d9:df: ed:4d:75:56:9a:e4:7d:37:96:80:21:4d:1a:fe:1e: 5a:e5:7b:a3:f7:b5:36:c9:e1:76:4a:a3:fe:e9:69: 41:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:6B:A2:A5:2C:C4:37:D6:C8:87:BD:86:F3:64:D1:F6:22:D2:F4:65 X509v3 Authority Key Identifier: keyid:FF:E2:A0:37:29:F3:2D:32:22:7A:99:C9:25:15:8C:82:CA:54:B9:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-KgNynzLTIiepnJJRWMgspUuVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:77:54:3a:5d:47:bc:4d:5d:92:1c:3b:f7:92:f0:33:74:e5: b8:19:20:11:35:4d:25:06:98:cf:d8:38:ee:f0:af:56:da:08: 01:84:57:fb:c7:6a:bb:05:e8:8f:bb:87:bc:dc:e7:31:b4:22: 1b:2f:73:97:e7:bd:66:30:9b:8e:92:ec:ca:20:8b:55:b7:0b: f1:7e:f8:c2:99:05:8b:c1:bf:77:52:85:2a:96:8d:ee:fa:86: 74:11:60:2f:31:af:d3:aa:3c:2c:5e:37:57:50:57:14:50:b2: e7:32:fe:7f:3f:12:21:62:8b:85:b0:46:ff:5a:29:fb:e4:da: e0:0f:16:eb:92:24:ab:3d:86:04:cb:f5:99:db:cd:43:8c:4d: 26:b2:75:ec:56:2b:25:d4:ed:c0:1a:5f:c4:a0:17:d4:cd:0c: 24:5d:b2:70:d0:20:e4:a2:13:91:c6:60:a7:f1:22:bd:51:a8: 2f:61:7c:3a:04:49:52:52:7c:d6:28:d3:c8:40:12:e1:eb:3d: c7:c0:62:eb:d3:83:02:6d:e5:be:5f:22:df:af:2a:8d:9c:ac: f6:65:89:0b:8c:0f:f0:c1:b1:ed:ef:07:78:90:7e:d8:2c:36: 49:8b:a3:5f:de:63:e2:e8:d1:4d:ac:28:f4:62:5b:f5:eb:70: 7b:3c:9f:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzIyNUQxMTAvBgNVBAUTKEZGRTJBMDM3MjlGMzJEMzIyMjdBOTlDOTI1MTU4Qzgy Q0E1NEI5NTcwHhcNMjUwNTMxMTQyMzM3WhcNMjUwNjA3MTQyMzM3WjAYMRYwFAYD VQQDEw02ODNiMTBlOS0xYTE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9VR1zy57tqCEpFbmDVxNdB5p1ir9httjYPGXdnW3FMkMkRn8ahcNJkLCaA4g vle4f8yFNv/4zcw/ya9Pl0eFTw8knE6V/uqRbTvZWgIupSpwjsyAvshBvPfZAsJQ avk5z1ElMqslc6A9kuq/jrnsPFyUeFq7+7+hgEjf9E3jtsxeofkvbUiqJ+sRp/+w N2ZgxaNLpa+dLPKoPWSIa029QcJIWkC1PxBL56PE2GIWd1MS4dpS4Mps65Ry20Cr 82sK2EBjAqghba3U3Fh2pUbgrkp1eXy3Yk9k0yg4kQ/92d/tTXVWmuR9N5aAIU0a /h5a5Xuj97U2yeF2SqP+6WlBcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM9roqUs xDfWyIe9hvNk0fYi0vRlMB8GA1UdIwQYMBaAFP/ioDcp8y0yInqZySUVjILKVLlX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjI1RC8xRjU1MDgzMDFE ODQxMUUyOTE3QkQwRDkwOEIwMkNEMi9fLUtnTnluekxUSWllcG5KSlJXTWdzcFV1 VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18tS2dOeW56TFRJaWVwbkpKUldNZ3NwVXVWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjI1RC8xRjU1MDgzMDFEODQxMUUyOTE3QkQwRDkwOEIwMkNEMi9fLUtnTnluekxU SWllcG5KSlJXTWdzcFV1VmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEd1Q6XUe8TV2SHDv3kvAzdOW4GSARNU0lBpjP2Dju8K9W2ggBhFf7 x2q7BeiPu4e83OcxtCIbL3OX571mMJuOkuzKIItVtwvxfvjCmQWLwb93UoUqlo3u +oZ0EWAvMa/TqjwsXjdXUFcUULLnMv5/PxIhYouFsEb/Win75NrgDxbrkiSrPYYE y/WZ281DjE0msnXsVisl1O3AGl/EoBfUzQwkXbJw0CDkohORxmCn8SK9UagvYXw6 BElSUnzWKNPIQBLh6z3HwGLr04MCbeW+XyLfryqNnKz2ZYkLjA/wwbHt7wd4kH7Y LDZJi6Nf3mPi6NFNrCj0Ylv163B7PJ/S -----END CERTIFICATE-----Generated at Sat May 31 16:46:49 2025 by rpki-client