$ rpki-client -vvf rpki.apnic.net/member_repository/A917392B/B20DAD66482311EC93768312C4F9AE02/k0_yOzjsbVimyqtwe3lVUcicMf0.mft File: k0_yOzjsbVimyqtwe3lVUcicMf0.mft (raw, json) Hash identifier: s/BIvEu2g4EQ3+L3Cjvx/xOc+SzRgXRiTNGftIloDwg= Subject key identifier: 08:31:9E:8C:0F:CD:BD:49:5B:E7:78:92:A5:37:18:D4:6F:F9:DC:24 Authority key identifier: 93:4F:F2:3B:38:EC:6D:58:A6:CA:AB:70:7B:79:55:51:C8:9C:31:FD Certificate issuer: /CN=A917392B/serialNumber=934FF23B38EC6D58A6CAAB707B795551C89C31FD Certificate serial: 0479 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k0_yOzjsbVimyqtwe3lVUcicMf0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917392B/B20DAD66482311EC93768312C4F9AE02/k0_yOzjsbVimyqtwe3lVUcicMf0.mft Manifest number: 0475 Signing time: Wed 11 Jun 2025 00:00:56 +0000 Manifest this update: Wed 11 Jun 2025 00:00:56 +0000 Manifest next update: Wed 18 Jun 2025 00:00:56 +0000 Files and hashes: 1: k0_yOzjsbVimyqtwe3lVUcicMf0.crl (hash: vR3YM/oCavWRNjkN89CwbRv9ZERaKXB2j+akP9/Ql5I=) 2: B7BE1DAC482511ECA1A68F13C4F9AE02.roa (hash: MtaWbSK5JAjEiEpHTj/1X7DdZqPg3BZxUlQCHg85KTM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917392B/B20DAD66482311EC93768312C4F9AE02/k0_yOzjsbVimyqtwe3lVUcicMf0.crl rsync://rpki.apnic.net/member_repository/A917392B/B20DAD66482311EC93768312C4F9AE02/k0_yOzjsbVimyqtwe3lVUcicMf0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k0_yOzjsbVimyqtwe3lVUcicMf0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 00:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1145 (0x479) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917392B, serialNumber=934FF23B38EC6D58A6CAAB707B795551C89C31FD Validity Not Before: Jun 11 00:00:56 2025 GMT Not After : Jun 18 00:00:56 2025 GMT Subject: CN=6848c738-091c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:03:0a:60:c8:4d:0c:02:a5:d8:bf:c7:6c:4f: d0:92:84:a3:9a:f8:ed:f4:c2:d2:a6:8a:9a:8f:5e: 5c:95:a5:b0:c2:73:67:27:08:5f:77:4d:f8:4b:ca: 49:6b:e0:ac:3c:6f:d2:04:8a:b2:36:35:ad:af:a6: a5:3d:c8:dc:87:13:ce:ce:13:a2:88:9a:91:9c:d2: 68:b9:ba:6e:25:8d:c1:ee:1d:53:2b:3a:84:24:7e: 04:81:77:11:55:06:bf:9f:e4:40:8e:5a:28:7c:ab: c5:3e:b4:ad:e2:d5:38:15:a9:06:6a:fa:1b:61:c4: 78:89:ef:ef:c3:38:58:cc:43:60:24:34:2f:c4:39: bd:5e:70:74:46:e3:68:cd:6a:10:7c:42:f8:b8:dd: fe:eb:e7:4f:2c:95:16:79:2f:fe:e2:fa:a9:f5:62: 57:ac:14:ea:66:98:83:c2:e9:12:04:2f:a3:1f:db: aa:e3:36:32:11:54:b6:5e:44:23:ba:8c:2a:4c:cd: aa:7a:4c:f3:43:23:85:54:ef:b7:3f:68:96:7c:ad: bf:de:1f:86:5c:da:16:1d:dc:97:8d:1f:91:e2:72: d5:eb:f8:e9:13:c0:39:2d:25:6f:fd:0a:fd:1f:28: 1a:19:08:3e:95:0d:31:da:e0:fe:cd:8e:d5:14:ec: 9b:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:31:9E:8C:0F:CD:BD:49:5B:E7:78:92:A5:37:18:D4:6F:F9:DC:24 X509v3 Authority Key Identifier: keyid:93:4F:F2:3B:38:EC:6D:58:A6:CA:AB:70:7B:79:55:51:C8:9C:31:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917392B/B20DAD66482311EC93768312C4F9AE02/k0_yOzjsbVimyqtwe3lVUcicMf0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k0_yOzjsbVimyqtwe3lVUcicMf0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917392B/B20DAD66482311EC93768312C4F9AE02/k0_yOzjsbVimyqtwe3lVUcicMf0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:81:e2:41:cc:f3:35:cd:e2:46:db:74:c3:27:da:f7:95:01: 99:4b:4d:6f:64:a0:e6:3d:c2:1b:36:a6:f4:88:80:3a:70:17: 34:54:a0:c7:ec:9c:e2:3a:30:f5:c2:07:5a:af:da:14:63:4a: 2e:b8:18:b7:e6:e7:7a:bc:34:85:83:bc:bf:1f:e1:2b:d3:01: 47:80:a4:83:f6:32:d2:a7:4b:c2:82:5d:c9:e0:6c:aa:26:63: 09:32:0f:c9:c9:7a:a1:7e:e4:7b:09:b6:99:88:75:ed:cb:48: 0d:48:cc:b2:ea:0f:53:7d:59:53:2d:b1:c2:7c:1d:09:c6:86: 25:d0:27:3d:2a:b1:55:53:74:60:43:90:94:23:e7:e7:49:5b: 38:e0:c9:a3:a4:3b:9a:1b:e2:fd:c1:12:c6:39:11:3e:d7:1b: 11:af:20:2f:29:0f:97:9c:b2:cc:e6:a1:1d:f4:c6:5f:8b:e3: aa:2e:99:25:23:24:9c:c6:9a:3d:db:f2:6d:57:17:e0:7c:cd: 68:2b:49:e4:b3:88:68:08:9c:d3:13:dc:7f:da:25:b5:04:41: fc:79:15:a7:b7:93:81:86:0d:41:d9:57:17:59:25:96:8e:04: 09:2d:d8:3b:f1:47:7f:ae:54:d4:a3:ca:0a:de:da:1e:4a:c6: 6a:bc:c7:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM5MkIxMTAvBgNVBAUTKDkzNEZGMjNCMzhFQzZENThBNkNBQUI3MDdCNzk1NTUx Qzg5QzMxRkQwHhcNMjUwNjExMDAwMDU2WhcNMjUwNjE4MDAwMDU2WjAYMRYwFAYD VQQDEw02ODQ4YzczOC0wOTFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwAMKYMhNDAKl2L/HbE/QkoSjmvjt9MLSpoqaj15claWwwnNnJwhfd034S8pJ a+CsPG/SBIqyNjWtr6alPcjchxPOzhOiiJqRnNJoubpuJY3B7h1TKzqEJH4EgXcR VQa/n+RAjloofKvFPrSt4tU4FakGavobYcR4ie/vwzhYzENgJDQvxDm9XnB0RuNo zWoQfEL4uN3+6+dPLJUWeS/+4vqp9WJXrBTqZpiDwukSBC+jH9uq4zYyEVS2XkQj uowqTM2qekzzQyOFVO+3P2iWfK2/3h+GXNoWHdyXjR+R4nLV6/jpE8A5LSVv/Qr9 HygaGQg+lQ0x2uD+zY7VFOybhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAgxnowP zb1JW+d4kqU3GNRv+dwkMB8GA1UdIwQYMBaAFJNP8js47G1YpsqrcHt5VVHInDH9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzkyQi9CMjBEQUQ2NjQ4 MjMxMUVDOTM3NjgzMTJDNEY5QUUwMi9rMF95T3pqc2JWaW15cXR3ZTNsVlVjaWNN ZjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2swX3lPempzYlZpbXlxdHdlM2xWVWNpY01mMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzkyQi9CMjBEQUQ2NjQ4MjMxMUVDOTM3NjgzMTJDNEY5QUUwMi9rMF95T3pqc2JW aW15cXR3ZTNsVlVjaWNNZjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYgeJBzPM1zeJG23TDJ9r3lQGZS01vZKDmPcIbNqb0iIA6cBc0VKDH 7JziOjD1wgdar9oUY0ouuBi35ud6vDSFg7y/H+Er0wFHgKSD9jLSp0vCgl3J4Gyq JmMJMg/JyXqhfuR7CbaZiHXty0gNSMyy6g9TfVlTLbHCfB0JxoYl0Cc9KrFVU3Rg Q5CUI+fnSVs44MmjpDuaG+L9wRLGORE+1xsRryAvKQ+XnLLM5qEd9MZfi+OqLpkl IyScxpo92/JtVxfgfM1oK0nks4hoCJzTE9x/2iW1BEH8eRWnt5OBhg1B2VcXWSWW jgQJLdg78Ud/rlTUo8oK3toeSsZqvMdc -----END CERTIFICATE-----Generated at Thu Jun 12 06:22:53 2025 by rpki-client