$ rpki-client -vvf rpki.apnic.net/member_repository/A9187729/1312F908889411ECB20B8372C4F9AE02/K0QMfEWQAwVRV2J95yFOnKwSi0w.mft File: K0QMfEWQAwVRV2J95yFOnKwSi0w.mft (raw, json) Hash identifier: QKCqqOQERHPZf7WsWRCZP1CIijP9HXIN2trxgEJFkOo= Subject key identifier: 37:40:4C:A4:87:C5:AA:BF:27:C7:93:FE:64:C3:D8:C6:97:C6:E1:2A Authority key identifier: 2B:44:0C:7C:45:90:03:05:51:57:62:7D:E7:21:4E:9C:AC:12:8B:4C Certificate issuer: /CN=A9187729/serialNumber=2B440C7C459003055157627DE7214E9CAC128B4C Certificate serial: 03D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K0QMfEWQAwVRV2J95yFOnKwSi0w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187729/1312F908889411ECB20B8372C4F9AE02/K0QMfEWQAwVRV2J95yFOnKwSi0w.mft Manifest number: 03CC Signing time: Sat 31 May 2025 00:49:08 +0000 Manifest this update: Sat 31 May 2025 00:49:08 +0000 Manifest next update: Sat 07 Jun 2025 00:49:08 +0000 Files and hashes: 1: K0QMfEWQAwVRV2J95yFOnKwSi0w.crl (hash: GCO+MxMA+Hhe6qicDfqC6ygoSnYY/YS+7GS1Q/ov41A=) 2: 394B48F6889811EC9D1DF920C4F9AE02.roa (hash: l0TDwbIQKnn22v377SYBCTiXJEwlU244XaVGT+AApO8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187729/1312F908889411ECB20B8372C4F9AE02/K0QMfEWQAwVRV2J95yFOnKwSi0w.crl rsync://rpki.apnic.net/member_repository/A9187729/1312F908889411ECB20B8372C4F9AE02/K0QMfEWQAwVRV2J95yFOnKwSi0w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K0QMfEWQAwVRV2J95yFOnKwSi0w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:49:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 977 (0x3d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187729, serialNumber=2B440C7C459003055157627DE7214E9CAC128B4C Validity Not Before: May 31 00:49:08 2025 GMT Not After : Jun 7 00:49:08 2025 GMT Subject: CN=683a5204-be27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:28:1e:3f:38:ad:cb:ce:a4:d4:f8:b0:56:4a: 02:49:56:8c:0a:08:72:ab:4f:59:ec:02:68:1a:fd: 6e:3c:7e:71:85:f8:5e:a9:63:e6:df:75:2c:af:f8: fe:dc:8a:87:14:d7:83:d8:e5:03:21:5c:7f:96:b8: 0d:dd:5e:73:2b:5b:68:2d:aa:5f:11:73:a2:d2:9e: 9f:fa:09:f3:de:6f:9b:63:3b:db:cd:4d:33:85:e1: 83:db:d8:c2:72:97:7f:9a:b3:75:b1:1e:8c:e9:05: 1b:2d:fb:3c:6f:2f:4e:05:91:18:e8:17:5a:b0:9c: 21:fb:44:d5:b4:ca:4a:2e:97:ac:01:07:fb:4a:e0: 40:18:15:54:a9:e0:ee:4d:e7:2b:89:38:df:a4:dd: c2:6b:f0:97:9f:28:4b:a0:a8:c4:c5:e1:db:7a:ac: 06:cc:ba:c6:3d:48:b2:b1:a3:55:a4:19:64:db:bb: 59:93:a1:94:91:99:b1:51:92:7d:e0:4b:c9:58:13: 3a:2d:05:87:ea:74:6f:59:62:f2:c0:7d:0f:62:09: 43:5d:00:47:86:d4:4c:ab:7c:e8:bf:13:bc:e7:14: 8b:30:9c:94:6b:ee:bf:ce:a6:6d:79:9f:3c:7a:db: e3:cf:60:7e:26:da:65:3d:7d:28:9b:c4:f1:18:23: 8b:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:40:4C:A4:87:C5:AA:BF:27:C7:93:FE:64:C3:D8:C6:97:C6:E1:2A X509v3 Authority Key Identifier: keyid:2B:44:0C:7C:45:90:03:05:51:57:62:7D:E7:21:4E:9C:AC:12:8B:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187729/1312F908889411ECB20B8372C4F9AE02/K0QMfEWQAwVRV2J95yFOnKwSi0w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K0QMfEWQAwVRV2J95yFOnKwSi0w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187729/1312F908889411ECB20B8372C4F9AE02/K0QMfEWQAwVRV2J95yFOnKwSi0w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:97:c0:9d:fb:b1:0d:f5:1d:f1:c2:c8:77:8b:f7:d9:46:c0: f8:64:ac:c7:58:2e:d8:70:9e:82:6b:62:7a:6a:d4:22:e4:08: e6:b0:6e:c0:10:2c:37:b4:93:94:92:50:f7:22:fc:9b:fd:df: bd:4d:0e:04:2e:b8:4e:af:ec:58:76:eb:ee:e4:92:80:f9:47: f1:b4:61:67:d9:18:76:8d:91:cc:bd:31:3d:9b:ce:fb:ca:43: b0:e4:9a:dc:8e:d7:55:dd:12:63:6b:ea:f7:ca:4a:a3:65:6d: 73:0f:0f:43:b4:98:4a:c0:93:42:13:c5:d9:05:a0:40:c6:d7: 83:c9:02:f7:a6:8e:9b:d5:5a:f2:3d:61:38:9e:de:8e:71:6c: 2e:1b:3d:58:69:ca:0b:e9:b8:c2:8a:bd:b1:e7:38:59:c9:cd: c3:1d:53:ff:fb:e3:96:fa:64:4f:00:15:77:a7:9c:24:d6:30: 1d:c3:1d:57:12:55:46:f3:60:1e:ad:f3:16:d4:5a:77:7c:42: 14:54:8f:21:bb:89:e6:86:65:74:8d:07:9b:49:c3:a5:08:33: 67:35:ce:9b:ea:9d:c4:fd:46:14:66:44:4f:77:d3:7b:ab:53: 66:8b:d8:a0:51:cc:62:79:70:10:c2:27:f2:31:b4:40:93:84: ae:32:db:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc3MjkxMTAvBgNVBAUTKDJCNDQwQzdDNDU5MDAzMDU1MTU3NjI3REU3MjE0RTlD QUMxMjhCNEMwHhcNMjUwNTMxMDA0OTA4WhcNMjUwNjA3MDA0OTA4WjAYMRYwFAYD VQQDEw02ODNhNTIwNC1iZTI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqCgePzity86k1PiwVkoCSVaMCghyq09Z7AJoGv1uPH5xhfheqWPm33Usr/j+ 3IqHFNeD2OUDIVx/lrgN3V5zK1toLapfEXOi0p6f+gnz3m+bYzvbzU0zheGD29jC cpd/mrN1sR6M6QUbLfs8by9OBZEY6BdasJwh+0TVtMpKLpesAQf7SuBAGBVUqeDu TecriTjfpN3Ca/CXnyhLoKjExeHbeqwGzLrGPUiysaNVpBlk27tZk6GUkZmxUZJ9 4EvJWBM6LQWH6nRvWWLywH0PYglDXQBHhtRMq3zovxO85xSLMJyUa+6/zqZteZ88 etvjz2B+JtplPX0om8TxGCOLlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDdATKSH xaq/J8eT/mTD2MaXxuEqMB8GA1UdIwQYMBaAFCtEDHxFkAMFUVdifechTpysEotM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzcyOS8xMzEyRjkwODg4 OTQxMUVDQjIwQjgzNzJDNEY5QUUwMi9LMFFNZkVXUUF3VlJWMko5NXlGT25Ld1Np MHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0swUU1mRVdRQXdWUlYySjk1eUZPbkt3U2kwdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzcyOS8xMzEyRjkwODg4OTQxMUVDQjIwQjgzNzJDNEY5QUUwMi9LMFFNZkVXUUF3 VlJWMko5NXlGT25Ld1NpMHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvl8Cd+7EN9R3xwsh3i/fZRsD4ZKzHWC7YcJ6Ca2J6atQi5AjmsG7A ECw3tJOUklD3Ivyb/d+9TQ4ELrhOr+xYduvu5JKA+UfxtGFn2Rh2jZHMvTE9m877 ykOw5JrcjtdV3RJja+r3ykqjZW1zDw9DtJhKwJNCE8XZBaBAxteDyQL3po6b1Vry PWE4nt6OcWwuGz1YacoL6bjCir2x5zhZyc3DHVP/++OW+mRPABV3p5wk1jAdwx1X ElVG82AerfMW1Fp3fEIUVI8hu4nmhmV0jQebScOlCDNnNc6b6p3E/UYUZkRPd9N7 q1Nmi9igUcxieXAQwifyMbRAk4SuMttu -----END CERTIFICATE-----Generated at Sat May 31 17:20:36 2025 by rpki-client