$ rpki-client -vvf rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft File: KmvwVK0j6tLbOVMbZGcmypRaxJI.mft (raw, json) Hash identifier: 8wYjjxHbevaflsPEYldUo5LDRvGm+7sjwZNQhLFWJRI= Subject key identifier: 3E:23:C8:BE:30:A2:10:C6:81:87:A1:6C:6E:99:FF:D5:DA:8A:C2:39 Authority key identifier: 2A:6B:F0:54:AD:23:EA:D2:DB:39:53:1B:64:67:26:CA:94:5A:C4:92 Certificate issuer: /CN=A918AB7E/serialNumber=2A6BF054AD23EAD2DB39531B646726CA945AC492 Certificate serial: 25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft Manifest number: 24 Signing time: Sat 31 May 2025 07:24:17 +0000 Manifest this update: Sat 31 May 2025 07:24:17 +0000 Manifest next update: Sat 07 Jun 2025 07:24:17 +0000 Files and hashes: 1: KmvwVK0j6tLbOVMbZGcmypRaxJI.crl (hash: /lsFtyqS4vgXFa3r49XUp3sIQZGW2VZqEXO6khJnkwg=) 2: 3CF5A86C088211F0BB90C23EC4F9AE02.roa (hash: WjhNkxKHghzjWbpSoIkFccSDxcFZFh5y2Re0ypkmeM8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.crl rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 07:24:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37 (0x25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918AB7E, serialNumber=2A6BF054AD23EAD2DB39531B646726CA945AC492 Validity Not Before: May 31 07:24:17 2025 GMT Not After : Jun 7 07:24:17 2025 GMT Subject: CN=683aaea1-0285 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:7c:7a:3e:5e:e6:88:3b:93:e5:ab:fd:02:a7: 01:9f:6b:59:f5:37:c3:64:85:c2:c1:be:89:02:32: f4:03:2c:4c:b8:fc:75:b0:e0:e4:53:48:79:f9:fa: 9d:56:fe:58:68:1c:55:06:6c:ed:c6:26:b7:22:58: 5c:d4:51:88:5a:e3:0d:e8:0c:5b:f3:81:69:a5:25: 69:d8:36:5a:7b:17:8a:d2:3b:8e:f4:5b:d7:e6:f4: 94:12:80:65:6c:6a:b4:7b:32:b8:04:67:f8:f2:1d: 63:ef:3d:76:92:8d:0e:1d:99:16:f5:12:e9:3b:21: 13:fd:0d:6f:a9:e0:1f:0f:af:da:9e:19:19:89:1f: 68:79:d6:bc:47:b3:a6:f1:e1:35:c1:be:16:66:4b: 76:c0:96:16:5b:1f:93:b1:88:96:6d:58:6d:26:88: 14:69:33:2e:a5:86:e2:7d:4e:f7:a2:74:e9:31:95: 46:3e:17:13:31:5c:e3:68:84:6a:47:1c:a1:40:32: d0:cc:f5:84:7b:a1:aa:53:d6:e1:b0:99:c4:0b:4f: 2e:44:63:dc:d1:3e:3d:7c:a2:44:b7:77:45:c5:4f: ae:1d:ba:56:71:c1:c1:28:44:6a:b2:e5:ab:74:a4: 8c:9b:ef:5f:46:99:98:70:77:47:c3:12:f6:9a:ca: 2f:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:23:C8:BE:30:A2:10:C6:81:87:A1:6C:6E:99:FF:D5:DA:8A:C2:39 X509v3 Authority Key Identifier: keyid:2A:6B:F0:54:AD:23:EA:D2:DB:39:53:1B:64:67:26:CA:94:5A:C4:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:0d:0d:9b:48:9d:53:5c:2a:12:f3:81:9b:05:e3:90:20:45: 7f:95:dc:11:f4:fe:ea:6c:a8:22:bb:5c:d4:c5:d6:3e:79:08: 6a:1e:af:49:33:ce:20:6e:8a:7a:94:0d:3b:47:ac:27:44:5a: dc:e5:c9:bf:d4:6b:d9:8d:28:21:2f:7b:d1:66:3f:cd:33:d8: fc:a4:a1:2c:f7:45:19:a7:24:20:1a:e5:76:e0:ee:26:9d:a2: 41:78:41:f5:40:73:74:f7:fd:ef:26:fa:2c:60:96:e6:30:5f: 37:d2:a6:29:16:1a:88:89:9a:9e:37:f3:e1:95:4a:42:44:0b: 37:ce:86:f2:6f:23:4a:9d:b7:43:1b:99:2b:61:e7:da:d1:5c: af:c7:b8:dc:6c:a3:c1:c4:b7:42:56:ef:72:37:05:04:77:d7: 71:8b:d3:3a:97:b5:38:fd:9f:c3:f8:4d:95:b4:3d:cd:5b:e7: c8:c3:a1:8a:00:13:ab:6c:a9:85:67:61:8f:d8:b8:b0:39:21: 23:11:aa:d0:1f:60:2c:0b:f8:95:01:7f:12:3f:19:35:58:d0: fc:45:4c:00:23:62:b9:fc:79:ea:61:f0:68:bb:a5:ea:14:65: d1:31:58:3b:ff:25:51:81:a6:ce:76:7c:bd:34:5c:b9:8f:87: 4d:a3:61:91 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 QUI3RTExMC8GA1UEBRMoMkE2QkYwNTRBRDIzRUFEMkRCMzk1MzFCNjQ2NzI2Q0E5 NDVBQzQ5MjAeFw0yNTA1MzEwNzI0MTdaFw0yNTA2MDcwNzI0MTdaMBgxFjAUBgNV BAMTDTY4M2FhZWExLTAyODUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDXfHo+XuaIO5Plq/0CpwGfa1n1N8NkhcLBvokCMvQDLEy4/HWw4ORTSHn5+p1W /lhoHFUGbO3GJrciWFzUUYha4w3oDFvzgWmlJWnYNlp7F4rSO470W9fm9JQSgGVs arR7MrgEZ/jyHWPvPXaSjQ4dmRb1Euk7IRP9DW+p4B8Pr9qeGRmJH2h51rxHs6bx 4TXBvhZmS3bAlhZbH5OxiJZtWG0miBRpMy6lhuJ9TveidOkxlUY+FxMxXONohGpH HKFAMtDM9YR7oapT1uGwmcQLTy5EY9zRPj18okS3d0XFT64dulZxwcEoRGqy5at0 pIyb719GmZhwd0fDEvaayi/tAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUPiPIvjCi EMaBh6Fsbpn/1dqKwjkwHwYDVR0jBBgwFoAUKmvwVK0j6tLbOVMbZGcmypRaxJIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThBQjdFL0Y3NTk3OTZFMDg4 MTExRjBCQUMzNDEzRUM0RjlBRTAyL0ttdndWSzBqNnRMYk9WTWJaR2NteXBSYXhK SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS212d1ZLMGo2dExiT1ZNYlpHY215cFJheEpJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThB QjdFL0Y3NTk3OTZFMDg4MTExRjBCQUMzNDEzRUM0RjlBRTAyL0ttdndWSzBqNnRM Yk9WTWJaR2NteXBSYXhKSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIwNDZtInVNcKhLzgZsF45AgRX+V3BH0/upsqCK7XNTF1j55CGoer0kz ziBuinqUDTtHrCdEWtzlyb/Ua9mNKCEve9FmP80z2PykoSz3RRmnJCAa5Xbg7iad okF4QfVAc3T3/e8m+ixgluYwXzfSpikWGoiJmp438+GVSkJECzfOhvJvI0qdt0Mb mSth59rRXK/HuNxso8HEt0JW73I3BQR313GL0zqXtTj9n8P4TZW0Pc1b58jDoYoA E6tsqYVnYY/YuLA5ISMRqtAfYCwL+JUBfxI/GTVY0PxFTAAjYrn8eeph8Gi7peoU ZdExWDv/JVGBps52fL00XLmPh02jYZE= -----END CERTIFICATE-----Generated at Sat May 31 17:27:46 2025 by rpki-client