$ rpki-client -vvf rpki.apnic.net/member_repository/A9190960/9C6F7BEA619411EBBFD2AA2AC4F9AE02/KpAHNMXjuTrKlHDj9a3a3C8hWzE.mft File: KpAHNMXjuTrKlHDj9a3a3C8hWzE.mft (raw, json) Hash identifier: nIgUEr8yXYV9QplQbUCnoeXZiVAWxOIpuOdHCmkYFJM= Subject key identifier: 66:38:D7:50:41:0B:ED:06:95:FA:F1:0D:7D:64:29:82:61:10:8C:58 Authority key identifier: 2A:90:07:34:C5:E3:B9:3A:CA:94:70:E3:F5:AD:DA:DC:2F:21:5B:31 Certificate issuer: /CN=A9190960/serialNumber=2A900734C5E3B93ACA9470E3F5ADDADC2F215B31 Certificate serial: 06BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KpAHNMXjuTrKlHDj9a3a3C8hWzE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9190960/9C6F7BEA619411EBBFD2AA2AC4F9AE02/KpAHNMXjuTrKlHDj9a3a3C8hWzE.mft Manifest number: 06B3 Signing time: Fri 30 May 2025 22:21:45 +0000 Manifest this update: Fri 30 May 2025 22:21:45 +0000 Manifest next update: Fri 06 Jun 2025 22:21:45 +0000 Files and hashes: 1: KpAHNMXjuTrKlHDj9a3a3C8hWzE.crl (hash: 9Q3+iyBLxXjn7FgzK6198/YlbVia1x228872c3Qum2U=) 2: ED534930C8B511ED9A1D817EC4F9AE02.roa (hash: cWc+J1TIBwheicFkr/uWy0LuYQxsGfxktq1Xam8BBXI=) 3: 9398F508619611EBA485B448C4F9AE02.roa (hash: Nd8Cn8Kc0/NAG96VlpahXIFBzBlttK0FrKVnW80S2cI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9190960/9C6F7BEA619411EBBFD2AA2AC4F9AE02/KpAHNMXjuTrKlHDj9a3a3C8hWzE.crl rsync://rpki.apnic.net/member_repository/A9190960/9C6F7BEA619411EBBFD2AA2AC4F9AE02/KpAHNMXjuTrKlHDj9a3a3C8hWzE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KpAHNMXjuTrKlHDj9a3a3C8hWzE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:21:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1724 (0x6bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9190960, serialNumber=2A900734C5E3B93ACA9470E3F5ADDADC2F215B31 Validity Not Before: May 30 22:21:45 2025 GMT Not After : Jun 6 22:21:45 2025 GMT Subject: CN=683a2f79-9cf0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:32:d0:12:f2:95:f9:b4:4c:bf:5e:d8:00:30: 10:f8:8f:6b:6a:b1:7f:0f:f6:a0:cb:43:4a:d3:23: 7a:10:df:18:f0:5e:1f:db:be:be:90:82:c4:7e:d7: 4e:69:15:9c:58:d4:07:ee:ca:7f:77:26:ff:0c:eb: 6a:92:9a:8b:a3:00:30:6f:a2:2b:b6:65:43:a2:47: 33:99:b4:d8:f9:cd:74:50:f1:76:dc:f0:27:c7:89: 69:aa:0e:4c:5e:e1:6e:7a:e2:0f:5b:71:9b:8b:66: e4:1a:7e:51:83:c0:6b:08:8f:21:db:a6:19:90:d6: 06:21:6d:39:21:85:b4:22:fe:b0:47:7b:ad:b8:41: ea:cc:a9:99:75:59:97:59:9b:78:8b:19:49:27:52: 12:b3:c0:ed:ed:39:98:88:70:2b:99:8b:d4:82:09: 4e:05:41:91:ca:56:c6:11:d0:c0:49:6e:9f:70:13: 42:0a:22:16:07:b1:e4:0f:fa:4f:dd:b5:9c:ca:69: 37:44:56:8b:92:a3:1f:fe:6d:5c:23:47:68:69:23: c0:82:bd:50:ec:58:9b:90:13:ad:18:c0:06:e9:4a: d1:47:74:17:5b:58:1b:3d:f8:95:d4:be:4f:6b:c2: 71:19:3f:df:40:8d:df:72:af:64:1e:ff:73:fe:67: 93:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:38:D7:50:41:0B:ED:06:95:FA:F1:0D:7D:64:29:82:61:10:8C:58 X509v3 Authority Key Identifier: keyid:2A:90:07:34:C5:E3:B9:3A:CA:94:70:E3:F5:AD:DA:DC:2F:21:5B:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9190960/9C6F7BEA619411EBBFD2AA2AC4F9AE02/KpAHNMXjuTrKlHDj9a3a3C8hWzE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KpAHNMXjuTrKlHDj9a3a3C8hWzE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9190960/9C6F7BEA619411EBBFD2AA2AC4F9AE02/KpAHNMXjuTrKlHDj9a3a3C8hWzE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:ac:0b:e5:34:20:5a:9b:55:74:ea:af:e6:28:66:47:c1:2b: b4:22:74:10:23:76:14:f4:42:ac:2e:c3:74:98:7f:47:3a:42: a8:6c:87:61:d9:3e:dd:55:03:62:5d:e2:2e:e6:57:1e:f8:67: 4d:36:53:f2:68:a5:e1:a0:92:e8:e6:85:29:f3:d9:39:fd:34: 83:8b:9e:57:5b:a0:9e:45:b5:44:6b:72:b2:a4:83:a1:9a:27: 61:71:e1:a6:3c:3f:0a:6a:d6:e5:bd:78:0d:14:9c:52:e2:ea: 4f:49:31:b4:88:7c:04:a3:e8:9a:c5:1a:26:a9:3d:60:33:f4: 5c:9f:cb:e3:32:f6:0f:50:5e:8a:1d:e0:54:1d:e1:60:43:3d: a7:78:0e:59:2d:b4:8a:37:de:e6:b6:0c:02:5b:0b:ad:78:1c: 7a:59:5f:ab:6d:59:1c:ce:1e:b3:12:08:f7:04:fe:41:10:b1: 65:cb:77:2c:ce:0e:d5:4f:6d:a9:5c:86:60:e2:4a:a2:eb:4e: d2:dd:ba:bd:7b:77:ea:e8:98:38:f9:87:d8:4e:e6:36:3c:f9: b4:71:9a:24:1d:08:c8:18:94:5e:bc:a6:1b:85:fc:a4:a6:78: 5a:f3:ca:c7:e6:c8:2a:69:ad:a7:3b:ea:cd:8e:06:32:1b:fd: 54:83:14:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTA5NjAxMTAvBgNVBAUTKDJBOTAwNzM0QzVFM0I5M0FDQTk0NzBFM0Y1QUREQURD MkYyMTVCMzEwHhcNMjUwNTMwMjIyMTQ1WhcNMjUwNjA2MjIyMTQ1WjAYMRYwFAYD VQQDEw02ODNhMmY3OS05Y2YwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2DLQEvKV+bRMv17YADAQ+I9rarF/D/agy0NK0yN6EN8Y8F4f276+kILEftdO aRWcWNQH7sp/dyb/DOtqkpqLowAwb6IrtmVDokczmbTY+c10UPF23PAnx4lpqg5M XuFueuIPW3Gbi2bkGn5Rg8BrCI8h26YZkNYGIW05IYW0Iv6wR3utuEHqzKmZdVmX WZt4ixlJJ1ISs8Dt7TmYiHArmYvUgglOBUGRylbGEdDASW6fcBNCCiIWB7HkD/pP 3bWcymk3RFaLkqMf/m1cI0doaSPAgr1Q7FibkBOtGMAG6UrRR3QXW1gbPfiV1L5P a8JxGT/fQI3fcq9kHv9z/meTyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGY411BB C+0GlfrxDX1kKYJhEIxYMB8GA1UdIwQYMBaAFCqQBzTF47k6ypRw4/Wt2twvIVsx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MDk2MC85QzZGN0JFQTYx OTQxMUVCQkZEMkFBMkFDNEY5QUUwMi9LcEFITk1YanVUcktsSERqOWEzYTNDOGhX ekUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0twQUhOTVhqdVRyS2xIRGo5YTNhM0M4aFd6RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MDk2MC85QzZGN0JFQTYxOTQxMUVCQkZEMkFBMkFDNEY5QUUwMi9LcEFITk1YanVU cktsSERqOWEzYTNDOGhXekUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgrAvlNCBam1V06q/mKGZHwSu0InQQI3YU9EKsLsN0mH9HOkKobIdh 2T7dVQNiXeIu5lce+GdNNlPyaKXhoJLo5oUp89k5/TSDi55XW6CeRbVEa3KypIOh midhceGmPD8KatblvXgNFJxS4upPSTG0iHwEo+iaxRomqT1gM/Rcn8vjMvYPUF6K HeBUHeFgQz2neA5ZLbSKN97mtgwCWwuteBx6WV+rbVkczh6zEgj3BP5BELFly3cs zg7VT22pXIZg4kqi607S3bq9e3fq6Jg4+YfYTuY2PPm0cZokHQjIGJRevKYbhfyk pnha88rH5sgqaa2nO+rNjgYyG/1UgxTD -----END CERTIFICATE-----Generated at Sat May 31 15:01:21 2025 by rpki-client