$ rpki-client -vvf rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft File: KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft (raw, json) Hash identifier: QNYLa2UbD0G1+fhAPxqmFRJQAthaYH7gWaGGR5M0+v0= Subject key identifier: 2F:1C:32:BE:74:F3:90:12:5B:D0:2F:94:6A:78:E0:D6:60:88:C3:CC Authority key identifier: 28:76:82:5F:77:C2:4A:16:7D:C4:12:15:35:0F:68:87:92:98:1A:67 Certificate issuer: /CN=A9194677/serialNumber=2876825F77C24A167DC41215350F688792981A67 Certificate serial: 0141 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft Manifest number: 013E Signing time: Sat 31 May 2025 04:01:48 +0000 Manifest this update: Sat 31 May 2025 04:01:48 +0000 Manifest next update: Sat 07 Jun 2025 04:01:48 +0000 Files and hashes: 1: KHaCX3fCShZ9xBIVNQ9oh5KYGmc.crl (hash: iSC5DHPwuJJbieWLGJ7j3C/1G5mKzwMLRxPBr3HA7Gc=) 2: 759C16DC577711EE96F5F775C4F9AE02.roa (hash: Pojppps22r3xRUUOYA4Lq5WqJQ1e2Svo0KKFdlUH1VY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.crl rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:01:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 321 (0x141) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194677, serialNumber=2876825F77C24A167DC41215350F688792981A67 Validity Not Before: May 31 04:01:48 2025 GMT Not After : Jun 7 04:01:48 2025 GMT Subject: CN=683a7f2c-193f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:f1:f9:45:6b:ef:78:47:d4:37:b1:16:e0:6a: 37:da:fd:a3:ba:15:59:24:6a:d4:76:87:b1:02:66: 34:92:e8:7d:e3:6f:92:b4:3e:34:c0:d3:45:e0:72: 35:f9:9a:2f:05:a1:66:bb:5a:b0:73:18:62:24:5d: 99:ef:dc:78:7d:c7:92:15:20:61:94:9f:17:2e:5a: 82:7f:3a:4f:70:8e:bd:94:83:9f:74:68:c7:20:66: 7f:27:e2:bc:d1:f9:21:f4:4a:71:a3:d1:46:d6:ff: c7:6d:4d:98:06:27:50:61:3c:3e:3d:03:e6:75:72: 86:51:d1:e6:72:f3:a6:d4:e8:00:00:9f:fc:ef:32: 94:19:fb:49:dd:d9:6c:e1:b9:60:cf:2f:af:28:28: c4:a1:4d:f9:5b:23:9f:c7:de:4b:48:25:25:25:73: cd:2e:0b:88:fe:ae:ba:c6:61:e6:4f:18:37:34:a8: d2:c2:7c:97:f9:82:34:df:1b:72:0b:89:bc:7e:b4: 3b:ed:83:06:8c:c8:9a:be:ef:d7:ac:a9:f4:8c:3b: f9:f9:7a:89:51:58:df:b2:86:b7:8a:d3:0b:a0:90: ec:38:86:aa:4c:6c:89:bf:2b:0c:a6:33:1a:a7:88: 13:06:0f:81:2d:97:e1:34:ed:3a:d6:8a:96:5b:01: 80:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:1C:32:BE:74:F3:90:12:5B:D0:2F:94:6A:78:E0:D6:60:88:C3:CC X509v3 Authority Key Identifier: keyid:28:76:82:5F:77:C2:4A:16:7D:C4:12:15:35:0F:68:87:92:98:1A:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:d2:0b:e4:7c:1a:12:31:93:70:8e:70:63:9a:c8:bd:46:0b: 94:1a:dd:4e:4f:5b:0b:83:ae:46:fa:9e:f6:02:e8:24:e0:18: ec:9a:fe:a2:72:07:fe:c2:2b:36:05:fe:cc:e7:95:4b:1f:20: d8:c7:96:a6:9e:af:d1:4f:e2:f2:bd:28:20:a7:5a:ab:c6:62: 54:9f:7d:d0:d3:73:6a:c1:d0:b7:6a:77:a6:04:cd:73:c5:58: 1b:7e:11:74:81:85:f5:50:9a:71:49:b8:63:58:86:03:90:80: 18:0b:98:90:b8:44:c2:cc:14:b3:fd:dd:57:a3:02:5a:09:5b: 3b:2b:9f:03:46:72:06:bc:2f:dd:25:e5:2b:f3:fa:72:a2:87: a7:de:71:e2:c5:1d:fe:ae:75:aa:02:6b:72:d5:27:fe:c1:cd: e9:3c:40:f7:84:8f:49:e5:00:46:b6:9a:a6:9a:ae:ae:9d:c6: da:14:c1:83:88:40:9b:ea:e2:e3:4b:6b:40:47:21:e1:87:4e: 73:ed:c3:3e:b2:2c:6f:c3:1a:99:71:6f:ea:3f:78:61:70:bd: 51:49:b9:f7:26:43:68:76:c3:6a:35:1f:6a:87:bb:a9:0b:a0: 0b:94:22:30:98:77:02:09:2c:83:38:d9:33:c8:88:18:6f:94: 10:39:98:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQ2NzcxMTAvBgNVBAUTKDI4NzY4MjVGNzdDMjRBMTY3REM0MTIxNTM1MEY2ODg3 OTI5ODFBNjcwHhcNMjUwNTMxMDQwMTQ4WhcNMjUwNjA3MDQwMTQ4WjAYMRYwFAYD VQQDEw02ODNhN2YyYy0xOTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmPH5RWvveEfUN7EW4Go32v2juhVZJGrUdoexAmY0kuh942+StD40wNNF4HI1 +ZovBaFmu1qwcxhiJF2Z79x4fceSFSBhlJ8XLlqCfzpPcI69lIOfdGjHIGZ/J+K8 0fkh9Epxo9FG1v/HbU2YBidQYTw+PQPmdXKGUdHmcvOm1OgAAJ/87zKUGftJ3dls 4blgzy+vKCjEoU35WyOfx95LSCUlJXPNLguI/q66xmHmTxg3NKjSwnyX+YI03xty C4m8frQ77YMGjMiavu/XrKn0jDv5+XqJUVjfsoa3itMLoJDsOIaqTGyJvysMpjMa p4gTBg+BLZfhNO061oqWWwGA5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC8cMr50 85ASW9AvlGp44NZgiMPMMB8GA1UdIwQYMBaAFCh2gl93wkoWfcQSFTUPaIeSmBpn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDY3Ny8wMjI3Rjc4NjU3 NzUxMUVFOTJBQ0E3NTlDNEY5QUUwMi9LSGFDWDNmQ1NoWjl4QklWTlE5b2g1S1lH bWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tIYUNYM2ZDU2haOXhCSVZOUTlvaDVLWUdtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDY3Ny8wMjI3Rjc4NjU3NzUxMUVFOTJBQ0E3NTlDNEY5QUUwMi9LSGFDWDNmQ1No Wjl4QklWTlE5b2g1S1lHbWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBV0gvkfBoSMZNwjnBjmsi9RguUGt1OT1sLg65G+p72Augk4Bjsmv6i cgf+wis2Bf7M55VLHyDYx5amnq/RT+LyvSggp1qrxmJUn33Q03NqwdC3anemBM1z xVgbfhF0gYX1UJpxSbhjWIYDkIAYC5iQuETCzBSz/d1XowJaCVs7K58DRnIGvC/d JeUr8/pyooen3nHixR3+rnWqAmty1Sf+wc3pPED3hI9J5QBGtpqmmq6uncbaFMGD iECb6uLjS2tARyHhh05z7cM+sixvwxqZcW/qP3hhcL1RSbn3JkNodsNqNR9qh7up C6ALlCIwmHcCCSyDONkzyIgYb5QQOZif -----END CERTIFICATE-----Generated at Sat May 31 17:47:38 2025 by rpki-client