$ rpki-client -vvf rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.mft File: KtUm39nH6QyjDDH8pOGCUBtwB1M.mft (raw, json) Hash identifier: DlU4sEG7KsQKefLs4/vBLau66JF2hAFjbCuw+EGB7Wc= Subject key identifier: E8:94:C3:E7:C8:2B:16:AA:E3:23:36:C8:FF:E1:4C:83:22:61:E7:91 Authority key identifier: 2A:D5:26:DF:D9:C7:E9:0C:A3:0C:31:FC:A4:E1:82:50:1B:70:07:53 Certificate issuer: /CN=A919AAA0/serialNumber=2AD526DFD9C7E90CA30C31FCA4E182501B700753 Certificate serial: 065A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KtUm39nH6QyjDDH8pOGCUBtwB1M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.mft Manifest number: 063E Signing time: Fri 30 May 2025 22:54:19 +0000 Manifest this update: Fri 30 May 2025 22:54:19 +0000 Manifest next update: Fri 06 Jun 2025 22:54:19 +0000 Files and hashes: 1: KtUm39nH6QyjDDH8pOGCUBtwB1M.crl (hash: e2aSmLhoxaapSFKbqESynkXoMI/JvygQYibt4MAIxnc=) 2: 4092F17AE64811EFA0F37560C4F9AE02.roa (hash: MuDOs+UNP3qWV7q9sz+FoRMoZ33SC0+8rektpH4Ht5s=) 3: 698130FEE60411EFA2DC3057C4F9AE02.roa (hash: Vt5tMPro7Yd+AkFJe3Cnn+BsDTWCkJWM0XoIlmggi2I=) 4: 5C75E87C95F511EBA6D31767C4F9AE02.roa (hash: lfQZb+Cu5k1P9aIBAVZr1VIcUuyX72bxEGl/rtrTc0A=) 5: 176E1D3E961411EB80BD4E1DC4F9AE02.roa (hash: guMsQztHXJe0nHYo+3sRzxnbrPq9rNiGro7Edp8V/SQ=) 6: 6CFB0FFCF65711EB8988A924C4F9AE02.roa (hash: 0e9NIIe4Eh6DQ3FvIOOg4nTVMnHbYlzq1N/yU/4pzQY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.crl rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KtUm39nH6QyjDDH8pOGCUBtwB1M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:54:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1626 (0x65a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919AAA0, serialNumber=2AD526DFD9C7E90CA30C31FCA4E182501B700753 Validity Not Before: May 30 22:54:19 2025 GMT Not After : Jun 6 22:54:19 2025 GMT Subject: CN=683a371b-057d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:ac:14:39:1d:02:a0:b2:be:fb:e9:53:a2:7e: 14:85:ed:fe:3e:d2:1e:1c:8e:9f:f0:a4:d8:70:66: dd:7f:95:ce:f3:f1:d1:ab:7b:cb:97:85:b6:27:92: b8:5a:c9:0e:63:a9:8e:9c:e2:23:19:a7:2f:8e:55: 60:cd:cb:91:23:b5:21:fc:d0:f8:f5:50:80:8b:b8: 2c:6f:72:98:53:2f:a6:00:96:e5:78:1e:37:e0:e3: c3:9c:d9:95:ef:f0:f2:dc:32:8b:33:8c:3c:08:d4: 6e:11:d3:9e:af:55:e4:00:09:85:75:61:b0:36:ae: b5:7b:0b:b8:c1:bb:bb:a1:a1:98:28:70:89:1b:59: 1d:8a:9e:40:cc:1e:5d:e9:f8:3c:00:d3:7b:55:3a: e4:0e:10:17:71:e8:3e:c2:2a:ed:86:1f:e0:b4:cf: 99:bc:43:f0:55:f1:64:84:d6:95:32:fb:e7:a8:ce: 20:11:1f:50:10:2e:32:93:04:36:a0:5a:df:82:06: 7e:9b:f5:24:b9:08:0a:82:f3:ac:50:f1:1a:69:ac: b4:00:7c:29:c9:38:5e:d8:ea:b7:21:88:b0:e8:f4: 66:3f:96:ed:8a:39:4c:d5:ac:ca:ee:e8:6a:0e:5a: 82:bd:59:53:70:ee:1f:9b:b5:dd:fc:f4:97:fe:7d: f4:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:94:C3:E7:C8:2B:16:AA:E3:23:36:C8:FF:E1:4C:83:22:61:E7:91 X509v3 Authority Key Identifier: keyid:2A:D5:26:DF:D9:C7:E9:0C:A3:0C:31:FC:A4:E1:82:50:1B:70:07:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KtUm39nH6QyjDDH8pOGCUBtwB1M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:08:e7:6d:09:f5:1e:a6:ad:55:f4:73:50:3f:04:ce:64:b7: a7:c2:be:d0:c0:b7:26:be:f8:50:a5:8f:7c:f6:07:bc:d0:6d: 2b:98:42:65:f5:b7:8c:6c:ea:d9:db:33:2f:12:21:5f:ee:54: 08:82:35:29:43:59:87:81:5d:b7:d0:58:23:e9:53:19:18:11: 8c:36:9d:96:02:65:e1:fb:cd:d7:06:0f:af:fe:44:7c:7b:58: 10:3a:a5:34:59:7a:6d:38:ce:e8:c6:dd:91:34:29:10:ee:a2: 5a:1e:58:7f:31:01:5a:95:4e:56:cf:5a:42:41:21:6f:fa:79: 02:4b:cc:7f:b8:6d:2b:89:de:e1:14:2c:6b:de:b6:ca:ac:fe: 9e:09:0e:b4:0f:12:bf:22:9f:22:d6:96:8e:ae:4e:0f:a9:fe: d1:f2:9f:c9:d8:f4:2b:e6:2e:ca:1e:2f:e6:4d:30:f4:4d:6f: 10:d5:75:f0:49:59:14:b3:b7:c4:19:3b:35:6e:c1:21:56:3e: b3:b7:22:36:f4:76:20:3a:54:d6:94:33:73:38:3d:1b:1f:71: 73:8f:89:41:9b:59:d9:0e:9e:f1:ee:3a:26:9e:22:37:d1:1d: 4e:b6:a0:f8:80:09:43:23:1b:8d:f3:3c:2c:b3:e9:0a:b7:1c: 58:ec:43:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUFBQTAxMTAvBgNVBAUTKDJBRDUyNkRGRDlDN0U5MENBMzBDMzFGQ0E0RTE4MjUw MUI3MDA3NTMwHhcNMjUwNTMwMjI1NDE5WhcNMjUwNjA2MjI1NDE5WjAYMRYwFAYD VQQDEw02ODNhMzcxYi0wNTdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA26wUOR0CoLK+++lTon4Uhe3+PtIeHI6f8KTYcGbdf5XO8/HRq3vLl4W2J5K4 WskOY6mOnOIjGacvjlVgzcuRI7Uh/ND49VCAi7gsb3KYUy+mAJbleB434OPDnNmV 7/Dy3DKLM4w8CNRuEdOer1XkAAmFdWGwNq61ewu4wbu7oaGYKHCJG1kdip5AzB5d 6fg8ANN7VTrkDhAXceg+wirthh/gtM+ZvEPwVfFkhNaVMvvnqM4gER9QEC4ykwQ2 oFrfggZ+m/UkuQgKgvOsUPEaaay0AHwpyThe2Oq3IYiw6PRmP5btijlM1azK7uhq DlqCvVlTcO4fm7Xd/PSX/n30VQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOiUw+fI Kxaq4yM2yP/hTIMiYeeRMB8GA1UdIwQYMBaAFCrVJt/Zx+kMowwx/KThglAbcAdT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QUFBMC8yMjgzOTZCQTk1 RjQxMUVCQjMxQjhGNjZDNEY5QUUwMi9LdFVtMzluSDZReWpEREg4cE9HQ1VCdHdC MU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t0VW0zOW5INlF5akRESDhwT0dDVUJ0d0IxTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QUFBMC8yMjgzOTZCQTk1RjQxMUVCQjMxQjhGNjZDNEY5QUUwMi9LdFVtMzluSDZR eWpEREg4cE9HQ1VCdHdCMU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXCOdtCfUepq1V9HNQPwTOZLenwr7QwLcmvvhQpY989ge80G0rmEJl 9beMbOrZ2zMvEiFf7lQIgjUpQ1mHgV230Fgj6VMZGBGMNp2WAmXh+83XBg+v/kR8 e1gQOqU0WXptOM7oxt2RNCkQ7qJaHlh/MQFalU5Wz1pCQSFv+nkCS8x/uG0rid7h FCxr3rbKrP6eCQ60DxK/Ip8i1paOrk4Pqf7R8p/J2PQr5i7KHi/mTTD0TW8Q1XXw SVkUs7fEGTs1bsEhVj6ztyI29HYgOlTWlDNzOD0bH3Fzj4lBm1nZDp7x7jomniI3 0R1OtqD4gAlDIxuN8zwss+kKtxxY7EOU -----END CERTIFICATE-----Generated at Sat May 31 16:53:45 2025 by rpki-client