$ rpki-client -vvf rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.mft File: klUgH_qh5mcsBsLfbovhFYLML64.mft (raw, json) Hash identifier: qqQHaM05SeOoKfc4sRUW9liB+KuA0BSdFdgdCTIKJzo= Subject key identifier: E1:AB:5E:52:B8:BC:B0:3D:0B:79:94:6F:94:BF:3D:BE:84:A1:AB:8C Authority key identifier: 92:55:20:1F:FA:A1:E6:67:2C:06:C2:DF:6E:8B:E1:15:82:CC:2F:AE Certificate issuer: /CN=A9112A7D/serialNumber=9255201FFAA1E6672C06C2DF6E8BE11582CC2FAE Certificate serial: 022E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/klUgH_qh5mcsBsLfbovhFYLML64.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.mft Manifest number: 022B Signing time: Fri 25 Apr 2025 01:42:16 +0000 Manifest this update: Fri 25 Apr 2025 01:42:15 +0000 Manifest next update: Fri 02 May 2025 01:42:15 +0000 Files and hashes: 1: klUgH_qh5mcsBsLfbovhFYLML64.crl (hash: J2m7G6M+9AnCjHaGLhtCBbmB5olzr3uFmJKhd1oKC64=) 2: 6DE1A436246811ED82556323C4F9AE02.roa (hash: 6xgX7RCx1jR+s1bDY/KUKo4N6DkkwUVmskiN+xXDBfc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.crl rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/klUgH_qh5mcsBsLfbovhFYLML64.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:42:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 558 (0x22e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112A7D, serialNumber=9255201FFAA1E6672C06C2DF6E8BE11582CC2FAE Validity Not Before: Apr 25 01:42:15 2025 GMT Not After : May 2 01:42:15 2025 GMT Subject: CN=680ae877-9ff9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:1d:f5:38:47:39:f4:40:10:0d:1e:80:dc:cf: c6:81:85:8e:a9:ff:30:ef:e4:8e:85:d6:a9:45:a0: a1:0c:3c:57:ca:47:3c:ea:23:44:9e:93:9e:5b:38: 07:88:f2:b0:bf:bc:3f:ef:03:2a:0b:1a:0e:62:74: a7:49:2b:57:25:7e:34:9e:d1:c3:c0:c6:ff:a4:55: 32:be:36:ff:e9:df:02:db:c0:50:1b:da:b8:f9:f7: f5:66:4f:56:46:1f:a6:83:f8:fd:d3:26:c0:97:a4: 30:fd:29:84:33:f4:56:ed:a9:e4:a2:46:89:83:13: d4:74:cf:41:e8:00:25:00:e4:46:da:03:85:cd:a2: 14:18:84:ff:e9:9b:df:6b:30:b0:6c:fd:3d:cd:46: fe:99:68:fa:22:3e:8a:bf:64:5d:3d:6a:14:69:26: 72:51:78:9d:48:f3:b7:cf:09:a5:10:32:ed:3d:b0: c1:36:b8:98:08:d3:a6:b1:bf:16:f9:6f:4a:f8:96: a5:c3:0b:2e:0f:6a:2f:94:b5:16:8a:65:d7:3f:69: f8:36:33:c4:a9:ac:fb:42:31:e4:c5:17:57:d2:84: dc:70:ed:93:b6:52:1e:53:0f:9c:3a:27:bf:ba:52: 3c:48:14:ef:14:ac:c2:6b:27:14:41:cb:7b:df:61: b3:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:AB:5E:52:B8:BC:B0:3D:0B:79:94:6F:94:BF:3D:BE:84:A1:AB:8C X509v3 Authority Key Identifier: keyid:92:55:20:1F:FA:A1:E6:67:2C:06:C2:DF:6E:8B:E1:15:82:CC:2F:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/klUgH_qh5mcsBsLfbovhFYLML64.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:e9:f8:a8:19:4b:8b:83:a8:71:5f:ce:d3:e8:82:94:cd:8a: b2:08:9c:a1:14:64:8a:2b:f1:a0:e0:61:7f:c6:83:3e:55:d4: 25:60:07:c3:47:7d:93:dc:72:07:c1:12:28:a2:5c:ed:9e:c6: 86:83:d0:a5:ab:c5:fc:85:5b:be:0b:7b:49:6d:1a:51:4b:25: 93:5b:e7:82:d9:59:96:53:00:58:c5:48:44:6a:85:86:d9:4f: 14:ca:db:42:85:46:15:d2:3f:0d:e0:c8:16:9d:83:a2:d1:cc: 48:e4:6d:17:10:5a:7d:2f:6e:eb:94:f8:8c:84:24:bd:1d:b8: 5a:7d:9e:e5:73:3d:8e:77:96:9e:c8:4e:49:81:9a:10:6e:a5: d4:9e:62:42:83:48:43:13:22:99:df:eb:fe:3e:78:af:c9:b5: 1d:65:e8:8b:8c:92:0e:a6:4f:3f:90:f7:0f:c8:fb:5f:cc:1f: be:8d:90:c1:e4:a4:a6:21:77:0b:48:8b:3b:d5:af:77:92:08: 6d:c6:1b:c4:d8:67:cd:64:d2:28:46:ed:5d:73:62:db:95:d7: db:33:5a:36:f8:e5:21:87:a7:90:c2:3a:db:51:0e:47:a9:a2: 93:6e:6a:c4:e5:fe:1a:06:38:1b:04:9d:58:e3:49:7e:a9:76: 4c:c4:cb:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAi4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTJBN0QxMTAvBgNVBAUTKDkyNTUyMDFGRkFBMUU2NjcyQzA2QzJERjZFOEJFMTE1 ODJDQzJGQUUwHhcNMjUwNDI1MDE0MjE1WhcNMjUwNTAyMDE0MjE1WjAYMRYwFAYD VQQDEw02ODBhZTg3Ny05ZmY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3R31OEc59EAQDR6A3M/GgYWOqf8w7+SOhdapRaChDDxXykc86iNEnpOeWzgH iPKwv7w/7wMqCxoOYnSnSStXJX40ntHDwMb/pFUyvjb/6d8C28BQG9q4+ff1Zk9W Rh+mg/j90ybAl6Qw/SmEM/RW7ankokaJgxPUdM9B6AAlAORG2gOFzaIUGIT/6Zvf azCwbP09zUb+mWj6Ij6Kv2RdPWoUaSZyUXidSPO3zwmlEDLtPbDBNriYCNOmsb8W +W9K+JalwwsuD2ovlLUWimXXP2n4NjPEqaz7QjHkxRdX0oTccO2TtlIeUw+cOie/ ulI8SBTvFKzCaycUQct732GzlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOGrXlK4 vLA9C3mUb5S/Pb6EoauMMB8GA1UdIwQYMBaAFJJVIB/6oeZnLAbC326L4RWCzC+u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMkE3RC9BMDRBNjBCNDI0 NjUxMUVEQjhENDIwMjFDNEY5QUUwMi9rbFVnSF9xaDVtY3NCc0xmYm92aEZZTE1M NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tsVWdIX3FoNW1jc0JzTGZib3ZoRllMTUw2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MkE3RC9BMDRBNjBCNDI0NjUxMUVEQjhENDIwMjFDNEY5QUUwMi9rbFVnSF9xaDVt Y3NCc0xmYm92aEZZTE1MNjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCW6fioGUuLg6hxX87T6IKUzYqyCJyhFGSKK/Gg4GF/xoM+VdQlYAfD R32T3HIHwRIoolztnsaGg9Clq8X8hVu+C3tJbRpRSyWTW+eC2VmWUwBYxUhEaoWG 2U8UyttChUYV0j8N4MgWnYOi0cxI5G0XEFp9L27rlPiMhCS9HbhafZ7lcz2Od5ae yE5JgZoQbqXUnmJCg0hDEyKZ3+v+PnivybUdZeiLjJIOpk8/kPcPyPtfzB++jZDB 5KSmIXcLSIs71a93kghtxhvE2GfNZNIoRu1dc2LbldfbM1o2+OUhh6eQwjrbUQ5H qaKTbmrE5f4aBjgbBJ1Y40l+qXZMxMuG -----END CERTIFICATE-----Generated at Sat Apr 26 16:41:11 2025 by rpki-client