$ rpki-client -vvf rpki.apnic.net/member_repository/A9112FE1/F1C7447E09F111F08B44A325C4F9AE02/kg59CR8VVp8tg0DGWCuVlewGVoA.mft File: kg59CR8VVp8tg0DGWCuVlewGVoA.mft (raw, json) Hash identifier: lAOfkAdxDEQkJkdcP59+TVACD8YUQ2L0BWNLbdrd4bU= Subject key identifier: E5:C4:DA:87:0A:31:8D:D4:25:AF:4A:4B:C7:0C:08:44:D2:17:CC:48 Authority key identifier: 92:0E:7D:09:1F:15:56:9F:2D:83:40:C6:58:2B:95:95:EC:06:56:80 Certificate issuer: /CN=A9112FE1/serialNumber=920E7D091F15569F2D8340C6582B9595EC065680 Certificate serial: 12 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kg59CR8VVp8tg0DGWCuVlewGVoA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112FE1/F1C7447E09F111F08B44A325C4F9AE02/kg59CR8VVp8tg0DGWCuVlewGVoA.mft Manifest number: 12 Signing time: Fri 25 Apr 2025 07:02:59 +0000 Manifest this update: Fri 25 Apr 2025 07:02:59 +0000 Manifest next update: Fri 02 May 2025 07:02:59 +0000 Files and hashes: 1: kg59CR8VVp8tg0DGWCuVlewGVoA.crl (hash: 2YChUE7ig+BhoB9E5Yq4EZrvIJ6pxT5go6tHbsGExJ0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112FE1/F1C7447E09F111F08B44A325C4F9AE02/kg59CR8VVp8tg0DGWCuVlewGVoA.crl rsync://rpki.apnic.net/member_repository/A9112FE1/F1C7447E09F111F08B44A325C4F9AE02/kg59CR8VVp8tg0DGWCuVlewGVoA.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kg59CR8VVp8tg0DGWCuVlewGVoA.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 07:02:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18 (0x12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112FE1, serialNumber=920E7D091F15569F2D8340C6582B9595EC065680 Validity Not Before: Apr 25 07:02:59 2025 GMT Not After : May 2 07:02:59 2025 GMT Subject: CN=680b33a3-42c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:cf:50:7e:d0:ef:25:19:2f:4f:07:95:89:e8: 59:4f:84:96:dc:29:0a:89:a0:a8:94:59:52:77:24: 7b:d9:06:de:b3:5d:95:33:f3:3f:0a:fc:a8:37:ec: 18:6f:8f:93:3a:82:37:99:a7:bd:0f:ea:2f:23:fb: 34:d2:10:af:ca:8e:78:66:56:28:c0:2a:55:0b:49: 2d:21:ed:ef:db:b5:3a:aa:69:93:77:1a:6c:e5:a2: eb:38:d9:48:2d:3e:5d:b4:ce:64:6e:1f:2f:fe:ae: 91:8e:e3:b0:17:76:63:e9:77:05:81:32:02:58:05: 8e:98:2e:3f:b5:d9:ab:37:8e:fc:38:4e:44:6e:98: a9:91:02:88:1f:ed:27:c8:01:73:58:0f:41:82:04: 5e:41:47:a1:22:37:e4:a1:01:67:0c:1b:03:26:8e: ef:fd:f5:07:37:eb:34:be:6c:2b:19:19:a2:9a:cd: a5:b6:14:22:c5:f0:ec:85:42:9d:a8:3a:36:67:e3: 4e:6c:f9:37:67:2b:38:9a:a7:e7:04:8c:a9:07:f0: 3d:86:10:1c:58:60:3d:75:a8:a5:db:d8:60:f1:76: 22:96:8b:6b:3c:ea:ed:58:3d:d0:8a:3f:bf:b4:57: a1:3f:81:22:81:54:2f:4c:85:12:53:ae:1b:f3:14: 64:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:C4:DA:87:0A:31:8D:D4:25:AF:4A:4B:C7:0C:08:44:D2:17:CC:48 X509v3 Authority Key Identifier: keyid:92:0E:7D:09:1F:15:56:9F:2D:83:40:C6:58:2B:95:95:EC:06:56:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112FE1/F1C7447E09F111F08B44A325C4F9AE02/kg59CR8VVp8tg0DGWCuVlewGVoA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kg59CR8VVp8tg0DGWCuVlewGVoA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112FE1/F1C7447E09F111F08B44A325C4F9AE02/kg59CR8VVp8tg0DGWCuVlewGVoA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:64:19:5f:44:75:32:68:69:b9:7a:e9:13:df:f4:1d:0d:85: 98:55:6b:70:23:7c:40:04:20:2d:43:19:c1:d2:bf:05:96:ac: 78:05:8d:bf:cc:f3:e0:0e:a0:a1:83:42:55:6e:a2:c7:b4:68: 18:06:56:76:06:0d:18:67:bc:2d:01:ac:fa:76:e2:bb:93:fa: bf:a6:61:18:1a:0d:c7:91:c1:a8:0c:45:aa:b3:07:2b:00:d9: bb:07:1b:66:07:b5:45:b5:31:20:5a:73:d7:d9:d5:81:64:c4: 60:66:3b:0c:5d:88:88:3c:d7:ef:81:e4:4e:20:65:70:0a:ee: 09:d9:58:4e:d6:da:61:10:21:d0:3d:c0:a4:25:c0:70:9d:68: 76:1b:0e:54:13:e3:f9:82:e0:4e:e0:ec:d8:0b:6d:1d:f0:63: 7e:6a:53:2d:cb:ed:9a:a2:96:5a:cf:0c:d4:c6:15:2d:b6:75: 22:23:fb:59:53:97:6b:22:64:2f:35:88:75:4a:57:46:65:f3: db:8a:da:6a:5d:f1:4a:2f:87:46:14:2f:69:c9:09:4f:f1:43: c5:0c:64:9c:83:f0:54:61:9b:97:cc:26:ab:76:42:d0:7e:5c: cb:c6:52:2f:a2:f7:a2:4e:51:99:86:b4:c2:30:83:7f:47:fd: 68:fa:7e:f7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx MkZFMTExMC8GA1UEBRMoOTIwRTdEMDkxRjE1NTY5RjJEODM0MEM2NTgyQjk1OTVF QzA2NTY4MDAeFw0yNTA0MjUwNzAyNTlaFw0yNTA1MDIwNzAyNTlaMBgxFjAUBgNV BAMTDTY4MGIzM2EzLTQyYzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCxz1B+0O8lGS9PB5WJ6FlPhJbcKQqJoKiUWVJ3JHvZBt6zXZUz8z8K/Kg37Bhv j5M6gjeZp70P6i8j+zTSEK/KjnhmVijAKlULSS0h7e/btTqqaZN3Gmzlous42Ugt Pl20zmRuHy/+rpGO47AXdmPpdwWBMgJYBY6YLj+12as3jvw4TkRumKmRAogf7SfI AXNYD0GCBF5BR6EiN+ShAWcMGwMmju/99Qc36zS+bCsZGaKazaW2FCLF8OyFQp2o OjZn405s+TdnKziap+cEjKkH8D2GEBxYYD11qKXb2GDxdiKWi2s86u1YPdCKP7+0 V6E/gSKBVC9MhRJTrhvzFGSlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU5cTahwox jdQlr0pLxwwIRNIXzEgwHwYDVR0jBBgwFoAUkg59CR8VVp8tg0DGWCuVlewGVoAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEyRkUxL0YxQzc0NDdFMDlG MTExRjA4QjQ0QTMyNUM0RjlBRTAyL2tnNTlDUjhWVnA4dGcwREdXQ3VWbGV3R1Zv QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIva2c1OUNSOFZWcDh0ZzBER1dDdVZsZXdHVm9BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEy RkUxL0YxQzc0NDdFMDlGMTExRjA4QjQ0QTMyNUM0RjlBRTAyL2tnNTlDUjhWVnA4 dGcwREdXQ3VWbGV3R1ZvQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACBkGV9EdTJoabl66RPf9B0NhZhVa3AjfEAEIC1DGcHSvwWWrHgFjb/M 8+AOoKGDQlVuose0aBgGVnYGDRhnvC0BrPp24ruT+r+mYRgaDceRwagMRaqzBysA 2bsHG2YHtUW1MSBac9fZ1YFkxGBmOwxdiIg81++B5E4gZXAK7gnZWE7W2mEQIdA9 wKQlwHCdaHYbDlQT4/mC4E7g7NgLbR3wY35qUy3L7ZqillrPDNTGFS22dSIj+1lT l2siZC81iHVKV0Zl89uK2mpd8Uovh0YUL2nJCU/xQ8UMZJyD8FRhm5fMJqt2QtB+ XMvGUi+i96JOUZmGtMIwg39H/Wj6fvc= -----END CERTIFICATE-----Generated at Sat Apr 26 17:04:30 2025 by rpki-client