$ rpki-client -vvf rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/KxUe1JZstlaQzZqoJiuKau0G5EM.mft File: KxUe1JZstlaQzZqoJiuKau0G5EM.mft (raw, json) Hash identifier: zU5fAPwm+F9lRZR4jg7khJ3GTWFGXpFXAH2JbshJQnQ= Subject key identifier: 41:E4:ED:C5:4F:4B:56:27:48:2A:10:1E:96:F4:A2:C8:EC:5D:5A:D1 Authority key identifier: 2B:15:1E:D4:96:6C:B6:56:90:CD:9A:A8:26:2B:8A:6A:ED:06:E4:43 Certificate issuer: /CN=A911B871/serialNumber=2B151ED4966CB65690CD9AA8262B8A6AED06E443 Certificate serial: 0763 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxUe1JZstlaQzZqoJiuKau0G5EM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/KxUe1JZstlaQzZqoJiuKau0G5EM.mft Manifest number: 0753 Signing time: Thu 24 Apr 2025 21:27:23 +0000 Manifest this update: Thu 24 Apr 2025 21:27:23 +0000 Manifest next update: Thu 01 May 2025 21:27:23 +0000 Files and hashes: 1: KxUe1JZstlaQzZqoJiuKau0G5EM.crl (hash: dm90RDVm2Vmv0jBTHR+63neEFXEZRQUWleK69/kvOoY=) 2: 440FC47687C211EEA6A0667BC4F9AE02.roa (hash: bPVen4Q79bQMysYZB+1SSkGirdnYsj/wax4oaPllL9M=) 3: C4EEE8EE24E011EBA4C87F7DC4F9AE02.roa (hash: U4O6uXSOF+3gB8WDqXNclHvwBePMcUEtPgGRnogD3Pk=) 4: 8A01BCDC1DA811EBAFA5B44FC4F9AE02.roa (hash: EPNFm1X8MnpnhMfq1ASr/F02aUDuHCY7XYN9aoUZxhY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/KxUe1JZstlaQzZqoJiuKau0G5EM.crl rsync://rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/KxUe1JZstlaQzZqoJiuKau0G5EM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxUe1JZstlaQzZqoJiuKau0G5EM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1891 (0x763) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B871, serialNumber=2B151ED4966CB65690CD9AA8262B8A6AED06E443 Validity Not Before: Apr 24 21:27:23 2025 GMT Not After : May 1 21:27:23 2025 GMT Subject: CN=680aacbb-ca40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:7f:ad:62:bc:f3:f3:30:2e:f9:64:45:4a:eb: 55:ad:42:59:d6:fb:6e:65:54:bc:96:d5:0f:ce:22: 7e:1f:b6:0d:02:5a:51:6c:62:ff:6e:ac:12:75:61: f9:99:b0:db:8e:1d:42:34:d5:ea:66:49:f0:64:67: 29:9e:69:e0:3e:41:6e:3b:bd:c2:f4:fc:ac:23:f3: f5:08:5a:0b:44:85:53:c6:f9:05:42:9a:9a:14:33: 8e:60:f9:18:b2:60:21:e8:62:58:e4:10:11:dd:ca: 3b:fb:80:8d:95:1a:1a:0c:8b:d1:4b:bc:35:e2:13: ba:2e:16:a0:1b:aa:4c:a4:88:bb:33:e0:41:57:c1: dd:49:3b:6b:6d:97:45:0a:3e:03:91:a7:1c:f7:c2: a4:83:b4:ff:9a:b0:f0:07:49:e0:98:38:e9:9d:2c: cd:67:39:ce:19:39:07:35:42:ff:08:dd:5a:cf:7f: 60:96:f9:e8:45:d3:5b:8a:c0:f1:a7:8d:7f:fe:0e: e2:4a:78:db:8b:85:94:e4:83:0d:5a:c9:69:4c:c7: 3f:5a:f5:e1:9a:69:2a:3c:e8:fe:f3:98:a5:fb:65: 03:d3:7e:47:83:d1:b1:b3:f4:c7:0f:be:1c:9e:ed: 6f:90:97:b1:fd:4f:f4:cc:83:01:ec:fb:92:91:df: ac:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:E4:ED:C5:4F:4B:56:27:48:2A:10:1E:96:F4:A2:C8:EC:5D:5A:D1 X509v3 Authority Key Identifier: keyid:2B:15:1E:D4:96:6C:B6:56:90:CD:9A:A8:26:2B:8A:6A:ED:06:E4:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/KxUe1JZstlaQzZqoJiuKau0G5EM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxUe1JZstlaQzZqoJiuKau0G5EM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/KxUe1JZstlaQzZqoJiuKau0G5EM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:2e:c4:dd:a3:c2:e7:d3:18:5c:87:13:ab:91:c6:29:c8:d6: 83:b4:19:30:f2:45:ff:b9:66:a3:0f:df:47:73:a8:44:73:62: a7:39:1c:f2:02:9b:3a:0d:0d:89:23:1a:19:3f:83:4d:9d:6c: 7a:21:37:67:04:6c:00:9d:a2:7b:83:c2:7c:10:82:80:b7:00: 43:ed:32:1e:10:7d:77:eb:17:00:96:b7:d8:11:2e:f8:9e:cb: f4:1b:97:2d:7e:41:34:f9:64:d5:d7:c1:ea:59:b0:ca:2c:94: 5d:dc:e2:ff:68:51:cb:ea:83:10:5d:ae:5c:3d:28:94:5d:df: 1d:6f:ec:53:f6:76:1f:98:d9:89:21:cd:85:05:97:bc:27:86: 78:f7:47:26:b9:99:b3:e6:b9:5d:ae:72:57:44:84:19:e9:41: e2:8e:8a:df:4b:8d:8e:81:14:aa:1c:1c:82:fe:9d:2b:59:70: bd:f6:2d:5a:5b:58:a5:1e:af:43:be:66:10:70:ea:92:49:11: 70:42:5d:9b:57:01:7b:f3:cf:39:01:90:f9:21:ed:07:8d:41: 98:a5:21:99:02:ac:1a:e7:db:f9:1f:d6:a1:f7:92:d5:06:f9: 08:6c:f7:38:8d:70:a3:a5:a3:a8:53:d9:2e:dc:27:89:ee:31: d6:bf:30:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB2MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI4NzExMTAvBgNVBAUTKDJCMTUxRUQ0OTY2Q0I2NTY5MENEOUFBODI2MkI4QTZB RUQwNkU0NDMwHhcNMjUwNDI0MjEyNzIzWhcNMjUwNTAxMjEyNzIzWjAYMRYwFAYD VQQDEw02ODBhYWNiYi1jYTQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0H+tYrzz8zAu+WRFSutVrUJZ1vtuZVS8ltUPziJ+H7YNAlpRbGL/bqwSdWH5 mbDbjh1CNNXqZknwZGcpnmngPkFuO73C9PysI/P1CFoLRIVTxvkFQpqaFDOOYPkY smAh6GJY5BAR3co7+4CNlRoaDIvRS7w14hO6LhagG6pMpIi7M+BBV8HdSTtrbZdF Cj4Dkacc98Kkg7T/mrDwB0ngmDjpnSzNZznOGTkHNUL/CN1az39glvnoRdNbisDx p41//g7iSnjbi4WU5IMNWslpTMc/WvXhmmkqPOj+85il+2UD035Hg9Gxs/THD74c nu1vkJex/U/0zIMB7PuSkd+s1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEHk7cVP S1YnSCoQHpb0osjsXVrRMB8GA1UdIwQYMBaAFCsVHtSWbLZWkM2aqCYrimrtBuRD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjg3MS84QTJEQUJFMDFE QTcxMUVCODA3MTJBNEZDNEY5QUUwMi9LeFVlMUpac3RsYVF6WnFvSml1S2F1MEc1 RU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t4VWUxSlpzdGxhUXpacW9KaXVLYXUwRzVFTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Qjg3MS84QTJEQUJFMDFEQTcxMUVCODA3MTJBNEZDNEY5QUUwMi9LeFVlMUpac3Rs YVF6WnFvSml1S2F1MEc1RU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBILsTdo8Ln0xhchxOrkcYpyNaDtBkw8kX/uWajD99Hc6hEc2KnORzy Aps6DQ2JIxoZP4NNnWx6ITdnBGwAnaJ7g8J8EIKAtwBD7TIeEH136xcAlrfYES74 nsv0G5ctfkE0+WTV18HqWbDKLJRd3OL/aFHL6oMQXa5cPSiUXd8db+xT9nYfmNmJ Ic2FBZe8J4Z490cmuZmz5rldrnJXRIQZ6UHijorfS42OgRSqHByC/p0rWXC99i1a W1ilHq9DvmYQcOqSSRFwQl2bVwF78885AZD5Ie0HjUGYpSGZAqwa59v5H9ah95LV BvkIbPc4jXCjpaOoU9ku3CeJ7jHWvzA1 -----END CERTIFICATE-----Generated at Sat Apr 26 17:11:29 2025 by rpki-client