$ rpki-client -vvf rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft File: knWZPcnEM_JdNYCsd-OV0GaWSD0.mft (raw, json) Hash identifier: rsjS2mwYTDLRdxhVdwb46yXGG9Bipw3NVCzYLc8RUMU= Subject key identifier: 4C:D6:84:3E:18:57:8F:6C:59:23:4A:E2:29:57:34:91:94:22:A0:93 Authority key identifier: 92:75:99:3D:C9:C4:33:F2:5D:35:80:AC:77:E3:95:D0:66:96:48:3D Certificate issuer: /CN=A91276A3/serialNumber=9275993DC9C433F25D3580AC77E395D06696483D Certificate serial: 06D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft Manifest number: 06CF Signing time: Thu 24 Apr 2025 21:51:15 +0000 Manifest this update: Thu 24 Apr 2025 21:51:15 +0000 Manifest next update: Thu 01 May 2025 21:51:15 +0000 Files and hashes: 1: knWZPcnEM_JdNYCsd-OV0GaWSD0.crl (hash: fJv9ELZhBEZLKdP/BUsuZb7sJoMDdQebwj9m92iHQH8=) 2: 57BAE77C517D11EB8949D438C4F9AE02.roa (hash: W8Pbilr3L/+CfQDONlD1s3S+g13SAXBwRt28BIl7t2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.crl rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:51:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1752 (0x6d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91276A3, serialNumber=9275993DC9C433F25D3580AC77E395D06696483D Validity Not Before: Apr 24 21:51:15 2025 GMT Not After : May 1 21:51:15 2025 GMT Subject: CN=680ab253-4da4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:7b:b0:74:c6:22:9b:b9:40:16:43:ab:dd:0a: cc:73:5d:d7:ca:bb:ce:d1:79:e5:86:51:0c:fe:aa: ab:f4:ec:10:a3:74:85:c4:5d:96:90:c3:04:47:60: 8e:9d:8a:13:7f:47:1b:d7:3d:4f:0f:7b:b3:8b:81: 2f:2e:f8:e2:4a:02:e0:61:c9:12:f3:82:df:fb:6c: 88:aa:62:5b:4f:60:6f:0f:58:6a:5e:5d:ec:57:bb: fa:aa:3c:15:cd:47:17:fd:2c:f2:63:c8:40:6e:eb: ea:ee:71:1f:41:f4:67:e0:50:45:ea:25:44:10:28: 13:64:3e:01:5f:59:7d:68:1c:f6:29:a4:52:17:f4: ce:06:15:ea:9d:2d:87:cc:2a:42:75:ac:84:2d:0d: 58:9f:80:66:bb:80:37:f9:13:dd:e4:14:34:d7:7f: 35:65:73:34:7d:08:e5:4d:1e:37:56:61:f2:12:d3: 4c:cd:74:1b:a9:3c:ef:55:dd:f1:e1:82:17:3c:37: bf:4b:d4:1d:6e:5b:80:e2:b6:b2:a3:da:95:74:58: 76:be:46:86:62:fe:95:02:6b:c1:df:03:27:dd:92: 3c:9c:e2:ff:13:41:e2:f1:3a:ed:9f:c6:3e:d4:36: 23:7d:b6:0c:7b:58:de:06:53:0f:34:85:a6:b2:93: f9:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:D6:84:3E:18:57:8F:6C:59:23:4A:E2:29:57:34:91:94:22:A0:93 X509v3 Authority Key Identifier: keyid:92:75:99:3D:C9:C4:33:F2:5D:35:80:AC:77:E3:95:D0:66:96:48:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:75:0a:51:fa:20:12:a1:72:47:37:68:1b:d7:8c:25:cd:e6: 93:5a:ae:07:4a:8e:14:32:39:71:5f:53:33:42:12:74:ce:c2: dc:57:fa:af:0e:7a:e5:b8:e0:31:9b:5c:f7:78:98:78:bb:36: 12:87:fe:18:29:37:4c:88:8c:0f:34:16:64:30:3e:25:7a:b1: d7:f8:b1:7f:c0:35:ff:81:37:aa:56:af:a5:48:32:ee:da:1c: ce:ee:61:3b:7a:df:4c:61:91:c8:10:63:48:22:f0:a8:82:eb: 93:17:84:95:b5:4f:dd:50:7a:64:45:8a:a4:bb:fb:98:1e:f7: c4:40:2f:f8:6a:eb:23:3d:81:4f:0e:2f:92:a9:ca:53:8b:fa: 1a:cd:c0:3d:d1:37:56:97:e6:28:8d:e8:14:59:40:a9:3d:44: 02:fe:3e:d7:48:5d:81:51:42:82:d9:1c:ab:be:2b:9b:66:93: 01:3c:e1:02:21:7e:84:3c:0c:e6:3b:98:76:69:32:b0:3f:e7: 9e:e5:bb:6b:97:97:c8:8e:4d:c4:a0:cc:b4:45:ed:1a:35:05: c8:e6:76:f5:fd:9c:97:3f:27:a9:7b:7b:ee:de:1b:43:13:8b: 42:1c:ea:53:7f:2e:09:76:72:a1:d1:b6:5a:9f:95:a8:38:55: 1d:a7:c8:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc2QTMxMTAvBgNVBAUTKDkyNzU5OTNEQzlDNDMzRjI1RDM1ODBBQzc3RTM5NUQw NjY5NjQ4M0QwHhcNMjUwNDI0MjE1MTE1WhcNMjUwNTAxMjE1MTE1WjAYMRYwFAYD VQQDEw02ODBhYjI1My00ZGE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv3uwdMYim7lAFkOr3QrMc13XyrvO0XnlhlEM/qqr9OwQo3SFxF2WkMMER2CO nYoTf0cb1z1PD3uzi4EvLvjiSgLgYckS84Lf+2yIqmJbT2BvD1hqXl3sV7v6qjwV zUcX/SzyY8hAbuvq7nEfQfRn4FBF6iVEECgTZD4BX1l9aBz2KaRSF/TOBhXqnS2H zCpCdayELQ1Yn4Bmu4A3+RPd5BQ01381ZXM0fQjlTR43VmHyEtNMzXQbqTzvVd3x 4YIXPDe/S9QdbluA4rayo9qVdFh2vkaGYv6VAmvB3wMn3ZI8nOL/E0Hi8Trtn8Y+ 1DYjfbYMe1jeBlMPNIWmspP5DwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEzWhD4Y V49sWSNK4ilXNJGUIqCTMB8GA1UdIwQYMBaAFJJ1mT3JxDPyXTWArHfjldBmlkg9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzZBMy84MzIwQkQxQzUx N0IxMUVCODZDMkQ3MzZDNEY5QUUwMi9rbldaUGNuRU1fSmROWUNzZC1PVjBHYVdT RDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tuV1pQY25FTV9KZE5ZQ3NkLU9WMEdhV1NEMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzZBMy84MzIwQkQxQzUxN0IxMUVCODZDMkQ3MzZDNEY5QUUwMi9rbldaUGNuRU1f SmROWUNzZC1PVjBHYVdTRDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBudQpR+iASoXJHN2gb14wlzeaTWq4HSo4UMjlxX1MzQhJ0zsLcV/qv DnrluOAxm1z3eJh4uzYSh/4YKTdMiIwPNBZkMD4lerHX+LF/wDX/gTeqVq+lSDLu 2hzO7mE7et9MYZHIEGNIIvCoguuTF4SVtU/dUHpkRYqku/uYHvfEQC/4ausjPYFP Di+SqcpTi/oazcA90TdWl+YojegUWUCpPUQC/j7XSF2BUUKC2RyrviubZpMBPOEC IX6EPAzmO5h2aTKwP+ee5btrl5fIjk3EoMy0Re0aNQXI5nb1/ZyXPyepe3vu3htD E4tCHOpTfy4JdnKh0bZan5WoOFUdp8jJ -----END CERTIFICATE-----Generated at Sat Apr 26 13:03:19 2025 by rpki-client