$ rpki-client -vvf rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft File: KbnmrAGSmMyglt6Jcancj3144dk.mft (raw, json) Hash identifier: RI4LkZsFtGpT/evwXoz7VKc+cG2pi4P5lrhA9tq44So= Subject key identifier: FF:16:12:7E:47:E4:57:1B:B5:A3:3E:1B:2A:EA:A6:05:18:52:F0:F4 Authority key identifier: 29:B9:E6:AC:01:92:98:CC:A0:96:DE:89:71:A9:DC:8F:7D:78:E1:D9 Certificate issuer: /CN=A91371E4/serialNumber=29B9E6AC019298CCA096DE8971A9DC8F7D78E1D9 Certificate serial: 11B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KbnmrAGSmMyglt6Jcancj3144dk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft Manifest number: 11AD Signing time: Thu 24 Apr 2025 17:12:27 +0000 Manifest this update: Thu 24 Apr 2025 17:12:26 +0000 Manifest next update: Thu 01 May 2025 17:12:26 +0000 Files and hashes: 1: KbnmrAGSmMyglt6Jcancj3144dk.crl (hash: tUCG9n3UgMSbDYCtJGswaphCi73MtgGg2LOLOw6kAJY=) 2: B6C2A27AF16A11E89550B621C4F9AE02.roa (hash: rYGwlaz3R02z4ql3MvAUj9rg5+gxsDR/Fvqrh9TzcP8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.crl rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KbnmrAGSmMyglt6Jcancj3144dk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:12:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4536 (0x11b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91371E4, serialNumber=29B9E6AC019298CCA096DE8971A9DC8F7D78E1D9 Validity Not Before: Apr 24 17:12:26 2025 GMT Not After : May 1 17:12:26 2025 GMT Subject: CN=680a70fa-ee76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:fe:b1:24:13:27:c5:d4:18:76:38:8d:a7:4e: 9b:e2:72:28:56:c7:25:0a:82:fc:ca:7a:8c:8f:54: 42:38:f2:50:55:41:ca:6d:9b:6a:55:f2:c6:ba:4a: 3e:3b:c3:6e:c8:fd:65:4c:a5:5d:a1:00:3b:87:d0: 95:c9:28:dc:84:b5:85:85:64:db:d8:4a:b5:63:cb: 16:90:61:48:7f:64:b0:c6:94:a2:d4:21:81:76:d0: 4f:97:3d:7a:0d:f9:dc:c6:15:69:6e:ba:db:d9:c0: 5d:cf:97:31:d2:88:76:ff:42:31:f5:cf:2d:6b:a2: 53:68:73:15:f0:e1:56:71:5b:05:f3:10:b4:5a:61: 6f:d4:7b:57:bc:e1:31:8a:04:4a:85:a5:88:75:3d: 61:09:6f:84:24:5e:49:13:ed:3a:de:08:73:0d:ba: ac:66:91:b2:ed:8d:00:ad:cb:d0:f9:15:63:a6:8c: 6b:48:45:9e:ab:26:09:47:c7:6a:d1:e2:85:53:df: bc:8b:f9:0d:95:d8:28:91:7d:85:2b:68:b1:04:03: 88:70:3c:a8:aa:d8:43:f8:de:2d:08:d5:24:16:4c: b2:e2:e9:e9:95:1e:20:02:4b:b7:61:21:81:b1:4a: b2:b6:dc:bd:cc:4d:54:c6:ce:40:04:fd:c0:ca:07: 34:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:16:12:7E:47:E4:57:1B:B5:A3:3E:1B:2A:EA:A6:05:18:52:F0:F4 X509v3 Authority Key Identifier: keyid:29:B9:E6:AC:01:92:98:CC:A0:96:DE:89:71:A9:DC:8F:7D:78:E1:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KbnmrAGSmMyglt6Jcancj3144dk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:84:7c:f1:aa:2a:65:12:10:ad:2e:ae:2e:ba:64:d6:45:73: 02:96:ed:b5:6b:9c:45:29:12:6f:82:bf:74:fb:5b:61:3e:ae: fd:fb:e8:7d:0d:43:0f:8d:bd:c3:aa:2d:b5:22:a0:87:66:ca: bb:28:19:90:05:25:b3:ea:ee:10:6e:83:06:13:69:92:0a:59: 4a:d0:ef:31:47:6c:79:e5:96:b8:5e:57:0a:79:36:d3:a9:c2: 55:e9:60:97:48:80:bc:b3:af:95:0d:33:2d:b3:18:9b:49:0f: eb:cc:a9:f5:29:33:a0:cc:1f:58:d7:0b:a8:e6:d2:43:2d:9a: c2:e1:66:ee:4e:b3:ce:57:0f:f9:f4:85:c2:4d:eb:10:9f:43: d9:74:8a:e9:03:17:69:8a:05:5d:15:1c:8a:78:4a:92:19:60: 73:b7:99:cc:d8:99:4f:cc:c8:a8:48:38:4d:3f:30:5e:7f:46: 86:a0:4a:6a:b8:40:cd:a2:40:74:91:02:f5:d4:7a:23:3e:4d: 36:92:4c:36:b9:b6:50:0c:8e:65:95:63:c9:ee:4e:75:40:68: aa:eb:28:d3:e4:d7:0d:d0:82:b5:18:cc:39:b2:9b:13:3f:6a: 47:9d:95:07:a7:7c:de:90:e9:a9:9c:1e:d8:d6:2d:3d:16:22: e9:17:a0:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEbgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzcxRTQxMTAvBgNVBAUTKDI5QjlFNkFDMDE5Mjk4Q0NBMDk2REU4OTcxQTlEQzhG N0Q3OEUxRDkwHhcNMjUwNDI0MTcxMjI2WhcNMjUwNTAxMTcxMjI2WjAYMRYwFAYD VQQDEw02ODBhNzBmYS1lZTc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2P6xJBMnxdQYdjiNp06b4nIoVsclCoL8ynqMj1RCOPJQVUHKbZtqVfLGuko+ O8NuyP1lTKVdoQA7h9CVySjchLWFhWTb2Eq1Y8sWkGFIf2SwxpSi1CGBdtBPlz16 DfncxhVpbrrb2cBdz5cx0oh2/0Ix9c8ta6JTaHMV8OFWcVsF8xC0WmFv1HtXvOEx igRKhaWIdT1hCW+EJF5JE+063ghzDbqsZpGy7Y0ArcvQ+RVjpoxrSEWeqyYJR8dq 0eKFU9+8i/kNldgokX2FK2ixBAOIcDyoqthD+N4tCNUkFkyy4unplR4gAku3YSGB sUqytty9zE1Uxs5ABP3Aygc0qQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP8WEn5H 5FcbtaM+GyrqpgUYUvD0MB8GA1UdIwQYMBaAFCm55qwBkpjMoJbeiXGp3I99eOHZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNzFFNC8zODI0N0E3MEYx NjkxMUU4QjNBNzlEMUVDNEY5QUUwMi9LYm5tckFHU21NeWdsdDZKY2FuY2ozMTQ0 ZGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tibm1yQUdTbU15Z2x0NkpjYW5jajMxNDRkay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NzFFNC8zODI0N0E3MEYxNjkxMUU4QjNBNzlEMUVDNEY5QUUwMi9LYm5tckFHU21N eWdsdDZKY2FuY2ozMTQ0ZGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJhHzxqiplEhCtLq4uumTWRXMClu21a5xFKRJvgr90+1thPq79++h9 DUMPjb3Dqi21IqCHZsq7KBmQBSWz6u4QboMGE2mSCllK0O8xR2x55Za4XlcKeTbT qcJV6WCXSIC8s6+VDTMtsxibSQ/rzKn1KTOgzB9Y1wuo5tJDLZrC4WbuTrPOVw/5 9IXCTesQn0PZdIrpAxdpigVdFRyKeEqSGWBzt5nM2JlPzMioSDhNPzBef0aGoEpq uEDNokB0kQL11HojPk02kkw2ubZQDI5llWPJ7k51QGiq6yjT5NcN0IK1GMw5spsT P2pHnZUHp3zekOmpnB7Y1i09FiLpF6Ak -----END CERTIFICATE-----Generated at Sat Apr 26 12:32:47 2025 by rpki-client