$ rpki-client -vvf rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft File: 2kcnine73_Ktn5igEaKnoufNYNg.mft (raw, json) Hash identifier: YlPxqcXET/QwsDNybj5gEjHv84RH9D15EDP+qt9ZR34= Subject key identifier: 21:E8:57:74:5F:76:5F:19:32:6F:28:40:9D:BD:1F:F6:E3:39:6D:85 Authority key identifier: DA:47:27:8A:77:BB:DF:F2:AD:9F:98:A0:11:A2:A7:A2:E7:CD:60:D8 Certificate issuer: /CN=A91393BE/serialNumber=DA47278A77BBDFF2AD9F98A011A2A7A2E7CD60D8 Certificate serial: 8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft Manifest number: 89 Signing time: Fri 25 Apr 2025 05:29:43 +0000 Manifest this update: Fri 25 Apr 2025 05:29:42 +0000 Manifest next update: Fri 02 May 2025 05:29:42 +0000 Files and hashes: 1: 2kcnine73_Ktn5igEaKnoufNYNg.crl (hash: F31STrlCQHSz5uWYC4rpPiLFD95n6BnEDSkmwXc//qs=) 2: 05A966C652DB11EF990CB840C4F9AE02.roa (hash: 7cyDiCG+GWMMc47d/9wE/tr8+3lmCjNtDuQzc5Jy9ng=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.crl rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:29:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 139 (0x8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91393BE, serialNumber=DA47278A77BBDFF2AD9F98A011A2A7A2E7CD60D8 Validity Not Before: Apr 25 05:29:42 2025 GMT Not After : May 2 05:29:42 2025 GMT Subject: CN=680b1dc7-36c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:de:9a:4d:25:0b:74:ef:b7:f0:8e:52:b3:8c: 63:e5:3d:cd:8f:fb:45:83:e2:7b:cb:67:d5:87:4b: bf:d5:fe:d1:e7:a6:1e:ce:89:91:47:93:5a:f0:6a: 24:db:90:1e:34:db:fd:04:04:1a:52:14:87:2b:d1: ac:e3:ae:a6:65:8a:b7:2b:97:33:1a:21:8c:2c:31: f8:4a:98:db:a4:ed:5c:84:d5:40:71:71:25:c9:3d: 2f:77:8f:c3:8f:9c:14:6d:3a:d3:b2:be:d5:76:87: 25:57:7c:91:73:99:0d:18:12:de:6f:53:e2:a2:70: 36:1d:9b:8b:b7:99:18:59:9c:a7:8c:4f:21:5b:4d: 2c:30:39:73:9b:43:ad:15:3a:cc:21:47:9b:0a:b7: 0d:07:16:47:fa:fe:cd:76:2e:4e:36:2f:43:d3:9b: a1:11:33:dd:75:4e:22:97:01:f2:e2:1f:d8:16:d5: 3b:1e:dd:ea:c2:83:55:8b:66:d7:50:dc:67:e0:35: ba:12:5f:03:5d:49:77:5c:d1:d7:40:0e:7a:03:c8: 46:9f:6a:a1:85:89:d6:57:44:04:59:a3:d1:6d:06: cb:8e:ed:f7:18:3d:90:4d:df:3d:d2:dd:d6:d0:ab: ae:f9:06:16:9a:ca:88:d9:e3:39:d6:ca:de:fd:c5: dd:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:E8:57:74:5F:76:5F:19:32:6F:28:40:9D:BD:1F:F6:E3:39:6D:85 X509v3 Authority Key Identifier: keyid:DA:47:27:8A:77:BB:DF:F2:AD:9F:98:A0:11:A2:A7:A2:E7:CD:60:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:58:4e:f1:46:e5:48:ad:c4:77:2b:fe:80:25:66:b2:c1:9f: 05:32:c5:d5:fb:97:84:85:12:dd:bf:be:1d:93:6f:74:36:87: 02:ff:f6:d0:54:60:5f:a9:5a:87:90:d3:3d:85:3c:56:41:54: 50:71:9f:ab:18:cf:fc:f0:2a:68:a6:0d:9d:67:0f:3b:fe:4c: c2:e6:bc:0a:ce:08:65:80:bc:ad:1a:0b:2d:0c:06:8e:a0:ed: bf:b9:ac:e9:a1:47:2e:07:fb:59:40:0b:e2:b8:dc:f5:49:82: cc:75:eb:64:8a:92:d8:27:f8:9b:e0:65:6f:85:30:16:6a:bb: d1:9d:78:e0:a9:a5:8a:2b:8c:58:8f:38:f0:a8:96:32:b6:6d: 37:cc:95:96:59:d7:6e:15:5d:5f:3c:b5:62:bd:5f:fd:48:7f: c6:5f:73:aa:1b:9b:7f:1c:d5:c9:97:68:ed:fc:ab:38:4d:16: 90:52:08:ae:10:21:b2:a9:fc:51:b6:10:b8:98:15:e1:11:94: 4e:9c:0d:53:f5:0a:37:12:fa:8f:fb:70:c2:33:74:ad:49:33: df:79:b1:93:0f:90:4d:45:70:89:b3:79:00:dc:f1:e6:1d:0c: 81:9a:68:82:bc:21:fa:c8:4d:51:57:fc:eb:ff:58:04:38:af: 37:04:11:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkzQkUxMTAvBgNVBAUTKERBNDcyNzhBNzdCQkRGRjJBRDlGOThBMDExQTJBN0Ey RTdDRDYwRDgwHhcNMjUwNDI1MDUyOTQyWhcNMjUwNTAyMDUyOTQyWjAYMRYwFAYD VQQDEw02ODBiMWRjNy0zNmM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6N6aTSULdO+38I5Ss4xj5T3Nj/tFg+J7y2fVh0u/1f7R56YezomRR5Na8Gok 25AeNNv9BAQaUhSHK9Gs466mZYq3K5czGiGMLDH4SpjbpO1chNVAcXElyT0vd4/D j5wUbTrTsr7VdoclV3yRc5kNGBLeb1PionA2HZuLt5kYWZynjE8hW00sMDlzm0Ot FTrMIUebCrcNBxZH+v7Ndi5ONi9D05uhETPddU4ilwHy4h/YFtU7Ht3qwoNVi2bX UNxn4DW6El8DXUl3XNHXQA56A8hGn2qhhYnWV0QEWaPRbQbLju33GD2QTd890t3W 0Kuu+QYWmsqI2eM51sre/cXdDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCHoV3Rf dl8ZMm8oQJ29H/bjOW2FMB8GA1UdIwQYMBaAFNpHJ4p3u9/yrZ+YoBGip6LnzWDY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTNCRS83NzQxNjE0QzUy RDMxMUVGQkFFRERDMUVDNEY5QUUwMi8ya2NuaW5lNzNfS3RuNWlnRWFLbm91Zk5Z TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJrY25pbmU3M19LdG41aWdFYUtub3VmTllOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTNCRS83NzQxNjE0QzUyRDMxMUVGQkFFRERDMUVDNEY5QUUwMi8ya2NuaW5lNzNf S3RuNWlnRWFLbm91Zk5ZTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcWE7xRuVIrcR3K/6AJWaywZ8FMsXV+5eEhRLdv74dk290NocC//bQ VGBfqVqHkNM9hTxWQVRQcZ+rGM/88Cpopg2dZw87/kzC5rwKzghlgLytGgstDAaO oO2/uazpoUcuB/tZQAviuNz1SYLMdetkipLYJ/ib4GVvhTAWarvRnXjgqaWKK4xY jzjwqJYytm03zJWWWdduFV1fPLVivV/9SH/GX3OqG5t/HNXJl2jt/Ks4TRaQUgiu ECGyqfxRthC4mBXhEZROnA1T9Qo3EvqP+3DCM3StSTPfebGTD5BNRXCJs3kA3PHm HQyBmmiCvCH6yE1RV/zr/1gEOK83BBFK -----END CERTIFICATE-----Generated at Sat Apr 26 04:33:26 2025 by rpki-client