$ rpki-client -vvf rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft File: kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft (raw, json) Hash identifier: USnO4sQvYNz2G4uxQwfxSotyweOrlLTSRj4DeMtINxU= Subject key identifier: 22:CB:DB:D9:9B:32:95:13:04:2C:4B:15:59:F2:AE:62:E8:8E:FE:0B Authority key identifier: 90:7B:03:8A:DE:C7:C3:FA:9C:64:93:0E:64:19:B2:FB:BA:B9:C8:1C Certificate issuer: /CN=A913A7A6/serialNumber=907B038ADEC7C3FA9C64930E6419B2FBBAB9C81C Certificate serial: 0A04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHsDit7Hw_qcZJMOZBmy-7q5yBw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft Manifest number: 09FD Signing time: Thu 24 Apr 2025 19:44:35 +0000 Manifest this update: Thu 24 Apr 2025 19:44:34 +0000 Manifest next update: Thu 01 May 2025 19:44:34 +0000 Files and hashes: 1: kHsDit7Hw_qcZJMOZBmy-7q5yBw.crl (hash: GdbnHsosSMjd50SYXEk0Li+zlBn0qmpwnIPZpSJ82rw=) 2: D4AECB7A701611EF824F7281C4F9AE02.roa (hash: 05sTqgo+Z4rvsk50BgwNBJM+KFLlXu8LZA40jZLQRSk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.crl rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHsDit7Hw_qcZJMOZBmy-7q5yBw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:44:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2564 (0xa04) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A7A6, serialNumber=907B038ADEC7C3FA9C64930E6419B2FBBAB9C81C Validity Not Before: Apr 24 19:44:34 2025 GMT Not After : May 1 19:44:34 2025 GMT Subject: CN=680a94a3-881e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:76:5e:f5:86:4a:c2:36:72:db:3e:04:09:36: 5e:8c:30:c5:bf:f3:08:15:55:7f:e5:28:a6:4c:b3: 43:e4:f8:13:0c:20:58:0a:68:cc:1a:dd:41:16:43: f7:cf:9b:e1:77:0d:6c:98:ac:43:8d:d2:21:f2:d3: 2f:71:c0:c4:e9:c9:ec:69:40:c3:22:20:c2:e7:dd: 4e:9d:fd:a8:68:87:c5:62:d9:86:48:eb:dd:b3:48: 09:56:57:e5:d7:e1:b9:fc:0b:a9:fb:13:f9:b4:4f: 27:33:af:a7:8d:ae:3d:f1:39:ad:8f:7b:74:64:45: 00:49:87:17:b2:c5:ca:85:a4:21:b1:db:98:0c:d4: f3:8e:26:db:d2:d5:2e:a2:27:f9:c7:ff:bb:63:b3: 3d:15:ef:98:9c:b5:2f:d8:3a:61:57:6c:7e:9b:13: 80:94:1f:d1:33:a2:e2:8a:9b:a8:b4:7b:90:7a:c9: 9a:17:31:83:7c:ec:02:69:41:a4:6f:43:cf:f2:a8: a4:d9:59:85:79:90:fa:ba:b1:b0:53:12:65:6b:1f: 9e:35:5d:85:75:00:55:63:38:36:5f:18:d0:d3:a8: af:5a:70:8e:0c:d5:41:cf:a1:1b:54:50:0e:b8:2e: da:0a:c6:5c:36:2e:06:a8:9c:6f:ea:08:05:bf:2d: 4a:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:CB:DB:D9:9B:32:95:13:04:2C:4B:15:59:F2:AE:62:E8:8E:FE:0B X509v3 Authority Key Identifier: keyid:90:7B:03:8A:DE:C7:C3:FA:9C:64:93:0E:64:19:B2:FB:BA:B9:C8:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHsDit7Hw_qcZJMOZBmy-7q5yBw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:06:44:ed:60:df:58:b7:7d:56:54:b4:dc:1c:43:01:d3:a8: ff:91:a8:e7:48:94:08:21:b9:1c:e8:c0:6c:50:ad:60:eb:0a: 40:a8:fc:c8:70:d6:8a:31:2b:f9:99:85:ad:9d:ae:94:1c:b9: 63:24:f1:b9:c6:96:3d:c2:d9:19:6e:10:16:1e:ab:b8:db:0e: aa:df:30:9b:57:14:43:d4:21:46:aa:5e:97:0a:9e:fb:c0:fd: 03:1f:02:7d:3f:e9:11:2c:84:1b:bb:92:4c:ff:cc:d8:de:08: 0d:b8:a7:ac:92:04:da:0c:52:3e:c1:ba:39:91:01:f6:18:06: 02:83:24:36:84:aa:e6:a3:d6:f0:92:40:f9:70:94:be:95:98: 61:4b:b4:a4:f2:3f:86:45:f6:9d:30:a4:ec:25:53:a8:6b:18: 23:e7:71:db:c9:55:43:ca:12:db:43:59:77:6f:27:2f:cd:cf: 0b:0a:e9:ce:2c:9c:b6:cc:db:8d:e8:d0:48:f9:49:a9:a8:51: 65:69:85:0e:a0:fa:c5:73:e7:8b:b2:d5:a1:05:f3:07:c7:bf: fe:2c:50:25:4b:35:67:a6:12:04:b9:1d:fd:66:01:00:a0:42: 4b:11:1f:eb:f4:5a:1d:c3:29:07:d9:f4:19:2b:17:34:23:21: 85:3c:6d:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCgQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E3QTYxMTAvBgNVBAUTKDkwN0IwMzhBREVDN0MzRkE5QzY0OTMwRTY0MTlCMkZC QkFCOUM4MUMwHhcNMjUwNDI0MTk0NDM0WhcNMjUwNTAxMTk0NDM0WjAYMRYwFAYD VQQDEw02ODBhOTRhMy04ODFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArXZe9YZKwjZy2z4ECTZejDDFv/MIFVV/5SimTLND5PgTDCBYCmjMGt1BFkP3 z5vhdw1smKxDjdIh8tMvccDE6cnsaUDDIiDC591Onf2oaIfFYtmGSOvds0gJVlfl 1+G5/Aup+xP5tE8nM6+nja498Tmtj3t0ZEUASYcXssXKhaQhsduYDNTzjibb0tUu oif5x/+7Y7M9Fe+YnLUv2DphV2x+mxOAlB/RM6LiipuotHuQesmaFzGDfOwCaUGk b0PP8qik2VmFeZD6urGwUxJlax+eNV2FdQBVYzg2XxjQ06ivWnCODNVBz6EbVFAO uC7aCsZcNi4GqJxv6ggFvy1K+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCLL29mb MpUTBCxLFVnyrmLojv4LMB8GA1UdIwQYMBaAFJB7A4rex8P6nGSTDmQZsvu6ucgc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTdBNi80REI5NDQzQTcz QjYxMUVBOUI4QzFGNUNDNEY5QUUwMi9rSHNEaXQ3SHdfcWNaSk1PWkJteS03cTV5 QncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tIc0RpdDdId19xY1pKTU9aQm15LTdxNXlCdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTdBNi80REI5NDQzQTczQjYxMUVBOUI4QzFGNUNDNEY5QUUwMi9rSHNEaXQ3SHdf cWNaSk1PWkJteS03cTV5QncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdBkTtYN9Yt31WVLTcHEMB06j/kajnSJQIIbkc6MBsUK1g6wpAqPzI cNaKMSv5mYWtna6UHLljJPG5xpY9wtkZbhAWHqu42w6q3zCbVxRD1CFGql6XCp77 wP0DHwJ9P+kRLIQbu5JM/8zY3ggNuKeskgTaDFI+wbo5kQH2GAYCgyQ2hKrmo9bw kkD5cJS+lZhhS7Sk8j+GRfadMKTsJVOoaxgj53HbyVVDyhLbQ1l3bycvzc8LCunO LJy2zNuN6NBI+UmpqFFlaYUOoPrFc+eLstWhBfMHx7/+LFAlSzVnphIEuR39ZgEA oEJLER/r9FodwykH2fQZKxc0IyGFPG08 -----END CERTIFICATE-----Generated at Sat Apr 26 16:54:33 2025 by rpki-client