$ rpki-client -vvf rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft File: KXr2WH-YpJnreNLMrjYW70KfV1A.mft (raw, json) Hash identifier: f82+/wOgkq0PZOQ+ko2+xarAyrm2cV2WpWomxR78gTc= Subject key identifier: C5:50:AC:C1:FD:08:8A:2F:3C:8E:E9:97:24:BC:5F:D7:DC:DA:F6:B0 Authority key identifier: 29:7A:F6:58:7F:98:A4:99:EB:78:D2:CC:AE:36:16:EF:42:9F:57:50 Certificate issuer: /CN=A91411BC/serialNumber=297AF6587F98A499EB78D2CCAE3616EF429F5750 Certificate serial: 1313 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXr2WH-YpJnreNLMrjYW70KfV1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft Manifest number: 130B Signing time: Thu 24 Apr 2025 17:03:09 +0000 Manifest this update: Thu 24 Apr 2025 17:03:08 +0000 Manifest next update: Thu 01 May 2025 17:03:08 +0000 Files and hashes: 1: KXr2WH-YpJnreNLMrjYW70KfV1A.crl (hash: pNL3h/aUaCQD7jgUJHr9zXEEd3rpqHltnA/gF+O4US4=) 2: B4996A22AC3411E88623474BC4F9AE02.roa (hash: Uautv1XlrGIKG3uUq9YoWLtURxeqWmVrl93Jj3fy9ko=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.crl rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXr2WH-YpJnreNLMrjYW70KfV1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:03:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4883 (0x1313) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91411BC, serialNumber=297AF6587F98A499EB78D2CCAE3616EF429F5750 Validity Not Before: Apr 24 17:03:08 2025 GMT Not After : May 1 17:03:08 2025 GMT Subject: CN=680a6ecc-2e80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:1b:1d:b9:e2:a2:da:1c:a4:aa:d5:3f:33:10: 51:99:0b:d4:75:91:b2:ab:f6:c5:21:19:c3:ce:0f: 96:9e:63:a1:dd:ec:11:2d:07:ec:83:8f:71:8d:a3: cf:06:5d:ac:62:c7:e1:76:61:1d:79:f8:3b:78:86: 07:03:0e:d7:9d:bb:0b:a2:c4:08:0d:87:ee:db:8c: 1b:8b:82:b9:eb:48:df:25:99:87:f2:b1:f1:9d:e8: 6c:01:24:c0:f8:05:e1:2b:9e:fa:14:6f:70:6d:16: 91:bf:df:c4:c7:7f:7c:f6:c5:90:a5:08:9c:1a:cf: d3:b6:f5:15:17:5f:15:91:ca:df:2b:5b:6a:85:97: 34:d8:2b:48:2e:42:26:bb:74:47:ee:4b:2d:be:fe: 83:a8:94:35:6a:ed:b5:56:3f:67:d1:e2:c8:69:8f: bb:b4:4f:3d:76:8d:73:92:b0:ad:e1:cc:f7:bd:f6: 4e:1f:c8:6b:44:87:f8:de:31:ce:82:35:b4:af:18: da:6e:08:28:20:29:fb:ce:5f:9a:2c:4b:08:7e:76: 19:b0:80:7b:44:66:c5:19:f2:8c:06:a4:ed:f8:32: 33:72:f6:a4:50:17:fc:af:65:3c:61:fa:e2:38:1a: ff:58:b4:a5:66:04:a5:b8:b7:cc:dc:f9:55:4a:b2: 3b:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:50:AC:C1:FD:08:8A:2F:3C:8E:E9:97:24:BC:5F:D7:DC:DA:F6:B0 X509v3 Authority Key Identifier: keyid:29:7A:F6:58:7F:98:A4:99:EB:78:D2:CC:AE:36:16:EF:42:9F:57:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXr2WH-YpJnreNLMrjYW70KfV1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:1a:22:8b:b9:47:01:57:bc:d3:94:a8:2a:ac:87:2a:73:ee: c9:be:6c:2c:a1:ea:34:76:78:0d:f4:9b:dc:78:5d:73:6e:19: 14:62:eb:c3:b6:4e:18:c8:f2:8a:42:48:52:33:8e:6d:12:50: ff:f5:da:90:b7:e7:02:99:a9:61:f9:d3:06:4e:f4:f1:8e:97: ae:cc:1d:05:ee:35:3a:c5:16:83:53:2e:40:94:c4:b9:3f:02: 3d:06:99:7b:9c:48:a5:03:20:b4:d6:db:7f:73:2b:13:3c:08: f3:88:92:a6:58:da:d9:b5:71:8e:49:7e:79:6c:bb:99:1f:de: 6a:31:6c:42:8a:51:31:8c:2d:be:68:3a:60:35:5e:81:2c:3b: 33:ca:f6:73:dc:43:65:db:47:d9:79:c5:2c:f2:18:03:95:b0: 05:00:05:76:d5:e5:d1:7e:af:ee:c1:ac:c5:60:cd:10:70:f1: e2:46:40:96:84:e3:2c:c4:e5:59:51:6c:8b:10:c9:c6:3f:a1: 3e:3d:11:90:40:f0:d0:37:53:d8:d6:c4:f7:c6:70:3b:dd:f8: a7:e5:20:8b:32:6a:f1:b2:0a:e7:b2:f5:57:61:3e:cb:6b:c3: 7a:87:a5:81:89:9a:28:fe:bc:07:fe:08:d6:b2:27:82:d4:67: db:47:4c:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICExMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDExQkMxMTAvBgNVBAUTKDI5N0FGNjU4N0Y5OEE0OTlFQjc4RDJDQ0FFMzYxNkVG NDI5RjU3NTAwHhcNMjUwNDI0MTcwMzA4WhcNMjUwNTAxMTcwMzA4WjAYMRYwFAYD VQQDEw02ODBhNmVjYy0yZTgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1BsdueKi2hykqtU/MxBRmQvUdZGyq/bFIRnDzg+WnmOh3ewRLQfsg49xjaPP Bl2sYsfhdmEdefg7eIYHAw7XnbsLosQIDYfu24wbi4K560jfJZmH8rHxnehsASTA +AXhK576FG9wbRaRv9/Ex3989sWQpQicGs/TtvUVF18VkcrfK1tqhZc02CtILkIm u3RH7kstvv6DqJQ1au21Vj9n0eLIaY+7tE89do1zkrCt4cz3vfZOH8hrRIf43jHO gjW0rxjabggoICn7zl+aLEsIfnYZsIB7RGbFGfKMBqTt+DIzcvakUBf8r2U8Yfri OBr/WLSlZgSluLfM3PlVSrI7hwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMVQrMH9 CIovPI7plyS8X9fc2vawMB8GA1UdIwQYMBaAFCl69lh/mKSZ63jSzK42Fu9Cn1dQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MTFCQy9FMzE3MUIwMkFD MzMxMUU4QjIwNjk0NDlDNEY5QUUwMi9LWHIyV0gtWXBKbnJlTkxNcmpZVzcwS2ZW MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tYcjJXSC1ZcEpucmVOTE1yallXNzBLZlYxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MTFCQy9FMzE3MUIwMkFDMzMxMUU4QjIwNjk0NDlDNEY5QUUwMi9LWHIyV0gtWXBK bnJlTkxNcmpZVzcwS2ZWMUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArGiKLuUcBV7zTlKgqrIcqc+7Jvmwsoeo0dngN9JvceF1zbhkUYuvD tk4YyPKKQkhSM45tElD/9dqQt+cCmalh+dMGTvTxjpeuzB0F7jU6xRaDUy5AlMS5 PwI9Bpl7nEilAyC01tt/cysTPAjziJKmWNrZtXGOSX55bLuZH95qMWxCilExjC2+ aDpgNV6BLDszyvZz3ENl20fZecUs8hgDlbAFAAV21eXRfq/uwazFYM0QcPHiRkCW hOMsxOVZUWyLEMnGP6E+PRGQQPDQN1PY1sT3xnA73fin5SCLMmrxsgrnsvVXYT7L a8N6h6WBiZoo/rwH/gjWsieC1GfbR0z/ -----END CERTIFICATE-----Generated at Sat Apr 26 15:28:12 2025 by rpki-client