$ rpki-client -vvf rpki.apnic.net/member_repository/A9157378/0A88C7F293E311EE93C8E582C4F9AE02/kLm6vXQrJ1dD-3FeE1l1Y46cLyU.mft File: kLm6vXQrJ1dD-3FeE1l1Y46cLyU.mft (raw, json) Hash identifier: HwdhH5ULZJOXsIjoUrfGAXYCYH66bJa5becQaO0EJ/o= Subject key identifier: 4E:90:7A:C9:46:7B:A0:F5:F5:EC:FA:18:A3:C6:55:FC:0F:F5:A1:13 Authority key identifier: 90:B9:BA:BD:74:2B:27:57:43:FB:71:5E:13:59:75:63:8E:9C:2F:25 Certificate issuer: /CN=A9157378/serialNumber=90B9BABD742B275743FB715E135975638E9C2F25 Certificate serial: 0109 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kLm6vXQrJ1dD-3FeE1l1Y46cLyU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157378/0A88C7F293E311EE93C8E582C4F9AE02/kLm6vXQrJ1dD-3FeE1l1Y46cLyU.mft Manifest number: 0106 Signing time: Fri 25 Apr 2025 04:08:43 +0000 Manifest this update: Fri 25 Apr 2025 04:08:42 +0000 Manifest next update: Fri 02 May 2025 04:08:42 +0000 Files and hashes: 1: kLm6vXQrJ1dD-3FeE1l1Y46cLyU.crl (hash: d0N206c0UI0QeIrvhjilfz9DESrYgBIh2bGn8y4NwLE=) 2: 38F9C792948F11EEAE636E0FC4F9AE02.roa (hash: 3QR/UvKzS+sKKfIIK9uHF2so+MGpUcPtji7e/5xzyuw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157378/0A88C7F293E311EE93C8E582C4F9AE02/kLm6vXQrJ1dD-3FeE1l1Y46cLyU.crl rsync://rpki.apnic.net/member_repository/A9157378/0A88C7F293E311EE93C8E582C4F9AE02/kLm6vXQrJ1dD-3FeE1l1Y46cLyU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kLm6vXQrJ1dD-3FeE1l1Y46cLyU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:08:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 265 (0x109) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157378, serialNumber=90B9BABD742B275743FB715E135975638E9C2F25 Validity Not Before: Apr 25 04:08:42 2025 GMT Not After : May 2 04:08:42 2025 GMT Subject: CN=680b0aca-6c0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:78:ee:f7:df:07:b2:cd:93:ef:ac:4b:d6:3a: ff:10:b3:62:b6:53:5f:ef:e6:c9:b0:5e:09:21:ea: 6f:7a:b9:01:aa:21:ee:ac:9a:63:74:63:f0:91:fa: 36:a4:40:6d:99:40:a5:fe:17:43:83:d4:80:ab:4a: e7:b5:05:1f:3f:15:9f:53:64:8f:ac:40:77:59:e6: 92:41:f5:71:05:d0:c8:5a:e1:5d:9e:8e:73:3c:be: 6b:b0:f6:81:5c:0b:6d:52:43:0b:57:61:fc:a1:8d: d3:c2:b7:f8:0d:64:b9:de:f1:dd:21:f0:47:22:d1: de:91:b8:b1:d6:47:55:9d:d6:9e:32:88:38:92:62: 56:a4:d0:57:00:36:15:e8:d3:57:1e:4a:28:ea:9b: c4:ca:52:f9:da:b9:bb:8b:d4:98:5c:61:09:e8:5d: b5:e0:df:31:45:59:0c:2e:bf:e7:0f:2e:1f:e8:9f: 9f:80:55:e7:e7:98:0b:45:0f:1f:16:17:58:1f:af: 81:b1:25:f8:01:33:fe:a7:f7:20:a3:20:bb:53:41: 6d:fd:e8:6e:e8:4c:59:e1:91:a4:36:77:5a:62:f6: 5e:65:ff:2f:c0:81:11:c6:0b:56:82:b5:68:d9:53: c5:bb:04:da:d3:f9:c1:eb:d8:b8:2e:d2:08:fe:4e: 4d:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:90:7A:C9:46:7B:A0:F5:F5:EC:FA:18:A3:C6:55:FC:0F:F5:A1:13 X509v3 Authority Key Identifier: keyid:90:B9:BA:BD:74:2B:27:57:43:FB:71:5E:13:59:75:63:8E:9C:2F:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157378/0A88C7F293E311EE93C8E582C4F9AE02/kLm6vXQrJ1dD-3FeE1l1Y46cLyU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kLm6vXQrJ1dD-3FeE1l1Y46cLyU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157378/0A88C7F293E311EE93C8E582C4F9AE02/kLm6vXQrJ1dD-3FeE1l1Y46cLyU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:40:22:5e:4b:3e:60:f6:a3:ae:a9:1e:df:3c:82:2d:18:de: 7a:d4:3e:12:e3:02:6a:d1:41:58:f2:b1:11:a3:a7:c8:7e:de: 97:33:16:5c:c1:cf:06:0b:1a:73:a3:63:83:c2:18:d4:db:31: 48:aa:ee:f8:d5:10:89:72:c4:a6:63:34:c6:2c:3e:c3:82:b9: ce:83:c6:9e:83:4b:7b:9d:04:9c:0f:8d:be:fc:c0:b9:3b:1a: a4:f5:10:b0:ad:8b:2b:9f:6d:e8:eb:f5:41:36:cb:a6:06:98: 7c:23:dd:1a:f3:d7:e9:4c:e3:49:91:20:ad:e5:0b:9f:fa:b9: bb:94:c8:32:c4:65:5b:2d:92:4e:1b:ab:6d:8f:49:9a:f5:36: 68:44:13:cc:df:7e:8f:a8:cf:b9:79:23:cd:d2:0b:37:40:a3: 55:d1:2b:26:35:4e:4b:7c:69:58:3a:62:14:d5:3e:f8:c8:2b: 0f:47:d9:3c:e5:e1:88:2d:fb:7f:95:1a:e8:a2:03:77:bf:9c: 46:32:e2:a1:fb:85:05:3e:f3:18:43:59:13:90:b0:2e:82:b4: 6c:ea:c7:9b:f1:c8:88:71:71:1f:ad:74:54:c1:39:5d:d9:49: 95:7d:c0:7b:04:1d:57:27:cd:48:30:c9:15:8b:b0:24:84:b6: 03:0d:45:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTczNzgxMTAvBgNVBAUTKDkwQjlCQUJENzQyQjI3NTc0M0ZCNzE1RTEzNTk3NTYz OEU5QzJGMjUwHhcNMjUwNDI1MDQwODQyWhcNMjUwNTAyMDQwODQyWjAYMRYwFAYD VQQDEw02ODBiMGFjYS02YzBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsnju998Hss2T76xL1jr/ELNitlNf7+bJsF4JIepverkBqiHurJpjdGPwkfo2 pEBtmUCl/hdDg9SAq0rntQUfPxWfU2SPrEB3WeaSQfVxBdDIWuFdno5zPL5rsPaB XAttUkMLV2H8oY3Twrf4DWS53vHdIfBHItHekbix1kdVndaeMog4kmJWpNBXADYV 6NNXHkoo6pvEylL52rm7i9SYXGEJ6F214N8xRVkMLr/nDy4f6J+fgFXn55gLRQ8f FhdYH6+BsSX4ATP+p/cgoyC7U0Ft/ehu6ExZ4ZGkNndaYvZeZf8vwIERxgtWgrVo 2VPFuwTa0/nB69i4LtII/k5N4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE6QeslG e6D19ez6GKPGVfwP9aETMB8GA1UdIwQYMBaAFJC5ur10KydXQ/txXhNZdWOOnC8l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzM3OC8wQTg4QzdGMjkz RTMxMUVFOTNDOEU1ODJDNEY5QUUwMi9rTG02dlhRckoxZEQtM0ZlRTFsMVk0NmNM eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tMbTZ2WFFySjFkRC0zRmVFMWwxWTQ2Y0x5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzM3OC8wQTg4QzdGMjkzRTMxMUVFOTNDOEU1ODJDNEY5QUUwMi9rTG02dlhRckox ZEQtM0ZlRTFsMVk0NmNMeVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHQCJeSz5g9qOuqR7fPIItGN561D4S4wJq0UFY8rERo6fIft6XMxZc wc8GCxpzo2ODwhjU2zFIqu741RCJcsSmYzTGLD7DgrnOg8aeg0t7nQScD42+/MC5 Oxqk9RCwrYsrn23o6/VBNsumBph8I90a89fpTONJkSCt5Quf+rm7lMgyxGVbLZJO G6ttj0ma9TZoRBPM336PqM+5eSPN0gs3QKNV0SsmNU5LfGlYOmIU1T74yCsPR9k8 5eGILft/lRroogN3v5xGMuKh+4UFPvMYQ1kTkLAugrRs6seb8ciIcXEfrXRUwTld 2UmVfcB7BB1XJ81IMMkVi7AkhLYDDUUa -----END CERTIFICATE-----Generated at Sat Apr 26 17:22:03 2025 by rpki-client