$ rpki-client -vvf rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft File: KgHI_pZ5aUR4MewBwCvE6cuaziw.mft (raw, json) Hash identifier: Av6OSGL8LbysuEbWNDGcN9yplY70Ym0a8hiUXnz3z3o= Subject key identifier: EE:FB:EB:5C:FB:0E:04:6C:ED:9F:FA:A9:8B:B1:73:2E:D4:CF:E7:03 Authority key identifier: 2A:01:C8:FE:96:79:69:44:78:31:EC:01:C0:2B:C4:E9:CB:9A:CE:2C Certificate issuer: /CN=A9158F8D/serialNumber=2A01C8FE967969447831EC01C02BC4E9CB9ACE2C Certificate serial: 82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KgHI_pZ5aUR4MewBwCvE6cuaziw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft Manifest number: 80 Signing time: Fri 25 Apr 2025 05:41:09 +0000 Manifest this update: Fri 25 Apr 2025 05:41:08 +0000 Manifest next update: Fri 02 May 2025 05:41:08 +0000 Files and hashes: 1: KgHI_pZ5aUR4MewBwCvE6cuaziw.crl (hash: qa5iAbEzysDboLkEBMSdKgS+mWW4N9D/+/FGUDpL+xw=) 2: 6BD5C90A647C11EF9BA53B64C4F9AE02.roa (hash: gZZzxWZWc17nIbYko/2au0DsO+Bhzyn2xAf0VZf3CAI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.crl rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KgHI_pZ5aUR4MewBwCvE6cuaziw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:41:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 130 (0x82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158F8D, serialNumber=2A01C8FE967969447831EC01C02BC4E9CB9ACE2C Validity Not Before: Apr 25 05:41:08 2025 GMT Not After : May 2 05:41:08 2025 GMT Subject: CN=680b2075-5807 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:d5:f4:5e:81:a5:24:f7:ba:2c:ca:2b:f6:79: 6a:7d:dc:9d:c9:43:bc:17:4f:4c:13:57:61:be:8c: b4:84:bd:40:15:ec:11:6d:d8:f6:91:63:9c:b4:a4: 40:c2:a4:74:17:ff:8c:c0:4e:2b:f2:f4:bd:fa:4a: af:5f:8c:f8:2d:7a:fd:ae:36:31:ea:10:ca:83:64: 7f:85:05:8a:81:9a:49:56:5b:2c:7f:02:fe:19:27: 93:6b:28:ee:a3:da:ad:71:fe:9d:5f:25:d4:6b:34: f7:3c:62:97:d9:23:15:19:6e:77:6a:02:f1:44:29: ba:8c:8b:0f:8e:05:ad:c3:9f:5e:31:57:2d:cc:ae: 58:ff:62:d5:1e:6d:63:b8:7c:c3:b7:d2:f4:c7:bc: e1:11:69:03:0d:20:0b:6a:05:b0:80:a7:84:5c:53: 5f:a2:76:5c:6f:3c:82:7b:55:69:49:0e:27:da:28: 21:91:c0:59:6e:22:0f:9d:69:71:38:e6:02:30:be: 52:39:c7:13:8a:b6:ca:bd:dc:68:c5:85:ff:06:6c: 92:2a:7e:88:8c:9a:2e:ac:ec:be:25:15:36:00:4c: 7c:1e:56:88:b1:ae:1e:1d:66:b3:a0:01:fc:63:2a: cd:f0:b9:60:56:55:82:53:90:90:55:7c:ab:01:00: 8e:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:FB:EB:5C:FB:0E:04:6C:ED:9F:FA:A9:8B:B1:73:2E:D4:CF:E7:03 X509v3 Authority Key Identifier: keyid:2A:01:C8:FE:96:79:69:44:78:31:EC:01:C0:2B:C4:E9:CB:9A:CE:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KgHI_pZ5aUR4MewBwCvE6cuaziw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:3e:63:f1:2a:19:d3:f8:5e:50:a5:fc:48:f5:2f:96:43:e2: 01:17:13:e6:82:69:c5:ab:1b:a1:d3:d0:81:3c:f5:51:d1:65: 04:67:d5:3d:0a:cd:b0:e6:ff:08:7f:7c:82:91:74:1f:a8:77: e1:b4:fb:29:9d:50:d4:79:84:30:5a:c9:31:d6:b3:c1:d9:e5: 6b:07:d2:01:61:17:7d:f6:12:57:8c:bb:d8:f8:35:fb:1d:4f: 6c:90:3a:77:6f:ee:1c:5b:02:52:15:55:e1:e6:99:79:b8:a4: 6c:d2:f4:a1:a5:fe:06:4d:7a:76:9a:44:89:e9:8c:14:01:19: 94:15:af:ba:50:e0:0d:5d:e7:2f:34:25:31:70:5e:19:91:5b: 40:32:4f:c0:14:2a:49:28:d3:10:7c:aa:58:2d:98:9c:33:a1: 61:3b:33:30:e7:8e:4a:2c:d5:3f:51:11:c4:07:07:53:76:d0: bb:f6:e0:92:cd:fe:18:9d:4e:ed:6f:2f:00:d1:ad:03:3e:e4: 25:58:cb:ea:7f:57:a8:5d:9a:34:02:ef:69:e3:33:17:15:5f: 5b:3b:6c:fa:17:e4:e4:6b:b4:28:08:3f:39:b7:e3:7a:d7:2f: 8f:77:16:b8:12:56:0d:13:d4:7f:08:a5:76:c6:9f:d3:dc:5b: a1:03:19:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThGOEQxMTAvBgNVBAUTKDJBMDFDOEZFOTY3OTY5NDQ3ODMxRUMwMUMwMkJDNEU5 Q0I5QUNFMkMwHhcNMjUwNDI1MDU0MTA4WhcNMjUwNTAyMDU0MTA4WjAYMRYwFAYD VQQDEw02ODBiMjA3NS01ODA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvdX0XoGlJPe6LMor9nlqfdydyUO8F09ME1dhvoy0hL1AFewRbdj2kWOctKRA wqR0F/+MwE4r8vS9+kqvX4z4LXr9rjYx6hDKg2R/hQWKgZpJVlssfwL+GSeTayju o9qtcf6dXyXUazT3PGKX2SMVGW53agLxRCm6jIsPjgWtw59eMVctzK5Y/2LVHm1j uHzDt9L0x7zhEWkDDSALagWwgKeEXFNfonZcbzyCe1VpSQ4n2ighkcBZbiIPnWlx OOYCML5SOccTirbKvdxoxYX/BmySKn6IjJourOy+JRU2AEx8HlaIsa4eHWazoAH8 YyrN8LlgVlWCU5CQVXyrAQCOwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO7761z7 DgRs7Z/6qYuxcy7Uz+cDMB8GA1UdIwQYMBaAFCoByP6WeWlEeDHsAcArxOnLms4s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEY4RC9BMTc5RTUzQzY0 NzcxMUVGQTgyREU5M0RDNEY5QUUwMi9LZ0hJX3BaNWFVUjRNZXdCd0N2RTZjdWF6 aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tnSElfcFo1YVVSNE1ld0J3Q3ZFNmN1YXppdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OEY4RC9BMTc5RTUzQzY0NzcxMUVGQTgyREU5M0RDNEY5QUUwMi9LZ0hJX3BaNWFV UjRNZXdCd0N2RTZjdWF6aXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQPmPxKhnT+F5QpfxI9S+WQ+IBFxPmgmnFqxuh09CBPPVR0WUEZ9U9 Cs2w5v8If3yCkXQfqHfhtPspnVDUeYQwWskx1rPB2eVrB9IBYRd99hJXjLvY+DX7 HU9skDp3b+4cWwJSFVXh5pl5uKRs0vShpf4GTXp2mkSJ6YwUARmUFa+6UOANXecv NCUxcF4ZkVtAMk/AFCpJKNMQfKpYLZicM6FhOzMw545KLNU/URHEBwdTdtC79uCS zf4YnU7tby8A0a0DPuQlWMvqf1eoXZo0Au9p4zMXFV9bO2z6F+Tka7QoCD85t+N6 1y+Pdxa4ElYNE9R/CKV2xp/T3FuhAxml -----END CERTIFICATE-----Generated at Sat Apr 26 04:04:56 2025 by rpki-client