$ rpki-client -vvf rpki.apnic.net/member_repository/A91790EC/24B8BFE03E5811EF996DA321C4F9AE02/KTzh3tGmQEsAssDM-z886vshpQg.mft File: KTzh3tGmQEsAssDM-z886vshpQg.mft (raw, json) Hash identifier: pyoJ8gYmarVX2ifw3jP8fzbE+63JAevaAW+bbPAONFI= Subject key identifier: 5D:73:8B:80:DE:14:7E:6C:E2:EA:34:74:8A:8B:77:FE:92:4B:3F:9D Authority key identifier: 29:3C:E1:DE:D1:A6:40:4B:00:B2:C0:CC:FB:3F:3C:EA:FB:21:A5:08 Certificate issuer: /CN=A91790EC/serialNumber=293CE1DED1A6404B00B2C0CCFB3F3CEAFB21A508 Certificate serial: 99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTzh3tGmQEsAssDM-z886vshpQg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91790EC/24B8BFE03E5811EF996DA321C4F9AE02/KTzh3tGmQEsAssDM-z886vshpQg.mft Manifest number: 97 Signing time: Fri 25 Apr 2025 05:21:16 +0000 Manifest this update: Fri 25 Apr 2025 05:21:15 +0000 Manifest next update: Fri 02 May 2025 05:21:15 +0000 Files and hashes: 1: KTzh3tGmQEsAssDM-z886vshpQg.crl (hash: 8fQQ7RTNIjX3p6e97SisZZE23zrwsZxRkgE3b8JWjHM=) 2: 81AA7D1A3E5811EFAE13B943C4F9AE02.roa (hash: WIZmU+L0O9RcMZGa4g5/Y6rLFYKaR2VClhlEkEMS/7E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91790EC/24B8BFE03E5811EF996DA321C4F9AE02/KTzh3tGmQEsAssDM-z886vshpQg.crl rsync://rpki.apnic.net/member_repository/A91790EC/24B8BFE03E5811EF996DA321C4F9AE02/KTzh3tGmQEsAssDM-z886vshpQg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTzh3tGmQEsAssDM-z886vshpQg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:21:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 153 (0x99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91790EC, serialNumber=293CE1DED1A6404B00B2C0CCFB3F3CEAFB21A508 Validity Not Before: Apr 25 05:21:15 2025 GMT Not After : May 2 05:21:15 2025 GMT Subject: CN=680b1bcc-fcb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:bb:62:46:5a:1f:40:bb:68:65:6a:20:ea:93: 68:6c:01:2b:9b:6e:8d:9c:51:94:e3:01:8f:70:86: d4:8c:7e:f0:e6:73:25:6f:d1:d0:52:6b:06:00:aa: 7e:34:7d:80:b4:24:dc:9d:17:86:1e:37:33:5b:11: 6d:40:c8:29:dd:21:07:a2:79:3f:fb:c7:bc:30:68: 7a:d3:37:ff:e4:48:30:3c:86:ed:d6:ac:d3:78:75: 72:aa:d9:f8:84:a8:71:4b:9f:2c:81:ca:4d:a7:02: 93:56:6b:20:bb:11:17:c8:16:f1:76:d8:7f:71:14: 47:4c:f2:a7:47:97:d6:93:5a:b2:e6:0a:a9:27:01: 0c:49:3c:51:f3:eb:31:a5:b9:09:ba:ad:0a:ae:75: a7:95:bb:8b:64:7a:f6:9e:04:3b:e9:e3:8c:11:6e: 3a:b3:14:09:5a:37:a4:9c:69:2c:c9:57:15:08:52: 43:9b:68:45:da:17:aa:c7:93:04:74:35:de:30:fb: ab:61:5c:3e:fe:66:a5:4f:91:9b:37:59:e0:86:e1: fa:51:ac:45:c0:53:19:a5:3b:07:26:82:03:71:4c: a8:31:9b:8c:8b:80:61:c9:e6:42:15:7d:31:35:8f: f1:85:09:28:0c:c2:b0:be:2a:e7:0e:56:3a:f0:69: a8:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:73:8B:80:DE:14:7E:6C:E2:EA:34:74:8A:8B:77:FE:92:4B:3F:9D X509v3 Authority Key Identifier: keyid:29:3C:E1:DE:D1:A6:40:4B:00:B2:C0:CC:FB:3F:3C:EA:FB:21:A5:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91790EC/24B8BFE03E5811EF996DA321C4F9AE02/KTzh3tGmQEsAssDM-z886vshpQg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTzh3tGmQEsAssDM-z886vshpQg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91790EC/24B8BFE03E5811EF996DA321C4F9AE02/KTzh3tGmQEsAssDM-z886vshpQg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:2b:ea:84:d7:15:88:38:a0:c4:8c:f2:1d:82:ea:7d:0d:5a: 9f:59:93:1b:c8:64:43:f6:7a:75:4c:02:06:d5:d9:ed:c9:c4: a2:86:f9:c7:fb:b6:8e:85:53:96:ef:85:88:65:dd:85:58:4c: 3e:5e:1c:29:85:b0:c8:90:12:67:b7:2b:92:45:77:ce:8a:10: fb:99:de:7d:24:ce:45:bc:76:62:bc:c3:a4:86:78:84:2d:07: 2f:c5:60:78:ff:b2:6f:d9:2b:c0:9a:06:de:5b:f9:db:86:87: b3:f6:64:30:75:21:65:3f:2b:1b:81:e7:a0:de:89:35:f5:c6: 1c:af:2b:e0:22:00:1e:af:7f:65:e5:f2:5d:16:a2:39:8e:3b: 98:1e:8f:99:4c:ca:7b:16:65:85:7c:9e:91:d1:74:21:ae:fb: 4a:dd:1b:86:60:a9:18:93:37:23:03:a1:10:e9:27:f3:14:bc: af:45:8c:1c:80:70:c4:8c:d2:1c:39:4c:1b:71:e2:57:4c:eb: 49:92:4d:80:6a:c7:fc:3d:57:e5:18:be:bd:80:67:9f:64:82: d6:e9:c5:03:dd:c7:36:b7:05:e5:65:98:51:2a:50:8e:a2:91: 5f:05:b3:1a:aa:54:66:22:84:97:47:82:b7:c7:87:d3:a7:2e: 86:dd:61:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzkwRUMxMTAvBgNVBAUTKDI5M0NFMURFRDFBNjQwNEIwMEIyQzBDQ0ZCM0YzQ0VB RkIyMUE1MDgwHhcNMjUwNDI1MDUyMTE1WhcNMjUwNTAyMDUyMTE1WjAYMRYwFAYD VQQDEw02ODBiMWJjYy1mY2I0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwLtiRlofQLtoZWog6pNobAErm26NnFGU4wGPcIbUjH7w5nMlb9HQUmsGAKp+ NH2AtCTcnReGHjczWxFtQMgp3SEHonk/+8e8MGh60zf/5EgwPIbt1qzTeHVyqtn4 hKhxS58sgcpNpwKTVmsguxEXyBbxdth/cRRHTPKnR5fWk1qy5gqpJwEMSTxR8+sx pbkJuq0KrnWnlbuLZHr2ngQ76eOMEW46sxQJWjeknGksyVcVCFJDm2hF2heqx5ME dDXeMPurYVw+/malT5GbN1nghuH6UaxFwFMZpTsHJoIDcUyoMZuMi4BhyeZCFX0x NY/xhQkoDMKwvirnDlY68GmoEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF1zi4De FH5s4uo0dIqLd/6SSz+dMB8GA1UdIwQYMBaAFCk84d7RpkBLALLAzPs/POr7IaUI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTBFQy8yNEI4QkZFMDNF NTgxMUVGOTk2REEzMjFDNEY5QUUwMi9LVHpoM3RHbVFFc0Fzc0RNLXo4ODZ2c2hw UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tUemgzdEdtUUVzQXNzRE0tejg4NnZzaHBRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTBFQy8yNEI4QkZFMDNFNTgxMUVGOTk2REEzMjFDNEY5QUUwMi9LVHpoM3RHbVFF c0Fzc0RNLXo4ODZ2c2hwUWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfK+qE1xWIOKDEjPIdgup9DVqfWZMbyGRD9np1TAIG1dntycSihvnH +7aOhVOW74WIZd2FWEw+XhwphbDIkBJntyuSRXfOihD7md59JM5FvHZivMOkhniE LQcvxWB4/7Jv2SvAmgbeW/nbhoez9mQwdSFlPysbgeeg3ok19cYcryvgIgAer39l 5fJdFqI5jjuYHo+ZTMp7FmWFfJ6R0XQhrvtK3RuGYKkYkzcjA6EQ6SfzFLyvRYwc gHDEjNIcOUwbceJXTOtJkk2Aasf8PVflGL69gGefZILW6cUD3cc2twXlZZhRKlCO opFfBbMaqlRmIoSXR4K3x4fTpy6G3WGY -----END CERTIFICATE-----Generated at Sat Apr 26 04:37:38 2025 by rpki-client