$ rpki-client -vvf rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.mft File: kJUWWXx2-jz_qxUgjArpiGY0qgM.mft (raw, json) Hash identifier: 7wYp5bgqvnn3PrnjbBbmo2NvR6diJMCeFMeTSmfBLfY= Subject key identifier: D7:C7:14:A5:7C:D2:4B:6E:D5:73:49:34:1B:BA:5B:ED:9A:EB:9E:1F Authority key identifier: 90:95:16:59:7C:76:FA:3C:FF:AB:15:20:8C:0A:E9:88:66:34:AA:03 Certificate issuer: /CN=A91847A2/serialNumber=909516597C76FA3CFFAB15208C0AE9886634AA03 Certificate serial: 0A98 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kJUWWXx2-jz_qxUgjArpiGY0qgM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.mft Manifest number: 0A90 Signing time: Thu 24 Apr 2025 19:30:13 +0000 Manifest this update: Thu 24 Apr 2025 19:30:13 +0000 Manifest next update: Thu 01 May 2025 19:30:13 +0000 Files and hashes: 1: kJUWWXx2-jz_qxUgjArpiGY0qgM.crl (hash: lEa+MzE4axln9dt09+N83TjdX0s340P9DfgD3Bij8wI=) 2: 54EDB8542E1811EBB4E80B1FC4F9AE02.roa (hash: 3V95dG8EwbjGC7EMndTVlVAHQWvt90W2HKQwUZ++P/E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.crl rsync://rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kJUWWXx2-jz_qxUgjArpiGY0qgM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:30:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2712 (0xa98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91847A2, serialNumber=909516597C76FA3CFFAB15208C0AE9886634AA03 Validity Not Before: Apr 24 19:30:13 2025 GMT Not After : May 1 19:30:13 2025 GMT Subject: CN=680a9145-e8d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:06:b6:0a:0b:a8:8e:25:8d:0b:b4:af:77:29: 9a:ea:91:0e:fc:c8:d8:31:6c:90:51:31:28:91:ef: e8:02:cb:cb:a6:7c:99:df:23:f4:c1:c4:1f:2e:14: 04:ac:fc:8d:a3:e8:b2:42:04:98:83:be:c0:81:57: e2:54:a2:46:28:bd:5b:61:7f:92:e0:1d:5f:b4:04: d0:d7:42:1d:14:0f:08:63:a2:aa:18:40:f8:3c:ae: 56:cb:4c:38:98:ca:f5:f0:a2:d9:d8:9a:da:e1:d8: eb:0a:7d:64:aa:e7:c4:69:59:6e:6a:6f:dd:82:15: d9:d4:27:dc:34:83:3b:a1:54:a1:d6:08:92:46:dc: 24:b7:67:3a:42:8c:a2:ed:61:0c:d7:77:1e:6f:7a: 66:c3:1c:fe:12:91:34:80:1a:a6:30:9d:02:93:cb: d4:b9:06:7a:3f:52:9c:2a:b0:14:ee:5c:da:8d:e0: c9:a5:cf:55:c1:56:6d:e1:45:2b:c2:89:8a:04:26: 22:07:f4:0f:da:44:4c:5a:3a:cc:f4:18:5c:92:7f: b9:f2:69:2d:ef:49:b8:47:67:31:62:79:07:e8:ab: f9:68:94:6e:7d:0a:4f:fe:8a:55:ee:b7:92:bd:bd: 89:dc:e6:6e:c1:81:7d:eb:30:bf:88:f5:9d:a2:2d: a1:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:C7:14:A5:7C:D2:4B:6E:D5:73:49:34:1B:BA:5B:ED:9A:EB:9E:1F X509v3 Authority Key Identifier: keyid:90:95:16:59:7C:76:FA:3C:FF:AB:15:20:8C:0A:E9:88:66:34:AA:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kJUWWXx2-jz_qxUgjArpiGY0qgM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:04:ce:91:0c:59:ff:91:bb:c6:9c:ec:7a:79:ff:05:24:2f: c0:7e:56:5c:c1:e7:56:ac:1d:36:69:5d:a2:41:a5:44:be:e8: b7:22:73:b3:c8:dd:23:ac:20:15:83:19:4f:85:f2:6f:32:45: 84:59:10:14:f3:b1:c3:be:e6:d7:13:fd:80:c5:09:28:af:97: 23:86:42:b4:eb:09:a7:99:ff:6b:18:fb:35:c2:94:d0:7b:2e: de:0e:be:3c:fc:b6:fe:70:6c:80:cd:0f:f4:88:5a:dc:e4:ac: de:bb:45:4b:b4:2c:97:43:4c:ed:8e:58:4e:26:00:d2:67:e1: 7a:f3:0d:97:d6:a4:8f:39:7b:a6:c9:cc:f5:f3:6a:b0:07:3f: 46:be:4e:d7:ec:a4:90:ab:88:a5:6c:90:22:19:4e:f1:be:e1: 19:ef:3c:6d:70:62:4b:fe:e9:fb:4b:f5:8d:dc:d3:c5:54:a4: 1c:4c:f8:b4:30:2e:9c:4e:e7:d8:d2:07:d6:38:43:c1:b9:3b: e2:ef:1c:67:6f:39:8e:19:4c:a1:71:14:bc:5c:15:cd:0b:9a: 6d:0c:1c:c6:06:80:37:eb:67:af:cd:cf:bd:f3:9d:0d:25:ba: 84:5d:9c:28:85:1e:7b:b4:c0:a6:4a:f7:cd:9f:e3:ee:d2:82: 65:30:42:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCpgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ3QTIxMTAvBgNVBAUTKDkwOTUxNjU5N0M3NkZBM0NGRkFCMTUyMDhDMEFFOTg4 NjYzNEFBMDMwHhcNMjUwNDI0MTkzMDEzWhcNMjUwNTAxMTkzMDEzWjAYMRYwFAYD VQQDEw02ODBhOTE0NS1lOGQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApwa2CguojiWNC7Svdyma6pEO/MjYMWyQUTEoke/oAsvLpnyZ3yP0wcQfLhQE rPyNo+iyQgSYg77AgVfiVKJGKL1bYX+S4B1ftATQ10IdFA8IY6KqGED4PK5Wy0w4 mMr18KLZ2Jra4djrCn1kqufEaVluam/dghXZ1CfcNIM7oVSh1giSRtwkt2c6Qoyi 7WEM13ceb3pmwxz+EpE0gBqmMJ0Ck8vUuQZ6P1KcKrAU7lzajeDJpc9VwVZt4UUr womKBCYiB/QP2kRMWjrM9Bhckn+58mkt70m4R2cxYnkH6Kv5aJRufQpP/opV7reS vb2J3OZuwYF96zC/iPWdoi2htwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNfHFKV8 0ktu1XNJNBu6W+2a654fMB8GA1UdIwQYMBaAFJCVFll8dvo8/6sVIIwK6YhmNKoD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDdBMi9BRUQzRDM1RTU5 NDIxMUVBOTM2RkNFNDNDNEY5QUUwMi9rSlVXV1h4Mi1qel9xeFVnakFycGlHWTBx Z00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tKVVdXWHgyLWp6X3F4VWdqQXJwaUdZMHFnTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDdBMi9BRUQzRDM1RTU5NDIxMUVBOTM2RkNFNDNDNEY5QUUwMi9rSlVXV1h4Mi1q el9xeFVnakFycGlHWTBxZ00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTBM6RDFn/kbvGnOx6ef8FJC/AflZcwedWrB02aV2iQaVEvui3InOz yN0jrCAVgxlPhfJvMkWEWRAU87HDvubXE/2AxQkor5cjhkK06wmnmf9rGPs1wpTQ ey7eDr48/Lb+cGyAzQ/0iFrc5Kzeu0VLtCyXQ0ztjlhOJgDSZ+F68w2X1qSPOXum ycz182qwBz9Gvk7X7KSQq4ilbJAiGU7xvuEZ7zxtcGJL/un7S/WN3NPFVKQcTPi0 MC6cTufY0gfWOEPBuTvi7xxnbzmOGUyhcRS8XBXNC5ptDBzGBoA362evzc+9850N JbqEXZwohR57tMCmSvfNn+Pu0oJlMEJ+ -----END CERTIFICATE-----Generated at Sat Apr 26 13:02:23 2025 by rpki-client