$ rpki-client -vvf rpki.apnic.net/member_repository/A9192C28/3A0164766D5211ECAC61BB17C4F9AE02/kNimlscsPFwGLY8AJhBf_c0Bz40.mft File: kNimlscsPFwGLY8AJhBf_c0Bz40.mft (raw, json) Hash identifier: oKEnva0O+IuH+tp6PqqTM1JDBJor9CPya2S5HKDi2E8= Subject key identifier: C6:27:7C:BF:4D:16:7E:87:56:EC:F6:19:D7:79:29:ED:E4:8C:C3:C2 Authority key identifier: 90:D8:A6:96:C7:2C:3C:5C:06:2D:8F:00:26:10:5F:FD:CD:01:CF:8D Certificate issuer: /CN=A9192C28/serialNumber=90D8A696C72C3C5C062D8F0026105FFDCD01CF8D Certificate serial: 040C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNimlscsPFwGLY8AJhBf_c0Bz40.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192C28/3A0164766D5211ECAC61BB17C4F9AE02/kNimlscsPFwGLY8AJhBf_c0Bz40.mft Manifest number: 0404 Signing time: Fri 25 Apr 2025 00:14:40 +0000 Manifest this update: Fri 25 Apr 2025 00:14:39 +0000 Manifest next update: Fri 02 May 2025 00:14:39 +0000 Files and hashes: 1: kNimlscsPFwGLY8AJhBf_c0Bz40.crl (hash: KNZ1ONbh+L5gkYXvxvvnXQlzNE88qy3pd7uX0CYs1a0=) 2: 28741DDC85CD11ECA5E28171C4F9AE02.roa (hash: c0Qo/V4Zd6PI/SmvO+fxR2cS+G3poh+IiHb3vxBLGEM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192C28/3A0164766D5211ECAC61BB17C4F9AE02/kNimlscsPFwGLY8AJhBf_c0Bz40.crl rsync://rpki.apnic.net/member_repository/A9192C28/3A0164766D5211ECAC61BB17C4F9AE02/kNimlscsPFwGLY8AJhBf_c0Bz40.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNimlscsPFwGLY8AJhBf_c0Bz40.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:14:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1036 (0x40c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192C28, serialNumber=90D8A696C72C3C5C062D8F0026105FFDCD01CF8D Validity Not Before: Apr 25 00:14:39 2025 GMT Not After : May 2 00:14:39 2025 GMT Subject: CN=680ad3f0-481f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:27:31:24:e8:8e:6b:f9:aa:3e:c0:fa:26:47: c4:4a:d8:23:7b:d9:d5:5f:2d:1d:c6:ff:99:bd:85: 42:a2:c6:d9:ca:f2:5e:3d:97:58:44:79:00:5d:ce: 9c:57:dd:d4:31:f2:0e:f1:4b:2a:d6:6b:bd:f3:1e: 21:7c:dd:ed:2a:a9:d7:70:53:d7:9c:bb:bc:1f:7e: 30:34:69:d1:23:86:1b:2e:b4:14:f5:78:91:8d:76: e7:20:ed:03:5d:b8:54:77:41:fc:11:d7:fc:ef:b4: da:e7:ed:01:a1:3c:ab:9c:7c:e9:68:a8:50:49:ba: e2:2f:91:b9:95:64:3e:73:84:40:6d:db:d4:9f:38: e7:e6:f7:ef:9f:00:74:4b:d2:2f:cc:b2:48:9a:61: 3c:f8:d1:93:92:08:95:8c:04:f0:c9:e1:8f:8f:ea: 87:a4:0e:29:b4:e9:0c:e2:d8:9a:0e:ee:d9:50:e2: 25:19:36:9a:61:14:0a:92:41:fa:4d:a8:ab:e0:35: 4f:05:12:2f:23:90:c2:82:ea:41:76:55:1f:e8:14: 89:e9:6d:9d:9c:98:50:ad:fc:a8:d3:93:de:a4:1b: 41:b5:dd:d9:d6:a0:af:fc:35:f3:ba:71:25:6a:87: e0:d3:aa:d9:77:c9:b2:46:3b:ed:97:38:f5:32:15: 2f:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:27:7C:BF:4D:16:7E:87:56:EC:F6:19:D7:79:29:ED:E4:8C:C3:C2 X509v3 Authority Key Identifier: keyid:90:D8:A6:96:C7:2C:3C:5C:06:2D:8F:00:26:10:5F:FD:CD:01:CF:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192C28/3A0164766D5211ECAC61BB17C4F9AE02/kNimlscsPFwGLY8AJhBf_c0Bz40.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNimlscsPFwGLY8AJhBf_c0Bz40.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192C28/3A0164766D5211ECAC61BB17C4F9AE02/kNimlscsPFwGLY8AJhBf_c0Bz40.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:a6:a8:0e:98:46:7c:14:9a:21:bc:6f:f5:91:90:31:74:fe: bf:60:88:84:0f:06:9a:8b:1f:d8:e4:b1:29:23:c5:e9:75:4a: 8e:a0:8e:41:db:74:8a:d2:3e:9d:fe:10:d6:54:65:37:6e:7d: 84:75:a2:71:1a:64:9f:39:5b:44:a1:dd:e1:8e:8a:71:1a:fd: e8:17:21:16:4d:96:ea:ad:87:3b:e9:bb:63:e7:39:d4:7d:e1: a4:54:f0:98:19:e8:ed:9b:8d:f0:d6:d8:b3:5a:ae:f7:39:25: 4f:29:15:45:98:01:ef:e2:18:fa:1b:af:42:ab:c0:c3:0b:9a: 4b:b8:21:6e:41:6e:74:79:40:92:07:72:9e:cd:fb:27:f9:a8: ef:1a:04:aa:80:fc:fc:79:c0:37:3f:bd:e9:3d:a3:bc:a8:25: c4:c4:8b:0c:ff:83:91:c4:fc:e8:82:52:8b:99:0f:16:a4:2f: 4d:7a:93:cf:b6:09:b5:b2:a7:fb:3c:d4:91:63:cf:41:03:2a: 1d:fd:31:19:48:b7:32:7c:10:bf:78:69:fd:42:cd:b9:8d:ed: e3:e6:52:c4:04:83:71:c5:4d:53:8f:a6:2c:b3:26:b8:75:44: 00:b1:89:ca:05:19:f1:a7:b4:fa:c8:c0:8c:89:98:4b:01:23: 15:ff:70:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBAwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTJDMjgxMTAvBgNVBAUTKDkwRDhBNjk2QzcyQzNDNUMwNjJEOEYwMDI2MTA1RkZE Q0QwMUNGOEQwHhcNMjUwNDI1MDAxNDM5WhcNMjUwNTAyMDAxNDM5WjAYMRYwFAYD VQQDEw02ODBhZDNmMC00ODFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5ycxJOiOa/mqPsD6JkfEStgje9nVXy0dxv+ZvYVCosbZyvJePZdYRHkAXc6c V93UMfIO8Usq1mu98x4hfN3tKqnXcFPXnLu8H34wNGnRI4YbLrQU9XiRjXbnIO0D XbhUd0H8Edf877Ta5+0BoTyrnHzpaKhQSbriL5G5lWQ+c4RAbdvUnzjn5vfvnwB0 S9IvzLJImmE8+NGTkgiVjATwyeGPj+qHpA4ptOkM4tiaDu7ZUOIlGTaaYRQKkkH6 Tair4DVPBRIvI5DCgupBdlUf6BSJ6W2dnJhQrfyo05PepBtBtd3Z1qCv/DXzunEl aofg06rZd8myRjvtlzj1MhUvmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMYnfL9N Fn6HVuz2Gdd5Ke3kjMPCMB8GA1UdIwQYMBaAFJDYppbHLDxcBi2PACYQX/3NAc+N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MkMyOC8zQTAxNjQ3NjZE NTIxMUVDQUM2MUJCMTdDNEY5QUUwMi9rTmltbHNjc1BGd0dMWThBSmhCZl9jMEJ6 NDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tOaW1sc2NzUEZ3R0xZOEFKaEJmX2MwQno0MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MkMyOC8zQTAxNjQ3NjZENTIxMUVDQUM2MUJCMTdDNEY5QUUwMi9rTmltbHNjc1BG d0dMWThBSmhCZl9jMEJ6NDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmpqgOmEZ8FJohvG/1kZAxdP6/YIiEDwaaix/Y5LEpI8XpdUqOoI5B 23SK0j6d/hDWVGU3bn2EdaJxGmSfOVtEod3hjopxGv3oFyEWTZbqrYc76btj5znU feGkVPCYGejtm43w1tizWq73OSVPKRVFmAHv4hj6G69Cq8DDC5pLuCFuQW50eUCS B3Kezfsn+ajvGgSqgPz8ecA3P73pPaO8qCXExIsM/4ORxPzoglKLmQ8WpC9NepPP tgm1sqf7PNSRY89BAyod/TEZSLcyfBC/eGn9Qs25je3j5lLEBINxxU1Tj6Yssya4 dUQAsYnKBRnxp7T6yMCMiZhLASMV/3Bu -----END CERTIFICATE-----Generated at Sat Apr 26 15:00:34 2025 by rpki-client