$ rpki-client -vvf rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft File: kDfAsp43CSqDhSzkuIW3dqfB47Y.mft (raw, json) Hash identifier: VI7SJkKsBpxWYm6ERKhkl9wupJIohMFfOsUI4t04dpE= Subject key identifier: DF:D2:C6:04:2A:C8:DE:6F:68:D7:E5:22:A5:F8:D8:F3:9D:24:B7:94 Authority key identifier: 90:37:C0:B2:9E:37:09:2A:83:85:2C:E4:B8:85:B7:76:A7:C1:E3:B6 Certificate issuer: /CN=A91957D1/serialNumber=9037C0B29E37092A83852CE4B885B776A7C1E3B6 Certificate serial: 0109 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft Manifest number: 0106 Signing time: Fri 25 Apr 2025 04:08:36 +0000 Manifest this update: Fri 25 Apr 2025 04:08:35 +0000 Manifest next update: Fri 02 May 2025 04:08:35 +0000 Files and hashes: 1: kDfAsp43CSqDhSzkuIW3dqfB47Y.crl (hash: NM1qh82Wz9egtYnzJDfuRleWfbAs75ieyU/nu0ytG1M=) 2: 72CE4D80958411EEB3748B58C4F9AE02.roa (hash: iKey44OboTB8NilxUb2DzRzq18OyDEY6fi5JIxPzxK0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.crl rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:08:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 265 (0x109) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91957D1, serialNumber=9037C0B29E37092A83852CE4B885B776A7C1E3B6 Validity Not Before: Apr 25 04:08:35 2025 GMT Not After : May 2 04:08:35 2025 GMT Subject: CN=680b0ac3-2777 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:a2:30:d2:a7:05:bd:50:eb:ec:b3:a7:02:07: 73:08:22:0d:9b:1d:4a:ee:54:00:a6:6d:22:27:8c: bb:12:50:39:45:25:b0:19:5b:fa:08:87:92:8d:fd: 57:62:2b:ae:6c:ac:d6:e3:55:cd:91:e5:af:35:42: 82:16:bf:f3:e8:b1:93:2e:bf:c1:49:8d:a5:f6:ed: 5e:63:9b:56:18:e7:13:1b:59:22:c6:00:09:4f:23: 18:dd:43:4f:e1:83:cb:39:49:eb:93:ff:a1:39:86: 7a:33:a8:36:a7:99:73:a3:8d:be:d5:03:14:cd:7e: 7a:a4:fb:7a:1b:c9:d4:1c:07:c6:ec:23:6f:66:59: c8:75:87:72:d0:b6:5f:05:82:85:f0:5d:d7:d6:66: 7b:35:e0:de:3b:b3:58:38:d8:75:b9:9b:2c:3d:65: a9:a1:b7:d1:f9:50:c9:e9:a5:ec:54:cc:78:b6:65: 1a:ed:4e:8c:2d:89:bf:73:78:33:ff:7f:d3:83:bc: d3:e1:e2:96:22:61:dc:0e:e5:09:80:4c:02:4e:32: f0:b9:fa:59:23:1f:35:8c:9d:00:18:67:11:b5:c5: fa:66:c2:79:65:b7:41:00:42:01:28:bf:1c:f0:44: 11:74:1b:3d:4b:2b:ba:70:74:80:dd:76:f7:db:d6: 01:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:D2:C6:04:2A:C8:DE:6F:68:D7:E5:22:A5:F8:D8:F3:9D:24:B7:94 X509v3 Authority Key Identifier: keyid:90:37:C0:B2:9E:37:09:2A:83:85:2C:E4:B8:85:B7:76:A7:C1:E3:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:dc:7a:3c:4f:8b:0e:e3:9e:92:d1:e6:a0:61:8d:46:ee:d5: 07:50:88:01:42:ff:f6:7d:41:60:57:a9:cf:57:08:37:e5:89: 91:49:4c:08:bd:de:b7:2a:69:e3:1b:d9:66:3b:12:27:fc:18: 15:36:12:4d:25:69:cf:a0:3b:1b:c4:5b:7a:b6:cf:3b:c7:df: 3b:96:77:9e:ba:0e:ef:d2:da:f5:b1:15:94:f4:30:74:b9:74: 11:f3:0e:9e:96:8b:93:d0:81:99:5b:63:ba:97:c6:32:a9:64: e5:07:df:8a:c5:65:19:b0:f0:eb:2c:bb:56:37:8d:0d:58:ba: ed:49:6f:f6:b0:32:29:00:a3:d1:d4:98:b3:4c:0a:b5:12:6b: fb:d4:f5:6a:96:d8:84:4f:6d:f0:27:52:08:5c:d6:b6:f3:e1: 7b:e0:53:68:a8:ef:e4:e1:77:c6:4e:96:6d:fa:54:8a:bc:27: e3:fa:b7:ca:af:92:f1:46:60:f5:dc:78:49:ac:86:5f:99:3b: 3b:bb:2b:ac:6f:62:ab:d3:4f:18:0f:71:e5:e4:02:3d:80:76: 72:2d:a1:23:97:d5:4b:2f:71:be:e9:52:7c:c0:d1:e6:8e:d4: f8:02:b7:d1:63:a8:b1:ad:ee:0d:48:fa:36:ad:b2:e3:38:91: 36:77:e1:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU3RDExMTAvBgNVBAUTKDkwMzdDMEIyOUUzNzA5MkE4Mzg1MkNFNEI4ODVCNzc2 QTdDMUUzQjYwHhcNMjUwNDI1MDQwODM1WhcNMjUwNTAyMDQwODM1WjAYMRYwFAYD VQQDEw02ODBiMGFjMy0yNzc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy6Iw0qcFvVDr7LOnAgdzCCINmx1K7lQApm0iJ4y7ElA5RSWwGVv6CIeSjf1X YiuubKzW41XNkeWvNUKCFr/z6LGTLr/BSY2l9u1eY5tWGOcTG1kixgAJTyMY3UNP 4YPLOUnrk/+hOYZ6M6g2p5lzo42+1QMUzX56pPt6G8nUHAfG7CNvZlnIdYdy0LZf BYKF8F3X1mZ7NeDeO7NYONh1uZssPWWpobfR+VDJ6aXsVMx4tmUa7U6MLYm/c3gz /3/Tg7zT4eKWImHcDuUJgEwCTjLwufpZIx81jJ0AGGcRtcX6ZsJ5ZbdBAEIBKL8c 8EQRdBs9Syu6cHSA3Xb329YB9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN/SxgQq yN5vaNflIqX42POdJLeUMB8GA1UdIwQYMBaAFJA3wLKeNwkqg4Us5LiFt3anweO2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTdEMS9GMDUzNzc5NDkz QkQxMUVFODFGODBBNTJDNEY5QUUwMi9rRGZBc3A0M0NTcURoU3prdUlXM2RxZkI0 N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tEZkFzcDQzQ1NxRGhTemt1SVczZHFmQjQ3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTdEMS9GMDUzNzc5NDkzQkQxMUVFODFGODBBNTJDNEY5QUUwMi9rRGZBc3A0M0NT cURoU3prdUlXM2RxZkI0N1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBe3Ho8T4sO456S0eagYY1G7tUHUIgBQv/2fUFgV6nPVwg35YmRSUwI vd63KmnjG9lmOxIn/BgVNhJNJWnPoDsbxFt6ts87x987lneeug7v0tr1sRWU9DB0 uXQR8w6elouT0IGZW2O6l8YyqWTlB9+KxWUZsPDrLLtWN40NWLrtSW/2sDIpAKPR 1JizTAq1Emv71PVqltiET23wJ1IIXNa28+F74FNoqO/k4XfGTpZt+lSKvCfj+rfK r5LxRmD13HhJrIZfmTs7uyusb2Kr008YD3Hl5AI9gHZyLaEjl9VLL3G+6VJ8wNHm jtT4ArfRY6ixre4NSPo2rbLjOJE2d+Gu -----END CERTIFICATE-----Generated at Sat Apr 26 04:34:57 2025 by rpki-client