$ rpki-client -vvf rpki.apnic.net/member_repository/A91999F5/6A3DB5789F7911EC9CB47A0AC4F9AE02/khLuorkaMmYPdScf7IWJswnDifA.mft File: khLuorkaMmYPdScf7IWJswnDifA.mft (raw, json) Hash identifier: 2QJEvVb1uKoi1hBr0wNXMMjsPUJmGYFZO1ID6RLoibE= Subject key identifier: A7:89:96:B4:7B:F0:73:E3:D0:47:1B:9B:41:8E:4D:45:F6:33:9E:E4 Authority key identifier: 92:12:EE:A2:B9:1A:32:66:0F:75:27:1F:EC:85:89:B3:09:C3:89:F0 Certificate issuer: /CN=A91999F5/serialNumber=9212EEA2B91A32660F75271FEC8589B309C389F0 Certificate serial: 038F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khLuorkaMmYPdScf7IWJswnDifA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91999F5/6A3DB5789F7911EC9CB47A0AC4F9AE02/khLuorkaMmYPdScf7IWJswnDifA.mft Manifest number: 0387 Signing time: Fri 25 Apr 2025 00:38:43 +0000 Manifest this update: Fri 25 Apr 2025 00:38:43 +0000 Manifest next update: Fri 02 May 2025 00:38:43 +0000 Files and hashes: 1: khLuorkaMmYPdScf7IWJswnDifA.crl (hash: 1NCFt2Vt0QDkQEVtN3o+xj7oJHcPtQaUpKm13CsG9dE=) 2: F84777FCD9DC11EDA4083A71C4F9AE02.roa (hash: CoOJrAcKTrWo0nejzXhp58RWFVEIO9a7vZX9DurBX3o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91999F5/6A3DB5789F7911EC9CB47A0AC4F9AE02/khLuorkaMmYPdScf7IWJswnDifA.crl rsync://rpki.apnic.net/member_repository/A91999F5/6A3DB5789F7911EC9CB47A0AC4F9AE02/khLuorkaMmYPdScf7IWJswnDifA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khLuorkaMmYPdScf7IWJswnDifA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:38:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 911 (0x38f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91999F5, serialNumber=9212EEA2B91A32660F75271FEC8589B309C389F0 Validity Not Before: Apr 25 00:38:43 2025 GMT Not After : May 2 00:38:43 2025 GMT Subject: CN=680ad993-9243 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:13:c0:9a:6a:5a:ad:c3:95:9a:86:00:6c:46: 15:f0:1d:eb:e5:df:09:95:31:45:52:a0:ff:d5:c9: 68:df:7e:c6:ff:55:9d:90:61:b4:f8:c0:51:4c:e8: d3:5b:70:b6:c1:b9:45:d4:44:0a:96:fc:91:3f:82: b2:a1:1b:14:61:ba:6e:5a:48:9e:aa:23:ce:b9:06: 92:fc:8d:01:e0:a6:a2:cf:4e:05:25:89:5a:a1:30: bd:35:54:4b:a8:f9:f0:d0:77:29:7c:4b:e4:bc:7f: 4f:20:48:f9:08:fc:14:fa:16:e1:ba:bd:4d:ba:26: ea:fa:d6:c5:22:fd:01:78:ca:7e:9d:ea:9a:94:41: c7:68:44:75:2a:0d:24:2e:88:ae:11:82:ee:ab:08: e6:c3:15:4b:99:8e:5a:c1:c2:7a:c5:16:f9:4c:2a: d5:bb:c8:f3:cf:83:39:9d:41:30:52:ec:8b:5e:1a: 7a:bf:7a:fc:06:03:68:f0:38:45:4f:65:81:3a:da: f3:f5:76:0b:dc:20:23:9f:d5:92:72:88:c3:3c:df: 8c:39:fd:60:6d:3d:a4:a2:93:e4:8a:21:d1:e5:b0: 8a:a1:3a:5e:e0:e4:a4:02:95:ad:f4:86:08:9a:44: 76:a4:11:a0:9a:f5:b4:7a:cf:8d:4c:8f:f5:8e:55: 73:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:89:96:B4:7B:F0:73:E3:D0:47:1B:9B:41:8E:4D:45:F6:33:9E:E4 X509v3 Authority Key Identifier: keyid:92:12:EE:A2:B9:1A:32:66:0F:75:27:1F:EC:85:89:B3:09:C3:89:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91999F5/6A3DB5789F7911EC9CB47A0AC4F9AE02/khLuorkaMmYPdScf7IWJswnDifA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khLuorkaMmYPdScf7IWJswnDifA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91999F5/6A3DB5789F7911EC9CB47A0AC4F9AE02/khLuorkaMmYPdScf7IWJswnDifA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:52:7c:47:13:14:64:66:80:5d:7a:12:c9:65:85:b5:8b:96: b1:d8:dc:65:75:5a:96:e2:4e:95:4f:fd:3b:57:fc:e1:a4:a9: 6b:0f:16:8c:d8:b3:5e:4e:11:45:99:d9:fc:38:2b:68:82:52: c3:0f:78:d7:fb:d2:89:5e:25:b4:58:78:37:9c:ce:63:db:01: 28:f1:75:5a:f6:c9:3a:ca:be:6e:da:fe:8e:42:6e:51:73:5a: 8f:bc:96:2f:86:2f:c1:c6:16:70:62:b4:3e:04:05:5a:61:3c: 9c:cd:66:c1:38:e1:bf:f9:cf:da:b0:03:a0:df:ec:9a:b4:17: 39:ee:53:cf:10:ab:bc:6f:86:b5:05:29:35:f5:a0:15:1c:e3: e7:be:02:b8:f6:3f:24:ca:00:bc:29:52:6f:38:62:77:7c:9a: 62:64:18:a8:95:ae:76:cc:ac:85:94:12:22:17:96:5f:b4:7a: e3:4c:8e:f9:f0:a6:b3:bf:cd:c0:bc:70:b5:59:4e:ad:5b:9b: 17:e4:8d:9a:3b:78:fa:40:a2:a9:c9:23:62:29:86:d3:96:22: 41:6c:98:cf:33:66:a5:e1:d1:85:90:52:0c:64:1e:0c:9f:82: 75:90:d4:11:18:6d:13:95:0f:bb:95:6e:c6:8e:14:6d:a6:04: 98:5f:1d:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA48wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk5RjUxMTAvBgNVBAUTKDkyMTJFRUEyQjkxQTMyNjYwRjc1MjcxRkVDODU4OUIz MDlDMzg5RjAwHhcNMjUwNDI1MDAzODQzWhcNMjUwNTAyMDAzODQzWjAYMRYwFAYD VQQDEw02ODBhZDk5My05MjQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArxPAmmparcOVmoYAbEYV8B3r5d8JlTFFUqD/1clo337G/1WdkGG0+MBRTOjT W3C2wblF1EQKlvyRP4KyoRsUYbpuWkieqiPOuQaS/I0B4Kaiz04FJYlaoTC9NVRL qPnw0HcpfEvkvH9PIEj5CPwU+hbhur1Nuibq+tbFIv0BeMp+neqalEHHaER1Kg0k LoiuEYLuqwjmwxVLmY5awcJ6xRb5TCrVu8jzz4M5nUEwUuyLXhp6v3r8BgNo8DhF T2WBOtrz9XYL3CAjn9WScojDPN+MOf1gbT2kopPkiiHR5bCKoTpe4OSkApWt9IYI mkR2pBGgmvW0es+NTI/1jlVzRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKeJlrR7 8HPj0Ecbm0GOTUX2M57kMB8GA1UdIwQYMBaAFJIS7qK5GjJmD3UnH+yFibMJw4nw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTlGNS82QTNEQjU3ODlG NzkxMUVDOUNCNDdBMEFDNEY5QUUwMi9raEx1b3JrYU1tWVBkU2NmN0lXSnN3bkRp ZkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2toTHVvcmthTW1ZUGRTY2Y3SVdKc3duRGlmQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTlGNS82QTNEQjU3ODlGNzkxMUVDOUNCNDdBMEFDNEY5QUUwMi9raEx1b3JrYU1t WVBkU2NmN0lXSnN3bkRpZkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvUnxHExRkZoBdehLJZYW1i5ax2NxldVqW4k6VT/07V/zhpKlrDxaM 2LNeThFFmdn8OCtoglLDD3jX+9KJXiW0WHg3nM5j2wEo8XVa9sk6yr5u2v6OQm5R c1qPvJYvhi/BxhZwYrQ+BAVaYTyczWbBOOG/+c/asAOg3+yatBc57lPPEKu8b4a1 BSk19aAVHOPnvgK49j8kygC8KVJvOGJ3fJpiZBiola52zKyFlBIiF5ZftHrjTI75 8Kazv83AvHC1WU6tW5sX5I2aO3j6QKKpySNiKYbTliJBbJjPM2al4dGFkFIMZB4M n4J1kNQRGG0TlQ+7lW7GjhRtpgSYXx2+ -----END CERTIFICATE-----Generated at Sat Apr 26 05:05:17 2025 by rpki-client