$ rpki-client -vvf rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft File: kuYzl488XC0IYKzbDh3VEhAOie8.mft (raw, json) Hash identifier: sS+/OPeIPnLk5iSRtigKhU1UV52DW4gbYNaOhCYH//o= Subject key identifier: 8F:88:03:35:67:F6:F2:5C:3D:B1:BB:11:32:AC:C4:15:FA:C0:56:43 Authority key identifier: 92:E6:33:97:8F:3C:5C:2D:08:60:AC:DB:0E:1D:D5:12:10:0E:89:EF Certificate issuer: /CN=A91A15FB/serialNumber=92E633978F3C5C2D0860ACDB0E1DD512100E89EF Certificate serial: A0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kuYzl488XC0IYKzbDh3VEhAOie8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft Manifest number: 9F Signing time: Fri 25 Apr 2025 05:13:16 +0000 Manifest this update: Fri 25 Apr 2025 05:13:16 +0000 Manifest next update: Fri 02 May 2025 05:13:16 +0000 Files and hashes: 1: kuYzl488XC0IYKzbDh3VEhAOie8.crl (hash: +9v0OL4VwyxDd4wO6CKBkZowyK9+3GFfoNp8CmopH9k=) 2: 431868FE2EC811EFBB3A6574C4F9AE02.roa (hash: yYqs2C5AMpVdcomEvwsEelNt35bcShUcpatPOoqg3y0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.crl rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kuYzl488XC0IYKzbDh3VEhAOie8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:13:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 160 (0xa0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A15FB, serialNumber=92E633978F3C5C2D0860ACDB0E1DD512100E89EF Validity Not Before: Apr 25 05:13:16 2025 GMT Not After : May 2 05:13:16 2025 GMT Subject: CN=680b19ec-77aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:46:38:c9:44:83:6f:4a:d1:55:58:aa:1d:83: c9:a6:23:c0:f8:ea:b1:de:3d:f3:3e:11:d6:56:b4: a1:bb:1e:22:b8:33:b2:c0:c4:e9:3b:61:87:9a:01: da:c9:04:3d:39:b1:98:f7:2a:ba:12:9f:ea:72:d4: 49:94:a9:98:9d:59:c3:66:78:ae:57:05:00:2a:0e: e0:06:c9:6f:1b:70:a2:03:50:0d:95:da:b1:72:12: 5c:fb:75:cf:ac:02:26:50:3f:b2:cd:40:e0:87:e4: 6b:53:1b:31:92:0a:80:44:f5:23:ce:0d:52:81:76: b2:ce:21:c0:37:36:26:1d:c4:48:9a:64:8e:fc:63: a2:76:eb:b2:36:66:b5:39:e6:32:64:7f:25:b7:7e: de:9a:b9:a7:31:e2:1d:07:75:79:fa:5e:df:15:51: 0f:df:1b:9e:ea:5a:18:b6:34:cb:4c:9a:29:6f:10: 2d:91:cc:0c:91:e8:7f:3c:65:93:b4:83:db:45:40: 30:6b:ee:87:5e:e4:e1:c5:7a:5e:33:55:6d:2d:ba: 3d:ee:98:f4:d5:e4:8e:91:72:30:d7:1c:7a:5b:0f: 55:90:31:1c:7f:4b:d6:d2:62:40:dd:aa:33:5c:a5: aa:0c:b5:af:e2:f5:3e:92:d5:6d:6e:ca:ee:4b:0a: 2e:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:88:03:35:67:F6:F2:5C:3D:B1:BB:11:32:AC:C4:15:FA:C0:56:43 X509v3 Authority Key Identifier: keyid:92:E6:33:97:8F:3C:5C:2D:08:60:AC:DB:0E:1D:D5:12:10:0E:89:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kuYzl488XC0IYKzbDh3VEhAOie8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:58:4d:07:e1:91:33:c9:18:5b:99:cb:5b:3f:74:11:69:d6: 91:d6:74:42:f0:87:01:b6:b6:3c:00:fd:24:0a:8b:b5:52:6a: b1:b4:5e:fd:9d:f2:bc:75:a9:15:b3:be:8e:b0:da:b6:4a:96: 98:b8:f0:7a:b7:e1:1a:97:7e:01:b1:c1:46:41:d3:c9:2f:8a: 6e:06:b4:d7:15:63:88:59:00:39:2e:1f:27:58:57:9a:07:73: 46:55:77:98:67:ee:e5:bc:71:47:d9:5a:d2:61:66:29:2e:55: 3c:b6:95:0a:ca:de:43:18:b7:62:f0:52:61:66:34:40:c4:1f: e6:81:28:1f:57:c2:e3:7e:8a:82:24:54:8a:0c:dd:e8:9e:93: bb:12:a4:24:7c:25:4b:ba:29:84:b3:88:4a:3a:ae:8d:98:0d: 5d:9b:e2:ef:f9:6c:8b:a6:f1:53:dd:88:6c:37:e1:31:cc:fd: d2:5b:59:b7:26:87:d0:f1:2d:2c:12:dd:de:ad:36:a0:f9:68: 23:9f:cb:c9:38:63:34:aa:44:95:b5:1d:6d:e2:8d:a5:31:db: 91:22:ab:8b:e5:bb:ba:97:79:a0:68:3b:b2:f0:fd:97:89:37: 6d:0c:c2:9d:21:b4:cf:f3:78:f1:36:a3:55:0c:30:4e:cd:c3: 47:09:6e:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTE1RkIxMTAvBgNVBAUTKDkyRTYzMzk3OEYzQzVDMkQwODYwQUNEQjBFMURENTEy MTAwRTg5RUYwHhcNMjUwNDI1MDUxMzE2WhcNMjUwNTAyMDUxMzE2WjAYMRYwFAYD VQQDEw02ODBiMTllYy03N2FhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxUY4yUSDb0rRVViqHYPJpiPA+Oqx3j3zPhHWVrShux4iuDOywMTpO2GHmgHa yQQ9ObGY9yq6Ep/qctRJlKmYnVnDZniuVwUAKg7gBslvG3CiA1ANldqxchJc+3XP rAImUD+yzUDgh+RrUxsxkgqARPUjzg1SgXayziHANzYmHcRImmSO/GOiduuyNma1 OeYyZH8lt37emrmnMeIdB3V5+l7fFVEP3xue6loYtjTLTJopbxAtkcwMkeh/PGWT tIPbRUAwa+6HXuThxXpeM1VtLbo97pj01eSOkXIw1xx6Ww9VkDEcf0vW0mJA3aoz XKWqDLWv4vU+ktVtbsruSwouEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI+IAzVn 9vJcPbG7ETKsxBX6wFZDMB8GA1UdIwQYMBaAFJLmM5ePPFwtCGCs2w4d1RIQDonv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTVGQi9CRTg4QTcwQzJF QzcxMUVGODIyMDgyNzNDNEY5QUUwMi9rdVl6bDQ4OFhDMElZS3piRGgzVkVoQU9p ZTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2t1WXpsNDg4WEMwSVlLemJEaDNWRWhBT2llOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTVGQi9CRTg4QTcwQzJFQzcxMUVGODIyMDgyNzNDNEY5QUUwMi9rdVl6bDQ4OFhD MElZS3piRGgzVkVoQU9pZTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgWE0H4ZEzyRhbmctbP3QRadaR1nRC8IcBtrY8AP0kCou1UmqxtF79 nfK8dakVs76OsNq2SpaYuPB6t+Eal34BscFGQdPJL4puBrTXFWOIWQA5Lh8nWFea B3NGVXeYZ+7lvHFH2VrSYWYpLlU8tpUKyt5DGLdi8FJhZjRAxB/mgSgfV8LjfoqC JFSKDN3onpO7EqQkfCVLuimEs4hKOq6NmA1dm+Lv+WyLpvFT3YhsN+ExzP3SW1m3 JofQ8S0sEt3erTag+Wgjn8vJOGM0qkSVtR1t4o2lMduRIquL5bu6l3mgaDuy8P2X iTdtDMKdIbTP83jxNqNVDDBOzcNHCW7v -----END CERTIFICATE-----Generated at Sat Apr 26 12:36:59 2025 by rpki-client