$ rpki-client -vvf rpki.apnic.net/member_repository/A91A308F/B9B3445C6F8711EA93A9F933C4F9AE02/KGguxyPM4zYYWzMwIBP_AGDd4Jo.mft File: KGguxyPM4zYYWzMwIBP_AGDd4Jo.mft (raw, json) Hash identifier: UpQHa1nrAmEB2dxrhi1IeDDRVAmOMdQkGYADQZukJlk= Subject key identifier: 0D:06:AA:05:59:D2:96:D4:A0:C5:2B:21:36:71:54:28:A4:CD:90:1F Authority key identifier: 28:68:2E:C7:23:CC:E3:36:18:5B:33:30:20:13:FF:00:60:DD:E0:9A Certificate issuer: /CN=A91A308F/serialNumber=28682EC723CCE336185B33302013FF0060DDE09A Certificate serial: 0A16 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KGguxyPM4zYYWzMwIBP_AGDd4Jo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A308F/B9B3445C6F8711EA93A9F933C4F9AE02/KGguxyPM4zYYWzMwIBP_AGDd4Jo.mft Manifest number: 0A10 Signing time: Thu 24 Apr 2025 19:43:12 +0000 Manifest this update: Thu 24 Apr 2025 19:43:12 +0000 Manifest next update: Thu 01 May 2025 19:43:12 +0000 Files and hashes: 1: KGguxyPM4zYYWzMwIBP_AGDd4Jo.crl (hash: Xd4RFJPGNmq/3WNGWwpcG/hYoxLkgB5XcHRt+66NkY4=) 2: 6303AF646F8911EA92087E39C4F9AE02.roa (hash: 9EGc7zo1rzNKxXV6Dja051NIq2qalXgFXf2PEqhm154=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A308F/B9B3445C6F8711EA93A9F933C4F9AE02/KGguxyPM4zYYWzMwIBP_AGDd4Jo.crl rsync://rpki.apnic.net/member_repository/A91A308F/B9B3445C6F8711EA93A9F933C4F9AE02/KGguxyPM4zYYWzMwIBP_AGDd4Jo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KGguxyPM4zYYWzMwIBP_AGDd4Jo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:43:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2582 (0xa16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A308F, serialNumber=28682EC723CCE336185B33302013FF0060DDE09A Validity Not Before: Apr 24 19:43:12 2025 GMT Not After : May 1 19:43:12 2025 GMT Subject: CN=680a9450-63c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:03:c3:4e:d2:3a:ab:20:64:6b:50:f2:39:05: 8f:18:be:c4:90:bd:ba:dc:ad:c6:24:f8:a6:6e:65: c5:f0:2b:f5:bb:d6:a4:7c:e3:8f:63:48:ca:53:62: e7:ca:2c:94:d5:ec:d6:95:30:a0:e6:88:c0:05:d4: 57:d2:29:d1:c4:42:60:6b:66:91:50:7a:27:86:f9: 5b:3e:e5:59:53:b7:95:bd:9a:03:d5:62:6c:d8:0c: c6:37:e6:7a:36:59:85:33:55:90:27:35:33:66:e4: 01:f6:55:5e:b2:ca:f4:d2:9b:04:9b:9b:4e:75:f6: b9:c3:b7:2d:a6:97:d8:22:f7:78:5d:f8:df:eb:79: 32:03:bc:4c:32:94:ea:cf:9b:ca:2f:dd:88:14:08: c8:02:18:df:0c:46:de:36:01:1c:cf:4a:4b:7d:55: 16:46:cd:b2:64:76:5a:dc:db:dc:02:4f:85:8a:0f: d6:a3:44:7a:01:f8:a9:77:3f:69:b8:a5:00:f1:5f: 26:e2:a5:3b:09:67:11:c5:bf:3d:2e:d1:6b:1e:17: 1d:3c:05:83:32:b2:6d:16:4f:bc:3d:09:94:70:5c: 54:25:a9:28:eb:36:bd:a5:77:7f:19:51:4e:8e:0d: 46:9e:3a:15:64:58:bc:af:2c:31:5c:e1:23:0e:17: 50:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:06:AA:05:59:D2:96:D4:A0:C5:2B:21:36:71:54:28:A4:CD:90:1F X509v3 Authority Key Identifier: keyid:28:68:2E:C7:23:CC:E3:36:18:5B:33:30:20:13:FF:00:60:DD:E0:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A308F/B9B3445C6F8711EA93A9F933C4F9AE02/KGguxyPM4zYYWzMwIBP_AGDd4Jo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KGguxyPM4zYYWzMwIBP_AGDd4Jo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A308F/B9B3445C6F8711EA93A9F933C4F9AE02/KGguxyPM4zYYWzMwIBP_AGDd4Jo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:55:d1:81:d9:31:b5:6e:8d:7e:36:e2:6b:4a:4c:74:07:cb: 15:1d:7e:e9:c3:ae:23:80:3a:01:dd:a3:f0:1e:d5:0c:06:8a: a3:50:00:02:d9:0b:4e:d5:04:6e:f1:01:15:04:bc:5d:37:6a: 9f:fd:05:37:d5:9b:32:db:d8:3c:1d:fd:ea:c5:74:3a:f9:94: 3c:4b:1e:0c:47:9d:54:41:e2:9c:34:ba:fa:1d:69:39:e1:fb: 6f:67:00:eb:ff:a2:b0:e3:0c:bf:fb:2e:64:ab:b6:16:86:99: 0b:d2:2d:51:e5:ce:60:22:f9:76:51:b5:8e:8c:1c:11:1c:ab: 29:e8:75:9a:c6:ca:08:ed:fb:b0:fa:ac:36:94:1d:50:fd:8b: ef:c8:ec:60:61:67:0e:96:b5:23:8d:5c:38:36:e4:a4:e8:13: 87:c2:7e:46:79:36:4c:9f:01:e1:f9:92:0f:a7:32:ca:f9:52: 9e:93:18:93:43:13:f5:51:6e:8b:5a:6b:65:2a:39:9d:8b:a8: b2:7c:96:a5:a1:a6:81:e0:29:8b:f1:d3:bd:79:d1:64:67:59: 26:80:31:1c:ad:cf:5e:9a:2c:3e:db:cf:0a:4b:e9:d0:84:11: d8:b4:fc:dd:7b:58:5b:3e:56:11:25:82:d1:1c:82:f0:10:ec: 11:e7:eb:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICChYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTMwOEYxMTAvBgNVBAUTKDI4NjgyRUM3MjNDQ0UzMzYxODVCMzMzMDIwMTNGRjAw NjBEREUwOUEwHhcNMjUwNDI0MTk0MzEyWhcNMjUwNTAxMTk0MzEyWjAYMRYwFAYD VQQDEw02ODBhOTQ1MC02M2M1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7gPDTtI6qyBka1DyOQWPGL7EkL263K3GJPimbmXF8Cv1u9akfOOPY0jKU2Ln yiyU1ezWlTCg5ojABdRX0inRxEJga2aRUHonhvlbPuVZU7eVvZoD1WJs2AzGN+Z6 NlmFM1WQJzUzZuQB9lVessr00psEm5tOdfa5w7ctppfYIvd4Xfjf63kyA7xMMpTq z5vKL92IFAjIAhjfDEbeNgEcz0pLfVUWRs2yZHZa3NvcAk+Fig/Wo0R6Afipdz9p uKUA8V8m4qU7CWcRxb89LtFrHhcdPAWDMrJtFk+8PQmUcFxUJako6za9pXd/GVFO jg1GnjoVZFi8rywxXOEjDhdQQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA0GqgVZ 0pbUoMUrITZxVCikzZAfMB8GA1UdIwQYMBaAFChoLscjzOM2GFszMCAT/wBg3eCa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzA4Ri9COUIzNDQ1QzZG ODcxMUVBOTNBOUY5MzNDNEY5QUUwMi9LR2d1eHlQTTR6WVlXek13SUJQX0FHRGQ0 Sm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tHZ3V4eVBNNHpZWVd6TXdJQlBfQUdEZDRKby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzA4Ri9COUIzNDQ1QzZGODcxMUVBOTNBOUY5MzNDNEY5QUUwMi9LR2d1eHlQTTR6 WVlXek13SUJQX0FHRGQ0Sm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAVdGB2TG1bo1+NuJrSkx0B8sVHX7pw64jgDoB3aPwHtUMBoqjUAAC 2QtO1QRu8QEVBLxdN2qf/QU31Zsy29g8Hf3qxXQ6+ZQ8Sx4MR51UQeKcNLr6HWk5 4ftvZwDr/6Kw4wy/+y5kq7YWhpkL0i1R5c5gIvl2UbWOjBwRHKsp6HWaxsoI7fuw +qw2lB1Q/YvvyOxgYWcOlrUjjVw4NuSk6BOHwn5GeTZMnwHh+ZIPpzLK+VKekxiT QxP1UW6LWmtlKjmdi6iyfJaloaaB4CmL8dO9edFkZ1kmgDEcrc9emiw+288KS+nQ hBHYtPzde1hbPlYRJYLRHILwEOwR5+s7 -----END CERTIFICATE-----Generated at Sat Apr 26 16:46:40 2025 by rpki-client