$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7F56/9E1C89A6ACCD11EE81069050C4F9AE02/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.mft File: KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.mft (raw, json) Hash identifier: wu+sQsXssuXxBcBnE/X8ZsbJZPN39yHZRfoYTaIOr/Q= Subject key identifier: 1C:A3:36:B1:56:23:85:A8:36:EE:8A:43:DA:B2:94:4C:50:EC:E4:06 Authority key identifier: 28:1D:DA:09:71:75:C0:43:29:43:FD:E5:7C:A3:3D:28:E5:07:3B:C4 Certificate issuer: /CN=A91A7F56/serialNumber=281DDA097175C0432943FDE57CA33D28E5073BC4 Certificate serial: F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7F56/9E1C89A6ACCD11EE81069050C4F9AE02/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.mft Manifest number: F7 Signing time: Sat 03 May 2025 04:31:33 +0000 Manifest this update: Sat 03 May 2025 04:31:33 +0000 Manifest next update: Sat 10 May 2025 04:31:33 +0000 Files and hashes: 1: KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.crl (hash: eMcomA/F1KPzPjqL8FSRPdTuEkWDs9YN3dCuYm/XD/o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7F56/9E1C89A6ACCD11EE81069050C4F9AE02/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.crl rsync://rpki.apnic.net/member_repository/A91A7F56/9E1C89A6ACCD11EE81069050C4F9AE02/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 10 May 2025 04:31:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 247 (0xf7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7F56, serialNumber=281DDA097175C0432943FDE57CA33D28E5073BC4 Validity Not Before: May 3 04:31:33 2025 GMT Not After : May 10 04:31:33 2025 GMT Subject: CN=68159c25-eeb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:6d:48:56:61:c9:24:21:f0:ca:e2:42:4e:0f: 4c:c7:d1:5f:80:c3:88:dc:05:c1:f1:84:e4:e9:dc: ee:10:d2:7f:d9:2a:c4:59:f2:6c:0a:60:5a:74:6c: 59:74:90:d1:04:aa:15:87:e8:4f:5f:27:de:ad:b0: e5:96:11:41:8f:9b:63:d8:05:ce:18:b7:07:d1:bf: ca:62:b7:ba:11:2c:12:53:86:3b:c7:22:d4:ef:e6: 15:79:a4:8c:8e:33:7d:f3:bf:e4:4f:75:e6:89:c1: b6:db:37:d6:03:37:29:59:da:03:18:3a:59:2c:5e: a5:fb:bd:61:73:9c:a5:75:de:2f:9d:fe:36:16:1e: 11:7b:54:03:af:2d:e9:d6:fd:0f:29:4a:ec:d1:f6: 1f:76:55:92:be:3b:b5:92:63:a3:bb:a8:3b:44:9e: dc:4b:97:09:f5:fa:86:ab:26:e5:1a:1e:7f:72:e0: df:23:a4:49:e1:2e:de:98:c7:88:28:14:49:7e:72: a6:89:00:03:59:a0:b4:2f:51:5a:dd:11:3d:3b:83: 4c:a7:53:12:09:e2:0b:ec:3a:e1:a9:5d:af:18:4c: bd:e3:db:e6:90:9a:48:4d:3a:a4:28:e4:65:4a:a6: 90:c3:53:b4:8e:94:e7:05:85:c9:7c:a9:b1:81:1b: 29:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:A3:36:B1:56:23:85:A8:36:EE:8A:43:DA:B2:94:4C:50:EC:E4:06 X509v3 Authority Key Identifier: keyid:28:1D:DA:09:71:75:C0:43:29:43:FD:E5:7C:A3:3D:28:E5:07:3B:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7F56/9E1C89A6ACCD11EE81069050C4F9AE02/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7F56/9E1C89A6ACCD11EE81069050C4F9AE02/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cb:16:3a:6d:50:8a:be:3d:0f:87:65:09:2f:e1:c0:a3:be:b5: d3:c5:d3:ae:bb:24:01:65:93:56:1a:bb:dc:4d:fd:25:67:1e: 90:4a:4c:f2:ac:ea:16:d1:bc:cd:4e:fa:55:13:25:6f:e6:e1: 93:26:54:c9:f9:db:09:ed:35:f7:10:ec:b6:70:c7:4a:22:d6: 61:6f:9c:62:83:a3:e1:b4:c5:03:df:7f:1f:13:69:03:56:39: dd:69:63:ba:32:66:0b:70:9d:99:29:30:03:11:d4:ec:6f:9e: 6b:33:b4:ce:c0:c6:4e:c4:8c:a5:33:cf:3d:68:81:c2:22:84: ee:3c:45:54:ac:c9:f9:f6:6e:be:dc:61:a8:c3:17:d6:80:8a: d8:b3:e9:06:35:a4:ad:a3:6c:96:de:0e:32:a2:8f:06:08:7b: 29:8c:60:c0:42:44:fb:7f:e8:64:ee:a6:c1:45:33:44:f0:f2: 3b:b7:21:22:c9:98:89:c8:5e:0d:85:ab:21:37:7b:1a:72:74: a1:74:55:f8:f7:3a:d7:16:48:f3:f0:e7:ef:e7:7d:4c:69:a9: 44:64:d4:09:40:e7:51:8a:52:17:1a:a1:79:7e:26:fb:64:80: 77:69:23:d8:b0:fb:c1:50:65:47:d0:4d:9a:96:0e:b1:d3:ac: b7:72:5a:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdGNTYxMTAvBgNVBAUTKDI4MUREQTA5NzE3NUMwNDMyOTQzRkRFNTdDQTMzRDI4 RTUwNzNCQzQwHhcNMjUwNTAzMDQzMTMzWhcNMjUwNTEwMDQzMTMzWjAYMRYwFAYD VQQDEw02ODE1OWMyNS1lZWIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwW1IVmHJJCHwyuJCTg9Mx9FfgMOI3AXB8YTk6dzuENJ/2SrEWfJsCmBadGxZ dJDRBKoVh+hPXyferbDllhFBj5tj2AXOGLcH0b/KYre6ESwSU4Y7xyLU7+YVeaSM jjN987/kT3XmicG22zfWAzcpWdoDGDpZLF6l+71hc5yldd4vnf42Fh4Re1QDry3p 1v0PKUrs0fYfdlWSvju1kmOju6g7RJ7cS5cJ9fqGqyblGh5/cuDfI6RJ4S7emMeI KBRJfnKmiQADWaC0L1Fa3RE9O4NMp1MSCeIL7DrhqV2vGEy949vmkJpITTqkKORl SqaQw1O0jpTnBYXJfKmxgRsprQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFByjNrFW I4WoNu6KQ9qylExQ7OQGMB8GA1UdIwQYMBaAFCgd2glxdcBDKUP95XyjPSjlBzvE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0Y1Ni85RTFDODlBNkFD Q0QxMUVFODEwNjkwNTBDNEY5QUUwMi9LQjNhQ1hGMXdFTXBRXzNsZktNOUtPVUhP OFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tCM2FDWEYxd0VNcFFfM2xmS005S09VSE84US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0Y1Ni85RTFDODlBNkFDQ0QxMUVFODEwNjkwNTBDNEY5QUUwMi9LQjNhQ1hGMXdF TXBRXzNsZktNOUtPVUhPOFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDLFjptUIq+PQ+HZQkv4cCjvrXTxdOuuyQBZZNWGrvcTf0lZx6QSkzy rOoW0bzNTvpVEyVv5uGTJlTJ+dsJ7TX3EOy2cMdKItZhb5xig6PhtMUD338fE2kD VjndaWO6MmYLcJ2ZKTADEdTsb55rM7TOwMZOxIylM889aIHCIoTuPEVUrMn59m6+ 3GGowxfWgIrYs+kGNaSto2yW3g4yoo8GCHspjGDAQkT7f+hk7qbBRTNE8PI7tyEi yZiJyF4NhashN3sacnShdFX49zrXFkjz8Ofv531MaalEZNQJQOdRilIXGqF5fib7 ZIB3aSPYsPvBUGVH0E2alg6x06y3clpT -----END CERTIFICATE-----Generated at Sat May 3 18:00:16 2025 by rpki-client