$ rpki-client -vvf rpki.apnic.net/member_repository/A91A81F7/30F46EEE9F8611EC8D9F3F34C4F9AE02/kzrtfDoGQianFEt0eMdAPazdgAU.mft File: kzrtfDoGQianFEt0eMdAPazdgAU.mft (raw, json) Hash identifier: 0mfJSrEOV1/zcock8FxkS4kF5eEc1xoVKjHeK9LyKbo= Subject key identifier: E0:45:E5:1F:7E:FA:DD:60:92:D8:20:F6:6E:54:25:C2:C3:D5:DF:7D Authority key identifier: 93:3A:ED:7C:3A:06:42:26:A7:14:4B:74:78:C7:40:3D:AC:DD:80:05 Certificate issuer: /CN=A91A81F7/serialNumber=933AED7C3A064226A7144B7478C7403DACDD8005 Certificate serial: 0382 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrtfDoGQianFEt0eMdAPazdgAU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A81F7/30F46EEE9F8611EC8D9F3F34C4F9AE02/kzrtfDoGQianFEt0eMdAPazdgAU.mft Manifest number: 037E Signing time: Fri 25 Apr 2025 00:39:13 +0000 Manifest this update: Fri 25 Apr 2025 00:39:13 +0000 Manifest next update: Fri 02 May 2025 00:39:13 +0000 Files and hashes: 1: kzrtfDoGQianFEt0eMdAPazdgAU.crl (hash: 6S2FbA+XAlymhk0IiN2ZG7S3b9VxRHbJrT7qvzHw2I0=) 2: 4D7F18D69F8911EC8270CE39C4F9AE02.roa (hash: DvvVhTWHCUbaFBHxMQ8UUW6nZ5VH6Qlov4BUrN8E2sA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A81F7/30F46EEE9F8611EC8D9F3F34C4F9AE02/kzrtfDoGQianFEt0eMdAPazdgAU.crl rsync://rpki.apnic.net/member_repository/A91A81F7/30F46EEE9F8611EC8D9F3F34C4F9AE02/kzrtfDoGQianFEt0eMdAPazdgAU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrtfDoGQianFEt0eMdAPazdgAU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:39:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 898 (0x382) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A81F7, serialNumber=933AED7C3A064226A7144B7478C7403DACDD8005 Validity Not Before: Apr 25 00:39:13 2025 GMT Not After : May 2 00:39:13 2025 GMT Subject: CN=680ad9b1-eac3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:cf:89:21:be:d1:51:43:bf:0c:bf:44:9b:65: a2:f8:77:02:4b:08:81:82:b2:d6:72:fc:d5:b8:cd: 86:bf:65:31:bd:18:c8:ac:f7:15:6f:56:aa:b1:52: a1:e9:a0:a7:de:c3:eb:b9:a1:ac:b9:be:6d:4a:aa: 29:89:c8:72:94:49:3e:d3:38:f2:2c:35:2f:2f:71: eb:d7:0b:3e:e1:ba:2b:c1:34:c0:dd:2b:53:02:02: 64:c5:2e:9d:8f:2f:10:be:d7:8d:83:67:42:27:34: dc:3f:b0:88:7f:10:d6:e6:d2:85:da:4e:b6:1e:8b: 61:63:71:7e:ea:67:fd:17:b3:ec:c9:43:c9:c4:1f: 02:a6:ad:e4:fe:a0:e1:1f:42:a9:a1:dc:20:49:f8: cc:93:33:b6:eb:11:89:6b:c9:03:5a:b6:67:21:7d: 3b:b5:70:b7:df:cd:64:92:86:86:c0:71:ea:ca:d1: ed:a6:04:9e:5a:29:fe:95:98:cd:8b:a8:5d:5d:4e: d1:40:79:71:05:6a:7e:2e:a6:6e:c1:ff:84:cd:d4: e1:64:b4:65:fd:7b:58:05:76:84:40:cb:56:89:32: 62:d2:f3:13:9e:33:88:4e:d5:4b:66:6a:ac:ba:f8: 4d:7f:db:70:77:7d:9a:e5:56:07:f8:32:a9:e8:de: 16:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:45:E5:1F:7E:FA:DD:60:92:D8:20:F6:6E:54:25:C2:C3:D5:DF:7D X509v3 Authority Key Identifier: keyid:93:3A:ED:7C:3A:06:42:26:A7:14:4B:74:78:C7:40:3D:AC:DD:80:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A81F7/30F46EEE9F8611EC8D9F3F34C4F9AE02/kzrtfDoGQianFEt0eMdAPazdgAU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrtfDoGQianFEt0eMdAPazdgAU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A81F7/30F46EEE9F8611EC8D9F3F34C4F9AE02/kzrtfDoGQianFEt0eMdAPazdgAU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:9f:74:f9:51:13:1b:c7:49:69:c4:4d:04:56:bf:53:3a:6a: bc:45:66:6c:78:62:3c:19:06:57:44:ac:96:5f:d0:74:4d:6a: 59:91:fd:94:80:9c:f3:1b:c1:eb:22:89:5d:6e:00:3d:72:f6: 8f:30:fe:6a:7c:f5:a6:04:95:29:eb:d1:b9:01:b2:de:05:cc: 16:9d:3e:5a:65:84:57:34:f6:97:90:e8:6b:73:57:5a:8b:33: 41:ef:a0:fb:c3:c7:fa:7c:42:b6:a3:92:ae:1b:70:f3:a4:94: 0f:15:cc:2e:db:24:12:ad:0c:b5:03:57:1f:c2:4c:22:f2:6a: e2:3c:c8:e3:c7:5d:36:8b:40:dc:06:c6:56:d1:2a:3a:1f:d6: 31:2a:c5:ff:3d:bf:0f:c0:f7:ef:2e:cd:ba:4e:1d:04:95:dd: 9b:39:c8:4a:94:f6:91:2f:41:d6:29:63:69:7e:5d:ab:30:49: 72:51:70:c9:79:21:de:cf:58:5a:6d:e5:e8:85:9b:aa:22:9c: b6:08:b5:b7:1e:70:d2:6d:63:b6:f8:e8:c7:bb:2d:47:a2:8f: d9:da:85:c2:eb:60:69:49:14:c1:2b:c6:83:8b:48:aa:60:28: 65:d6:72:03:76:c4:ce:9d:69:48:e0:64:fb:08:b0:3f:db:64: 08:23:79:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA4IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgxRjcxMTAvBgNVBAUTKDkzM0FFRDdDM0EwNjQyMjZBNzE0NEI3NDc4Qzc0MDNE QUNERDgwMDUwHhcNMjUwNDI1MDAzOTEzWhcNMjUwNTAyMDAzOTEzWjAYMRYwFAYD VQQDEw02ODBhZDliMS1lYWMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv8+JIb7RUUO/DL9Em2Wi+HcCSwiBgrLWcvzVuM2Gv2UxvRjIrPcVb1aqsVKh 6aCn3sPruaGsub5tSqopichylEk+0zjyLDUvL3Hr1ws+4borwTTA3StTAgJkxS6d jy8QvteNg2dCJzTcP7CIfxDW5tKF2k62HothY3F+6mf9F7PsyUPJxB8Cpq3k/qDh H0KpodwgSfjMkzO26xGJa8kDWrZnIX07tXC3381kkoaGwHHqytHtpgSeWin+lZjN i6hdXU7RQHlxBWp+LqZuwf+EzdThZLRl/XtYBXaEQMtWiTJi0vMTnjOITtVLZmqs uvhNf9twd32a5VYH+DKp6N4WwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOBF5R9+ +t1gktgg9m5UJcLD1d99MB8GA1UdIwQYMBaAFJM67Xw6BkImpxRLdHjHQD2s3YAF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODFGNy8zMEY0NkVFRTlG ODYxMUVDOEQ5RjNGMzRDNEY5QUUwMi9renJ0ZkRvR1FpYW5GRXQwZU1kQVBhemRn QVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t6cnRmRG9HUWlhbkZFdDBlTWRBUGF6ZGdBVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODFGNy8zMEY0NkVFRTlGODYxMUVDOEQ5RjNGMzRDNEY5QUUwMi9renJ0ZkRvR1Fp YW5GRXQwZU1kQVBhemRnQVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgn3T5URMbx0lpxE0EVr9TOmq8RWZseGI8GQZXRKyWX9B0TWpZkf2U gJzzG8HrIoldbgA9cvaPMP5qfPWmBJUp69G5AbLeBcwWnT5aZYRXNPaXkOhrc1da izNB76D7w8f6fEK2o5KuG3DzpJQPFcwu2yQSrQy1A1cfwkwi8mriPMjjx102i0Dc BsZW0So6H9YxKsX/Pb8PwPfvLs26Th0Eld2bOchKlPaRL0HWKWNpfl2rMElyUXDJ eSHez1habeXohZuqIpy2CLW3HnDSbWO2+OjHuy1Hoo/Z2oXC62BpSRTBK8aDi0iq YChl1nIDdsTOnWlI4GT7CLA/22QII3mL -----END CERTIFICATE-----Generated at Sat Apr 26 12:27:25 2025 by rpki-client