$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5F33/2F6AC13C0BEC11EC92130D5AC4F9AE02/kxe7Gf-Qf0cYEetWEAqgvJLPFJc.mft File: kxe7Gf-Qf0cYEetWEAqgvJLPFJc.mft (raw, json) Hash identifier: utrDhOpj3OVKUcgYKNrNvxav6dJNoACM80BPcP7BP3Q= Subject key identifier: A8:ED:F6:45:6C:DB:07:12:5C:B8:21:35:95:64:67:54:B3:E0:F5:64 Authority key identifier: 93:17:BB:19:FF:90:7F:47:18:11:EB:56:10:0A:A0:BC:92:CF:14:97 Certificate issuer: /CN=A91B5F33/serialNumber=9317BB19FF907F471811EB56100AA0BC92CF1497 Certificate serial: 04FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kxe7Gf-Qf0cYEetWEAqgvJLPFJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5F33/2F6AC13C0BEC11EC92130D5AC4F9AE02/kxe7Gf-Qf0cYEetWEAqgvJLPFJc.mft Manifest number: 04F3 Signing time: Thu 24 Apr 2025 23:29:19 +0000 Manifest this update: Thu 24 Apr 2025 23:29:19 +0000 Manifest next update: Thu 01 May 2025 23:29:19 +0000 Files and hashes: 1: kxe7Gf-Qf0cYEetWEAqgvJLPFJc.crl (hash: iZ5M3WFCwxYb1LHY7o+KnhVrObKFHXxekKqRRz2R3CU=) 2: 7187CDE60BEF11ECAEF3EA5DC4F9AE02.roa (hash: 4Lt0Tl7CzwPdD+nUN6H8aD5LDx+lA968UPs17P0Yr/M=) 3: 720FAF9A0BEF11ECAEF3EA5DC4F9AE02.roa (hash: xZDUc0WXMGb3zzRRcf41Z8+TBxtXNqxHLCOZ0h8MoWY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5F33/2F6AC13C0BEC11EC92130D5AC4F9AE02/kxe7Gf-Qf0cYEetWEAqgvJLPFJc.crl rsync://rpki.apnic.net/member_repository/A91B5F33/2F6AC13C0BEC11EC92130D5AC4F9AE02/kxe7Gf-Qf0cYEetWEAqgvJLPFJc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kxe7Gf-Qf0cYEetWEAqgvJLPFJc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:29:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1275 (0x4fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5F33, serialNumber=9317BB19FF907F471811EB56100AA0BC92CF1497 Validity Not Before: Apr 24 23:29:19 2025 GMT Not After : May 1 23:29:19 2025 GMT Subject: CN=680ac94f-8ff3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:bd:1d:c7:4a:bb:81:57:08:0b:4a:73:0b:a1: cd:1e:4c:f2:0d:63:c7:91:c1:a3:ce:73:eb:4b:eb: 04:53:5c:a4:ce:18:73:65:38:a9:30:b5:df:7d:92: 8e:2a:ec:71:cb:1d:04:54:52:61:e7:d3:e1:9d:2c: b7:99:2b:6d:ff:01:7f:99:22:b7:84:b8:56:6b:74: 65:cf:ec:89:30:84:47:d6:e7:ad:63:dd:85:87:60: f9:7a:c2:22:ff:81:60:3a:f8:d3:28:08:73:cc:cb: 5e:46:6a:e1:8b:c8:9c:0a:f8:8f:8c:1a:03:3a:ca: 8e:9b:74:b2:c9:0c:f8:2c:95:f9:eb:78:41:f2:6b: bd:41:b1:31:9e:56:46:14:00:2f:bd:0a:cd:be:22: 89:ce:30:fb:ba:d8:34:f8:0c:e4:d8:11:0f:20:4a: 23:9f:0b:07:b6:a1:ca:ff:08:25:7d:15:6c:4a:0b: e3:e8:99:6e:9a:0c:f0:ae:87:03:3d:ac:13:93:4e: 17:7a:fe:07:24:14:fd:2e:93:44:02:a6:a5:26:c1: 90:44:e8:2d:9b:41:45:57:b8:18:f0:89:77:62:85: ca:ab:c8:2d:93:3a:e4:76:27:67:9b:2f:c8:d8:9e: 07:0d:30:b1:d2:75:5d:4f:23:0c:eb:3a:cd:26:9c: df:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:ED:F6:45:6C:DB:07:12:5C:B8:21:35:95:64:67:54:B3:E0:F5:64 X509v3 Authority Key Identifier: keyid:93:17:BB:19:FF:90:7F:47:18:11:EB:56:10:0A:A0:BC:92:CF:14:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5F33/2F6AC13C0BEC11EC92130D5AC4F9AE02/kxe7Gf-Qf0cYEetWEAqgvJLPFJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kxe7Gf-Qf0cYEetWEAqgvJLPFJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5F33/2F6AC13C0BEC11EC92130D5AC4F9AE02/kxe7Gf-Qf0cYEetWEAqgvJLPFJc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:e7:49:d0:12:51:d8:dd:9e:6a:84:c7:54:3f:81:60:9c:9e: d4:71:73:cc:cf:6c:0d:41:9b:65:f6:b7:fa:b7:61:3f:a6:6f: e9:2f:37:13:50:92:16:4b:fe:b8:00:77:5f:cf:9f:d4:ec:01: f8:6e:a6:b0:a3:1e:ab:02:48:5e:d9:8f:ab:9f:04:3a:fb:69: 8b:00:44:ec:7f:bb:6f:47:fe:5a:8b:56:08:e6:7a:fd:fa:d6: ef:94:54:ee:73:3b:8f:b6:67:65:29:20:6d:33:1a:64:52:1a: 9f:55:14:88:e3:a0:3e:05:d1:35:0f:0e:bf:7e:88:c0:3f:d1: 45:c9:a2:c2:4c:9c:c4:50:b5:21:95:9d:db:8b:e6:18:da:b3: 87:7f:a7:30:6d:11:3e:2f:24:86:1b:6c:13:be:0e:e7:18:97: e8:ff:74:71:ab:c6:7f:e8:23:a4:96:1b:21:67:d5:e8:02:c3: 22:3a:7b:43:cb:0a:1e:b1:0f:34:8d:58:50:5f:20:bd:d1:da: f0:d1:62:c6:6e:07:e8:09:4c:9f:83:df:e8:cb:4a:a2:5f:f1: f0:48:ce:9b:80:59:13:0a:9a:8f:01:74:a4:d2:7f:05:a7:08: 88:87:b7:83:d1:5e:f8:61:06:a0:e7:29:1d:8c:1e:82:78:19: be:c2:2b:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVGMzMxMTAvBgNVBAUTKDkzMTdCQjE5RkY5MDdGNDcxODExRUI1NjEwMEFBMEJD OTJDRjE0OTcwHhcNMjUwNDI0MjMyOTE5WhcNMjUwNTAxMjMyOTE5WjAYMRYwFAYD VQQDEw02ODBhYzk0Zi04ZmYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq70dx0q7gVcIC0pzC6HNHkzyDWPHkcGjznPrS+sEU1ykzhhzZTipMLXffZKO Kuxxyx0EVFJh59PhnSy3mStt/wF/mSK3hLhWa3Rlz+yJMIRH1uetY92Fh2D5esIi /4FgOvjTKAhzzMteRmrhi8icCviPjBoDOsqOm3SyyQz4LJX563hB8mu9QbExnlZG FAAvvQrNviKJzjD7utg0+Azk2BEPIEojnwsHtqHK/wglfRVsSgvj6JlumgzwrocD PawTk04Xev4HJBT9LpNEAqalJsGQROgtm0FFV7gY8Il3YoXKq8gtkzrkdidnmy/I 2J4HDTCx0nVdTyMM6zrNJpzf+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKjt9kVs 2wcSXLghNZVkZ1Sz4PVkMB8GA1UdIwQYMBaAFJMXuxn/kH9HGBHrVhAKoLySzxSX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUYzMy8yRjZBQzEzQzBC RUMxMUVDOTIxMzBENUFDNEY5QUUwMi9reGU3R2YtUWYwY1lFZXRXRUFxZ3ZKTFBG SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t4ZTdHZi1RZjBjWUVldFdFQXFndkpMUEZKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUYzMy8yRjZBQzEzQzBCRUMxMUVDOTIxMzBENUFDNEY5QUUwMi9reGU3R2YtUWYw Y1lFZXRXRUFxZ3ZKTFBGSmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA650nQElHY3Z5qhMdUP4FgnJ7UcXPMz2wNQZtl9rf6t2E/pm/pLzcT UJIWS/64AHdfz5/U7AH4bqawox6rAkhe2Y+rnwQ6+2mLAETsf7tvR/5ai1YI5nr9 +tbvlFTuczuPtmdlKSBtMxpkUhqfVRSI46A+BdE1Dw6/fojAP9FFyaLCTJzEULUh lZ3bi+YY2rOHf6cwbRE+LySGG2wTvg7nGJfo/3Rxq8Z/6COklhshZ9XoAsMiOntD ywoesQ80jVhQXyC90drw0WLGbgfoCUyfg9/oy0qiX/HwSM6bgFkTCpqPAXSk0n8F pwiIh7eD0V74YQag5ykdjB6CeBm+wisa -----END CERTIFICATE-----Generated at Sat Apr 26 12:24:44 2025 by rpki-client