$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft File: KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft (raw, json) Hash identifier: 7xqp7YFwIo9s9efdnKFYiczFIRenISyILvEB3VhrmJQ= Subject key identifier: 0E:23:AB:38:AC:8C:83:03:72:6E:9C:B7:71:7C:96:03:12:64:F7:6C Authority key identifier: 28:C0:60:7D:96:83:1A:3D:18:09:33:45:B3:72:58:EE:3B:D7:F3:E7 Certificate issuer: /CN=A91C5AEE/serialNumber=28C0607D96831A3D18093345B37258EE3BD7F3E7 Certificate serial: 0130 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KMBgfZaDGj0YCTNFs3JY7jvX8-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft Manifest number: 012E Signing time: Fri 25 Apr 2025 03:37:41 +0000 Manifest this update: Fri 25 Apr 2025 03:37:41 +0000 Manifest next update: Fri 02 May 2025 03:37:41 +0000 Files and hashes: 1: KMBgfZaDGj0YCTNFs3JY7jvX8-c.crl (hash: 33A2m/4GCvmh3ZGvMRMk7PutaOX1A81Osj8/Z/z2J00=) 2: 21525A1C520B11EE8B79021AC4F9AE02.roa (hash: s8Vu/R6gOMwvLzsGf3nk9tFhiMljx1hOH6LnsMms3Vg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.crl rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KMBgfZaDGj0YCTNFs3JY7jvX8-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:37:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 304 (0x130) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5AEE, serialNumber=28C0607D96831A3D18093345B37258EE3BD7F3E7 Validity Not Before: Apr 25 03:37:41 2025 GMT Not After : May 2 03:37:41 2025 GMT Subject: CN=680b0385-5902 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:ef:24:cf:72:f5:7c:a8:20:3f:94:42:a7:11: 1f:af:2c:57:38:df:c4:75:a8:09:e9:4e:a2:31:ef: b9:c0:0c:19:c3:07:32:e7:f4:74:d3:87:36:f4:22: 1f:4c:7b:6d:6a:74:a5:1e:90:bf:87:0b:5a:eb:82: d8:db:09:af:14:2a:54:3c:4d:86:aa:03:37:81:21: c7:eb:2f:fb:12:f2:6b:83:8d:11:4f:af:54:aa:9d: dc:b9:54:b2:33:28:0f:7a:c4:d7:a4:fb:44:de:56: 9c:dc:c5:67:3b:bb:c0:07:25:dd:d8:22:fd:6b:15: 73:f0:c7:f0:76:12:ec:11:37:dc:ee:8b:84:ef:f6: 7e:76:ba:27:67:43:0c:72:96:20:c0:66:39:88:cc: cb:e0:73:e6:f2:23:8a:dc:25:ed:67:ee:1a:1e:ea: a9:c7:99:57:01:95:0f:f9:0f:e8:68:5f:b1:05:38: 64:29:47:55:0f:7a:2a:1b:f9:4d:4d:c1:d1:bd:a3: 7b:ce:12:72:55:15:f4:81:c4:c0:26:1f:35:6a:9d: 98:90:65:61:05:db:56:80:af:c9:fb:44:8b:07:c8: 73:26:d1:89:e4:1b:44:37:18:d6:6c:63:32:1e:a9: 57:77:90:6d:43:26:cc:fd:a1:cc:fd:e9:60:c4:b6: e3:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:23:AB:38:AC:8C:83:03:72:6E:9C:B7:71:7C:96:03:12:64:F7:6C X509v3 Authority Key Identifier: keyid:28:C0:60:7D:96:83:1A:3D:18:09:33:45:B3:72:58:EE:3B:D7:F3:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KMBgfZaDGj0YCTNFs3JY7jvX8-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:89:a8:7c:85:cf:70:7f:da:87:6f:ed:a9:c6:2c:cc:e6:1c: b8:54:52:09:22:fc:ba:d8:05:44:02:b4:00:79:90:8b:1c:6f: 6c:3c:dd:7d:aa:27:17:51:e9:1c:dc:66:ea:61:91:72:58:ef: 02:ae:57:cb:f1:1d:d6:41:be:28:2e:50:f6:5c:41:1a:22:84: 3a:a1:80:7a:c4:60:c6:fa:d3:43:57:f3:8c:21:24:77:5f:62: 00:c1:a0:bd:71:be:34:b6:9d:64:00:1f:e7:93:99:91:e0:5f: 46:f3:f2:e2:d3:fc:5b:a1:89:0f:5e:e6:42:e8:f8:56:ed:d9: 9d:63:c2:cb:3b:f5:fd:24:b3:a9:59:61:5f:e0:0c:a1:1e:42: f0:04:4b:0a:db:78:82:25:65:1a:90:82:51:35:db:ce:69:b6: e0:a8:7c:b7:15:d0:c6:fb:e0:f2:47:f9:56:da:36:92:49:78: 6d:d6:78:1b:1b:8b:eb:7e:a4:6a:59:9c:d2:32:92:6f:e2:e0: fc:e7:b7:da:a2:9e:c9:4f:a2:55:03:14:e6:b3:05:0d:d7:fb: d8:8c:7d:09:c3:77:75:38:b1:b0:70:f7:d8:7c:bd:83:bc:ce: 06:8f:ba:34:31:a7:81:61:67:5a:73:d8:e4:4e:a8:b7:e4:83: 4b:81:b0:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzVBRUUxMTAvBgNVBAUTKDI4QzA2MDdEOTY4MzFBM0QxODA5MzM0NUIzNzI1OEVF M0JEN0YzRTcwHhcNMjUwNDI1MDMzNzQxWhcNMjUwNTAyMDMzNzQxWjAYMRYwFAYD VQQDEw02ODBiMDM4NS01OTAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsu8kz3L1fKggP5RCpxEfryxXON/EdagJ6U6iMe+5wAwZwwcy5/R004c29CIf THttanSlHpC/hwta64LY2wmvFCpUPE2GqgM3gSHH6y/7EvJrg40RT69Uqp3cuVSy MygPesTXpPtE3lac3MVnO7vAByXd2CL9axVz8MfwdhLsETfc7ouE7/Z+dronZ0MM cpYgwGY5iMzL4HPm8iOK3CXtZ+4aHuqpx5lXAZUP+Q/oaF+xBThkKUdVD3oqG/lN TcHRvaN7zhJyVRX0gcTAJh81ap2YkGVhBdtWgK/J+0SLB8hzJtGJ5BtENxjWbGMy HqlXd5BtQybM/aHM/elgxLbj+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA4jqzis jIMDcm6ct3F8lgMSZPdsMB8GA1UdIwQYMBaAFCjAYH2Wgxo9GAkzRbNyWO471/Pn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNUFFRS8zRTM5MDFGMjUy MDcxMUVFQjU3QjU4NzdDNEY5QUUwMi9LTUJnZlphREdqMFlDVE5GczNKWTdqdlg4 LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tNQmdmWmFER2owWUNUTkZzM0pZN2p2WDgtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NUFFRS8zRTM5MDFGMjUyMDcxMUVFQjU3QjU4NzdDNEY5QUUwMi9LTUJnZlphREdq MFlDVE5GczNKWTdqdlg4LWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBviah8hc9wf9qHb+2pxizM5hy4VFIJIvy62AVEArQAeZCLHG9sPN19 qicXUekc3GbqYZFyWO8CrlfL8R3WQb4oLlD2XEEaIoQ6oYB6xGDG+tNDV/OMISR3 X2IAwaC9cb40tp1kAB/nk5mR4F9G8/Li0/xboYkPXuZC6PhW7dmdY8LLO/X9JLOp WWFf4AyhHkLwBEsK23iCJWUakIJRNdvOabbgqHy3FdDG++DyR/lW2jaSSXht1ngb G4vrfqRqWZzSMpJv4uD857faop7JT6JVAxTmswUN1/vYjH0Jw3d1OLGwcPfYfL2D vM4Gj7o0MaeBYWdac9jkTqi35INLgbBp -----END CERTIFICATE-----Generated at Sat Apr 26 03:36:09 2025 by rpki-client