$ rpki-client -vvf rpki.apnic.net/member_repository/A91C744F/B7F9385E22B711EB8C37033CC4F9AE02/KJ6yPyjJzyP6W5GKZQy4QoBQMHs.mft File: KJ6yPyjJzyP6W5GKZQy4QoBQMHs.mft (raw, json) Hash identifier: l67yM7YbJZ5pJOhIs14zVLivivW22aAsVKwkaJixh1I= Subject key identifier: 1A:FA:A6:5D:BA:EA:CA:FC:88:7F:C4:D9:7C:75:1B:E4:71:94:94:A0 Authority key identifier: 28:9E:B2:3F:28:C9:CF:23:FA:5B:91:8A:65:0C:B8:42:80:50:30:7B Certificate issuer: /CN=A91C744F/serialNumber=289EB23F28C9CF23FA5B918A650CB8428050307B Certificate serial: 076B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJ6yPyjJzyP6W5GKZQy4QoBQMHs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C744F/B7F9385E22B711EB8C37033CC4F9AE02/KJ6yPyjJzyP6W5GKZQy4QoBQMHs.mft Manifest number: 0756 Signing time: Thu 24 Apr 2025 21:29:13 +0000 Manifest this update: Thu 24 Apr 2025 21:29:13 +0000 Manifest next update: Thu 01 May 2025 21:29:13 +0000 Files and hashes: 1: KJ6yPyjJzyP6W5GKZQy4QoBQMHs.crl (hash: /rjEAIAcDNhosk4st9L4S5ZmMvuqyFcYXvUIlQumtEI=) 2: E7EFEDC07C1F11EB95B6492DC4F9AE02.roa (hash: PfwMudypLXBG0l/8zURzPSjDmL/lqt08xsdYYn3A5t8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C744F/B7F9385E22B711EB8C37033CC4F9AE02/KJ6yPyjJzyP6W5GKZQy4QoBQMHs.crl rsync://rpki.apnic.net/member_repository/A91C744F/B7F9385E22B711EB8C37033CC4F9AE02/KJ6yPyjJzyP6W5GKZQy4QoBQMHs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJ6yPyjJzyP6W5GKZQy4QoBQMHs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:29:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1899 (0x76b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C744F, serialNumber=289EB23F28C9CF23FA5B918A650CB8428050307B Validity Not Before: Apr 24 21:29:13 2025 GMT Not After : May 1 21:29:13 2025 GMT Subject: CN=680aad29-fa3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:c8:2a:d2:34:75:96:be:04:2f:b2:c0:80:80: f1:96:fb:a0:37:03:36:b7:01:12:72:32:6c:85:8f: 9d:46:62:1c:63:f9:f9:3d:b0:91:d5:7e:5e:d5:a8: 66:e2:0d:f7:d2:08:23:9b:5c:d5:b9:eb:e4:f0:a4: a7:87:47:e6:2f:66:0d:aa:12:5a:72:4e:08:85:87: dc:de:a4:75:5f:4e:26:63:ff:d3:90:cf:d9:ff:03: f3:2c:d3:de:65:f0:94:6d:6f:dc:0b:29:43:5f:90: 84:08:2a:80:f6:07:d0:1e:4d:45:51:09:49:50:62: 74:58:1c:c6:b4:5b:3e:84:b9:b2:e5:5a:3d:88:ed: 26:20:99:a3:81:bb:69:88:a2:ca:01:b5:08:79:8b: e9:58:d5:01:69:a2:f5:ec:0c:3f:04:8c:90:d6:9a: 41:6e:bb:95:a3:54:66:9c:e9:90:87:2c:82:a9:1d: 94:9d:f8:c6:3f:b3:8d:2e:a8:fc:b4:26:e9:fc:35: d1:28:88:06:6b:33:b3:0b:3e:99:28:e9:8d:9d:74: 82:f9:5c:cc:d7:e5:33:5c:9e:83:f0:c2:ad:91:f5: d3:5e:f7:37:53:00:f1:36:37:ba:59:78:e4:fe:10: 1d:05:71:d1:66:9d:75:64:60:ef:b7:ce:39:37:a6: b0:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:FA:A6:5D:BA:EA:CA:FC:88:7F:C4:D9:7C:75:1B:E4:71:94:94:A0 X509v3 Authority Key Identifier: keyid:28:9E:B2:3F:28:C9:CF:23:FA:5B:91:8A:65:0C:B8:42:80:50:30:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C744F/B7F9385E22B711EB8C37033CC4F9AE02/KJ6yPyjJzyP6W5GKZQy4QoBQMHs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJ6yPyjJzyP6W5GKZQy4QoBQMHs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C744F/B7F9385E22B711EB8C37033CC4F9AE02/KJ6yPyjJzyP6W5GKZQy4QoBQMHs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:a5:90:76:d8:d9:70:cf:b0:cf:a8:ba:b8:0a:ab:fc:60:ec: ae:4d:bd:d8:89:7b:78:b6:5e:dc:b7:1b:5b:8d:68:e1:fc:38: 82:ea:5d:bd:6e:37:42:4e:21:99:50:15:4f:d6:39:b8:ff:73: 29:47:2a:21:07:2d:7e:51:8a:3b:39:fd:bf:0a:6c:d2:98:e7: 18:65:cb:d5:ce:a9:d6:16:ee:b6:78:88:09:86:26:aa:d2:8d: 05:14:26:36:8d:6d:bb:5e:76:81:d6:7e:f2:2a:57:e2:bd:34: 9e:34:10:89:65:4b:58:c1:b2:80:73:42:a7:f3:dc:92:ef:c6: 75:fa:04:a3:66:72:62:64:2f:71:90:f7:14:f6:79:7b:fa:5c: dc:b7:ad:7b:cc:82:60:36:81:83:85:57:d2:c2:d0:f1:95:39: 6d:64:01:39:67:30:59:4b:31:63:97:48:41:3e:ec:ad:06:84: 9c:e0:3e:70:38:41:fc:b9:36:36:f3:2c:47:3e:94:df:08:cb: 8a:36:0f:13:19:01:0d:5d:93:85:a7:a4:5d:03:89:da:be:d3: 12:96:0e:ce:1c:c1:cd:08:a7:54:7b:3e:66:ea:b3:a2:3c:30: b9:9a:b2:2e:79:1a:c2:73:51:14:bb:a7:db:3b:b5:e1:86:c6: a9:4c:f3:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB2swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc0NEYxMTAvBgNVBAUTKDI4OUVCMjNGMjhDOUNGMjNGQTVCOTE4QTY1MENCODQy ODA1MDMwN0IwHhcNMjUwNDI0MjEyOTEzWhcNMjUwNTAxMjEyOTEzWjAYMRYwFAYD VQQDEw02ODBhYWQyOS1mYTNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx8gq0jR1lr4EL7LAgIDxlvugNwM2twEScjJshY+dRmIcY/n5PbCR1X5e1ahm 4g330ggjm1zVuevk8KSnh0fmL2YNqhJack4IhYfc3qR1X04mY//TkM/Z/wPzLNPe ZfCUbW/cCylDX5CECCqA9gfQHk1FUQlJUGJ0WBzGtFs+hLmy5Vo9iO0mIJmjgbtp iKLKAbUIeYvpWNUBaaL17Aw/BIyQ1ppBbruVo1RmnOmQhyyCqR2UnfjGP7ONLqj8 tCbp/DXRKIgGazOzCz6ZKOmNnXSC+VzM1+UzXJ6D8MKtkfXTXvc3UwDxNje6WXjk /hAdBXHRZp11ZGDvt845N6awIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBr6pl26 6sr8iH/E2Xx1G+RxlJSgMB8GA1UdIwQYMBaAFCiesj8oyc8j+luRimUMuEKAUDB7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzQ0Ri9CN0Y5Mzg1RTIy QjcxMUVCOEMzNzAzM0NDNEY5QUUwMi9LSjZ5UHlqSnp5UDZXNUdLWlF5NFFvQlFN SHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tKNnlQeWpKenlQNlc1R0taUXk0UW9CUU1Icy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzQ0Ri9CN0Y5Mzg1RTIyQjcxMUVCOEMzNzAzM0NDNEY5QUUwMi9LSjZ5UHlqSnp5 UDZXNUdLWlF5NFFvQlFNSHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbpZB22Nlwz7DPqLq4Cqv8YOyuTb3YiXt4tl7ctxtbjWjh/DiC6l29 bjdCTiGZUBVP1jm4/3MpRyohBy1+UYo7Of2/CmzSmOcYZcvVzqnWFu62eIgJhiaq 0o0FFCY2jW27XnaB1n7yKlfivTSeNBCJZUtYwbKAc0Kn89yS78Z1+gSjZnJiZC9x kPcU9nl7+lzct617zIJgNoGDhVfSwtDxlTltZAE5ZzBZSzFjl0hBPuytBoSc4D5w OEH8uTY28yxHPpTfCMuKNg8TGQENXZOFp6RdA4navtMSlg7OHMHNCKdUez5m6rOi PDC5mrIueRrCc1EUu6fbO7XhhsapTPPf -----END CERTIFICATE-----Generated at Sat Apr 26 05:10:10 2025 by rpki-client