$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9C05/E9D9A0221DAA11E28C98DBA608B02CD2/kN_cE0DUTo_iVh19jeSe71QGEII.mft File: kN_cE0DUTo_iVh19jeSe71QGEII.mft (raw, json) Hash identifier: IaRz87mh1kdGLnHOCZ7AvNIgO0Y1Mh3EcvJOkj6qe/I= Subject key identifier: 1E:D8:68:03:36:90:3A:FA:5E:5C:F0:36:D1:08:9C:49:DE:A0:94:7A Authority key identifier: 90:DF:DC:13:40:D4:4E:8F:E2:56:1D:7D:8D:E4:9E:EF:54:06:10:82 Certificate issuer: /CN=A91C9C05/serialNumber=90DFDC1340D44E8FE2561D7D8DE49EEF54061082 Certificate serial: 3474 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kN_cE0DUTo_iVh19jeSe71QGEII.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9C05/E9D9A0221DAA11E28C98DBA608B02CD2/kN_cE0DUTo_iVh19jeSe71QGEII.mft Manifest number: 3472 Signing time: Mon 28 Apr 2025 15:24:53 +0000 Manifest this update: Mon 28 Apr 2025 15:24:53 +0000 Manifest next update: Mon 05 May 2025 15:24:53 +0000 Files and hashes: 1: kN_cE0DUTo_iVh19jeSe71QGEII.crl (hash: +qFHpDNPYOILW+mOaeU/PWBBtkl4gx7jMvaV7lUpzL0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9C05/E9D9A0221DAA11E28C98DBA608B02CD2/kN_cE0DUTo_iVh19jeSe71QGEII.crl rsync://rpki.apnic.net/member_repository/A91C9C05/E9D9A0221DAA11E28C98DBA608B02CD2/kN_cE0DUTo_iVh19jeSe71QGEII.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kN_cE0DUTo_iVh19jeSe71QGEII.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 15:24:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13428 (0x3474) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9C05, serialNumber=90DFDC1340D44E8FE2561D7D8DE49EEF54061082 Validity Not Before: Apr 28 15:24:53 2025 GMT Not After : May 5 15:24:53 2025 GMT Subject: CN=680f9dc5-ad27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:07:a0:ee:e4:b2:ed:37:9f:b8:fb:c1:7a:91: 60:38:fd:4e:76:8b:20:c3:8b:16:ed:dc:74:eb:fd: 48:f8:3a:16:3c:57:7a:f7:5c:f0:1f:b5:84:f9:d6: 49:06:32:0f:86:c6:17:61:1f:a8:c2:85:11:a3:ec: 23:15:04:10:5e:2d:58:64:6e:f3:c5:5f:13:cb:92: 7e:c3:d3:bb:3f:f7:7c:65:68:79:7f:f6:5a:f1:a9: 70:36:48:c7:78:73:ab:03:fb:26:6e:a0:af:7b:2e: e4:86:7e:3e:18:7a:fc:d4:af:6b:18:18:d9:27:a6: dc:8b:8a:e0:06:82:bb:a5:b7:56:5e:d2:a4:19:35: a2:bd:f6:b4:7c:00:fd:08:56:1e:da:cc:f1:cb:32: be:7c:0a:99:45:97:2b:4f:0e:05:eb:4f:a8:9f:39: b3:21:7b:03:27:e1:29:fa:89:2f:ce:63:ec:66:c6: 91:ce:c0:37:e4:e9:27:66:2a:73:37:aa:1d:67:7f: a5:99:89:e9:67:9c:f7:2b:46:c2:a5:85:9c:97:40: 7e:33:86:dc:cb:71:03:c0:dc:24:bd:53:84:d4:1b: 99:43:d8:75:4a:a6:08:05:a2:04:d6:e5:a8:94:cd: 5b:fa:3e:d5:30:11:ce:b4:68:b6:9f:a5:82:b2:c6: 9e:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:D8:68:03:36:90:3A:FA:5E:5C:F0:36:D1:08:9C:49:DE:A0:94:7A X509v3 Authority Key Identifier: keyid:90:DF:DC:13:40:D4:4E:8F:E2:56:1D:7D:8D:E4:9E:EF:54:06:10:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9C05/E9D9A0221DAA11E28C98DBA608B02CD2/kN_cE0DUTo_iVh19jeSe71QGEII.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kN_cE0DUTo_iVh19jeSe71QGEII.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9C05/E9D9A0221DAA11E28C98DBA608B02CD2/kN_cE0DUTo_iVh19jeSe71QGEII.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:42:1b:9f:09:8f:9c:25:f6:16:5f:62:48:bd:5a:e0:c7:5c: 11:8a:61:85:7c:fc:4b:d4:1a:e1:ad:37:94:c7:63:1e:67:ce: 34:8f:9d:7c:35:5b:94:f1:64:57:30:9f:90:f0:0e:c5:1a:a4: 0f:cf:e9:aa:b5:52:69:c3:87:b0:bc:51:a0:6b:b9:4d:ea:f0: 9f:37:49:64:e7:49:73:0a:7d:3a:0a:0a:26:a2:d5:1a:46:d1: 9c:61:ad:be:88:24:23:fc:da:35:9c:09:f5:d0:68:8f:35:b2: 82:bc:95:b3:99:2c:fc:19:21:72:d2:39:ca:fb:2f:69:24:da: 06:a1:92:b3:6e:23:1d:25:8e:0b:0a:60:b6:94:95:4c:1a:41: bc:6e:11:c4:29:bd:8f:9f:b9:ef:03:64:d4:c5:c1:1f:cf:1b: df:22:4f:27:76:df:1d:7e:bc:15:38:19:33:b0:a2:fe:19:bd: b8:d2:c3:ab:ae:55:c6:21:5b:12:af:50:db:61:04:b9:2f:ea: 28:3c:dd:72:1a:c7:b5:cc:ca:ad:0e:4f:96:df:79:e9:2e:10: fe:5b:f3:90:3b:f3:38:03:9b:71:cc:47:d7:9a:67:95:fa:45: 04:82:35:c7:45:e8:e5:b5:55:e6:96:21:d8:92:74:bd:bf:cc: 64:87:46:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNHQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlDMDUxMTAvBgNVBAUTKDkwREZEQzEzNDBENDRFOEZFMjU2MUQ3RDhERTQ5RUVG NTQwNjEwODIwHhcNMjUwNDI4MTUyNDUzWhcNMjUwNTA1MTUyNDUzWjAYMRYwFAYD VQQDEw02ODBmOWRjNS1hZDI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtQeg7uSy7TefuPvBepFgOP1Odosgw4sW7dx06/1I+DoWPFd691zwH7WE+dZJ BjIPhsYXYR+owoURo+wjFQQQXi1YZG7zxV8Ty5J+w9O7P/d8ZWh5f/Za8alwNkjH eHOrA/smbqCvey7khn4+GHr81K9rGBjZJ6bci4rgBoK7pbdWXtKkGTWivfa0fAD9 CFYe2szxyzK+fAqZRZcrTw4F60+onzmzIXsDJ+Ep+okvzmPsZsaRzsA35OknZipz N6odZ3+lmYnpZ5z3K0bCpYWcl0B+M4bcy3EDwNwkvVOE1BuZQ9h1SqYIBaIE1uWo lM1b+j7VMBHOtGi2n6WCssaeKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB7YaAM2 kDr6XlzwNtEInEneoJR6MB8GA1UdIwQYMBaAFJDf3BNA1E6P4lYdfY3knu9UBhCC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUMwNS9FOUQ5QTAyMjFE QUExMUUyOEM5OERCQTYwOEIwMkNEMi9rTl9jRTBEVVRvX2lWaDE5amVTZTcxUUdF SUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tOX2NFMERVVG9faVZoMTlqZVNlNzFRR0VJSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUMwNS9FOUQ5QTAyMjFEQUExMUUyOEM5OERCQTYwOEIwMkNEMi9rTl9jRTBEVVRv X2lWaDE5amVTZTcxUUdFSUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0QhufCY+cJfYWX2JIvVrgx1wRimGFfPxL1BrhrTeUx2MeZ840j518 NVuU8WRXMJ+Q8A7FGqQPz+mqtVJpw4ewvFGga7lN6vCfN0lk50lzCn06CgomotUa RtGcYa2+iCQj/No1nAn10GiPNbKCvJWzmSz8GSFy0jnK+y9pJNoGoZKzbiMdJY4L CmC2lJVMGkG8bhHEKb2Pn7nvA2TUxcEfzxvfIk8ndt8dfrwVOBkzsKL+Gb240sOr rlXGIVsSr1DbYQS5L+ooPN1yGse1zMqtDk+W33npLhD+W/OQO/M4A5txzEfXmmeV +kUEgjXHRejltVXmliHYknS9v8xkh0b+ -----END CERTIFICATE-----Generated at Mon Apr 28 23:50:59 2025 by rpki-client