$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft File: KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft (raw, json) Hash identifier: d4gmrvXHw5LddBat7uvvovX5QVClPKQnckRf+xubuKM= Subject key identifier: F4:1C:ED:E2:C4:A4:FC:3D:64:2D:0C:7F:A1:CE:2D:C3:56:EC:AD:9A Authority key identifier: 28:F1:8E:C7:49:EA:91:B5:A3:29:97:49:F2:AB:E2:78:8A:10:C6:91 Certificate issuer: /CN=A91DA252/serialNumber=28F18EC749EA91B5A3299749F2ABE2788A10C691 Certificate serial: 099B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPGOx0nqkbWjKZdJ8qvieIoQxpE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft Manifest number: 0995 Signing time: Thu 24 Apr 2025 19:58:34 +0000 Manifest this update: Thu 24 Apr 2025 19:58:33 +0000 Manifest next update: Thu 01 May 2025 19:58:33 +0000 Files and hashes: 1: KPGOx0nqkbWjKZdJ8qvieIoQxpE.crl (hash: QlORymOtACOkvYXRwx6IZ0nJxWJKS0Z0kqxEX2t4gaM=) 2: 81E66AB486DD11EAA5DCD466C4F9AE02.roa (hash: PABbUqoLwf3xZn77dm2ppG3YXtLL0LLzakgXhNUgKAg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.crl rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPGOx0nqkbWjKZdJ8qvieIoQxpE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:58:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2459 (0x99b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA252, serialNumber=28F18EC749EA91B5A3299749F2ABE2788A10C691 Validity Not Before: Apr 24 19:58:33 2025 GMT Not After : May 1 19:58:33 2025 GMT Subject: CN=680a97e9-732d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:37:7c:cb:93:cc:2a:1d:44:40:4d:69:83:ee: 03:ac:a2:60:d8:33:1d:0a:fc:13:32:e4:ce:a5:9f: a6:8b:7d:cf:f4:81:e3:4d:9c:58:51:f5:29:0c:c6: 1b:a9:c4:60:ce:46:68:fd:d7:db:dd:a4:45:bc:4b: ba:82:38:b4:83:92:78:47:c7:8b:bf:0d:81:89:41: 5d:64:67:f1:be:e1:88:92:07:ea:0a:cc:67:63:26: 0e:43:0f:d4:10:a7:c7:61:5a:87:d8:43:8f:69:4a: 32:0a:b1:e4:e6:07:e6:8b:d0:f5:fc:14:81:9a:0e: d2:09:db:a1:c5:67:01:02:41:ae:23:1a:69:3d:7d: 73:af:2d:b5:df:45:2b:d6:5b:27:19:88:a0:b2:10: 37:05:ba:a5:82:c3:76:8b:10:7a:0e:71:bd:24:95: 51:ff:e6:12:11:44:1f:01:64:e3:b8:00:cd:28:2a: a8:eb:4e:86:93:30:0b:dd:8a:09:dc:7f:6d:e5:6b: b1:db:12:cb:8f:5b:e4:64:90:96:54:db:54:78:83: 43:96:38:39:35:af:b1:77:3b:56:3a:f8:6a:42:a3: 1c:72:94:74:25:24:59:1b:0d:1e:67:c0:1f:3e:9c: 76:48:0e:f5:b1:d2:12:e7:b7:67:d2:27:09:95:8d: 4b:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:1C:ED:E2:C4:A4:FC:3D:64:2D:0C:7F:A1:CE:2D:C3:56:EC:AD:9A X509v3 Authority Key Identifier: keyid:28:F1:8E:C7:49:EA:91:B5:A3:29:97:49:F2:AB:E2:78:8A:10:C6:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPGOx0nqkbWjKZdJ8qvieIoQxpE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:b2:07:cc:13:3f:36:d8:22:98:c2:32:49:20:00:23:ca:25: 17:5f:35:ac:2f:a0:b8:fc:38:8b:d0:c7:f2:2a:eb:28:da:c5: cc:72:0a:70:d4:9d:a0:6a:ad:71:02:c2:28:4f:df:15:1d:e1: 04:e7:6d:39:d9:9e:cc:55:2d:f4:50:20:69:ab:75:d9:4e:d3: 7b:d6:89:7f:b0:32:87:cf:14:78:b8:e0:4c:0e:bf:98:0f:78: f8:3b:7b:a6:bb:a2:66:e3:fa:39:62:b5:ac:47:27:21:a3:5e: a2:b1:78:88:08:4c:ef:9b:20:10:fc:07:88:85:9b:65:4b:48: 7c:a3:d2:53:00:e5:5c:35:37:3f:20:a5:96:c8:6b:d8:8c:c3: 81:97:06:7f:95:64:7b:60:15:83:24:37:b5:5c:d8:c1:5a:68: 28:bc:3e:19:53:af:09:1f:2f:24:b5:2d:42:68:a4:f5:fe:da: 03:74:e4:e2:c5:84:b7:9f:39:c6:2d:0b:3f:8a:76:8a:34:41: 4f:a0:ad:d7:55:83:4a:ec:9d:d5:6c:32:57:e1:09:49:33:c3: 99:2b:56:6a:74:a3:85:0f:11:cf:e1:6f:d4:19:d9:85:22:3c: 56:36:50:8e:92:64:a3:59:fd:7d:aa:05:e3:1d:08:41:3e:ec: d3:c1:08:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCZswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEyNTIxMTAvBgNVBAUTKDI4RjE4RUM3NDlFQTkxQjVBMzI5OTc0OUYyQUJFMjc4 OEExMEM2OTEwHhcNMjUwNDI0MTk1ODMzWhcNMjUwNTAxMTk1ODMzWjAYMRYwFAYD VQQDEw02ODBhOTdlOS03MzJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Dd8y5PMKh1EQE1pg+4DrKJg2DMdCvwTMuTOpZ+mi33P9IHjTZxYUfUpDMYb qcRgzkZo/dfb3aRFvEu6gji0g5J4R8eLvw2BiUFdZGfxvuGIkgfqCsxnYyYOQw/U EKfHYVqH2EOPaUoyCrHk5gfmi9D1/BSBmg7SCduhxWcBAkGuIxppPX1zry2130Ur 1lsnGYigshA3BbqlgsN2ixB6DnG9JJVR/+YSEUQfAWTjuADNKCqo606GkzAL3YoJ 3H9t5Wux2xLLj1vkZJCWVNtUeINDljg5Na+xdztWOvhqQqMccpR0JSRZGw0eZ8Af Ppx2SA71sdIS57dn0icJlY1LYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPQc7eLE pPw9ZC0Mf6HOLcNW7K2aMB8GA1UdIwQYMBaAFCjxjsdJ6pG1oymXSfKr4niKEMaR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTI1Mi9GMDgxNzE2ODg2 REMxMUVBOUJEM0M0NjZDNEY5QUUwMi9LUEdPeDBucWtiV2pLWmRKOHF2aWVJb1F4 cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tQR094MG5xa2JXaktaZEo4cXZpZUlvUXhwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTI1Mi9GMDgxNzE2ODg2REMxMUVBOUJEM0M0NjZDNEY5QUUwMi9LUEdPeDBucWti V2pLWmRKOHF2aWVJb1F4cEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmsgfMEz822CKYwjJJIAAjyiUXXzWsL6C4/DiL0MfyKuso2sXMcgpw 1J2gaq1xAsIoT98VHeEE52052Z7MVS30UCBpq3XZTtN71ol/sDKHzxR4uOBMDr+Y D3j4O3umu6Jm4/o5YrWsRycho16isXiICEzvmyAQ/AeIhZtlS0h8o9JTAOVcNTc/ IKWWyGvYjMOBlwZ/lWR7YBWDJDe1XNjBWmgovD4ZU68JHy8ktS1CaKT1/toDdOTi xYS3nznGLQs/inaKNEFPoK3XVYNK7J3VbDJX4QlJM8OZK1ZqdKOFDxHP4W/UGdmF IjxWNlCOkmSjWf19qgXjHQhBPuzTwQj9 -----END CERTIFICATE-----Generated at Sat Apr 26 12:29:12 2025 by rpki-client