$ rpki-client -vvf rpki.apnic.net/member_repository/A91E04FE/86A6F654B73F11EEAF12B87BC4F9AE02/KIN0Gw9bynZPTTyD0-1qDyfNIpg.mft File: KIN0Gw9bynZPTTyD0-1qDyfNIpg.mft (raw, json) Hash identifier: wvtIQ/xKMUsE5mHW5aev9+4dmn5jgV7iMam5f/1E5wU= Subject key identifier: FA:E5:E3:73:D7:11:35:08:64:64:F4:6D:A9:7B:99:94:E7:E7:24:81 Authority key identifier: 28:83:74:1B:0F:5B:CA:76:4F:4D:3C:83:D3:ED:6A:0F:27:CD:22:98 Certificate issuer: /CN=A91E04FE/serialNumber=2883741B0F5BCA764F4D3C83D3ED6A0F27CD2298 Certificate serial: F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KIN0Gw9bynZPTTyD0-1qDyfNIpg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E04FE/86A6F654B73F11EEAF12B87BC4F9AE02/KIN0Gw9bynZPTTyD0-1qDyfNIpg.mft Manifest number: F1 Signing time: Fri 25 Apr 2025 04:23:09 +0000 Manifest this update: Fri 25 Apr 2025 04:23:08 +0000 Manifest next update: Fri 02 May 2025 04:23:08 +0000 Files and hashes: 1: KIN0Gw9bynZPTTyD0-1qDyfNIpg.crl (hash: keU4C3tjrkZTQx6IV8c73XNkZFGFjvPoUtw/bCUerD0=) 2: 5EE215CCC33D11EE97B67979C4F9AE02.roa (hash: qIW59Vu75lotEAXz2XFEI0+6mfrqPvKAPSHChiVChpE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E04FE/86A6F654B73F11EEAF12B87BC4F9AE02/KIN0Gw9bynZPTTyD0-1qDyfNIpg.crl rsync://rpki.apnic.net/member_repository/A91E04FE/86A6F654B73F11EEAF12B87BC4F9AE02/KIN0Gw9bynZPTTyD0-1qDyfNIpg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KIN0Gw9bynZPTTyD0-1qDyfNIpg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:23:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 245 (0xf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E04FE, serialNumber=2883741B0F5BCA764F4D3C83D3ED6A0F27CD2298 Validity Not Before: Apr 25 04:23:08 2025 GMT Not After : May 2 04:23:08 2025 GMT Subject: CN=680b0e2d-9016 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ca:e1:f5:bc:4d:d1:ba:9c:c2:68:78:f8:24: 84:7b:05:e4:02:20:10:f1:92:1b:f3:d2:d0:65:f4: aa:3e:6c:9a:87:d2:31:5e:01:b2:3f:ca:61:86:ef: 5e:10:21:1b:eb:81:8e:15:ca:70:6e:01:7c:cd:2c: 1d:c6:57:d4:44:47:0d:f3:d5:f6:ba:41:fd:ec:9c: 8e:5a:de:02:2c:61:73:57:23:7d:db:e9:d4:60:bc: 68:f6:65:a5:be:a0:7c:be:8b:45:30:46:79:f0:33: 59:3f:c6:a2:03:15:01:11:a6:2f:42:86:b0:65:c7: 2d:d1:77:21:77:24:7e:3d:bf:af:be:83:d2:64:62: 2e:4b:67:b0:b1:16:2a:0f:db:d8:b4:19:87:4b:73: 4e:68:9f:c1:8e:45:40:92:05:9f:40:df:2d:4f:6f: be:e6:6e:4c:f4:77:03:63:7c:ea:f9:e9:32:2e:3e: 91:1f:8b:1c:70:6a:a8:e4:46:bf:c4:d7:31:fe:4a: 0c:b3:d3:d8:ee:2c:72:27:90:00:a9:fb:f8:9c:ec: 46:7e:b1:d9:8f:26:7d:30:82:99:1a:f2:b8:b9:4d: a0:e8:ab:b2:e2:61:5c:c0:b4:54:63:1d:5c:8a:6a: 4b:71:4f:49:7e:ae:70:3c:48:29:98:cf:74:67:f1: d0:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:E5:E3:73:D7:11:35:08:64:64:F4:6D:A9:7B:99:94:E7:E7:24:81 X509v3 Authority Key Identifier: keyid:28:83:74:1B:0F:5B:CA:76:4F:4D:3C:83:D3:ED:6A:0F:27:CD:22:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E04FE/86A6F654B73F11EEAF12B87BC4F9AE02/KIN0Gw9bynZPTTyD0-1qDyfNIpg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KIN0Gw9bynZPTTyD0-1qDyfNIpg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E04FE/86A6F654B73F11EEAF12B87BC4F9AE02/KIN0Gw9bynZPTTyD0-1qDyfNIpg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:b2:2e:22:b8:50:3c:17:41:d6:85:b9:54:fc:30:46:f8:8a: bf:6a:56:3a:6a:43:cc:01:18:03:78:65:8a:25:aa:46:b1:97: 94:79:eb:38:9b:b4:d4:75:54:60:06:a0:22:f5:e5:c3:b2:b0: 31:2b:17:08:e8:2c:83:25:e2:8c:53:92:55:a4:53:6d:a1:ec: fb:59:13:88:77:5d:44:f8:2a:67:64:24:f5:b6:da:6d:9b:62: ad:c4:34:48:25:f7:15:b8:72:a3:58:01:0e:26:36:2d:ab:2f: 6c:12:a6:5f:9e:2b:21:ce:ee:ce:3a:38:d0:0c:8d:27:85:a1: 77:13:77:23:ce:3c:23:7a:c7:ba:e6:46:f3:4a:8f:1e:bd:54: a5:6f:5b:51:fc:56:13:73:4d:d9:95:d4:34:44:d6:a9:87:1f: 7e:e2:5d:7f:0c:a7:62:e5:d0:5c:f2:a4:32:33:ba:52:ec:81: 86:1d:38:8f:42:69:b1:4e:d3:42:b2:05:42:f6:c4:b4:13:95: 2e:fc:24:b3:8a:8b:4e:e9:35:d8:2b:f5:af:c0:e5:e3:b0:ab: 66:53:c1:a2:d9:a2:e7:5e:fb:b6:42:1d:69:cc:f5:92:5e:9f: 1d:1d:51:09:5f:04:65:9d:24:5f:2c:76:fe:51:15:3d:07:ab: e6:38:80:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTA0RkUxMTAvBgNVBAUTKDI4ODM3NDFCMEY1QkNBNzY0RjREM0M4M0QzRUQ2QTBG MjdDRDIyOTgwHhcNMjUwNDI1MDQyMzA4WhcNMjUwNTAyMDQyMzA4WjAYMRYwFAYD VQQDEw02ODBiMGUyZC05MDE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA08rh9bxN0bqcwmh4+CSEewXkAiAQ8ZIb89LQZfSqPmyah9IxXgGyP8phhu9e ECEb64GOFcpwbgF8zSwdxlfUREcN89X2ukH97JyOWt4CLGFzVyN92+nUYLxo9mWl vqB8votFMEZ58DNZP8aiAxUBEaYvQoawZcct0XchdyR+Pb+vvoPSZGIuS2ewsRYq D9vYtBmHS3NOaJ/BjkVAkgWfQN8tT2++5m5M9HcDY3zq+ekyLj6RH4sccGqo5Ea/ xNcx/koMs9PY7ixyJ5AAqfv4nOxGfrHZjyZ9MIKZGvK4uU2g6Kuy4mFcwLRUYx1c impLcU9Jfq5wPEgpmM90Z/HQvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPrl43PX ETUIZGT0bal7mZTn5ySBMB8GA1UdIwQYMBaAFCiDdBsPW8p2T008g9Ptag8nzSKY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDRGRS84NkE2RjY1NEI3 M0YxMUVFQUYxMkI4N0JDNEY5QUUwMi9LSU4wR3c5YnluWlBUVHlEMC0xcUR5Zk5J cGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tJTjBHdzlieW5aUFRUeUQwLTFxRHlmTklwZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDRGRS84NkE2RjY1NEI3M0YxMUVFQUYxMkI4N0JDNEY5QUUwMi9LSU4wR3c5Ynlu WlBUVHlEMC0xcUR5Zk5JcGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChsi4iuFA8F0HWhblU/DBG+Iq/alY6akPMARgDeGWKJapGsZeUees4 m7TUdVRgBqAi9eXDsrAxKxcI6CyDJeKMU5JVpFNtoez7WROId11E+CpnZCT1ttpt m2KtxDRIJfcVuHKjWAEOJjYtqy9sEqZfnishzu7OOjjQDI0nhaF3E3cjzjwjese6 5kbzSo8evVSlb1tR/FYTc03ZldQ0RNaphx9+4l1/DKdi5dBc8qQyM7pS7IGGHTiP QmmxTtNCsgVC9sS0E5Uu/CSziotO6TXYK/WvwOXjsKtmU8Gi2aLnXvu2Qh1pzPWS Xp8dHVEJXwRlnSRfLHb+URU9B6vmOICH -----END CERTIFICATE-----Generated at Sat Apr 26 04:23:45 2025 by rpki-client