$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft File: kKmEULnak4EYotWtU02IKPS5RjQ.mft (raw, json) Hash identifier: ol0Dpqi6Z7DOKbFitNVzWiS6Opf5tfc3ngXaM0a6TyA= Subject key identifier: 25:B5:D7:A3:75:1B:38:78:B3:8A:BE:5B:AF:FD:6F:C5:A1:5E:D3:1D Authority key identifier: 90:A9:84:50:B9:DA:93:81:18:A2:D5:AD:53:4D:88:28:F4:B9:46:34 Certificate issuer: /CN=A91EA2CC/serialNumber=90A98450B9DA938118A2D5AD534D8828F4B94634 Certificate serial: 0C0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft Manifest number: 0BFA Signing time: Thu 24 Apr 2025 18:40:51 +0000 Manifest this update: Thu 24 Apr 2025 18:40:50 +0000 Manifest next update: Thu 01 May 2025 18:40:50 +0000 Files and hashes: 1: kKmEULnak4EYotWtU02IKPS5RjQ.crl (hash: 5Q6VIaXG+K6qByDu11wPQKIhRvVsS77I+pp4FFEGqWU=) 2: D376CA2E63B311EFBEFCDF10C4F9AE02.roa (hash: G+U7uQFgAb2U+N/txdaeFUXvdA97Z5VnhrdZ+BD6M4c=) 3: E6144BC6F52011EFB886A255C4F9AE02.roa (hash: aEMS3M29hCCeByUCXZ+uvfYFpf4/VBfRmYpl07QvYhY=) 4: C9989D9EF52011EF88416555C4F9AE02.roa (hash: 5ttWZpUai22oFSUg02AkUKazNYGpWMAvqC2hReQsDD4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.crl rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:40:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3084 (0xc0c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA2CC, serialNumber=90A98450B9DA938118A2D5AD534D8828F4B94634 Validity Not Before: Apr 24 18:40:50 2025 GMT Not After : May 1 18:40:50 2025 GMT Subject: CN=680a85b3-0e63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:77:74:34:33:f9:b9:20:06:e0:ea:40:be:c5: 3f:f1:e9:e2:5f:e2:88:4b:a8:24:5c:4c:9d:a2:bf: 79:24:2d:ad:a0:d4:1e:ec:b5:38:c5:54:32:32:11: 18:77:b4:f8:59:9c:46:15:af:94:90:96:94:f8:89: f0:e1:72:c5:3b:1a:55:6c:22:75:c0:d5:91:6d:b4: d8:1a:6c:9d:ca:55:91:14:0a:6c:93:4e:18:f9:36: 00:09:69:81:b6:7e:5b:f0:5c:68:3d:4c:f3:3f:51: 79:db:77:22:8a:5a:6a:f8:98:99:d8:67:87:c0:10: a9:17:74:3e:dd:81:37:51:f1:44:9c:77:7f:a9:2a: a1:e7:68:5b:1d:8c:59:d4:c9:f6:a0:2a:7e:65:b4: a3:ab:b5:1c:37:90:a5:ba:d6:4b:4f:1c:7a:c8:d5: 32:b5:44:e7:12:fd:2f:49:0c:73:bf:ad:fc:e0:0f: 24:14:c8:a7:08:f4:b0:21:a4:8b:0a:d7:82:57:0a: ce:78:f9:88:c2:b8:bb:1d:58:0b:98:64:be:54:1e: 84:83:32:ff:18:7d:ed:2f:6a:43:8b:d5:9e:3f:a1: b6:5d:6e:1d:8b:84:ac:19:08:53:d1:36:d5:99:52: d4:8c:84:10:1f:06:ba:b1:5d:86:4d:52:84:1b:08: 3d:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:B5:D7:A3:75:1B:38:78:B3:8A:BE:5B:AF:FD:6F:C5:A1:5E:D3:1D X509v3 Authority Key Identifier: keyid:90:A9:84:50:B9:DA:93:81:18:A2:D5:AD:53:4D:88:28:F4:B9:46:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:1d:ae:48:0e:15:3c:70:8f:f3:db:1b:16:46:73:db:db:b8: 6c:6a:95:2b:0e:cc:d8:0e:e6:3e:67:51:71:b1:47:3d:ff:79: 8d:3f:db:1e:35:ff:83:0c:e7:f2:45:b8:cf:b7:97:3a:37:57: 16:c8:bf:00:18:1c:44:27:bd:85:bf:46:30:a8:0d:2b:98:bd: cb:06:47:c3:a6:9e:3a:ae:e1:d7:d1:d9:65:f4:8d:ea:cd:de: 25:55:6a:12:05:bb:c3:eb:b3:73:36:ce:eb:9d:a5:20:dc:81: d2:b8:78:e1:7c:16:0c:ae:49:f6:c5:30:a4:aa:33:42:6e:cb: 53:3e:68:c0:e3:bb:1c:3b:07:f6:35:4e:ec:de:b7:07:8d:8d: 67:ef:0e:15:60:a5:94:1d:7b:15:86:a9:46:fa:9f:91:81:23: 6c:89:df:87:06:be:52:f0:6c:7b:63:a7:5f:ec:7e:65:e5:c8: 3a:ac:b1:91:cd:a5:e9:2a:ef:92:7a:a5:d2:f2:7c:13:a7:60: 85:9c:da:39:ea:e5:fb:1d:4f:c0:87:db:72:78:cc:e1:3e:7f: aa:c6:0c:e4:bb:08:17:bc:f1:53:e2:24:d9:0e:7c:1d:1a:b6: eb:bd:8b:bf:7e:f9:5b:cd:d4:26:f9:40:bd:84:48:d8:fc:e6: 8d:5c:83:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDAwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUEyQ0MxMTAvBgNVBAUTKDkwQTk4NDUwQjlEQTkzODExOEEyRDVBRDUzNEQ4ODI4 RjRCOTQ2MzQwHhcNMjUwNDI0MTg0MDUwWhcNMjUwNTAxMTg0MDUwWjAYMRYwFAYD VQQDEw02ODBhODViMy0wZTYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApnd0NDP5uSAG4OpAvsU/8eniX+KIS6gkXEydor95JC2toNQe7LU4xVQyMhEY d7T4WZxGFa+UkJaU+Inw4XLFOxpVbCJ1wNWRbbTYGmydylWRFApsk04Y+TYACWmB tn5b8FxoPUzzP1F523ciilpq+JiZ2GeHwBCpF3Q+3YE3UfFEnHd/qSqh52hbHYxZ 1Mn2oCp+ZbSjq7UcN5ClutZLTxx6yNUytUTnEv0vSQxzv6384A8kFMinCPSwIaSL CteCVwrOePmIwri7HVgLmGS+VB6EgzL/GH3tL2pDi9WeP6G2XW4di4SsGQhT0TbV mVLUjIQQHwa6sV2GTVKEGwg9uQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCW116N1 Gzh4s4q+W6/9b8WhXtMdMB8GA1UdIwQYMBaAFJCphFC52pOBGKLVrVNNiCj0uUY0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTJDQy9GMjZFMDZDRTEx RjkxMUVBOUNCODhDMzVDNEY5QUUwMi9rS21FVUxuYWs0RVlvdFd0VTAySUtQUzVS alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tLbUVVTG5hazRFWW90V3RVMDJJS1BTNVJqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTJDQy9GMjZFMDZDRTExRjkxMUVBOUNCODhDMzVDNEY5QUUwMi9rS21FVUxuYWs0 RVlvdFd0VTAySUtQUzVSalEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClHa5IDhU8cI/z2xsWRnPb27hsapUrDszYDuY+Z1FxsUc9/3mNP9se Nf+DDOfyRbjPt5c6N1cWyL8AGBxEJ72Fv0YwqA0rmL3LBkfDpp46ruHX0dll9I3q zd4lVWoSBbvD67NzNs7rnaUg3IHSuHjhfBYMrkn2xTCkqjNCbstTPmjA47scOwf2 NU7s3rcHjY1n7w4VYKWUHXsVhqlG+p+RgSNsid+HBr5S8Gx7Y6df7H5l5cg6rLGR zaXpKu+SeqXS8nwTp2CFnNo56uX7HU/Ah9tyeMzhPn+qxgzkuwgXvPFT4iTZDnwd GrbrvYu/fvlbzdQm+UC9hEjY/OaNXIM+ -----END CERTIFICATE-----Generated at Sat Apr 26 15:11:18 2025 by rpki-client