$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.mft File: kMPYNRcmqLkd4m1GgRKDQ1zFJiM.mft (raw, json) Hash identifier: 0u+476sB4DpnQKF+4WF482PcboJ60l+6mS9B8nKeDlg= Subject key identifier: 35:05:11:50:F5:3D:EE:37:0B:E8:50:2B:75:DA:4A:6D:0D:1B:19:77 Authority key identifier: 90:C3:D8:35:17:26:A8:B9:1D:E2:6D:46:81:12:83:43:5C:C5:26:23 Certificate issuer: /CN=A91EC4DD/serialNumber=90C3D8351726A8B91DE26D46811283435CC52623 Certificate serial: 06C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.mft Manifest number: 06C2 Signing time: Thu 24 Apr 2025 21:54:20 +0000 Manifest this update: Thu 24 Apr 2025 21:54:19 +0000 Manifest next update: Thu 01 May 2025 21:54:19 +0000 Files and hashes: 1: kMPYNRcmqLkd4m1GgRKDQ1zFJiM.crl (hash: zr0pqtAuo1PgZxDwAGx8BA++ORJIhwGAW1YmvoGcNPY=) 2: AFCD8352557E11EBACB5CE3BC4F9AE02.roa (hash: yon8zk/9fCZ3WyFBjyvszv/gLcYp08xtnvCiEsyDKSw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.crl rsync://rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:54:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1736 (0x6c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC4DD, serialNumber=90C3D8351726A8B91DE26D46811283435CC52623 Validity Not Before: Apr 24 21:54:19 2025 GMT Not After : May 1 21:54:19 2025 GMT Subject: CN=680ab30b-1a83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:2b:ce:4e:98:44:bd:2e:d3:52:2d:1e:53:43: 6a:05:35:85:97:1b:76:ea:b3:b0:29:fb:51:f3:5b: e6:06:8e:89:89:d8:fd:5e:a4:b8:f2:b8:dc:ec:31: 0f:13:91:b7:38:31:09:5c:9e:67:34:41:a7:3c:1c: 27:c9:e5:f1:d0:f8:80:91:62:ce:62:91:03:2e:97: 57:31:88:69:a2:2e:e7:05:a8:ea:22:da:c0:4e:a2: 3c:e9:64:34:38:66:53:78:93:fc:96:2e:97:80:97: 46:d4:1a:87:e9:66:2a:32:fa:83:7c:06:c6:ee:75: 61:eb:b0:a0:c0:9c:81:4e:49:58:02:9d:35:eb:1c: ae:8b:24:59:da:e8:7f:6c:59:5d:90:06:c7:1d:31: ea:ca:86:fc:5a:21:43:d2:5f:54:86:99:b3:de:bf: ce:79:b5:b4:28:f7:e0:85:89:6c:e8:55:4b:1f:c1: 1b:4c:a0:fa:fc:a8:9a:60:7b:1d:6e:4d:9f:e2:00: e2:d9:88:05:a4:dc:b1:ed:f1:cf:ab:5d:7a:a0:2f: ae:d8:6d:bf:f9:08:56:86:d2:5c:0b:e5:92:87:6c: 7c:19:de:22:eb:89:1f:82:1e:d4:bb:1f:5d:a4:1c: 90:da:ad:dd:e5:c5:91:8d:de:44:b4:f9:93:f3:d4: 1b:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:05:11:50:F5:3D:EE:37:0B:E8:50:2B:75:DA:4A:6D:0D:1B:19:77 X509v3 Authority Key Identifier: keyid:90:C3:D8:35:17:26:A8:B9:1D:E2:6D:46:81:12:83:43:5C:C5:26:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:df:0a:13:58:ab:d7:4d:53:19:87:a2:a6:71:0e:dc:1e:e9: 00:90:71:68:68:3a:af:12:33:b6:8a:a5:5b:b6:89:06:0a:fc: be:4c:24:a0:4c:09:c2:e4:00:3f:67:62:9b:dc:91:8f:d9:48: ce:6f:f4:b4:dd:99:49:02:be:7a:64:04:c0:f1:7f:9d:dc:32: 4d:e3:a7:85:c2:01:90:ad:76:d8:b6:0c:11:3d:2f:c4:dd:47: 59:f3:63:f7:56:f1:9a:5b:fd:2e:62:b6:ee:2b:db:1d:c7:c4: 6d:51:52:39:8a:f4:27:bb:37:4a:0d:01:88:ab:b8:7e:23:16: 56:a2:4e:c6:3d:3a:59:d2:f9:c6:45:fd:54:e2:41:5d:2d:38: 38:97:cd:34:8c:80:3b:c0:a5:40:d8:56:b1:cc:73:14:a0:91: dd:7d:53:fc:77:96:8c:a6:17:ab:88:f8:1f:49:ff:62:b9:2f: 08:16:c8:2d:b9:ae:de:65:0a:b2:90:c9:c0:99:80:7e:56:36: 1b:a5:a1:3d:d5:22:fb:9c:3f:22:ca:e9:8b:28:4e:6b:73:ec: 56:6a:78:2d:d1:a8:9d:3a:7f:39:1a:30:d2:02:d7:55:e1:72: 0f:64:09:94:90:bf:cd:96:8a:01:7d:a8:1d:c5:42:c0:95:9b: 33:30:53:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBsgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM0REQxMTAvBgNVBAUTKDkwQzNEODM1MTcyNkE4QjkxREUyNkQ0NjgxMTI4MzQz NUNDNTI2MjMwHhcNMjUwNDI0MjE1NDE5WhcNMjUwNTAxMjE1NDE5WjAYMRYwFAYD VQQDEw02ODBhYjMwYi0xYTgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2CvOTphEvS7TUi0eU0NqBTWFlxt26rOwKftR81vmBo6Jidj9XqS48rjc7DEP E5G3ODEJXJ5nNEGnPBwnyeXx0PiAkWLOYpEDLpdXMYhpoi7nBajqItrATqI86WQ0 OGZTeJP8li6XgJdG1BqH6WYqMvqDfAbG7nVh67CgwJyBTklYAp016xyuiyRZ2uh/ bFldkAbHHTHqyob8WiFD0l9Uhpmz3r/OebW0KPfghYls6FVLH8EbTKD6/KiaYHsd bk2f4gDi2YgFpNyx7fHPq116oC+u2G2/+QhWhtJcC+WSh2x8Gd4i64kfgh7Uux9d pByQ2q3d5cWRjd5EtPmT89Qb7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDUFEVD1 Pe43C+hQK3XaSm0NGxl3MB8GA1UdIwQYMBaAFJDD2DUXJqi5HeJtRoESg0NcxSYj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzRERC9CODhDMjI0QzU1 N0QxMUVCQjQ5MEI1M0JDNEY5QUUwMi9rTVBZTlJjbXFMa2Q0bTFHZ1JLRFExekZK aU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tNUFlOUmNtcUxrZDRtMUdnUktEUTF6RkppTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzRERC9CODhDMjI0QzU1N0QxMUVCQjQ5MEI1M0JDNEY5QUUwMi9rTVBZTlJjbXFM a2Q0bTFHZ1JLRFExekZKaU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAT3woTWKvXTVMZh6KmcQ7cHukAkHFoaDqvEjO2iqVbtokGCvy+TCSg TAnC5AA/Z2Kb3JGP2UjOb/S03ZlJAr56ZATA8X+d3DJN46eFwgGQrXbYtgwRPS/E 3UdZ82P3VvGaW/0uYrbuK9sdx8RtUVI5ivQnuzdKDQGIq7h+IxZWok7GPTpZ0vnG Rf1U4kFdLTg4l800jIA7wKVA2FaxzHMUoJHdfVP8d5aMpheriPgfSf9iuS8IFsgt ua7eZQqykMnAmYB+VjYbpaE91SL7nD8iyumLKE5rc+xWangt0aidOn85GjDSAtdV 4XIPZAmUkL/NlooBfagdxULAlZszMFMC -----END CERTIFICATE-----Generated at Sat Apr 26 13:38:51 2025 by rpki-client