$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft File: kBqfnorkBi5SGbdlLY6f7n7FrjM.mft (raw, json) Hash identifier: gSIqVRG56sutflPC0mpiFOYQ3Eyr1HbENi0Xvb2+rlo= Subject key identifier: 72:A3:4A:C2:73:27:82:FE:EA:DF:AD:F6:A7:E2:B8:2C:77:65:2B:7F Authority key identifier: 90:1A:9F:9E:8A:E4:06:2E:52:19:B7:65:2D:8E:9F:EE:7E:C5:AE:33 Certificate issuer: /CN=A91F2CE7/serialNumber=901A9F9E8AE4062E5219B7652D8E9FEE7EC5AE33 Certificate serial: 87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kBqfnorkBi5SGbdlLY6f7n7FrjM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft Manifest number: 85 Signing time: Fri 25 Apr 2025 05:32:55 +0000 Manifest this update: Fri 25 Apr 2025 05:32:54 +0000 Manifest next update: Fri 02 May 2025 05:32:54 +0000 Files and hashes: 1: kBqfnorkBi5SGbdlLY6f7n7FrjM.crl (hash: pHNi7b19gTIaFStV2Ut7loPi+geyCUHjehZzSVWZ0uw=) 2: B377200E5ADD11EF9A462440C4F9AE02.roa (hash: ku0nQgImAfjqlfmOWSwIKN/zsrk6kYnMycZSjI2lh3o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.crl rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kBqfnorkBi5SGbdlLY6f7n7FrjM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:32:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 135 (0x87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2CE7, serialNumber=901A9F9E8AE4062E5219B7652D8E9FEE7EC5AE33 Validity Not Before: Apr 25 05:32:54 2025 GMT Not After : May 2 05:32:54 2025 GMT Subject: CN=680b1e86-dd15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:60:d6:04:78:5b:d9:e0:ee:39:12:c5:26:bc: fe:cf:2d:a2:80:16:96:ea:17:fa:b8:c6:62:48:ee: f0:4d:14:66:db:a8:c5:df:d3:69:59:e0:15:2b:e3: b3:3b:74:d9:47:9f:c4:70:bf:ca:81:14:3a:74:f8: 6a:16:f2:51:3c:50:76:6d:b9:61:49:24:38:13:cd: 07:90:53:e2:a0:a0:71:2a:38:7d:25:22:4c:36:38: ec:79:2e:09:98:d2:41:d3:41:2d:d4:61:c0:d3:3a: 64:d5:80:2d:86:ce:37:d6:7b:71:aa:c8:c4:60:d9: 31:36:d4:88:e8:7a:58:77:64:a8:2c:a1:51:52:b8: 71:f6:7a:46:15:9a:58:9c:2f:bf:7a:a9:48:e8:0e: e8:fd:4a:1b:24:ff:7f:4a:33:7a:b2:07:ef:09:05: 2d:b7:cc:3a:59:8e:ab:27:da:ec:f0:74:ed:1a:b8: 1c:cd:33:07:49:7e:cd:3d:a9:62:9c:02:aa:50:5d: 9f:55:7f:ea:5e:2b:b3:4f:85:19:62:54:c7:19:60: de:0b:b2:7a:42:49:71:36:cb:7e:44:cf:a4:b0:5c: 62:2a:4f:17:c1:88:3b:7a:c5:a5:d4:a4:7a:81:c9: 86:a2:8b:46:58:b6:8c:9e:94:67:1b:ab:d4:b0:43: 3b:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:A3:4A:C2:73:27:82:FE:EA:DF:AD:F6:A7:E2:B8:2C:77:65:2B:7F X509v3 Authority Key Identifier: keyid:90:1A:9F:9E:8A:E4:06:2E:52:19:B7:65:2D:8E:9F:EE:7E:C5:AE:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kBqfnorkBi5SGbdlLY6f7n7FrjM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:68:cf:3f:73:2d:43:db:4e:f2:65:06:a1:cd:f8:51:16:4b: e9:5d:4d:27:6a:a5:f6:f2:6f:98:3c:39:41:a0:b9:2a:6e:b1: 64:1f:bb:18:20:9a:04:69:fe:73:0a:53:31:81:b5:55:23:10: d9:a5:fd:69:b3:26:ea:73:ab:7a:52:67:df:d8:54:e7:6f:e1: 21:2c:d3:0c:c9:b5:c9:1e:e2:fd:52:da:09:d7:d3:75:48:5d: 1f:77:b9:53:ab:52:15:b6:41:dd:77:1b:29:78:51:a3:c6:fe: 19:1b:07:17:6e:ae:3b:ca:31:ea:c8:c2:cc:20:2d:b5:df:4f: ac:f9:10:fe:d0:4f:4c:9b:3a:2c:2e:e0:b8:4c:8f:c0:94:bb: 86:e2:4f:c3:37:ce:ce:58:64:ad:2b:be:f0:40:bf:12:69:8c: f6:13:da:0d:bd:f0:a0:cd:f1:7c:0b:78:30:65:d4:a8:ea:ea: 2f:ad:0d:9e:f8:16:8c:2f:38:31:b3:4d:da:3b:5d:aa:f7:e5: 57:6c:2e:b6:82:f5:30:63:ee:bb:92:d6:07:05:75:15:b7:60: cc:4a:19:3f:80:f0:2b:48:5b:22:8f:fb:ca:a9:91:1a:4f:ef: e4:01:64:fb:39:f6:68:d8:ab:51:cc:a8:b6:b6:52:40:28:f3: d1:3e:f2:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJDRTcxMTAvBgNVBAUTKDkwMUE5RjlFOEFFNDA2MkU1MjE5Qjc2NTJEOEU5RkVF N0VDNUFFMzMwHhcNMjUwNDI1MDUzMjU0WhcNMjUwNTAyMDUzMjU0WjAYMRYwFAYD VQQDEw02ODBiMWU4Ni1kZDE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzGDWBHhb2eDuORLFJrz+zy2igBaW6hf6uMZiSO7wTRRm26jF39NpWeAVK+Oz O3TZR5/EcL/KgRQ6dPhqFvJRPFB2bblhSSQ4E80HkFPioKBxKjh9JSJMNjjseS4J mNJB00Et1GHA0zpk1YAths431ntxqsjEYNkxNtSI6HpYd2SoLKFRUrhx9npGFZpY nC+/eqlI6A7o/UobJP9/SjN6sgfvCQUtt8w6WY6rJ9rs8HTtGrgczTMHSX7NPali nAKqUF2fVX/qXiuzT4UZYlTHGWDeC7J6QklxNst+RM+ksFxiKk8XwYg7esWl1KR6 gcmGootGWLaMnpRnG6vUsEM7dQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHKjSsJz J4L+6t+t9qfiuCx3ZSt/MB8GA1UdIwQYMBaAFJAan56K5AYuUhm3ZS2On+5+xa4z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkNFNy83MkY3NUI5ODVB REQxMUVGODEyQzkyM0ZDNEY5QUUwMi9rQnFmbm9ya0JpNVNHYmRsTFk2ZjduN0Zy ak0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tCcWZub3JrQmk1U0diZGxMWTZmN243RnJqTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MkNFNy83MkY3NUI5ODVBREQxMUVGODEyQzkyM0ZDNEY5QUUwMi9rQnFmbm9ya0Jp NVNHYmRsTFk2ZjduN0Zyak0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhaM8/cy1D207yZQahzfhRFkvpXU0naqX28m+YPDlBoLkqbrFkH7sY IJoEaf5zClMxgbVVIxDZpf1psybqc6t6Umff2FTnb+EhLNMMybXJHuL9UtoJ19N1 SF0fd7lTq1IVtkHddxspeFGjxv4ZGwcXbq47yjHqyMLMIC2130+s+RD+0E9Mmzos LuC4TI/AlLuG4k/DN87OWGStK77wQL8SaYz2E9oNvfCgzfF8C3gwZdSo6uovrQ2e +BaMLzgxs03aO12q9+VXbC62gvUwY+67ktYHBXUVt2DMShk/gPArSFsij/vKqZEa T+/kAWT7OfZo2KtRzKi2tlJAKPPRPvKM -----END CERTIFICATE-----Generated at Sat Apr 26 03:55:37 2025 by rpki-client