$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft File: Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft (raw, json) Hash identifier: R5rNvJuYLJVMukEZ6krz4uUQJdzW3ORKR25RB+zTS9o= Subject key identifier: 86:BC:DF:58:21:4E:84:22:58:5B:B4:5A:CA:B5:CE:F7:AD:71:77:5A Authority key identifier: 2B:3E:E4:4E:A9:CB:5B:81:29:6B:B6:7D:F0:F5:46:F8:AA:C8:A4:B4 Certificate issuer: /CN=A91F4F00/serialNumber=2B3EE44EA9CB5B81296BB67DF0F546F8AAC8A4B4 Certificate serial: 0771 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft Manifest number: 076B Signing time: Thu 24 Apr 2025 21:19:08 +0000 Manifest this update: Thu 24 Apr 2025 21:19:08 +0000 Manifest next update: Thu 01 May 2025 21:19:08 +0000 Files and hashes: 1: Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl (hash: pAXxIzjrJk21dKD4hG3sl0bqgZ7g/gfWuGQ7SGwX/ac=) 2: 395AFD84135811EB942A3E15C4F9AE02.roa (hash: +nVGHDmFpNMeCZK4D+EYT1WCdxSsITi4ixDFG3tX1xc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:19:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1905 (0x771) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4F00, serialNumber=2B3EE44EA9CB5B81296BB67DF0F546F8AAC8A4B4 Validity Not Before: Apr 24 21:19:08 2025 GMT Not After : May 1 21:19:08 2025 GMT Subject: CN=680aaacc-90a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f3:14:04:66:e3:14:39:79:62:f7:09:12:70: 4c:86:32:e1:90:7e:4e:02:2c:02:ef:86:bb:ca:2c: b9:1c:66:e8:c0:c8:d4:5b:20:b3:7a:68:93:01:8a: e6:54:02:f8:23:18:fc:0d:8e:6b:e4:65:ce:a0:7b: 18:fb:fe:1b:69:95:14:49:c5:ab:ef:f4:b5:3b:2c: 9c:bb:f7:b2:65:9b:64:4a:56:3c:44:df:ff:90:3b: 3a:54:43:95:af:88:b4:8e:8f:ac:f6:00:6a:0f:94: 17:e9:88:67:5e:f2:19:39:84:44:06:49:fb:54:af: e3:ec:2d:65:75:43:cf:51:bc:76:d9:10:1a:9a:ec: 63:fe:53:12:d6:4b:e7:20:94:5e:f0:f2:fd:29:3a: 6c:c6:e3:c4:d8:7a:db:8e:9c:b7:fb:be:5b:9f:e8: 4a:ed:a6:58:00:a2:5c:ae:21:2a:9d:c1:c6:b9:05: 82:58:47:b8:62:2d:44:4c:d7:e7:b9:68:70:2e:ad: b3:7a:8e:3f:05:57:a1:44:01:f8:be:e5:6b:b7:45: 3d:0c:3f:a3:01:4b:36:54:29:40:d0:f8:de:82:fd: e4:b4:5a:ae:60:80:f2:76:93:e0:dc:69:4b:b6:4b: a5:63:d6:09:8d:40:f4:43:9a:c5:b4:8a:9e:ce:d9: 1c:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:BC:DF:58:21:4E:84:22:58:5B:B4:5A:CA:B5:CE:F7:AD:71:77:5A X509v3 Authority Key Identifier: keyid:2B:3E:E4:4E:A9:CB:5B:81:29:6B:B6:7D:F0:F5:46:F8:AA:C8:A4:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:71:38:49:52:09:9e:40:60:2c:d9:89:98:a2:87:1e:ca:d4: e3:18:ba:e6:ea:bd:07:4b:52:8d:7d:4f:a5:91:68:34:e5:32: d3:2a:f9:84:c3:7d:8a:54:de:ca:22:51:ab:9d:15:6c:b4:26: b9:bd:cf:4e:35:18:1f:80:f3:72:2b:3b:8b:1f:4b:5a:87:e1: 7e:37:4b:ea:d2:ae:38:dc:25:4a:a5:ad:90:1c:58:79:91:a1: ee:67:33:fb:22:85:09:a1:1e:1e:3e:5f:3f:d8:50:97:7b:da: ed:38:bb:e3:96:1a:90:1f:fd:83:11:8e:0b:10:3f:75:28:23: 9a:03:98:10:df:5a:d1:db:0a:0f:44:74:8d:43:64:cf:b0:7d: 56:f2:b9:54:b0:f5:1c:bc:26:01:a0:6b:21:ef:10:25:54:8e: cf:75:c1:87:42:99:b7:fd:b9:d6:da:d0:16:c8:8e:37:6e:d1: 7b:45:af:35:f8:60:d2:27:cc:a9:3b:28:97:a9:e1:ff:d6:cc: b7:97:90:25:0d:a1:38:08:4b:b9:e1:39:d4:ec:00:19:4c:90: fd:cd:aa:d1:b9:3a:d8:a7:cb:5d:51:46:fd:c7:22:ce:41:a3: cf:4b:14:c9:9e:7f:8c:15:d7:8c:50:39:ce:cb:34:ef:94:65: 7c:a6:d5:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB3EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRGMDAxMTAvBgNVBAUTKDJCM0VFNDRFQTlDQjVCODEyOTZCQjY3REYwRjU0NkY4 QUFDOEE0QjQwHhcNMjUwNDI0MjExOTA4WhcNMjUwNTAxMjExOTA4WjAYMRYwFAYD VQQDEw02ODBhYWFjYy05MGEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvPMUBGbjFDl5YvcJEnBMhjLhkH5OAiwC74a7yiy5HGbowMjUWyCzemiTAYrm VAL4Ixj8DY5r5GXOoHsY+/4baZUUScWr7/S1Oyycu/eyZZtkSlY8RN//kDs6VEOV r4i0jo+s9gBqD5QX6YhnXvIZOYREBkn7VK/j7C1ldUPPUbx22RAamuxj/lMS1kvn IJRe8PL9KTpsxuPE2Hrbjpy3+75bn+hK7aZYAKJcriEqncHGuQWCWEe4Yi1ETNfn uWhwLq2zeo4/BVehRAH4vuVrt0U9DD+jAUs2VClA0Pjegv3ktFquYIDydpPg3GlL tkulY9YJjUD0Q5rFtIqeztkcMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIa831gh ToQiWFu0Wsq1zvetcXdaMB8GA1UdIwQYMBaAFCs+5E6py1uBKWu2ffD1RviqyKS0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEYwMC8zREE2OTAxNjEz NTcxMUVCQTIzREE3MTRDNEY5QUUwMi9LejdrVHFuTFc0RXBhN1o5OFBWRy1Lcklw TFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t6N2tUcW5MVzRFcGE3Wjk4UFZHLUtySXBMUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEYwMC8zREE2OTAxNjEzNTcxMUVCQTIzREE3MTRDNEY5QUUwMi9LejdrVHFuTFc0 RXBhN1o5OFBWRy1LcklwTFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEcThJUgmeQGAs2YmYooceytTjGLrm6r0HS1KNfU+lkWg05TLTKvmE w32KVN7KIlGrnRVstCa5vc9ONRgfgPNyKzuLH0tah+F+N0vq0q443CVKpa2QHFh5 kaHuZzP7IoUJoR4ePl8/2FCXe9rtOLvjlhqQH/2DEY4LED91KCOaA5gQ31rR2woP RHSNQ2TPsH1W8rlUsPUcvCYBoGsh7xAlVI7PdcGHQpm3/bnW2tAWyI43btF7Ra81 +GDSJ8ypOyiXqeH/1sy3l5AlDaE4CEu54TnU7AAZTJD9zarRuTrYp8tdUUb9xyLO QaPPSxTJnn+MFdeMUDnOyzTvlGV8ptXx -----END CERTIFICATE-----Generated at Sat Apr 26 04:34:52 2025 by rpki-client