$ rpki-client -vvf rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.mft File: kTOGkN66V4znOCGKniIIVNG1J18.mft (raw, json) Hash identifier: dgUqPQL+36kBNtlHNDrfDbqRp6MrNfKeaaH+w67TMw4= Subject key identifier: FC:08:47:81:7B:D1:74:A4:E2:06:26:AF:6B:75:0D:C7:50:54:E1:EF Authority key identifier: 91:33:86:90:DE:BA:57:8C:E7:38:21:8A:9E:22:08:54:D1:B5:27:5F Certificate issuer: /CN=A91F605B/serialNumber=91338690DEBA578CE738218A9E220854D1B5275F Certificate serial: 0437 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTOGkN66V4znOCGKniIIVNG1J18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.mft Manifest number: 0424 Signing time: Fri 25 Apr 2025 00:12:46 +0000 Manifest this update: Fri 25 Apr 2025 00:12:46 +0000 Manifest next update: Fri 02 May 2025 00:12:46 +0000 Files and hashes: 1: kTOGkN66V4znOCGKniIIVNG1J18.crl (hash: pjXl1DIxxcpNqIhrE0Be3qmXeNSBscmEqYj5KvWm1Io=) 2: E7DBA61CA1FA11EF9696DF59C4F9AE02.roa (hash: 346r3b4w4VthONfD4bZWfxOP9wmeXPFHqji5dvclr0k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.crl rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTOGkN66V4znOCGKniIIVNG1J18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:12:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1079 (0x437) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F605B, serialNumber=91338690DEBA578CE738218A9E220854D1B5275F Validity Not Before: Apr 25 00:12:46 2025 GMT Not After : May 2 00:12:46 2025 GMT Subject: CN=680ad37e-9bea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:78:0e:cb:38:15:e0:8a:ff:f2:38:5f:94:73: 75:90:7a:20:14:1f:ef:dd:1d:12:1e:90:9b:2a:71: 07:c3:8f:72:8d:45:53:1f:e3:5f:7f:42:60:11:d5: f6:b4:d3:4d:9d:70:68:06:bd:0f:d1:de:9f:c9:a9: 96:07:49:0b:58:af:cc:c3:90:15:77:69:a9:5c:2d: 1c:38:e3:77:0b:3f:f4:50:ff:6a:97:ad:08:4f:24: 88:79:48:c6:83:fe:dc:45:7d:d6:99:25:d4:b2:60: ed:bb:f8:15:53:bc:13:a4:76:58:b3:15:c0:7e:46: 59:51:2c:7a:3d:41:d9:b6:c6:49:0c:60:0e:8f:5e: ae:33:5e:a6:24:da:17:d4:a5:d9:fa:51:21:ba:d9: fb:0b:0a:4f:cc:71:27:bb:ba:73:0a:a6:e7:cc:55: 61:56:88:04:6e:04:2d:7a:9f:7b:b1:7b:93:e9:20: 94:32:2d:30:06:7d:1a:c2:d4:8b:57:08:2c:6d:db: c5:2e:0e:0b:b1:ce:cf:98:d9:8e:9c:46:72:f2:0a: e3:a0:d6:cd:eb:0f:76:ea:16:98:59:93:8c:01:85: 30:82:4e:6f:20:35:64:2f:a0:7e:8e:20:13:38:6f: 46:3a:9b:b5:be:57:c4:d6:d2:63:13:b1:cd:5f:9a: a7:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:08:47:81:7B:D1:74:A4:E2:06:26:AF:6B:75:0D:C7:50:54:E1:EF X509v3 Authority Key Identifier: keyid:91:33:86:90:DE:BA:57:8C:E7:38:21:8A:9E:22:08:54:D1:B5:27:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTOGkN66V4znOCGKniIIVNG1J18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:24:2e:e7:1e:a7:6a:d9:c2:bb:c2:99:3c:9a:4c:d7:f1:fb: fc:d7:71:ca:8c:45:6c:5b:b6:98:3b:0b:b2:1d:f7:d9:94:e8: f4:75:26:d6:58:1b:27:f4:d1:1a:9e:34:28:7f:be:70:58:1e: 4b:f2:c2:d9:6b:5d:71:6a:57:57:d6:0f:de:57:b7:c0:03:2c: 2a:2d:79:8b:e9:4b:6b:52:ab:5c:d4:82:cd:54:cc:e5:ad:29: 58:14:62:25:c3:fa:ff:13:4b:38:d2:fc:27:db:66:de:45:85: 7f:b6:79:d4:b7:d4:37:0d:4c:c8:74:50:63:38:aa:c6:89:d3: 8b:4b:c6:c7:45:6a:01:1a:59:71:d7:48:5a:a5:01:82:be:ee: b4:2d:27:ef:77:b9:12:00:4b:61:45:e6:24:d6:41:9e:d3:9c: 0a:68:bf:38:e6:f5:80:61:38:d6:79:9d:8f:13:13:d4:33:6c: fb:fa:2a:61:0f:31:9f:1c:6d:99:87:6b:b0:0f:28:2e:17:67: 2a:88:88:9f:3e:df:42:55:24:33:dd:13:5f:86:3b:17:8b:cf: d6:81:b1:67:f8:23:c5:a8:46:7d:56:be:33:3c:35:f8:76:00: ac:63:98:d4:aa:6a:c3:53:e1:23:f1:ec:95:5c:de:8e:0d:5f: cc:c7:bb:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYwNUIxMTAvBgNVBAUTKDkxMzM4NjkwREVCQTU3OENFNzM4MjE4QTlFMjIwODU0 RDFCNTI3NUYwHhcNMjUwNDI1MDAxMjQ2WhcNMjUwNTAyMDAxMjQ2WjAYMRYwFAYD VQQDEw02ODBhZDM3ZS05YmVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl3gOyzgV4Ir/8jhflHN1kHogFB/v3R0SHpCbKnEHw49yjUVTH+Nff0JgEdX2 tNNNnXBoBr0P0d6fyamWB0kLWK/Mw5AVd2mpXC0cOON3Cz/0UP9ql60ITySIeUjG g/7cRX3WmSXUsmDtu/gVU7wTpHZYsxXAfkZZUSx6PUHZtsZJDGAOj16uM16mJNoX 1KXZ+lEhutn7CwpPzHEnu7pzCqbnzFVhVogEbgQtep97sXuT6SCUMi0wBn0awtSL VwgsbdvFLg4Lsc7PmNmOnEZy8grjoNbN6w926haYWZOMAYUwgk5vIDVkL6B+jiAT OG9GOpu1vlfE1tJjE7HNX5qnxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPwIR4F7 0XSk4gYmr2t1DcdQVOHvMB8GA1UdIwQYMBaAFJEzhpDeuleM5zghip4iCFTRtSdf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjA1Qi85ODE3RDI3MjY0 Q0MxMUVDOTZENEE1NThDNEY5QUUwMi9rVE9Ha042NlY0em5PQ0dLbmlJSVZORzFK MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tUT0drTjY2VjR6bk9DR0tuaUlJVk5HMUoxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjA1Qi85ODE3RDI3MjY0Q0MxMUVDOTZENEE1NThDNEY5QUUwMi9rVE9Ha042NlY0 em5PQ0dLbmlJSVZORzFKMTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFJC7nHqdq2cK7wpk8mkzX8fv813HKjEVsW7aYOwuyHffZlOj0dSbW WBsn9NEanjQof75wWB5L8sLZa11xaldX1g/eV7fAAywqLXmL6UtrUqtc1ILNVMzl rSlYFGIlw/r/E0s40vwn22beRYV/tnnUt9Q3DUzIdFBjOKrGidOLS8bHRWoBGllx 10hapQGCvu60LSfvd7kSAEthReYk1kGe05wKaL845vWAYTjWeZ2PExPUM2z7+iph DzGfHG2Zh2uwDyguF2cqiIifPt9CVSQz3RNfhjsXi8/WgbFn+CPFqEZ9Vr4zPDX4 dgCsY5jUqmrDU+Ej8eyVXN6ODV/Mx7tH -----END CERTIFICATE-----Generated at Sat Apr 26 16:52:49 2025 by rpki-client