$ rpki-client -vvf rpki.apnic.net/member_repository/A91F79A2/1A05E6EE2D2E11EFA54C8042C4F9AE02/kTOsvs_e7PTaOiIigng09bc6-qc.mft File: kTOsvs_e7PTaOiIigng09bc6-qc.mft (raw, json) Hash identifier: VChAvCTl1VkOAMITftxARyPBMjXqEq7XZCAjqW1gM2Q= Subject key identifier: 42:16:1D:22:FB:63:71:A6:56:4C:7E:89:AF:C5:CE:38:9C:0C:40:12 Authority key identifier: 91:33:AC:BE:CF:DE:EC:F4:DA:3A:22:22:82:78:34:F5:B7:3A:FA:A7 Certificate issuer: /CN=A91F79A2/serialNumber=9133ACBECFDEECF4DA3A2222827834F5B73AFAA7 Certificate serial: A1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kTOsvs_e7PTaOiIigng09bc6-qc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F79A2/1A05E6EE2D2E11EFA54C8042C4F9AE02/kTOsvs_e7PTaOiIigng09bc6-qc.mft Manifest number: A1 Signing time: Sun 27 Apr 2025 05:00:18 +0000 Manifest this update: Sun 27 Apr 2025 05:00:18 +0000 Manifest next update: Sun 04 May 2025 05:00:18 +0000 Files and hashes: 1: kTOsvs_e7PTaOiIigng09bc6-qc.crl (hash: J5GMmpFWku732fhm4fs8WvYxJLkuU4jEUWfCaY/noTI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F79A2/1A05E6EE2D2E11EFA54C8042C4F9AE02/kTOsvs_e7PTaOiIigng09bc6-qc.crl rsync://rpki.apnic.net/member_repository/A91F79A2/1A05E6EE2D2E11EFA54C8042C4F9AE02/kTOsvs_e7PTaOiIigng09bc6-qc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kTOsvs_e7PTaOiIigng09bc6-qc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 05:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 161 (0xa1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F79A2, serialNumber=9133ACBECFDEECF4DA3A2222827834F5B73AFAA7 Validity Not Before: Apr 27 05:00:18 2025 GMT Not After : May 4 05:00:18 2025 GMT Subject: CN=680db9e2-d243 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:97:4b:e9:85:01:77:58:91:b7:a3:c5:f7:21: 7d:17:11:07:bc:6d:e5:dc:f1:73:58:58:fe:d3:ae: aa:8c:30:76:2b:b0:7a:67:4f:95:0d:1b:28:4f:f9: 13:eb:54:2d:b2:0b:4c:e8:38:13:fd:56:93:cd:29: fa:5d:60:d4:4e:c2:3a:79:cf:0a:89:97:1b:4a:79: 02:5c:6a:79:0d:1e:77:f2:7f:01:29:4c:0b:6e:c2: 7e:ca:4d:63:87:8f:21:52:29:2d:c2:eb:2f:4f:ab: d3:a4:0e:e3:21:fc:8f:00:dd:98:9f:b7:9e:7c:17: fc:4b:28:a4:82:92:68:04:cb:3c:f9:3b:1c:65:a0: 26:ed:b9:cb:18:e3:9d:31:c6:fc:ab:8f:62:0c:a4: d1:75:52:59:0e:78:62:91:18:73:df:f7:5d:68:b5: 61:d3:68:dc:91:fe:fc:1a:4e:ae:7d:06:27:f9:5d: 86:f5:3d:e1:1c:aa:25:4f:e2:3e:a8:c0:ea:55:5e: aa:c1:3e:9a:9b:c1:39:06:5e:84:95:09:2c:f7:1e: eb:a3:bc:82:77:b6:cb:12:33:19:56:75:02:8c:05: 7f:2f:3a:07:58:dc:68:3f:a7:e6:2f:6b:05:08:09: 43:02:5e:2a:d6:2e:8e:29:bf:d9:b4:d1:43:c3:4e: b5:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:16:1D:22:FB:63:71:A6:56:4C:7E:89:AF:C5:CE:38:9C:0C:40:12 X509v3 Authority Key Identifier: keyid:91:33:AC:BE:CF:DE:EC:F4:DA:3A:22:22:82:78:34:F5:B7:3A:FA:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F79A2/1A05E6EE2D2E11EFA54C8042C4F9AE02/kTOsvs_e7PTaOiIigng09bc6-qc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kTOsvs_e7PTaOiIigng09bc6-qc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F79A2/1A05E6EE2D2E11EFA54C8042C4F9AE02/kTOsvs_e7PTaOiIigng09bc6-qc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:58:bf:1a:de:6d:8b:bd:58:0a:f8:ad:0b:d0:23:86:e7:ed: 9e:25:9d:3c:c6:68:1b:7c:b5:cc:c9:51:c0:e4:05:b0:99:2b: 27:61:07:06:16:71:56:00:9b:e1:9d:00:10:09:46:57:b1:6c: 0b:7a:8a:61:94:6c:36:a9:0b:db:9f:39:5b:5e:df:af:15:0b: 15:60:34:8b:87:74:42:88:4c:7d:35:a6:7d:37:59:8d:79:ab: a0:9a:b1:26:72:d5:6c:45:b2:fd:c5:00:40:e3:5e:82:87:eb: f4:46:35:20:4f:64:14:1b:47:ed:e5:ce:55:37:cf:ac:91:b1: e7:27:78:c6:37:15:84:27:65:e0:93:1d:e4:ff:65:06:d0:f7: 1a:bf:ec:f4:41:35:1e:57:dc:27:37:d9:a7:78:3b:31:20:87: 38:52:81:76:72:8d:36:10:b7:8c:5f:10:82:f6:1c:2a:6a:1f: 46:34:9e:b7:89:0e:f8:22:b2:4f:1b:a4:50:a0:eb:40:02:52: 68:2a:73:30:2f:55:84:2a:7e:0b:24:70:ba:11:b4:82:34:c5: fb:0e:bb:e1:04:f4:31:01:6e:f0:c0:13:35:dd:47:36:af:4c: e5:20:66:93:e2:10:75:a1:03:fc:4a:67:c4:78:42:fc:ab:f6: 1c:fd:e9:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjc5QTIxMTAvBgNVBAUTKDkxMzNBQ0JFQ0ZERUVDRjREQTNBMjIyMjgyNzgzNEY1 QjczQUZBQTcwHhcNMjUwNDI3MDUwMDE4WhcNMjUwNTA0MDUwMDE4WjAYMRYwFAYD VQQDEw02ODBkYjllMi1kMjQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8JdL6YUBd1iRt6PF9yF9FxEHvG3l3PFzWFj+066qjDB2K7B6Z0+VDRsoT/kT 61QtsgtM6DgT/VaTzSn6XWDUTsI6ec8KiZcbSnkCXGp5DR538n8BKUwLbsJ+yk1j h48hUiktwusvT6vTpA7jIfyPAN2Yn7eefBf8SyikgpJoBMs8+TscZaAm7bnLGOOd Mcb8q49iDKTRdVJZDnhikRhz3/ddaLVh02jckf78Gk6ufQYn+V2G9T3hHKolT+I+ qMDqVV6qwT6am8E5Bl6ElQks9x7ro7yCd7bLEjMZVnUCjAV/LzoHWNxoP6fmL2sF CAlDAl4q1i6OKb/ZtNFDw0611wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEIWHSL7 Y3GmVkx+ia/FzjicDEASMB8GA1UdIwQYMBaAFJEzrL7P3uz02joiIoJ4NPW3Ovqn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzlBMi8xQTA1RTZFRTJE MkUxMUVGQTU0QzgwNDJDNEY5QUUwMi9rVE9zdnNfZTdQVGFPaUlpZ25nMDliYzYt cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tUT3N2c19lN1BUYU9pSWlnbmcwOWJjNi1xYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzlBMi8xQTA1RTZFRTJEMkUxMUVGQTU0QzgwNDJDNEY5QUUwMi9rVE9zdnNfZTdQ VGFPaUlpZ25nMDliYzYtcWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaWL8a3m2LvVgK+K0L0COG5+2eJZ08xmgbfLXMyVHA5AWwmSsnYQcG FnFWAJvhnQAQCUZXsWwLeophlGw2qQvbnzlbXt+vFQsVYDSLh3RCiEx9NaZ9N1mN eaugmrEmctVsRbL9xQBA416Ch+v0RjUgT2QUG0ft5c5VN8+skbHnJ3jGNxWEJ2Xg kx3k/2UG0Pcav+z0QTUeV9wnN9mneDsxIIc4UoF2co02ELeMXxCC9hwqah9GNJ63 iQ74IrJPG6RQoOtAAlJoKnMwL1WEKn4LJHC6EbSCNMX7DrvhBPQxAW7wwBM13Uc2 r0zlIGaT4hB1oQP8SmfEeEL8q/Yc/el/ -----END CERTIFICATE-----Generated at Sun Apr 27 19:45:30 2025 by rpki-client