$ rpki-client -vvf rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.mft File: ka7pYNxB_5jtGzcjNDFzk4Em3J8.mft (raw, json) Hash identifier: KqeQi979NWqR3tGWx0p5vfQSNVU7OsrahJlGbBNB/+c= Subject key identifier: 6D:85:6C:ED:80:BF:C5:35:58:B4:84:88:5A:3D:3D:3F:29:8C:29:2F Authority key identifier: 91:AE:E9:60:DC:41:FF:98:ED:1B:37:23:34:31:73:93:81:26:DC:9F Certificate issuer: /CN=A91128B5/serialNumber=91AEE960DC41FF98ED1B3723343173938126DC9F Certificate serial: 05BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ka7pYNxB_5jtGzcjNDFzk4Em3J8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.mft Manifest number: 05B7 Signing time: Fri 28 Mar 2025 23:21:40 +0000 Manifest this update: Fri 28 Mar 2025 23:21:40 +0000 Manifest next update: Fri 04 Apr 2025 23:21:39 +0000 Files and hashes: 1: ka7pYNxB_5jtGzcjNDFzk4Em3J8.crl (hash: tvn8OHMnyFDBVX17WNIv98+5sgUSKCphKpFRtU+lv7U=) 2: 74BDB7D0B96C11EB956C1D2DC4F9AE02.roa (hash: GcFR8h/iT3o9szKNg9QC0T/IhGSts82BlmqYJleuoFI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.crl rsync://rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ka7pYNxB_5jtGzcjNDFzk4Em3J8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 23:21:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1467 (0x5bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91128B5 Validity Not Before: Mar 28 23:21:40 2025 GMT Not After : Apr 4 23:21:39 2025 GMT Subject: CN=67e72f04-b5e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:9b:97:6b:80:da:33:ae:9c:ac:27:cb:bd:e7: 53:08:c5:cd:65:d0:e0:6e:47:e8:52:a4:6b:8b:1b: 27:ba:a3:8d:69:af:ce:95:1e:71:62:5d:99:d1:93: 31:d9:a3:89:ac:55:c6:dd:4a:27:57:df:12:38:f2: 63:f4:79:d3:74:01:7d:40:d9:4e:ce:de:30:18:eb: 22:3b:12:73:13:03:02:3e:0c:2c:9b:eb:17:f4:d6: 43:0e:fb:37:7b:5f:b8:21:0a:04:87:ec:91:61:0a: cb:67:4a:f7:d8:f7:47:ad:3f:8d:af:0b:59:a5:f3: 1f:4e:85:6f:a7:2e:98:ea:11:75:02:5a:10:85:0e: 36:6f:9b:c8:2b:d8:aa:93:ac:48:94:44:bf:bc:83: c3:3e:99:9a:ff:27:2c:53:e6:10:e6:56:d1:43:b1: b1:b7:69:a2:22:e0:d9:15:76:b9:fb:50:a0:a5:c0: f6:cd:68:43:ed:92:fb:1b:2b:82:16:3d:19:18:02: d4:a2:11:d0:3d:b8:24:51:1d:9c:31:5c:14:b9:a9: 26:2f:c7:a1:c9:bc:81:73:47:b8:3b:7b:80:7c:a7: 5c:2c:d7:c8:01:f9:ee:55:d6:fb:0d:ae:06:50:97: cd:01:53:6b:96:4a:50:40:9d:24:fe:47:65:92:5a: c4:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:85:6C:ED:80:BF:C5:35:58:B4:84:88:5A:3D:3D:3F:29:8C:29:2F X509v3 Authority Key Identifier: keyid:91:AE:E9:60:DC:41:FF:98:ED:1B:37:23:34:31:73:93:81:26:DC:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ka7pYNxB_5jtGzcjNDFzk4Em3J8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:9e:fa:4b:6b:de:cb:7a:58:02:b9:9e:7a:c0:8f:e3:df:73: 5d:10:05:98:c8:f3:a0:69:35:f5:70:60:02:0b:bb:21:3d:6d: f8:1b:67:49:6c:cd:ab:0c:02:e1:4b:1f:db:9d:ac:bd:bc:e4: 8f:24:22:5b:47:fe:93:29:21:14:7d:c6:eb:a0:6c:d6:7d:b5: ae:0f:61:43:e9:25:5e:41:e3:54:06:ef:6d:76:44:e7:56:1e: ad:0e:ba:b1:ad:63:8c:85:da:2a:36:80:2a:5c:f9:a8:4c:31: 10:9e:ee:4e:cb:4c:de:22:eb:6f:f9:a2:ec:a9:3a:4d:0a:08: b4:9c:ae:58:1c:3f:4f:19:9b:7b:f2:e1:bd:6e:da:eb:dd:7b: 5d:55:34:2a:ee:87:b7:69:e9:7b:d6:5c:8c:b5:62:97:a1:7e: 54:4c:c2:21:b5:a7:8c:0d:fc:8a:5b:2a:c7:b2:82:56:b7:ce: 76:b2:ec:6c:15:0b:98:75:22:3b:31:5a:8c:9c:24:81:1d:2c: 7b:31:0a:b0:0d:b9:2c:15:96:f2:09:20:e6:dd:91:23:8e:75: 0c:88:ff:ee:d2:25:53:3e:c8:ab:85:62:a3:51:69:54:79:e8: 50:aa:96:35:27:a0:1d:e5:1a:3a:fd:fa:c2:43:2b:a3:e2:3b: b7:01:3e:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBbswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI4QjUxMTAvBgNVBAUTKDkxQUVFOTYwREM0MUZGOThFRDFCMzcyMzM0MzE3Mzkz ODEyNkRDOUYwHhcNMjUwMzI4MjMyMTQwWhcNMjUwNDA0MjMyMTM5WjAYMRYwFAYD VQQDEw02N2U3MmYwNC1iNWU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7puXa4DaM66crCfLvedTCMXNZdDgbkfoUqRrixsnuqONaa/OlR5xYl2Z0ZMx 2aOJrFXG3UonV98SOPJj9HnTdAF9QNlOzt4wGOsiOxJzEwMCPgwsm+sX9NZDDvs3 e1+4IQoEh+yRYQrLZ0r32PdHrT+NrwtZpfMfToVvpy6Y6hF1AloQhQ42b5vIK9iq k6xIlES/vIPDPpma/ycsU+YQ5lbRQ7Gxt2miIuDZFXa5+1CgpcD2zWhD7ZL7GyuC Fj0ZGALUohHQPbgkUR2cMVwUuakmL8ehybyBc0e4O3uAfKdcLNfIAfnuVdb7Da4G UJfNAVNrlkpQQJ0k/kdlklrEMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG2FbO2A v8U1WLSEiFo9PT8pjCkvMB8GA1UdIwQYMBaAFJGu6WDcQf+Y7Rs3IzQxc5OBJtyf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjhCNS8zRUJDRDFEQUI5 NkIxMUVCQjE2RUVGMkNDNEY5QUUwMi9rYTdwWU54Ql81anRHemNqTkRGems0RW0z SjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2thN3BZTnhCXzVqdEd6Y2pOREZ6azRFbTNKOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjhCNS8zRUJDRDFEQUI5NkIxMUVCQjE2RUVGMkNDNEY5QUUwMi9rYTdwWU54Ql81 anRHemNqTkRGems0RW0zSjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADnvpLa97LelgCuZ56wI/j33NdEAWYyPOgaTX1cGACC7shPW34G2dJ bM2rDALhSx/bnay9vOSPJCJbR/6TKSEUfcbroGzWfbWuD2FD6SVeQeNUBu9tdkTn Vh6tDrqxrWOMhdoqNoAqXPmoTDEQnu5Oy0zeIutv+aLsqTpNCgi0nK5YHD9PGZt7 8uG9btrr3XtdVTQq7oe3ael71lyMtWKXoX5UTMIhtaeMDfyKWyrHsoJWt852suxs FQuYdSI7MVqMnCSBHSx7MQqwDbksFZbyCSDm3ZEjjnUMiP/u0iVTPsirhWKjUWlU eehQqpY1J6Ad5Ro6/frCQyuj4ju3AT4g -----END CERTIFICATE-----Generated at Fri Apr 4 21:54:06 2025 by rpki-client