$ rpki-client -vvf rpki.apnic.net/member_repository/A913149F/DF01580808FC11EAA891A575C4F9AE02/Kt1a2PtDrdgNUrtYNpPDG42asuw.mft File: Kt1a2PtDrdgNUrtYNpPDG42asuw.mft (raw, json) Hash identifier: yAE+wD5nxzpav3639f39JOZamw1rIHQjg63bCyFw5jM= Subject key identifier: 40:7C:33:56:0D:C7:E7:13:7A:B1:5B:2B:3A:99:6E:78:3D:F4:83:AC Authority key identifier: 2A:DD:5A:D8:FB:43:AD:D8:0D:52:BB:58:36:93:C3:1B:8D:9A:B2:EC Certificate issuer: /CN=A913149F/serialNumber=2ADD5AD8FB43ADD80D52BB583693C31B8D9AB2EC Certificate serial: 0C10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kt1a2PtDrdgNUrtYNpPDG42asuw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913149F/DF01580808FC11EAA891A575C4F9AE02/Kt1a2PtDrdgNUrtYNpPDG42asuw.mft Manifest number: 0C0B Signing time: Fri 04 Apr 2025 18:42:05 +0000 Manifest this update: Fri 04 Apr 2025 18:42:05 +0000 Manifest next update: Fri 11 Apr 2025 18:42:05 +0000 Files and hashes: 1: Kt1a2PtDrdgNUrtYNpPDG42asuw.crl (hash: MkTjrQjUSrfohof1EGiT3FfTwfXOPkIXhwtErm8QOMM=) 2: 78550A2608FE11EAA003E778C4F9AE02.roa (hash: /6LQIDdmV3dE7MeUvHilah4V60fZn+m3/u3zkX+mGFA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913149F/DF01580808FC11EAA891A575C4F9AE02/Kt1a2PtDrdgNUrtYNpPDG42asuw.crl rsync://rpki.apnic.net/member_repository/A913149F/DF01580808FC11EAA891A575C4F9AE02/Kt1a2PtDrdgNUrtYNpPDG42asuw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kt1a2PtDrdgNUrtYNpPDG42asuw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:42:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3088 (0xc10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913149F Validity Not Before: Apr 4 18:42:05 2025 GMT Not After : Apr 11 18:42:05 2025 GMT Subject: CN=67f027fd-2582 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:93:2e:b4:fb:65:08:b6:6b:8a:d6:ff:f7:88: c2:cc:5b:94:da:c6:f8:82:66:40:4b:1d:48:15:ee: 4f:2a:66:6d:2f:bf:1b:dd:41:9a:ba:15:0f:0d:ca: 20:bc:51:60:89:91:8e:aa:b5:f6:b4:cc:fa:80:19: 55:52:7e:10:c6:2d:14:b9:55:fc:95:68:e2:0f:c1: 1c:55:8e:a2:33:de:b2:ec:24:87:3d:ad:bb:d7:a2: e1:c2:45:f8:d9:71:4f:c2:f4:98:45:e0:4e:1b:8e: c7:cd:b0:48:1b:52:20:25:20:d9:b0:8b:2a:e9:74: ce:68:bd:80:17:43:1f:0d:4b:e0:b6:ad:3c:98:18: 40:99:92:b2:8f:8d:9c:cf:40:93:58:a1:2f:a2:b9: fc:fa:59:5c:73:1a:e1:fb:21:16:01:d3:e6:13:d7: 4e:58:2c:13:0c:10:5e:76:f6:e0:1d:bd:e3:2e:5a: 9e:02:83:4a:59:4f:d3:92:9b:13:63:33:f2:b9:1b: 1f:91:06:0f:f5:4d:59:12:35:90:6c:3a:2b:c0:7c: fa:c7:0a:01:ab:da:89:bb:a8:5b:37:ec:f2:0f:54: 39:65:d3:73:09:04:57:61:3b:44:aa:bb:c6:ff:55: 55:c4:bf:4f:c1:4e:6e:8d:d3:47:88:43:ac:c6:45: bf:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:7C:33:56:0D:C7:E7:13:7A:B1:5B:2B:3A:99:6E:78:3D:F4:83:AC X509v3 Authority Key Identifier: keyid:2A:DD:5A:D8:FB:43:AD:D8:0D:52:BB:58:36:93:C3:1B:8D:9A:B2:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913149F/DF01580808FC11EAA891A575C4F9AE02/Kt1a2PtDrdgNUrtYNpPDG42asuw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kt1a2PtDrdgNUrtYNpPDG42asuw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913149F/DF01580808FC11EAA891A575C4F9AE02/Kt1a2PtDrdgNUrtYNpPDG42asuw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:2d:a4:b1:49:69:04:18:72:61:b0:03:d9:73:ea:f8:81:d6: a8:ad:e3:86:66:07:25:cc:03:6b:47:ef:16:0a:9f:02:2f:1d: dd:05:3e:9d:76:e6:11:00:27:24:b5:c4:ed:91:12:fd:b8:95: 23:8e:a1:e3:9d:fd:78:ec:c2:50:a7:13:66:6d:94:d3:a2:1a: 71:a1:ec:8d:be:61:69:56:25:ab:01:2c:60:13:91:ed:ca:22: ef:3e:b8:ef:13:c4:d9:6b:1f:cb:37:bb:da:9b:7f:7f:8d:31: dc:b0:9f:ab:47:0e:6d:36:99:a7:cb:46:c3:cc:2a:4b:0e:65: 98:5b:79:7f:3a:88:74:bd:44:2b:66:9a:29:f5:73:34:5b:3b: e4:97:91:23:c7:70:1d:0d:38:96:b1:cf:eb:45:89:41:e8:2a: ef:d1:69:0c:15:f6:b3:0c:ef:5c:f8:84:79:55:2e:f3:a3:e6: a8:d0:62:ac:7e:ff:2d:66:1e:96:18:d2:f8:0b:cd:36:f7:19: 8c:1e:c1:ea:c7:54:9d:58:54:4f:f2:1d:8a:9e:3e:1a:ac:25: 20:75:55:85:48:e4:a9:d9:17:a7:fd:83:16:ad:32:a9:76:9b: 04:01:61:3d:4e:97:d7:e3:c7:9d:01:de:d4:4f:14:ae:a1:a9: a2:5e:35:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDBAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE0OUYxMTAvBgNVBAUTKDJBREQ1QUQ4RkI0M0FERDgwRDUyQkI1ODM2OTNDMzFC OEQ5QUIyRUMwHhcNMjUwNDA0MTg0MjA1WhcNMjUwNDExMTg0MjA1WjAYMRYwFAYD VQQDEw02N2YwMjdmZC0yNTgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5JMutPtlCLZritb/94jCzFuU2sb4gmZASx1IFe5PKmZtL78b3UGauhUPDcog vFFgiZGOqrX2tMz6gBlVUn4Qxi0UuVX8lWjiD8EcVY6iM96y7CSHPa2716LhwkX4 2XFPwvSYReBOG47HzbBIG1IgJSDZsIsq6XTOaL2AF0MfDUvgtq08mBhAmZKyj42c z0CTWKEvorn8+llccxrh+yEWAdPmE9dOWCwTDBBedvbgHb3jLlqeAoNKWU/TkpsT YzPyuRsfkQYP9U1ZEjWQbDorwHz6xwoBq9qJu6hbN+zyD1Q5ZdNzCQRXYTtEqrvG /1VVxL9PwU5ujdNHiEOsxkW/GwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEB8M1YN x+cTerFbKzqZbng99IOsMB8GA1UdIwQYMBaAFCrdWtj7Q63YDVK7WDaTwxuNmrLs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTQ5Ri9ERjAxNTgwODA4 RkMxMUVBQTg5MUE1NzVDNEY5QUUwMi9LdDFhMlB0RHJkZ05VcnRZTnBQREc0MmFz dXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t0MWEyUHREcmRnTlVydFlOcFBERzQyYXN1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTQ5Ri9ERjAxNTgwODA4RkMxMUVBQTg5MUE1NzVDNEY5QUUwMi9LdDFhMlB0RHJk Z05VcnRZTnBQREc0MmFzdXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoLaSxSWkEGHJhsAPZc+r4gdaoreOGZgclzANrR+8WCp8CLx3dBT6d duYRACcktcTtkRL9uJUjjqHjnf147MJQpxNmbZTTohpxoeyNvmFpViWrASxgE5Ht yiLvPrjvE8TZax/LN7vam39/jTHcsJ+rRw5tNpmny0bDzCpLDmWYW3l/Ooh0vUQr Zpop9XM0Wzvkl5Ejx3AdDTiWsc/rRYlB6Crv0WkMFfazDO9c+IR5VS7zo+ao0GKs fv8tZh6WGNL4C8029xmMHsHqx1SdWFRP8h2Knj4arCUgdVWFSOSp2Ren/YMWrTKp dpsEAWE9TpfX48edAd7UTxSuoamiXjWh -----END CERTIFICATE-----Generated at Sat Apr 5 11:45:40 2025 by rpki-client