$ rpki-client -vvf rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft File: kB-Ykfv38n1Bah7gazGwFlquHcU.mft (raw, json) Hash identifier: 3qrDfLcxvQ37BuVDWtcfSzYTQwV7pyddaTL/K/vBSYM= Subject key identifier: B5:4B:57:D8:E3:16:8D:A3:22:E0:DF:10:94:EA:DE:55:60:ED:6E:DA Authority key identifier: 90:1F:98:91:FB:F7:F2:7D:41:6A:1E:E0:6B:31:B0:16:5A:AE:1D:C5 Certificate issuer: /CN=A9132D93/serialNumber=901F9891FBF7F27D416A1EE06B31B0165AAE1DC5 Certificate serial: 03C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft Manifest number: 03C4 Signing time: Sat 29 Mar 2025 00:53:13 +0000 Manifest this update: Sat 29 Mar 2025 00:53:12 +0000 Manifest next update: Sat 05 Apr 2025 00:53:12 +0000 Files and hashes: 1: kB-Ykfv38n1Bah7gazGwFlquHcU.crl (hash: tl5e6NizbOumAUIMSxbahW/JNa1Blv7cn5t1YDnXByU=) 2: 4E0503CA7F3F11ECBB0EA972C4F9AE02.roa (hash: zGO+SfCUiN93pLbUpzCLUs56wrah6tVni3k+tYi9qSM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.crl rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 00:53:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 968 (0x3c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132D93 Validity Not Before: Mar 29 00:53:12 2025 GMT Not After : Apr 5 00:53:12 2025 GMT Subject: CN=67e74479-88f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c1:64:7f:63:b5:3e:50:9d:9c:7d:01:5d:67: 80:2b:01:57:78:3b:59:84:54:56:35:9a:8e:09:50: 0b:a7:93:67:d2:63:6a:5d:e9:5b:30:ad:cf:c2:6b: 9e:4f:fa:f2:10:a8:1a:da:59:fa:4c:97:1c:80:fa: f3:b9:2e:be:c3:20:c2:ed:6b:bc:e1:ce:b1:61:7e: 05:f4:ff:ca:8f:7a:00:f0:6a:0f:2b:18:ad:e3:d9: 9e:93:8b:b6:3e:5b:92:ec:03:3c:c7:97:18:02:b4: d3:2b:8a:4a:27:5b:7d:45:77:17:9a:55:1b:7c:67: 59:59:2a:22:12:47:40:92:8a:be:be:a0:9e:9f:ce: bb:2e:b0:12:a6:eb:8f:0c:72:dd:a7:9e:5e:f0:98: 96:68:f5:f1:55:2d:fa:dc:af:b4:50:91:7c:68:6e: de:1b:98:b6:e0:57:d0:17:67:11:92:4b:27:ba:e9: 8f:1f:87:d7:d3:3c:c4:8d:00:a7:a0:a6:6c:24:eb: 07:17:90:d9:ca:ba:98:09:3f:0a:1d:17:4e:c5:c7: 3d:10:a3:dd:20:5f:24:47:83:1a:9d:00:d7:eb:0b: e4:ed:01:ce:5a:e1:f1:31:ac:eb:b0:86:a2:82:35: 18:0a:85:a1:0d:49:ca:15:b1:32:31:12:57:27:0c: 89:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:4B:57:D8:E3:16:8D:A3:22:E0:DF:10:94:EA:DE:55:60:ED:6E:DA X509v3 Authority Key Identifier: keyid:90:1F:98:91:FB:F7:F2:7D:41:6A:1E:E0:6B:31:B0:16:5A:AE:1D:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:92:51:62:49:fa:92:88:ec:1e:4b:9d:b4:aa:d9:71:a0:fa: c3:72:8b:7f:46:22:2c:56:31:60:18:e9:43:af:d5:89:eb:fc: f9:c8:78:74:94:31:82:be:af:62:ff:b6:4e:b9:48:92:44:60: 7c:35:6a:a1:90:0d:fb:80:c5:48:82:3e:30:d0:ee:43:16:8d: b8:cb:d4:0a:cf:dd:9e:b6:2c:f3:50:51:e5:ba:29:34:2c:dc: 20:29:c6:b6:06:62:56:de:7b:01:98:0b:70:81:64:d6:f9:26: 5a:10:f1:37:61:51:4f:b9:cf:e6:85:c7:5a:2d:0d:2c:36:75: c7:25:eb:49:5d:02:32:d8:6f:1e:ff:8f:6e:dc:03:fd:13:9a: d1:5b:5c:ab:09:79:43:7c:12:b0:af:50:db:f3:f2:c3:4d:97: 00:1f:b8:82:4c:be:aa:1b:b3:3a:8c:98:1c:3f:1d:80:e0:a9: 63:41:e9:36:88:6f:a3:6d:2c:de:87:cc:f8:bd:95:b1:1f:97: 8a:7d:b9:07:e6:d7:83:17:06:e8:01:45:8b:2b:71:22:0d:5d: c1:73:20:05:8f:98:7d:1a:7a:42:ae:5b:14:47:35:16:1e:a3: 44:dc:68:1b:41:df:ea:2e:1b:c9:b9:8b:44:49:96:88:fe:1a: 11:4b:02:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA8gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJEOTMxMTAvBgNVBAUTKDkwMUY5ODkxRkJGN0YyN0Q0MTZBMUVFMDZCMzFCMDE2 NUFBRTFEQzUwHhcNMjUwMzI5MDA1MzEyWhcNMjUwNDA1MDA1MzEyWjAYMRYwFAYD VQQDEw02N2U3NDQ3OS04OGY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtcFkf2O1PlCdnH0BXWeAKwFXeDtZhFRWNZqOCVALp5Nn0mNqXelbMK3Pwmue T/ryEKga2ln6TJccgPrzuS6+wyDC7Wu84c6xYX4F9P/Kj3oA8GoPKxit49mek4u2 PluS7AM8x5cYArTTK4pKJ1t9RXcXmlUbfGdZWSoiEkdAkoq+vqCen867LrASpuuP DHLdp55e8JiWaPXxVS363K+0UJF8aG7eG5i24FfQF2cRkksnuumPH4fX0zzEjQCn oKZsJOsHF5DZyrqYCT8KHRdOxcc9EKPdIF8kR4ManQDX6wvk7QHOWuHxMazrsIai gjUYCoWhDUnKFbEyMRJXJwyJPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLVLV9jj Fo2jIuDfEJTq3lVg7W7aMB8GA1UdIwQYMBaAFJAfmJH79/J9QWoe4GsxsBZarh3F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkQ5My8wRjg3NEE3NDdG M0QxMUVDOEExRENDNzFDNEY5QUUwMi9rQi1Za2Z2MzhuMUJhaDdnYXpHd0ZscXVI Y1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tCLVlrZnYzOG4xQmFoN2dhekd3RmxxdUhjVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkQ5My8wRjg3NEE3NDdGM0QxMUVDOEExRENDNzFDNEY5QUUwMi9rQi1Za2Z2Mzhu MUJhaDdnYXpHd0ZscXVIY1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMklFiSfqSiOweS520qtlxoPrDcot/RiIsVjFgGOlDr9WJ6/z5yHh0 lDGCvq9i/7ZOuUiSRGB8NWqhkA37gMVIgj4w0O5DFo24y9QKz92etizzUFHluik0 LNwgKca2BmJW3nsBmAtwgWTW+SZaEPE3YVFPuc/mhcdaLQ0sNnXHJetJXQIy2G8e /49u3AP9E5rRW1yrCXlDfBKwr1Db8/LDTZcAH7iCTL6qG7M6jJgcPx2A4KljQek2 iG+jbSzeh8z4vZWxH5eKfbkH5teDFwboAUWLK3EiDV3BcyAFj5h9GnpCrlsURzUW HqNE3GgbQd/qLhvJuYtESZaI/hoRSwLo -----END CERTIFICATE-----Generated at Fri Apr 4 22:40:12 2025 by rpki-client