$ rpki-client -vvf rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.mft File: rs-kglLctVxfHrOBKIztw-b4YnQ.mft (raw, json) Hash identifier: aQkmxVelLyNjY9yssKejAcfzEucdrpzAEebS8Jm98Mw= Subject key identifier: 84:3B:F2:F7:A6:EA:84:FB:48:52:2C:C1:FA:70:4D:EB:B4:FC:C2:67 Authority key identifier: AE:CF:A4:82:52:DC:B5:5C:5F:1E:B3:81:28:8C:ED:C3:E6:F8:62:74 Certificate issuer: /CN=A91356BA/serialNumber=AECFA48252DCB55C5F1EB381288CEDC3E6F86274 Certificate serial: 75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rs-kglLctVxfHrOBKIztw-b4YnQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.mft Manifest number: 73 Signing time: Thu 03 Apr 2025 06:06:22 +0000 Manifest this update: Thu 03 Apr 2025 06:06:21 +0000 Manifest next update: Thu 10 Apr 2025 06:06:21 +0000 Files and hashes: 1: rs-kglLctVxfHrOBKIztw-b4YnQ.crl (hash: WWt22UakCaI0iX3HFW6cPFRlquQl+VFn7jqos3p93gw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.crl rsync://rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rs-kglLctVxfHrOBKIztw-b4YnQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 06:06:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 117 (0x75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91356BA Validity Not Before: Apr 3 06:06:21 2025 GMT Not After : Apr 10 06:06:21 2025 GMT Subject: CN=67ee255d-d973 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:c2:45:13:2b:53:d7:f9:44:c5:64:b5:c9:55: 05:01:be:6b:09:b8:13:e0:a0:04:8a:d0:52:8c:66: 1c:47:0a:86:06:27:f3:f8:0c:5e:04:73:16:39:44: 42:b4:81:c3:97:22:94:7c:90:ae:8d:23:b5:d5:3e: f6:d7:2c:ca:74:f7:78:77:41:3c:76:41:e3:db:5b: 60:d2:be:85:c0:b5:0b:9e:09:99:20:73:6a:be:39: 1d:5f:54:34:bb:d3:d6:9d:8f:81:71:18:74:e9:08: bc:fa:dc:31:d8:a0:52:fc:3d:ad:d4:6c:21:d2:29: 7d:4d:9e:7c:b4:dd:92:25:00:bd:68:79:59:c3:ee: 20:96:c2:06:26:6a:67:da:94:59:3c:40:40:37:e9: 81:30:06:4f:bc:bc:89:d3:10:0a:19:09:85:13:9c: fd:99:2f:db:c9:af:b5:0d:0e:d5:99:68:87:5c:bc: b1:12:3e:dc:76:21:43:32:d1:8e:cd:55:bb:5f:15: b5:27:5a:7a:93:56:49:20:42:36:54:a0:11:6d:91: 99:ef:66:e6:ad:af:7f:3d:3c:cb:7b:17:a0:91:6a: f8:c8:ea:0b:dc:81:90:73:fb:74:03:0f:62:ef:c9: c1:c6:36:b6:57:b8:f6:a3:b6:75:ea:4b:6a:48:93: 4d:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:3B:F2:F7:A6:EA:84:FB:48:52:2C:C1:FA:70:4D:EB:B4:FC:C2:67 X509v3 Authority Key Identifier: keyid:AE:CF:A4:82:52:DC:B5:5C:5F:1E:B3:81:28:8C:ED:C3:E6:F8:62:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rs-kglLctVxfHrOBKIztw-b4YnQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:8e:6e:5a:75:da:cf:6b:d8:80:b4:8c:8b:65:27:8f:50:e2: 39:79:f6:d7:7f:7c:10:91:c1:26:d5:37:30:9b:4e:ff:06:7e: 03:cd:7d:1a:d2:b7:07:1b:bd:5f:64:50:0e:51:a4:4d:6e:1c: b9:c6:ff:4d:8a:85:3a:0f:62:67:ce:44:b3:5c:53:72:4e:79: 0c:8c:37:c9:67:03:ea:e1:1b:b2:ce:3d:75:57:41:fb:68:18: 53:a7:5b:bc:a1:46:1a:95:a1:33:bb:c6:fe:92:38:e4:00:b7: f9:45:b0:26:8c:70:90:40:aa:a5:24:ab:7d:c5:da:64:2a:e3: cd:b0:a3:e2:c3:c0:92:11:7d:54:78:2f:40:8f:fc:c4:e2:6f: 78:04:51:33:45:8d:02:ed:bc:12:0a:37:98:e8:ba:f9:d0:4e: 3d:4b:73:60:cf:23:f4:3c:82:87:05:58:0d:92:58:44:97:24: ec:46:0b:f9:41:c7:67:84:47:6c:94:32:c0:ff:44:01:0d:a4: 3b:fe:6b:39:da:39:a3:c1:c8:d3:58:09:41:3e:11:fc:36:28: 66:04:44:d0:39:9a:34:c1:d7:d9:b4:7c:d1:34:03:9d:5d:4f: 6c:12:d3:28:7d:ae:3b:46:e4:16:85:c6:5c:b9:6e:a5:b7:aa: 0b:6e:b4:c7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz NTZCQTExMC8GA1UEBRMoQUVDRkE0ODI1MkRDQjU1QzVGMUVCMzgxMjg4Q0VEQzNF NkY4NjI3NDAeFw0yNTA0MDMwNjA2MjFaFw0yNTA0MTAwNjA2MjFaMBgxFjAUBgNV BAMTDTY3ZWUyNTVkLWQ5NzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDxwkUTK1PX+UTFZLXJVQUBvmsJuBPgoASK0FKMZhxHCoYGJ/P4DF4EcxY5REK0 gcOXIpR8kK6NI7XVPvbXLMp093h3QTx2QePbW2DSvoXAtQueCZkgc2q+OR1fVDS7 09adj4FxGHTpCLz63DHYoFL8Pa3UbCHSKX1Nnny03ZIlAL1oeVnD7iCWwgYmamfa lFk8QEA36YEwBk+8vInTEAoZCYUTnP2ZL9vJr7UNDtWZaIdcvLESPtx2IUMy0Y7N VbtfFbUnWnqTVkkgQjZUoBFtkZnvZuatr389PMt7F6CRavjI6gvcgZBz+3QDD2Lv ycHGNrZXuPajtnXqS2pIk037AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUhDvy96bq hPtIUizB+nBN67T8wmcwHwYDVR0jBBgwFoAUrs+kglLctVxfHrOBKIztw+b4YnQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM1NkJBLzI2NDUyMUQyNjkw NTExRUZBRDIzMDQ2NEM0RjlBRTAyL3JzLWtnbExjdFZ4ZkhyT0JLSXp0dy1iNFlu US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcnMta2dsTGN0VnhmSHJPQktJenR3LWI0WW5RLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM1 NkJBLzI2NDUyMUQyNjkwNTExRUZBRDIzMDQ2NEM0RjlBRTAyL3JzLWtnbExjdFZ4 ZkhyT0JLSXp0dy1iNFluUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACyOblp12s9r2IC0jItlJ49Q4jl59td/fBCRwSbVNzCbTv8GfgPNfRrS twcbvV9kUA5RpE1uHLnG/02KhToPYmfORLNcU3JOeQyMN8lnA+rhG7LOPXVXQfto GFOnW7yhRhqVoTO7xv6SOOQAt/lFsCaMcJBAqqUkq33F2mQq482wo+LDwJIRfVR4 L0CP/MTib3gEUTNFjQLtvBIKN5jouvnQTj1Lc2DPI/Q8gocFWA2SWESXJOxGC/lB x2eER2yUMsD/RAENpDv+aznaOaPByNNYCUE+Efw2KGYERNA5mjTB19m0fNE0A51d T2wS0yh9rjtG5BaFxly5bqW3qgtutMc= -----END CERTIFICATE-----Generated at Fri Apr 4 22:42:19 2025 by rpki-client