$ rpki-client -vvf rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft File: KbnmrAGSmMyglt6Jcancj3144dk.mft (raw, json) Hash identifier: UFZWsx4p/cAp7eC23jG8qe0vOQUSBMXDZPuvAB/OYv0= Subject key identifier: 6A:EF:57:B9:16:C8:7C:40:C3:55:CE:6B:69:9D:01:A1:C7:74:63:1A Authority key identifier: 29:B9:E6:AC:01:92:98:CC:A0:96:DE:89:71:A9:DC:8F:7D:78:E1:D9 Certificate issuer: /CN=A91371E4/serialNumber=29B9E6AC019298CCA096DE8971A9DC8F7D78E1D9 Certificate serial: 11AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KbnmrAGSmMyglt6Jcancj3144dk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft Manifest number: 11A3 Signing time: Fri 04 Apr 2025 17:17:21 +0000 Manifest this update: Fri 04 Apr 2025 17:17:20 +0000 Manifest next update: Fri 11 Apr 2025 17:17:20 +0000 Files and hashes: 1: KbnmrAGSmMyglt6Jcancj3144dk.crl (hash: EnXxbp8R7NbT8dID5gesCxNjvfpd5CCDv6V0I2e2IVk=) 2: B6C2A27AF16A11E89550B621C4F9AE02.roa (hash: rYGwlaz3R02z4ql3MvAUj9rg5+gxsDR/Fvqrh9TzcP8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.crl rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KbnmrAGSmMyglt6Jcancj3144dk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 17:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4526 (0x11ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91371E4 Validity Not Before: Apr 4 17:17:20 2025 GMT Not After : Apr 11 17:17:20 2025 GMT Subject: CN=67f01420-d10b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:a1:78:f2:6d:ea:fd:a9:30:ae:72:09:49:36: 85:13:43:c9:26:ba:2c:4d:fb:5b:87:1f:9d:1b:fe: ff:0e:03:86:02:d4:b3:00:06:02:f9:c1:89:23:84: 8e:96:5c:37:21:92:9c:78:0c:48:8e:ef:c1:cb:47: be:fc:f6:f3:18:a6:d4:c3:7d:2b:41:69:d5:c3:2d: f1:0f:dc:fe:51:82:dc:69:f4:b0:a0:6a:86:21:5f: 82:da:ea:42:3f:ea:fd:77:8b:88:49:12:0e:11:a6: 27:33:ed:c7:0b:76:ec:73:af:7d:66:54:f3:02:b3: 51:49:e4:07:33:d8:f5:4e:95:ec:c5:12:ab:6e:8b: 02:0a:6b:3f:86:6c:61:b7:a7:1f:ff:84:3d:5f:31: ea:d0:fe:a3:b5:b0:e1:c3:27:16:43:81:32:2d:bd: 35:59:c7:86:0c:50:a1:a9:0a:eb:33:eb:8e:51:f9: de:04:8b:ec:12:a5:c0:32:38:d3:ce:f5:23:8f:1e: 31:96:63:16:fb:48:e0:ce:41:04:38:a1:bf:d7:eb: 5d:8f:5f:aa:2d:c1:8f:18:39:0d:8b:b9:a8:5f:61: a3:82:6f:57:79:f0:6e:d4:b6:84:d7:c8:d5:ae:9c: 06:23:5d:a8:8d:bd:c5:de:8e:14:db:d5:27:19:6b: 5a:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:EF:57:B9:16:C8:7C:40:C3:55:CE:6B:69:9D:01:A1:C7:74:63:1A X509v3 Authority Key Identifier: keyid:29:B9:E6:AC:01:92:98:CC:A0:96:DE:89:71:A9:DC:8F:7D:78:E1:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KbnmrAGSmMyglt6Jcancj3144dk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:dd:a4:2c:83:6d:4b:5f:f9:85:72:95:d1:70:88:d5:32:1f: 16:4b:42:44:82:ea:9d:3e:48:37:24:c8:d0:ca:4a:7f:71:64: c5:71:69:65:39:24:94:19:e3:c9:4f:9a:9a:df:ee:5e:f2:b4: 2e:33:02:62:9d:0c:ac:b4:2b:5e:e7:65:d0:c6:26:b0:d4:57: 41:7a:30:23:27:cb:9f:7d:19:1a:74:14:83:bb:fc:a5:da:a7: 15:66:0c:7b:29:68:88:5d:18:b1:17:82:65:8e:94:c4:c8:ff: ae:05:d9:e6:cb:bb:41:99:4c:6b:74:20:22:f2:b5:b7:99:50: f5:d6:16:a0:b8:a8:ee:2b:e3:13:2f:93:cd:1f:83:a4:fa:ba: 3c:b3:e1:a6:0c:48:7d:d2:89:ee:6a:45:6a:23:b4:58:f1:46: fc:50:21:f2:45:9c:20:f5:db:e1:da:b6:c9:86:c3:7a:2d:0a: 6c:fa:53:3b:1c:ce:a6:7f:67:61:24:0c:82:77:be:f7:05:44: 62:83:76:a6:aa:55:18:b4:19:ab:da:7d:2a:e5:d3:dd:31:ae: 8d:21:30:c1:1d:83:d6:85:07:18:fd:5b:db:d5:b5:36:f7:37: 18:a6:a8:5e:6a:4a:97:8e:8e:31:9b:a9:a9:c1:89:2c:36:d6: 19:c5:69:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEa4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzcxRTQxMTAvBgNVBAUTKDI5QjlFNkFDMDE5Mjk4Q0NBMDk2REU4OTcxQTlEQzhG N0Q3OEUxRDkwHhcNMjUwNDA0MTcxNzIwWhcNMjUwNDExMTcxNzIwWjAYMRYwFAYD VQQDEw02N2YwMTQyMC1kMTBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4aF48m3q/akwrnIJSTaFE0PJJrosTftbhx+dG/7/DgOGAtSzAAYC+cGJI4SO llw3IZKceAxIju/By0e+/PbzGKbUw30rQWnVwy3xD9z+UYLcafSwoGqGIV+C2upC P+r9d4uISRIOEaYnM+3HC3bsc699ZlTzArNRSeQHM9j1TpXsxRKrbosCCms/hmxh t6cf/4Q9XzHq0P6jtbDhwycWQ4EyLb01WceGDFChqQrrM+uOUfneBIvsEqXAMjjT zvUjjx4xlmMW+0jgzkEEOKG/1+tdj1+qLcGPGDkNi7moX2Gjgm9XefBu1LaE18jV rpwGI12ojb3F3o4U29UnGWtaCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGrvV7kW yHxAw1XOa2mdAaHHdGMaMB8GA1UdIwQYMBaAFCm55qwBkpjMoJbeiXGp3I99eOHZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNzFFNC8zODI0N0E3MEYx NjkxMUU4QjNBNzlEMUVDNEY5QUUwMi9LYm5tckFHU21NeWdsdDZKY2FuY2ozMTQ0 ZGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tibm1yQUdTbU15Z2x0NkpjYW5jajMxNDRkay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NzFFNC8zODI0N0E3MEYxNjkxMUU4QjNBNzlEMUVDNEY5QUUwMi9LYm5tckFHU21N eWdsdDZKY2FuY2ozMTQ0ZGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC53aQsg21LX/mFcpXRcIjVMh8WS0JEguqdPkg3JMjQykp/cWTFcWll OSSUGePJT5qa3+5e8rQuMwJinQystCte52XQxiaw1FdBejAjJ8uffRkadBSDu/yl 2qcVZgx7KWiIXRixF4JljpTEyP+uBdnmy7tBmUxrdCAi8rW3mVD11haguKjuK+MT L5PNH4Ok+ro8s+GmDEh90onuakVqI7RY8Ub8UCHyRZwg9dvh2rbJhsN6LQps+lM7 HM6mf2dhJAyCd773BURig3amqlUYtBmr2n0q5dPdMa6NITDBHYPWhQcY/Vvb1bU2 9zcYpqheakqXjo4xm6mpwYksNtYZxWl0 -----END CERTIFICATE-----Generated at Fri Apr 4 22:10:32 2025 by rpki-client