$ rpki-client -vvf rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft File: 2kcnine73_Ktn5igEaKnoufNYNg.mft (raw, json) Hash identifier: xRSKFgnBxF7B0esViw5CWn61OzxIJiFb3FChbyXd75o= Subject key identifier: B5:4C:31:08:96:E7:B7:9F:1E:E7:18:C9:2A:39:50:50:9B:BF:B0:AF Authority key identifier: DA:47:27:8A:77:BB:DF:F2:AD:9F:98:A0:11:A2:A7:A2:E7:CD:60:D8 Certificate issuer: /CN=A91393BE/serialNumber=DA47278A77BBDFF2AD9F98A011A2A7A2E7CD60D8 Certificate serial: 80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft Manifest number: 7E Signing time: Thu 03 Apr 2025 05:52:58 +0000 Manifest this update: Thu 03 Apr 2025 05:52:58 +0000 Manifest next update: Thu 10 Apr 2025 05:52:58 +0000 Files and hashes: 1: 2kcnine73_Ktn5igEaKnoufNYNg.crl (hash: vu2KEL+gbfpqA2MFSxm9CDlLRGZjoTmI0GNcC0ETXr0=) 2: 05A966C652DB11EF990CB840C4F9AE02.roa (hash: 7cyDiCG+GWMMc47d/9wE/tr8+3lmCjNtDuQzc5Jy9ng=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.crl rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 05:52:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 128 (0x80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91393BE Validity Not Before: Apr 3 05:52:58 2025 GMT Not After : Apr 10 05:52:58 2025 GMT Subject: CN=67ee223a-64cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:5d:d4:67:0e:ca:61:db:19:70:01:bd:8b:ac: 97:4b:c3:1f:3f:e5:16:2f:82:0a:b3:78:c6:fc:7f: ec:08:04:9f:2c:51:bd:99:af:27:91:c1:fc:70:b9: e2:9f:bb:e8:a5:9d:92:d1:31:8d:e9:28:0c:5f:54: 9c:d2:e8:e7:79:41:a9:4d:7d:82:2b:15:63:71:43: 5a:0c:eb:1d:76:84:3d:df:9f:6f:bc:b6:c3:aa:d7: 9f:06:4b:3b:45:51:45:93:29:17:c5:43:a0:81:f3: 70:f6:ba:f4:8e:e8:88:c4:b9:77:5a:3c:8f:ec:cd: 3a:df:99:d3:81:f2:b7:30:2f:6b:2f:50:e4:6d:a0: 60:ea:ad:51:a5:70:fd:8c:86:82:09:23:28:4a:4f: e7:3a:9b:cc:69:a5:f2:f5:d9:f6:df:c1:a9:f2:3d: 5e:67:ef:55:c5:08:9c:85:e7:a4:5d:f4:47:0d:db: 75:eb:b0:3d:ef:42:0a:30:9a:8b:3b:8d:ec:6c:cc: 69:5f:dd:29:b7:e6:a4:31:f1:b5:07:e4:c1:ff:c0: 9f:58:e5:bc:eb:37:e0:d2:6a:b0:6d:09:64:d8:6f: 56:31:7d:14:82:b5:76:15:2a:75:5a:f7:fb:b5:da: af:08:c2:62:5c:0f:34:dd:6a:0c:3a:09:bf:21:81: 05:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:4C:31:08:96:E7:B7:9F:1E:E7:18:C9:2A:39:50:50:9B:BF:B0:AF X509v3 Authority Key Identifier: keyid:DA:47:27:8A:77:BB:DF:F2:AD:9F:98:A0:11:A2:A7:A2:E7:CD:60:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:74:70:11:a3:81:3c:ae:7f:b1:b7:f2:79:ae:40:77:c6:e6: 7b:66:6f:d4:dc:73:38:42:ee:df:db:c1:99:c7:3f:63:62:99: 8b:31:49:56:13:06:b9:b5:7c:0f:0c:2e:cc:6e:6f:c8:c3:1b: d3:11:df:5b:37:f7:03:a6:54:0d:58:e6:4c:03:2f:e3:f7:4e: d3:fd:02:54:04:27:d7:bf:3d:8a:6c:d1:3d:04:60:a9:15:a1: b6:74:59:ad:21:6e:2f:95:df:69:90:3a:a9:09:2c:ac:5e:4e: f8:20:6d:be:52:f0:23:43:2a:a6:a0:7f:d0:05:e0:ce:19:e6: 2e:ae:a0:de:45:0f:c0:cf:50:00:88:49:b7:1c:cc:61:de:90: c3:b5:bf:c5:5f:71:f9:b9:a8:bc:e4:46:1e:a1:2c:cd:b6:df: f1:a3:f5:38:c4:9d:fb:8b:59:cf:fc:fb:d1:a7:0a:9e:ba:40: f7:e0:13:ca:53:d2:bf:22:0e:9a:05:08:74:57:d2:c6:1b:c7: 0b:ca:fa:8c:6e:94:67:16:b9:62:a1:d6:22:e4:2b:43:5f:ed: 31:d1:25:89:93:9d:d5:29:72:69:6a:ea:a1:52:f4:d5:5e:0d: 39:04:29:d7:d1:71:8b:8d:1d:3e:9c:24:46:42:8f:4d:9d:7f: 93:5a:32:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkzQkUxMTAvBgNVBAUTKERBNDcyNzhBNzdCQkRGRjJBRDlGOThBMDExQTJBN0Ey RTdDRDYwRDgwHhcNMjUwNDAzMDU1MjU4WhcNMjUwNDEwMDU1MjU4WjAYMRYwFAYD VQQDEw02N2VlMjIzYS02NGNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1V3UZw7KYdsZcAG9i6yXS8MfP+UWL4IKs3jG/H/sCASfLFG9ma8nkcH8cLni n7vopZ2S0TGN6SgMX1Sc0ujneUGpTX2CKxVjcUNaDOsddoQ9359vvLbDqtefBks7 RVFFkykXxUOggfNw9rr0juiIxLl3WjyP7M0635nTgfK3MC9rL1DkbaBg6q1RpXD9 jIaCCSMoSk/nOpvMaaXy9dn238Gp8j1eZ+9VxQicheekXfRHDdt167A970IKMJqL O43sbMxpX90pt+akMfG1B+TB/8CfWOW86zfg0mqwbQlk2G9WMX0UgrV2FSp1Wvf7 tdqvCMJiXA803WoMOgm/IYEFdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLVMMQiW 57efHucYySo5UFCbv7CvMB8GA1UdIwQYMBaAFNpHJ4p3u9/yrZ+YoBGip6LnzWDY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTNCRS83NzQxNjE0QzUy RDMxMUVGQkFFRERDMUVDNEY5QUUwMi8ya2NuaW5lNzNfS3RuNWlnRWFLbm91Zk5Z TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJrY25pbmU3M19LdG41aWdFYUtub3VmTllOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTNCRS83NzQxNjE0QzUyRDMxMUVGQkFFRERDMUVDNEY5QUUwMi8ya2NuaW5lNzNf S3RuNWlnRWFLbm91Zk5ZTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIdHARo4E8rn+xt/J5rkB3xuZ7Zm/U3HM4Qu7f28GZxz9jYpmLMUlW Ewa5tXwPDC7Mbm/IwxvTEd9bN/cDplQNWOZMAy/j907T/QJUBCfXvz2KbNE9BGCp FaG2dFmtIW4vld9pkDqpCSysXk74IG2+UvAjQyqmoH/QBeDOGeYurqDeRQ/Az1AA iEm3HMxh3pDDtb/FX3H5uai85EYeoSzNtt/xo/U4xJ37i1nP/PvRpwqeukD34BPK U9K/Ig6aBQh0V9LGG8cLyvqMbpRnFrliodYi5CtDX+0x0SWJk53VKXJpauqhUvTV Xg05BCnX0XGLjR0+nCRGQo9NnX+TWjKQ -----END CERTIFICATE-----Generated at Fri Apr 4 22:19:41 2025 by rpki-client