$ rpki-client -vvf rpki.apnic.net/member_repository/A91403E9/17613234AC3A11ED9740B655C4F9AE02/kv7-iugp8KWlAbV1Bvrk5cEaHZc.mft File: kv7-iugp8KWlAbV1Bvrk5cEaHZc.mft (raw, json) Hash identifier: 6evT+emjLxlr8E99WQ/y+F4ApidalksLje5S+eU1QwU= Subject key identifier: 3E:7D:26:37:31:FA:9E:B2:04:2D:D3:07:10:87:66:41:51:D5:1F:82 Authority key identifier: 92:FE:FE:8A:E8:29:F0:A5:A5:01:B5:75:06:FA:E4:E5:C1:1A:1D:97 Certificate issuer: /CN=A91403E9/serialNumber=92FEFE8AE829F0A5A501B57506FAE4E5C11A1D97 Certificate serial: 01A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kv7-iugp8KWlAbV1Bvrk5cEaHZc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91403E9/17613234AC3A11ED9740B655C4F9AE02/kv7-iugp8KWlAbV1Bvrk5cEaHZc.mft Manifest number: 019B Signing time: Thu 03 Apr 2025 02:47:40 +0000 Manifest this update: Thu 03 Apr 2025 02:47:40 +0000 Manifest next update: Thu 10 Apr 2025 02:47:40 +0000 Files and hashes: 1: kv7-iugp8KWlAbV1Bvrk5cEaHZc.crl (hash: Ajy6veaxMKinb/S1DUaDs8VwDaO8AAkbRK+Y9acZUpE=) 2: F2CE31B608CA11F09E81487CC4F9AE02.roa (hash: /IwIj5wHV9TZq7gyFUGmW+srgA66FnHYYQjrcF03350=) 3: D40271B608CA11F080AEDB7BC4F9AE02.roa (hash: q5xwzkvJJT2cpQij23jtb331Ba1Q6ZPU5GFvae3tZEo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91403E9/17613234AC3A11ED9740B655C4F9AE02/kv7-iugp8KWlAbV1Bvrk5cEaHZc.crl rsync://rpki.apnic.net/member_repository/A91403E9/17613234AC3A11ED9740B655C4F9AE02/kv7-iugp8KWlAbV1Bvrk5cEaHZc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kv7-iugp8KWlAbV1Bvrk5cEaHZc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 02:47:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 422 (0x1a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91403E9 Validity Not Before: Apr 3 02:47:40 2025 GMT Not After : Apr 10 02:47:40 2025 GMT Subject: CN=67edf6cc-4493 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:a2:88:60:c5:4b:10:93:c0:f9:af:55:a7:0a: ed:0f:b3:27:23:aa:58:13:7c:b3:75:3b:03:fd:85: 0b:74:32:60:11:7f:c5:18:95:0a:ac:50:65:c3:4f: e3:79:d4:0c:97:81:8d:0b:00:39:dd:89:d8:ef:cb: 7b:47:a2:67:c2:ee:22:b3:b7:8c:fe:ab:2b:99:5b: 75:76:2f:2a:cc:d0:fb:f7:33:70:6d:f2:6e:58:f0: 87:97:24:72:72:2b:17:3e:df:4d:d1:93:45:02:55: 2f:d6:2e:ef:8c:19:eb:00:b9:f9:6a:19:68:2d:75: 48:4d:94:70:eb:c8:2e:4f:c2:72:94:e0:a5:49:c3: 0d:85:62:e0:48:b3:36:4f:0a:29:2e:ce:2e:a3:25: c3:15:06:d8:b4:6c:fa:ec:09:9a:4c:b7:98:df:7a: dc:c9:53:4f:8d:d6:6c:ca:9a:35:df:b5:94:f9:d9: 85:45:90:fb:27:21:fe:91:6f:48:94:5b:ca:f1:50: 9f:2e:f7:84:c3:01:47:59:d9:2a:52:66:ac:d4:0c: 89:c6:6a:41:e4:af:93:1d:25:71:17:ab:61:f7:f1: 22:c9:63:d5:2c:26:6f:ca:2e:9f:31:0a:37:9e:ba: 0f:22:86:58:5a:d4:18:cb:04:e5:6b:55:3d:36:3b: 39:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:7D:26:37:31:FA:9E:B2:04:2D:D3:07:10:87:66:41:51:D5:1F:82 X509v3 Authority Key Identifier: keyid:92:FE:FE:8A:E8:29:F0:A5:A5:01:B5:75:06:FA:E4:E5:C1:1A:1D:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91403E9/17613234AC3A11ED9740B655C4F9AE02/kv7-iugp8KWlAbV1Bvrk5cEaHZc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kv7-iugp8KWlAbV1Bvrk5cEaHZc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91403E9/17613234AC3A11ED9740B655C4F9AE02/kv7-iugp8KWlAbV1Bvrk5cEaHZc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:0e:18:cc:8b:f9:82:93:ad:a7:8e:a7:9b:f2:c6:e2:2a:a8: 1e:05:8a:8c:52:5d:08:47:2f:b6:da:29:ac:e2:ab:e2:a3:10: 0a:fc:13:31:5a:03:7e:a8:95:96:9b:57:b0:97:ea:a7:2c:74: 86:75:2e:4d:77:03:f5:08:ea:65:e8:51:a8:58:4e:ab:f0:42: c6:84:37:d3:b8:71:bc:d2:c3:bd:e3:8a:54:7e:7a:c0:c4:03: 62:a6:c5:ad:ee:33:51:b9:74:28:8b:ec:68:91:5c:5a:4b:d1: 75:f6:37:e5:4d:df:11:95:6e:b0:04:dd:55:f1:6f:b7:b4:d3: 3a:eb:ce:9b:8f:d9:05:25:71:54:0c:04:c0:6f:61:55:ad:22: b9:4c:66:17:ce:75:be:e6:2f:2e:64:b2:4f:d6:04:f1:99:83: 2b:2d:b1:e3:c2:b1:3d:04:70:e8:65:61:fa:bb:51:cb:77:33: 9f:93:e5:f0:4c:16:f8:a7:ff:dc:8e:bc:51:a7:b9:94:09:36: 11:b2:ad:b0:c6:e4:5e:ba:e6:e6:50:07:87:60:10:ef:3d:b9: d4:8c:ea:d9:76:4a:f7:9f:c5:f5:99:76:bd:86:68:3a:fc:78: 14:30:2b:76:94:4e:b6:5a:ba:23:70:0b:31:92:b8:10:0c:30: e7:2e:28:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDAzRTkxMTAvBgNVBAUTKDkyRkVGRThBRTgyOUYwQTVBNTAxQjU3NTA2RkFFNEU1 QzExQTFEOTcwHhcNMjUwNDAzMDI0NzQwWhcNMjUwNDEwMDI0NzQwWjAYMRYwFAYD VQQDEw02N2VkZjZjYy00NDkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvKKIYMVLEJPA+a9VpwrtD7MnI6pYE3yzdTsD/YULdDJgEX/FGJUKrFBlw0/j edQMl4GNCwA53YnY78t7R6Jnwu4is7eM/qsrmVt1di8qzND79zNwbfJuWPCHlyRy cisXPt9N0ZNFAlUv1i7vjBnrALn5ahloLXVITZRw68guT8JylOClScMNhWLgSLM2 TwopLs4uoyXDFQbYtGz67AmaTLeY33rcyVNPjdZsypo137WU+dmFRZD7JyH+kW9I lFvK8VCfLveEwwFHWdkqUmas1AyJxmpB5K+THSVxF6th9/EiyWPVLCZvyi6fMQo3 nroPIoZYWtQYywTla1U9Njs57wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD59Jjcx +p6yBC3TBxCHZkFR1R+CMB8GA1UdIwQYMBaAFJL+/oroKfClpQG1dQb65OXBGh2X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDNFOS8xNzYxMzIzNEFD M0ExMUVEOTc0MEI2NTVDNEY5QUUwMi9rdjctaXVncDhLV2xBYlYxQnZyazVjRWFI WmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t2Ny1pdWdwOEtXbEFiVjFCdnJrNWNFYUhaYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MDNFOS8xNzYxMzIzNEFDM0ExMUVEOTc0MEI2NTVDNEY5QUUwMi9rdjctaXVncDhL V2xBYlYxQnZyazVjRWFIWmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaDhjMi/mCk62njqeb8sbiKqgeBYqMUl0IRy+22ims4qvioxAK/BMx WgN+qJWWm1ewl+qnLHSGdS5NdwP1COpl6FGoWE6r8ELGhDfTuHG80sO944pUfnrA xANipsWt7jNRuXQoi+xokVxaS9F19jflTd8RlW6wBN1V8W+3tNM6686bj9kFJXFU DATAb2FVrSK5TGYXznW+5i8uZLJP1gTxmYMrLbHjwrE9BHDoZWH6u1HLdzOfk+Xw TBb4p//cjrxRp7mUCTYRsq2wxuReuubmUAeHYBDvPbnUjOrZdkr3n8X1mXa9hmg6 /HgUMCt2lE62WrojcAsxkrgQDDDnLigs -----END CERTIFICATE-----Generated at Fri Apr 4 22:04:09 2025 by rpki-client