$ rpki-client -vvf rpki.apnic.net/member_repository/A914669D/BF6E20A68DAE11EBB298B51FC4F9AE02/kRJuhvGMYJQE0ZDymMMs1gn8-nk.mft File: kRJuhvGMYJQE0ZDymMMs1gn8-nk.mft (raw, json) Hash identifier: rUzaYhdR715NMj+WbbGh83W02MslcsrZmVfAE1lUjco= Subject key identifier: 86:6F:DD:71:00:3E:B4:7E:B3:5F:A7:41:AC:1F:E3:3A:DA:77:D3:F6 Authority key identifier: 91:12:6E:86:F1:8C:60:94:04:D1:90:F2:98:C3:2C:D6:09:FC:FA:79 Certificate issuer: /CN=A914669D/serialNumber=91126E86F18C609404D190F298C32CD609FCFA79 Certificate serial: 062C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kRJuhvGMYJQE0ZDymMMs1gn8-nk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914669D/BF6E20A68DAE11EBB298B51FC4F9AE02/kRJuhvGMYJQE0ZDymMMs1gn8-nk.mft Manifest number: 0627 Signing time: Fri 28 Mar 2025 22:58:08 +0000 Manifest this update: Fri 28 Mar 2025 22:58:08 +0000 Manifest next update: Fri 04 Apr 2025 22:58:08 +0000 Files and hashes: 1: kRJuhvGMYJQE0ZDymMMs1gn8-nk.crl (hash: P+p+h3e6jUC9ODqqpaxHIJyTY5IuY/TzZ6axINi+glQ=) 2: E521C8BE8DB011EBBA0A3723C4F9AE02.roa (hash: QIcvi4uK4+sV4KonLrCq7np3/p5FTh38+jPZf45l5Uo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914669D/BF6E20A68DAE11EBB298B51FC4F9AE02/kRJuhvGMYJQE0ZDymMMs1gn8-nk.crl rsync://rpki.apnic.net/member_repository/A914669D/BF6E20A68DAE11EBB298B51FC4F9AE02/kRJuhvGMYJQE0ZDymMMs1gn8-nk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kRJuhvGMYJQE0ZDymMMs1gn8-nk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 22:58:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1580 (0x62c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914669D Validity Not Before: Mar 28 22:58:08 2025 GMT Not After : Apr 4 22:58:08 2025 GMT Subject: CN=67e72980-7782 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:18:f2:de:47:84:ea:0f:d5:86:cb:ea:10:dc: 2d:f9:d0:71:b8:67:fe:3d:be:b1:04:e2:61:bb:a2: 1a:ee:29:f1:f0:73:0b:1c:2b:59:5a:23:09:87:39: fb:0a:96:e0:90:53:a1:d4:4e:13:57:3f:8b:5c:21: b6:4c:58:54:ee:0b:66:62:ee:f5:64:5c:c3:47:9f: bd:ca:79:fa:f6:55:a6:c8:40:65:18:7a:97:aa:22: 06:09:44:b5:07:6f:99:70:d1:ed:79:66:4f:cc:a9: 34:96:bc:0e:9d:be:10:5d:1a:08:05:cb:22:25:7f: b0:81:24:f3:81:20:0b:a8:1a:d3:ef:e8:57:60:5f: 5a:57:c5:21:e0:b3:87:d9:8b:38:4f:7c:38:35:17: 6e:96:21:ee:99:79:4d:86:c1:0c:8b:d0:2d:95:b1: d0:ba:21:fb:70:14:fa:ea:1f:04:2c:05:5b:39:23: 3f:fc:10:87:ae:4c:54:af:d8:67:07:8e:26:c1:4b: b8:70:26:a7:a9:6f:b6:ad:ed:9e:e9:8d:41:bc:39: 64:52:b3:de:34:dc:c5:b7:89:18:a4:97:7f:84:9d: 63:96:57:37:c6:fe:4f:96:35:29:19:c2:01:45:98: 56:23:28:f4:a6:21:c0:71:f8:d4:d9:ca:36:bf:44: 5e:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:6F:DD:71:00:3E:B4:7E:B3:5F:A7:41:AC:1F:E3:3A:DA:77:D3:F6 X509v3 Authority Key Identifier: keyid:91:12:6E:86:F1:8C:60:94:04:D1:90:F2:98:C3:2C:D6:09:FC:FA:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914669D/BF6E20A68DAE11EBB298B51FC4F9AE02/kRJuhvGMYJQE0ZDymMMs1gn8-nk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kRJuhvGMYJQE0ZDymMMs1gn8-nk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914669D/BF6E20A68DAE11EBB298B51FC4F9AE02/kRJuhvGMYJQE0ZDymMMs1gn8-nk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:0c:c2:7a:da:3d:32:55:4e:66:e2:f0:43:31:57:61:23:25: 2b:16:a6:fa:aa:a0:40:05:1b:da:45:92:ab:df:17:95:31:5f: fe:6e:7a:69:ad:55:e8:b5:00:e2:90:b3:e4:64:aa:56:91:be: 32:f1:60:78:4b:85:1a:98:47:c4:1e:e4:83:9a:10:ff:b3:a7: 77:97:a4:a5:be:4b:35:8f:8a:94:8e:69:14:7f:35:3c:32:e3: 60:fe:72:23:77:4e:b6:53:7a:5b:59:be:17:3a:d6:44:2a:ef: 96:58:7f:49:6d:cc:2c:5a:84:2d:1e:c7:8d:e7:4c:90:21:67: 2a:8b:9a:72:de:55:a5:9d:22:a9:07:15:3b:a0:09:91:ad:68: 1c:54:84:9e:e5:9f:2e:3f:c2:7d:52:14:5d:2b:b4:7b:d4:7d: 67:4a:65:7e:c8:bb:59:0c:e4:90:79:b9:b0:73:3f:30:73:26: a2:ba:f1:e7:2c:c3:51:20:74:c2:2c:57:e3:fd:4b:a6:cb:32: 71:bd:51:fe:68:c6:83:ec:8f:d4:25:2e:18:d6:ab:54:e8:fe: 0f:a1:25:45:02:d7:02:24:31:c3:52:2f:43:9f:0e:9d:18:87: 96:c8:73:d9:65:0b:7c:ae:57:20:de:0f:7a:1f:b6:01:42:f1: 3a:cc:a3:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBiwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDY2OUQxMTAvBgNVBAUTKDkxMTI2RTg2RjE4QzYwOTQwNEQxOTBGMjk4QzMyQ0Q2 MDlGQ0ZBNzkwHhcNMjUwMzI4MjI1ODA4WhcNMjUwNDA0MjI1ODA4WjAYMRYwFAYD VQQDEw02N2U3Mjk4MC03NzgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAthjy3keE6g/VhsvqENwt+dBxuGf+Pb6xBOJhu6Ia7inx8HMLHCtZWiMJhzn7 CpbgkFOh1E4TVz+LXCG2TFhU7gtmYu71ZFzDR5+9ynn69lWmyEBlGHqXqiIGCUS1 B2+ZcNHteWZPzKk0lrwOnb4QXRoIBcsiJX+wgSTzgSALqBrT7+hXYF9aV8Uh4LOH 2Ys4T3w4NRduliHumXlNhsEMi9AtlbHQuiH7cBT66h8ELAVbOSM//BCHrkxUr9hn B44mwUu4cCanqW+2re2e6Y1BvDlkUrPeNNzFt4kYpJd/hJ1jllc3xv5PljUpGcIB RZhWIyj0piHAcfjU2co2v0ReqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIZv3XEA PrR+s1+nQawf4zrad9P2MB8GA1UdIwQYMBaAFJESbobxjGCUBNGQ8pjDLNYJ/Pp5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjY5RC9CRjZFMjBBNjhE QUUxMUVCQjI5OEI1MUZDNEY5QUUwMi9rUkp1aHZHTVlKUUUwWkR5bU1NczFnbjgt bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tSSnVodkdNWUpRRTBaRHltTU1zMWduOC1uay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NjY5RC9CRjZFMjBBNjhEQUUxMUVCQjI5OEI1MUZDNEY5QUUwMi9rUkp1aHZHTVlK UUUwWkR5bU1NczFnbjgtbmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVDMJ62j0yVU5m4vBDMVdhIyUrFqb6qqBABRvaRZKr3xeVMV/+bnpp rVXotQDikLPkZKpWkb4y8WB4S4UamEfEHuSDmhD/s6d3l6Slvks1j4qUjmkUfzU8 MuNg/nIjd062U3pbWb4XOtZEKu+WWH9JbcwsWoQtHseN50yQIWcqi5py3lWlnSKp BxU7oAmRrWgcVISe5Z8uP8J9UhRdK7R71H1nSmV+yLtZDOSQebmwcz8wcyaiuvHn LMNRIHTCLFfj/UumyzJxvVH+aMaD7I/UJS4Y1qtU6P4PoSVFAtcCJDHDUi9Dnw6d GIeWyHPZZQt8rlcg3g96H7YBQvE6zKMI -----END CERTIFICATE-----Generated at Fri Apr 4 18:30:20 2025 by rpki-client