$ rpki-client -vvf rpki.apnic.net/member_repository/A9151265/05709AEA521F11ECB3D0192BC4F9AE02/kakyPLNEJvPZyJDjl4Ag1BezWfU.mft File: kakyPLNEJvPZyJDjl4Ag1BezWfU.mft (raw, json) Hash identifier: GzxoxO+/pYcz74qhmtwr3xQEcNlR3OM5OgBH09lR6F4= Subject key identifier: 4C:BD:EF:AC:78:4B:8F:D7:8D:96:32:C1:22:41:9C:05:5D:10:32:11 Authority key identifier: 91:A9:32:3C:B3:44:26:F3:D9:C8:90:E3:97:80:20:D4:17:B3:59:F5 Certificate issuer: /CN=A9151265/serialNumber=91A9323CB34426F3D9C890E3978020D417B359F5 Certificate serial: 0444 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kakyPLNEJvPZyJDjl4Ag1BezWfU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151265/05709AEA521F11ECB3D0192BC4F9AE02/kakyPLNEJvPZyJDjl4Ag1BezWfU.mft Manifest number: 043F Signing time: Fri 11 Apr 2025 00:13:09 +0000 Manifest this update: Fri 11 Apr 2025 00:13:08 +0000 Manifest next update: Fri 18 Apr 2025 00:13:08 +0000 Files and hashes: 1: kakyPLNEJvPZyJDjl4Ag1BezWfU.crl (hash: +ojqHoqF5SLYbgLYpIlrKpy5cPYBRXzY+SmZlq7rRyQ=) 2: B1334FD4522011ECB0594C2BC4F9AE02.roa (hash: /FpsHXLPYXsoHcGNcebXfdYyitx9/IlpkTRLrZlFe1o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151265/05709AEA521F11ECB3D0192BC4F9AE02/kakyPLNEJvPZyJDjl4Ag1BezWfU.crl rsync://rpki.apnic.net/member_repository/A9151265/05709AEA521F11ECB3D0192BC4F9AE02/kakyPLNEJvPZyJDjl4Ag1BezWfU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kakyPLNEJvPZyJDjl4Ag1BezWfU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 00:13:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1092 (0x444) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151265, serialNumber=91A9323CB34426F3D9C890E3978020D417B359F5 Validity Not Before: Apr 11 00:13:08 2025 GMT Not After : Apr 18 00:13:08 2025 GMT Subject: CN=67f85e95-6a41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:1d:f8:ea:7b:71:62:3b:9d:57:8b:59:7c:9e: 46:e8:0e:39:4b:4c:e1:97:15:74:6a:cb:e8:f5:1f: 90:bf:5a:4f:d7:ad:3c:61:12:b1:72:dd:eb:81:2d: 74:c9:8a:57:1d:5d:f3:86:61:e0:67:49:d1:20:71: 71:4f:0c:c2:1a:46:91:79:59:61:c8:5e:53:06:29: f8:f4:b3:ff:8d:2d:5c:ea:7b:2a:cf:9c:b5:4a:7d: 7b:d0:28:15:fc:22:b4:87:26:46:6e:96:9f:b4:09: 6f:ad:59:5a:12:78:df:fe:8e:fe:0c:86:94:d0:b2: 22:8b:ec:ac:de:d5:c5:b6:51:5b:0c:a4:bc:9a:87: 06:5b:55:b7:8a:71:df:42:26:d0:ed:a9:c2:d3:1d: 06:ad:ee:93:68:1a:33:8b:94:a9:4c:66:07:53:dd: d0:e0:6b:d6:c3:4f:b9:79:e6:eb:ab:be:01:7e:03: d0:8f:92:49:9b:1f:3b:79:43:cb:a3:d7:31:7a:e8: 5b:94:19:9e:ea:00:d3:61:08:bd:1a:cb:7f:13:4b: 8c:51:dd:5a:34:93:1f:ac:82:44:e9:9a:43:56:bc: 8a:27:ee:ad:61:39:01:f3:a9:cf:80:b6:d2:ee:2b: 26:5a:49:ff:44:ac:1e:cb:dd:37:b9:92:11:be:b7: 40:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:BD:EF:AC:78:4B:8F:D7:8D:96:32:C1:22:41:9C:05:5D:10:32:11 X509v3 Authority Key Identifier: keyid:91:A9:32:3C:B3:44:26:F3:D9:C8:90:E3:97:80:20:D4:17:B3:59:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151265/05709AEA521F11ECB3D0192BC4F9AE02/kakyPLNEJvPZyJDjl4Ag1BezWfU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kakyPLNEJvPZyJDjl4Ag1BezWfU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151265/05709AEA521F11ECB3D0192BC4F9AE02/kakyPLNEJvPZyJDjl4Ag1BezWfU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:cf:ff:53:67:eb:ae:fd:3b:ba:53:01:6e:5a:65:dc:af:05: a6:bf:3a:4c:f1:ba:b8:21:5c:cc:00:46:ed:0b:88:51:ad:67: 46:88:7d:99:a5:22:cc:87:b2:24:e8:f8:b6:5a:45:ae:ba:0e: bb:99:7d:86:e4:4d:d7:d6:49:6e:e9:2f:bf:a8:af:b1:2b:25: 9a:c6:61:60:d5:af:37:dd:5a:8d:c5:31:32:92:ac:20:13:c7: 1e:f2:ee:88:13:58:9a:35:83:2b:7e:2f:9b:77:4e:9c:70:65: ac:dd:58:ea:8c:57:99:8f:80:b5:7d:32:82:7f:2a:07:26:a4: 06:82:85:11:e0:d3:d1:b9:3d:7c:53:7f:26:be:4e:1f:7e:18: 33:4c:d6:f8:d2:bf:70:70:7f:5c:71:f9:09:35:36:05:1a:5f: 9e:8c:45:d6:ec:09:50:a2:b9:c1:f2:6c:dc:61:00:0d:79:2f: c7:8c:00:9b:4a:de:16:a9:b5:84:f1:46:63:00:56:b7:15:95: 5c:7f:e4:62:bf:2a:68:06:74:61:ab:eb:57:71:be:65:d4:6d: 9e:b6:4a:a6:f5:df:e5:e6:5e:4a:1e:17:78:84:1a:b2:be:1b: 07:0f:76:3c:54:81:ca:9d:ad:e8:a3:75:09:44:af:b8:e7:38: 4a:bd:75:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTEyNjUxMTAvBgNVBAUTKDkxQTkzMjNDQjM0NDI2RjNEOUM4OTBFMzk3ODAyMEQ0 MTdCMzU5RjUwHhcNMjUwNDExMDAxMzA4WhcNMjUwNDE4MDAxMzA4WjAYMRYwFAYD VQQDEw02N2Y4NWU5NS02YTQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAux346ntxYjudV4tZfJ5G6A45S0zhlxV0asvo9R+Qv1pP1608YRKxct3rgS10 yYpXHV3zhmHgZ0nRIHFxTwzCGkaReVlhyF5TBin49LP/jS1c6nsqz5y1Sn170CgV /CK0hyZGbpaftAlvrVlaEnjf/o7+DIaU0LIii+ys3tXFtlFbDKS8mocGW1W3inHf QibQ7anC0x0Gre6TaBozi5SpTGYHU93Q4GvWw0+5eebrq74BfgPQj5JJmx87eUPL o9cxeuhblBme6gDTYQi9Gst/E0uMUd1aNJMfrIJE6ZpDVryKJ+6tYTkB86nPgLbS 7ismWkn/RKwey903uZIRvrdAIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEy976x4 S4/XjZYywSJBnAVdEDIRMB8GA1UdIwQYMBaAFJGpMjyzRCbz2ciQ45eAINQXs1n1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTI2NS8wNTcwOUFFQTUy MUYxMUVDQjNEMDE5MkJDNEY5QUUwMi9rYWt5UExORUp2UFp5SkRqbDRBZzFCZXpX ZlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tha3lQTE5FSnZQWnlKRGpsNEFnMUJleldmVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTI2NS8wNTcwOUFFQTUyMUYxMUVDQjNEMDE5MkJDNEY5QUUwMi9rYWt5UExORUp2 UFp5SkRqbDRBZzFCZXpXZlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfz/9TZ+uu/Tu6UwFuWmXcrwWmvzpM8bq4IVzMAEbtC4hRrWdGiH2Z pSLMh7Ik6Pi2WkWuug67mX2G5E3X1klu6S+/qK+xKyWaxmFg1a833VqNxTEykqwg E8ce8u6IE1iaNYMrfi+bd06ccGWs3VjqjFeZj4C1fTKCfyoHJqQGgoUR4NPRuT18 U38mvk4ffhgzTNb40r9wcH9ccfkJNTYFGl+ejEXW7AlQornB8mzcYQANeS/HjACb St4WqbWE8UZjAFa3FZVcf+RivypoBnRhq+tXcb5l1G2etkqm9d/l5l5KHhd4hBqy vhsHD3Y8VIHKna3oo3UJRK+45zhKvXXI -----END CERTIFICATE-----Generated at Sat Apr 12 19:14:35 2025 by rpki-client