$ rpki-client -vvf rpki.apnic.net/member_repository/A91774FB/816972C6343911EF9C3D213EC4F9AE02/kiQWZZVYIXyTYnuW2cnq-sH6o-4.mft File: kiQWZZVYIXyTYnuW2cnq-sH6o-4.mft (raw, json) Hash identifier: VOAlmmwjxIKQbynjHr9oyScAXTeWG5l7xwmJPo9ovxE= Subject key identifier: 05:C2:81:95:BE:E2:A9:D0:67:41:CD:64:59:68:14:1B:30:BA:0B:7D Authority key identifier: 92:24:16:65:95:58:21:7C:93:62:7B:96:D9:C9:EA:FA:C1:FA:A3:EE Certificate issuer: /CN=A91774FB/serialNumber=922416659558217C93627B96D9C9EAFAC1FAA3EE Certificate serial: 92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kiQWZZVYIXyTYnuW2cnq-sH6o-4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91774FB/816972C6343911EF9C3D213EC4F9AE02/kiQWZZVYIXyTYnuW2cnq-sH6o-4.mft Manifest number: 91 Signing time: Thu 03 Apr 2025 05:39:51 +0000 Manifest this update: Thu 03 Apr 2025 05:39:51 +0000 Manifest next update: Thu 10 Apr 2025 05:39:51 +0000 Files and hashes: 1: kiQWZZVYIXyTYnuW2cnq-sH6o-4.crl (hash: vMUs42D1cnMxNe3EpE/9D/zR9ffdRUNlpwAd6FG0XhQ=) 2: 671EAC66343D11EFB36ED310C4F9AE02.roa (hash: BGWFxC/B5z+W4syYv1KrB6WI1JIbx5pNt/4UAlcwzEA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91774FB/816972C6343911EF9C3D213EC4F9AE02/kiQWZZVYIXyTYnuW2cnq-sH6o-4.crl rsync://rpki.apnic.net/member_repository/A91774FB/816972C6343911EF9C3D213EC4F9AE02/kiQWZZVYIXyTYnuW2cnq-sH6o-4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kiQWZZVYIXyTYnuW2cnq-sH6o-4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 05:39:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 146 (0x92) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91774FB Validity Not Before: Apr 3 05:39:51 2025 GMT Not After : Apr 10 05:39:51 2025 GMT Subject: CN=67ee1f27-9c7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:a5:86:d8:da:6c:b6:4c:d1:8f:ea:b1:ff:5c: 98:b3:70:fa:b5:c1:7e:83:23:24:b6:6a:5c:48:98: cc:3f:24:b5:ce:9b:53:88:56:1b:4a:93:4f:bd:1a: d4:13:a0:d4:6a:cb:1b:af:6e:15:47:62:37:00:0f: 30:50:17:8d:8e:2b:64:9a:21:e9:2d:95:ec:db:b2: 8c:2f:d9:9f:55:ff:c9:4f:b8:db:9e:7b:78:05:3f: 6e:0f:5b:46:83:3b:e0:7e:51:08:a2:a6:29:f1:b6: fc:0d:54:92:0d:d8:01:5f:51:ed:e7:f2:86:b6:b1: cd:03:f7:b3:73:98:47:65:46:80:c3:3b:03:6e:49: 19:a4:af:04:5e:d6:87:a2:d0:b5:2d:04:ed:68:45: c3:19:ca:aa:f9:e2:73:ed:9e:ec:c1:dc:eb:1f:4c: 6a:0e:1b:04:da:1b:48:0d:9b:36:ed:b9:f0:ab:35: 6b:52:33:df:74:62:41:a6:37:b1:f4:6b:16:34:17: 55:62:5f:ab:01:aa:61:a7:05:d3:f2:f7:81:86:68: 91:f1:54:7a:92:13:a9:9f:d1:0b:8a:17:77:65:60: 8e:9d:b1:15:f4:08:0b:87:9a:76:3a:18:0c:33:be: 9b:1a:92:e0:9c:ca:d1:08:31:bd:79:ff:0f:74:3a: a6:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:C2:81:95:BE:E2:A9:D0:67:41:CD:64:59:68:14:1B:30:BA:0B:7D X509v3 Authority Key Identifier: keyid:92:24:16:65:95:58:21:7C:93:62:7B:96:D9:C9:EA:FA:C1:FA:A3:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91774FB/816972C6343911EF9C3D213EC4F9AE02/kiQWZZVYIXyTYnuW2cnq-sH6o-4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kiQWZZVYIXyTYnuW2cnq-sH6o-4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91774FB/816972C6343911EF9C3D213EC4F9AE02/kiQWZZVYIXyTYnuW2cnq-sH6o-4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:1c:7d:f5:de:39:02:82:81:08:03:1e:8b:b1:6b:90:4e:cb: 3f:ed:8e:66:59:24:23:fe:1d:c7:8e:a2:4e:c6:4c:18:c8:6d: 32:4e:7c:e8:d2:28:8b:a4:11:37:6d:2b:f2:3c:7c:cf:6f:25: 97:5b:6b:a8:a9:c7:14:3c:86:68:c7:57:df:84:57:70:c6:d7: b8:77:e9:6a:4b:f6:9a:c9:14:6e:42:3e:5f:a9:7a:01:2b:5b: f6:09:c4:b7:8c:ff:76:9e:d7:84:fd:16:0e:78:64:b6:3c:7d: ba:41:94:08:67:88:3c:7b:10:a7:25:3f:f0:13:5b:85:b2:eb: 13:7b:0b:6c:99:87:6f:69:6f:c6:7a:12:2e:b7:d4:75:de:b3: 89:dc:9c:ed:c1:8b:a8:bb:10:76:2b:54:a2:4e:d2:14:6f:41: 83:31:d3:f0:b4:8e:b4:7d:d5:5a:3b:2b:fd:40:34:bd:7a:6c: 4d:4c:b7:19:94:e5:76:57:11:26:4a:b3:6b:1e:8f:f5:26:c0: 31:78:9f:77:bb:f2:8c:77:f4:9e:c8:13:c8:75:91:36:2d:33: e3:a3:75:dc:09:70:f9:a9:65:96:1d:c2:c8:dc:90:64:87:91: bf:ff:da:c4:d8:cb:38:4c:0d:7e:54:5e:4a:dc:d1:e5:1e:57: f0:a1:df:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc0RkIxMTAvBgNVBAUTKDkyMjQxNjY1OTU1ODIxN0M5MzYyN0I5NkQ5QzlFQUZB QzFGQUEzRUUwHhcNMjUwNDAzMDUzOTUxWhcNMjUwNDEwMDUzOTUxWjAYMRYwFAYD VQQDEw02N2VlMWYyNy05YzdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwKWG2NpstkzRj+qx/1yYs3D6tcF+gyMktmpcSJjMPyS1zptTiFYbSpNPvRrU E6DUassbr24VR2I3AA8wUBeNjitkmiHpLZXs27KML9mfVf/JT7jbnnt4BT9uD1tG gzvgflEIoqYp8bb8DVSSDdgBX1Ht5/KGtrHNA/ezc5hHZUaAwzsDbkkZpK8EXtaH otC1LQTtaEXDGcqq+eJz7Z7swdzrH0xqDhsE2htIDZs27bnwqzVrUjPfdGJBpjex 9GsWNBdVYl+rAaphpwXT8veBhmiR8VR6khOpn9ELihd3ZWCOnbEV9AgLh5p2OhgM M76bGpLgnMrRCDG9ef8PdDqmCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAXCgZW+ 4qnQZ0HNZFloFBswugt9MB8GA1UdIwQYMBaAFJIkFmWVWCF8k2J7ltnJ6vrB+qPu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzRGQi84MTY5NzJDNjM0 MzkxMUVGOUMzRDIxM0VDNEY5QUUwMi9raVFXWlpWWUlYeVRZbnVXMmNucS1zSDZv LTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tpUVdaWlZZSVh5VFludVcyY25xLXNINm8tNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzRGQi84MTY5NzJDNjM0MzkxMUVGOUMzRDIxM0VDNEY5QUUwMi9raVFXWlpWWUlY eVRZbnVXMmNucS1zSDZvLTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC7HH313jkCgoEIAx6LsWuQTss/7Y5mWSQj/h3HjqJOxkwYyG0yTnzo 0iiLpBE3bSvyPHzPbyWXW2uoqccUPIZox1ffhFdwxte4d+lqS/aayRRuQj5fqXoB K1v2CcS3jP92nteE/RYOeGS2PH26QZQIZ4g8exCnJT/wE1uFsusTewtsmYdvaW/G ehIut9R13rOJ3JztwYuouxB2K1SiTtIUb0GDMdPwtI60fdVaOyv9QDS9emxNTLcZ lOV2VxEmSrNrHo/1JsAxeJ93u/KMd/SeyBPIdZE2LTPjo3XcCXD5qWWWHcLI3JBk h5G//9rE2Ms4TA1+VF5K3NHlHlfwod/X -----END CERTIFICATE-----Generated at Fri Apr 4 22:22:06 2025 by rpki-client