$ rpki-client -vvf rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft File: KmvwVK0j6tLbOVMbZGcmypRaxJI.mft (raw, json) Hash identifier: My7ttXwKDqFg7N56Wf7Hk1O8KZfBmxSxYXMBuSg3dpE= Subject key identifier: CF:4C:49:89:F4:67:55:7A:46:D0:F5:1F:99:DA:F0:63:D2:95:D5:0D Authority key identifier: 2A:6B:F0:54:AD:23:EA:D2:DB:39:53:1B:64:67:26:CA:94:5A:C4:92 Certificate issuer: /CN=A918AB7E/serialNumber=2A6BF054AD23EAD2DB39531B646726CA945AC492 Certificate serial: 06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft Manifest number: 05 Signing time: Sat 29 Mar 2025 07:31:56 +0000 Manifest this update: Sat 29 Mar 2025 07:31:56 +0000 Manifest next update: Sat 05 Apr 2025 07:31:56 +0000 Files and hashes: 1: KmvwVK0j6tLbOVMbZGcmypRaxJI.crl (hash: /wVuq5nvvqL+U04UYM5UIkKDT/SGpOC1SQsU9U8IIMQ=) 2: 3CF5A86C088211F0BB90C23EC4F9AE02.roa (hash: WjhNkxKHghzjWbpSoIkFccSDxcFZFh5y2Re0ypkmeM8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.crl rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918AB7E Validity Not Before: Mar 29 07:31:56 2025 GMT Not After : Apr 5 07:31:56 2025 GMT Subject: CN=67e7a1ec-e368 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:e1:36:1a:6e:0d:7e:69:7d:a1:5e:be:c0:0a: cd:0f:2b:8c:6b:81:f1:ef:03:b3:dc:e5:3f:66:76: 86:de:19:9c:be:a4:6d:e9:cc:7b:ee:0e:e9:4a:51: 9c:d7:d9:b3:b6:19:f3:1d:8b:d5:fb:0d:a3:34:19: c0:e4:ef:70:e8:8b:22:a1:39:11:d4:d2:1c:ba:1f: a9:76:bc:55:6d:8e:53:44:0d:59:da:35:d5:6d:96: a9:17:8b:22:a4:32:41:c5:7b:f5:24:e2:02:58:c2: 60:1e:a1:fe:bb:d9:28:b3:3a:71:38:3c:43:6e:a8: 58:99:2d:3d:94:8b:16:d8:d9:39:7b:3e:51:a1:5c: fa:4f:ad:35:36:c9:3e:75:3f:bb:2a:2d:fd:42:22: eb:d2:56:75:fc:71:ae:9a:0e:7b:17:12:bc:1f:db: 73:71:df:df:1c:75:6d:17:6e:8e:45:d1:c1:26:8c: db:f4:1b:87:26:af:ad:60:82:01:fc:43:7f:8e:26: 20:0a:db:83:01:21:c0:8d:96:2f:c6:69:f7:89:78: 2b:b0:04:3f:20:16:e4:cb:dc:e8:70:89:36:09:c7: ad:89:49:ea:2a:07:4b:19:ce:b4:8a:52:e7:0f:d0: 4d:13:89:55:19:8d:bf:d4:6a:ba:59:f4:5e:61:f6: be:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:4C:49:89:F4:67:55:7A:46:D0:F5:1F:99:DA:F0:63:D2:95:D5:0D X509v3 Authority Key Identifier: keyid:2A:6B:F0:54:AD:23:EA:D2:DB:39:53:1B:64:67:26:CA:94:5A:C4:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:c0:ab:d8:fc:47:d4:2c:5b:96:8d:dc:86:87:f8:d8:c4:80: 24:df:9b:24:d6:8e:7a:fd:2f:4e:05:3b:6e:52:90:0b:75:19: 93:a1:da:4d:d4:e3:57:de:2c:7d:32:23:70:b6:06:b6:fb:19: 03:c8:26:74:b5:41:ee:64:72:b6:a9:e2:3c:2d:54:cb:0f:23: 11:78:ce:41:4a:73:7f:a3:3e:fc:90:8d:e3:70:46:48:64:79: 81:58:62:1c:c4:ce:08:a1:ad:12:fb:3a:f0:ee:aa:b1:2b:8d: 2d:54:77:e3:79:3e:17:3e:c2:57:e2:bc:01:3c:5d:e5:a2:30: 86:8a:3a:99:cb:69:e2:ea:b9:85:a3:05:82:9d:7c:f6:d2:fc: 2b:af:32:83:71:b4:d2:a9:4a:f1:49:4d:fc:55:c0:34:46:6c: eb:e2:cf:d8:03:a4:20:2b:b3:29:9e:66:38:df:76:96:b1:d1: 4f:3e:34:b0:9e:a7:35:80:bb:88:00:0c:f5:41:58:9e:ad:49: c6:7e:2b:27:62:71:eb:a7:ab:6c:ea:10:24:a2:5a:8d:03:d8: dc:7a:18:9e:d1:6c:28:99:5f:2f:ec:4a:d5:c2:2a:1b:61:f8: 50:9a:14:d4:80:1e:e0:26:36:83:10:b5:60:28:8b:64:21:94: 46:69:65:70 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 QUI3RTExMC8GA1UEBRMoMkE2QkYwNTRBRDIzRUFEMkRCMzk1MzFCNjQ2NzI2Q0E5 NDVBQzQ5MjAeFw0yNTAzMjkwNzMxNTZaFw0yNTA0MDUwNzMxNTZaMBgxFjAUBgNV BAMTDTY3ZTdhMWVjLWUzNjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDj4TYabg1+aX2hXr7ACs0PK4xrgfHvA7Pc5T9mdobeGZy+pG3pzHvuDulKUZzX 2bO2GfMdi9X7DaM0GcDk73DoiyKhORHU0hy6H6l2vFVtjlNEDVnaNdVtlqkXiyKk MkHFe/Uk4gJYwmAeof672SizOnE4PENuqFiZLT2UixbY2Tl7PlGhXPpPrTU2yT51 P7sqLf1CIuvSVnX8ca6aDnsXErwf23Nx398cdW0Xbo5F0cEmjNv0G4cmr61gggH8 Q3+OJiAK24MBIcCNli/GafeJeCuwBD8gFuTL3OhwiTYJx62JSeoqB0sZzrSKUucP 0E0TiVUZjb/UarpZ9F5h9r4rAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUz0xJifRn VXpG0PUfmdrwY9KV1Q0wHwYDVR0jBBgwFoAUKmvwVK0j6tLbOVMbZGcmypRaxJIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThBQjdFL0Y3NTk3OTZFMDg4 MTExRjBCQUMzNDEzRUM0RjlBRTAyL0ttdndWSzBqNnRMYk9WTWJaR2NteXBSYXhK SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS212d1ZLMGo2dExiT1ZNYlpHY215cFJheEpJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThB QjdFL0Y3NTk3OTZFMDg4MTExRjBCQUMzNDEzRUM0RjlBRTAyL0ttdndWSzBqNnRM Yk9WTWJaR2NteXBSYXhKSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADTAq9j8R9QsW5aN3IaH+NjEgCTfmyTWjnr9L04FO25SkAt1GZOh2k3U 41feLH0yI3C2Brb7GQPIJnS1Qe5kcrap4jwtVMsPIxF4zkFKc3+jPvyQjeNwRkhk eYFYYhzEzgihrRL7OvDuqrErjS1Ud+N5Phc+wlfivAE8XeWiMIaKOpnLaeLquYWj BYKdfPbS/CuvMoNxtNKpSvFJTfxVwDRGbOviz9gDpCArsymeZjjfdpax0U8+NLCe pzWAu4gADPVBWJ6tScZ+Kydiceunq2zqECSiWo0D2Nx6GJ7RbCiZXy/sStXCKhth +FCaFNSAHuAmNoMQtWAoi2QhlEZpZXA= -----END CERTIFICATE-----Generated at Fri Apr 4 22:17:44 2025 by rpki-client