$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4EF9/7E9E23F8D13711EEAA9F1980C4F9AE02/KsU-JiAvS8vBSAbxPp6GDQrGd_k.mft File: KsU-JiAvS8vBSAbxPp6GDQrGd_k.mft (raw, json) Hash identifier: Xvy0kyu2w0PhgQtaqnHMQL20K8fQl+mZQr+358BVbqQ= Subject key identifier: C9:8B:D8:1D:47:64:78:ED:31:03:6E:A4:09:D2:13:5A:B7:7D:6F:57 Authority key identifier: 2A:C5:3E:26:20:2F:4B:CB:C1:48:06:F1:3E:9E:86:0D:0A:C6:77:F9 Certificate issuer: /CN=A91A4EF9/serialNumber=2AC53E26202F4BCBC14806F13E9E860D0AC677F9 Certificate serial: D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KsU-JiAvS8vBSAbxPp6GDQrGd_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4EF9/7E9E23F8D13711EEAA9F1980C4F9AE02/KsU-JiAvS8vBSAbxPp6GDQrGd_k.mft Manifest number: D7 Signing time: Thu 17 Apr 2025 04:28:26 +0000 Manifest this update: Thu 17 Apr 2025 04:28:26 +0000 Manifest next update: Thu 24 Apr 2025 04:28:26 +0000 Files and hashes: 1: KsU-JiAvS8vBSAbxPp6GDQrGd_k.crl (hash: CgFoIunyAhQhpdJkUhFq1uB8hEiVtHkGCp7Ni9oYcQQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4EF9/7E9E23F8D13711EEAA9F1980C4F9AE02/KsU-JiAvS8vBSAbxPp6GDQrGd_k.crl rsync://rpki.apnic.net/member_repository/A91A4EF9/7E9E23F8D13711EEAA9F1980C4F9AE02/KsU-JiAvS8vBSAbxPp6GDQrGd_k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KsU-JiAvS8vBSAbxPp6GDQrGd_k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Apr 2025 04:28:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 215 (0xd7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4EF9, serialNumber=2AC53E26202F4BCBC14806F13E9E860D0AC677F9 Validity Not Before: Apr 17 04:28:26 2025 GMT Not After : Apr 24 04:28:26 2025 GMT Subject: CN=6800836a-4209 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:45:3d:6b:36:ee:be:6a:8a:6c:8b:1c:a6:88: 78:18:0e:13:98:9d:8b:f3:51:3d:92:61:3f:a5:23: 84:60:b7:0b:a0:44:1c:47:3a:a7:23:8b:19:1d:bf: 1b:2e:dd:46:5c:c0:45:c5:21:5b:3c:96:28:85:f3: 5a:c4:27:46:39:83:a2:9a:c0:9e:b7:8a:cc:60:62: 7c:8f:84:47:8b:bc:8a:66:38:a2:4f:f1:ea:76:09: 77:67:42:80:e2:f4:8d:1b:01:02:88:77:cb:04:86: 05:81:89:89:60:36:36:fd:fd:e9:2a:55:ad:53:fb: 56:24:e9:bb:9a:2d:b6:10:2f:5d:f4:b3:a4:ca:40: eb:b5:03:83:8a:c4:f9:95:30:45:15:80:58:aa:0c: a4:a1:45:d0:eb:2a:d2:f9:a3:43:6b:cf:58:06:a8: da:4f:3c:cf:f6:de:c3:0a:d2:52:3f:5b:9f:59:ba: c4:c6:08:8f:0f:b0:4b:1d:37:14:9c:20:f8:e2:4a: 42:bf:24:f5:63:ce:3e:e2:d6:01:0f:3c:bf:1a:47: 11:b0:b2:c6:1a:15:36:8e:03:a7:a5:d4:b5:36:fa: bb:e6:09:1b:6b:64:88:a4:fe:e3:8f:84:56:5a:8a: 98:54:cb:1f:dc:c0:ba:05:ad:57:11:a7:f9:c3:cb: dc:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:8B:D8:1D:47:64:78:ED:31:03:6E:A4:09:D2:13:5A:B7:7D:6F:57 X509v3 Authority Key Identifier: keyid:2A:C5:3E:26:20:2F:4B:CB:C1:48:06:F1:3E:9E:86:0D:0A:C6:77:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4EF9/7E9E23F8D13711EEAA9F1980C4F9AE02/KsU-JiAvS8vBSAbxPp6GDQrGd_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KsU-JiAvS8vBSAbxPp6GDQrGd_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4EF9/7E9E23F8D13711EEAA9F1980C4F9AE02/KsU-JiAvS8vBSAbxPp6GDQrGd_k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:c8:df:9d:ea:20:5b:e4:2d:d6:85:79:73:13:4b:bc:db:bd: 88:b2:53:3c:4e:85:5f:09:08:fa:4a:11:f9:05:c5:91:34:1f: 5b:ac:52:62:c4:d3:3d:2a:c1:ab:d3:6f:92:6f:97:51:5d:6f: 74:98:fe:48:dc:2d:0e:e8:25:ea:87:dd:2d:ae:14:53:e1:30: 36:bf:0e:13:eb:a9:be:3e:57:14:39:a2:3e:a0:1c:b9:6e:16: 81:fd:85:8e:67:8a:b7:df:8e:c2:11:bb:78:79:a6:42:5d:de: a9:0e:37:a0:33:da:94:bd:ae:77:c4:b9:4b:f0:65:01:1d:51: e4:19:91:ae:ec:72:60:e8:7f:c1:78:cd:fd:58:ab:1e:27:45: f4:20:b2:11:96:14:bd:c8:eb:97:93:a7:66:34:79:ed:40:13: 38:52:fa:5d:2f:cf:0d:9e:7d:c9:8a:15:74:ab:9a:c7:ba:1f: d7:19:11:71:68:51:44:19:de:1c:f4:72:38:0b:70:c1:83:ef: 21:32:cc:16:f8:a5:f8:e8:e2:6f:61:14:9f:eb:1d:3b:64:94: f7:51:32:79:c8:7e:60:b7:fb:05:83:f6:ee:69:c5:d8:ae:d3: d8:0a:dd:ae:a5:27:44:d7:03:57:fb:41:2a:79:85:2b:b8:54: b2:f9:79:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRFRjkxMTAvBgNVBAUTKDJBQzUzRTI2MjAyRjRCQ0JDMTQ4MDZGMTNFOUU4NjBE MEFDNjc3RjkwHhcNMjUwNDE3MDQyODI2WhcNMjUwNDI0MDQyODI2WjAYMRYwFAYD VQQDEw02ODAwODM2YS00MjA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6UU9azbuvmqKbIscpoh4GA4TmJ2L81E9kmE/pSOEYLcLoEQcRzqnI4sZHb8b Lt1GXMBFxSFbPJYohfNaxCdGOYOimsCet4rMYGJ8j4RHi7yKZjiiT/Hqdgl3Z0KA 4vSNGwECiHfLBIYFgYmJYDY2/f3pKlWtU/tWJOm7mi22EC9d9LOkykDrtQODisT5 lTBFFYBYqgykoUXQ6yrS+aNDa89YBqjaTzzP9t7DCtJSP1ufWbrExgiPD7BLHTcU nCD44kpCvyT1Y84+4tYBDzy/GkcRsLLGGhU2jgOnpdS1Nvq75gkba2SIpP7jj4RW WoqYVMsf3MC6Ba1XEaf5w8vcmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMmL2B1H ZHjtMQNupAnSE1q3fW9XMB8GA1UdIwQYMBaAFCrFPiYgL0vLwUgG8T6ehg0Kxnf5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEVGOS83RTlFMjNGOEQx MzcxMUVFQUE5RjE5ODBDNEY5QUUwMi9Lc1UtSmlBdlM4dkJTQWJ4UHA2R0RRckdk X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tzVS1KaUF2Uzh2QlNBYnhQcDZHRFFyR2Rfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEVGOS83RTlFMjNGOEQxMzcxMUVFQUE5RjE5ODBDNEY5QUUwMi9Lc1UtSmlBdlM4 dkJTQWJ4UHA2R0RRckdkX2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOyN+d6iBb5C3WhXlzE0u8272IslM8ToVfCQj6ShH5BcWRNB9brFJi xNM9KsGr02+Sb5dRXW90mP5I3C0O6CXqh90trhRT4TA2vw4T66m+PlcUOaI+oBy5 bhaB/YWOZ4q3347CEbt4eaZCXd6pDjegM9qUva53xLlL8GUBHVHkGZGu7HJg6H/B eM39WKseJ0X0ILIRlhS9yOuXk6dmNHntQBM4UvpdL88Nnn3JihV0q5rHuh/XGRFx aFFEGd4c9HI4C3DBg+8hMswW+KX46OJvYRSf6x07ZJT3UTJ5yH5gt/sFg/buacXY rtPYCt2upSdE1wNX+0EqeYUruFSy+XlJ -----END CERTIFICATE-----Generated at Fri Apr 18 18:06:53 2025 by rpki-client