$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0549/1C6F4ADC303111EA886D517CC4F9AE02/K8iorLUs8M9_MTaUMA9ThmhiN60.mft File: K8iorLUs8M9_MTaUMA9ThmhiN60.mft (raw, json) Hash identifier: sMU+DwTvMtWXA6b0teDR0bwdCxWZvUBoApnx5gYgEO0= Subject key identifier: FC:04:BC:9E:80:12:BA:74:32:92:4F:1D:3B:45:C2:BE:DC:20:03:EF Authority key identifier: 2B:C8:A8:AC:B5:2C:F0:CF:7F:31:36:94:30:0F:53:86:68:62:37:AD Certificate issuer: /CN=A91B0549/serialNumber=2BC8A8ACB52CF0CF7F313694300F5386686237AD Certificate serial: 0B5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8iorLUs8M9_MTaUMA9ThmhiN60.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0549/1C6F4ADC303111EA886D517CC4F9AE02/K8iorLUs8M9_MTaUMA9ThmhiN60.mft Manifest number: 0B54 Signing time: Sun 20 Apr 2025 18:54:47 +0000 Manifest this update: Sun 20 Apr 2025 18:54:47 +0000 Manifest next update: Sun 27 Apr 2025 18:54:47 +0000 Files and hashes: 1: K8iorLUs8M9_MTaUMA9ThmhiN60.crl (hash: 5kd4BKGCGXo5xBoTGm23Z1BSd7DJX4yrjcskAWRHkXM=) 2: 7A629E90303211EA9DAB6581C4F9AE02.roa (hash: 5tQROkuKBdGr5CDnMUVPHlhLeJ1/YaIHTHWkyStRniQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0549/1C6F4ADC303111EA886D517CC4F9AE02/K8iorLUs8M9_MTaUMA9ThmhiN60.crl rsync://rpki.apnic.net/member_repository/A91B0549/1C6F4ADC303111EA886D517CC4F9AE02/K8iorLUs8M9_MTaUMA9ThmhiN60.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8iorLUs8M9_MTaUMA9ThmhiN60.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 18:54:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2908 (0xb5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0549, serialNumber=2BC8A8ACB52CF0CF7F313694300F5386686237AD Validity Not Before: Apr 20 18:54:47 2025 GMT Not After : Apr 27 18:54:47 2025 GMT Subject: CN=680542f7-bbc8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:9f:28:3d:89:f0:88:14:93:89:85:93:4c:e7: 9e:93:70:64:e8:06:0c:4a:8c:73:c3:1b:fc:27:14: c6:fe:92:e7:f4:9b:1e:f7:36:44:58:e8:3b:14:68: 5d:68:9a:97:11:44:2a:9d:4b:a7:88:72:41:53:cf: c2:0d:9d:a6:4d:7c:ed:09:0e:ca:7b:75:7f:95:a7: 4c:df:55:4e:21:a8:59:69:1a:36:81:2b:22:25:0c: 9a:13:1b:7a:75:fa:9f:9e:f5:21:39:23:d1:19:72: 46:96:75:19:cf:2f:9c:61:7b:44:88:fc:d4:68:8c: 5c:75:ad:fd:e1:73:a4:72:ea:b8:0f:2f:dc:63:75: e9:2c:51:28:6b:3f:49:bd:7a:28:66:8a:68:c5:df: ce:ef:bf:96:de:d8:f0:32:04:f6:09:bc:78:06:ff: 1e:b1:bc:7c:c0:3a:2f:1d:d9:af:99:f0:ea:31:62: 08:97:fc:f7:b1:b2:f5:d5:e6:20:e9:bd:f3:09:c5: 89:7c:cb:46:46:d0:4d:ef:6b:85:58:d8:cb:ce:2c: b0:67:12:45:41:c8:bf:3a:1a:e9:3c:ed:16:00:7e: d5:be:46:17:4e:81:9e:6e:c2:53:ac:70:79:05:ef: 73:f2:08:3c:25:e0:db:72:c2:23:2e:11:f6:d0:7e: ba:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:04:BC:9E:80:12:BA:74:32:92:4F:1D:3B:45:C2:BE:DC:20:03:EF X509v3 Authority Key Identifier: keyid:2B:C8:A8:AC:B5:2C:F0:CF:7F:31:36:94:30:0F:53:86:68:62:37:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0549/1C6F4ADC303111EA886D517CC4F9AE02/K8iorLUs8M9_MTaUMA9ThmhiN60.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8iorLUs8M9_MTaUMA9ThmhiN60.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0549/1C6F4ADC303111EA886D517CC4F9AE02/K8iorLUs8M9_MTaUMA9ThmhiN60.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:8d:44:a6:28:3a:ad:5a:ba:51:f9:bd:e2:e0:f4:1d:3d:37: 76:b0:2a:39:3d:86:8c:f8:1e:ab:ca:e1:d8:0b:c5:22:8b:7b: 4e:50:1e:99:46:ef:32:fa:ff:5a:c6:44:3d:a5:dd:30:a8:ce: 3b:cc:79:ca:f7:67:03:d5:be:42:db:e5:b5:1b:40:d1:46:4d: 16:7f:8f:63:88:57:85:54:ff:3d:6a:b1:58:3b:2c:ee:55:0c: 0e:51:b4:50:e1:16:dc:02:22:4d:b1:94:ba:a0:05:53:d7:da: 5c:66:f4:cf:f6:c7:ca:6d:0c:b2:61:15:70:ea:4b:c7:a2:6c: a2:3b:db:1e:46:b0:2b:5f:c2:cd:1e:90:e6:73:05:a4:75:4c: 8f:5e:c9:c0:d0:8b:5f:ad:fa:07:f0:43:33:95:e8:30:82:43: 08:3f:14:d9:5d:fc:ef:4d:dd:03:47:59:37:52:3a:82:c7:4f: a1:95:05:07:c7:4b:37:c5:c4:51:54:f5:9b:60:c0:e0:84:83: 42:07:06:33:0e:e7:63:b3:6b:eb:73:e5:2c:72:c6:47:2c:33: 5f:83:e7:04:e0:b3:43:b6:b4:a0:44:82:c6:9e:63:03:87:4a: c5:b3:60:5a:36:56:59:c8:c3:6c:cd:72:45:1a:9e:15:ea:ab: 15:74:de:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC1wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjA1NDkxMTAvBgNVBAUTKDJCQzhBOEFDQjUyQ0YwQ0Y3RjMxMzY5NDMwMEY1Mzg2 Njg2MjM3QUQwHhcNMjUwNDIwMTg1NDQ3WhcNMjUwNDI3MTg1NDQ3WjAYMRYwFAYD VQQDEw02ODA1NDJmNy1iYmM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn58oPYnwiBSTiYWTTOeek3Bk6AYMSoxzwxv8JxTG/pLn9Jse9zZEWOg7FGhd aJqXEUQqnUuniHJBU8/CDZ2mTXztCQ7Ke3V/ladM31VOIahZaRo2gSsiJQyaExt6 dfqfnvUhOSPRGXJGlnUZzy+cYXtEiPzUaIxcda394XOkcuq4Dy/cY3XpLFEoaz9J vXooZopoxd/O77+W3tjwMgT2Cbx4Bv8esbx8wDovHdmvmfDqMWIIl/z3sbL11eYg 6b3zCcWJfMtGRtBN72uFWNjLziywZxJFQci/OhrpPO0WAH7VvkYXToGebsJTrHB5 Be9z8gg8JeDbcsIjLhH20H66dQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPwEvJ6A Erp0MpJPHTtFwr7cIAPvMB8GA1UdIwQYMBaAFCvIqKy1LPDPfzE2lDAPU4ZoYjet MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDU0OS8xQzZGNEFEQzMw MzExMUVBODg2RDUxN0NDNEY5QUUwMi9LOGlvckxVczhNOV9NVGFVTUE5VGhtaGlO NjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s4aW9yTFVzOE05X01UYVVNQTlUaG1oaU42MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDU0OS8xQzZGNEFEQzMwMzExMUVBODg2RDUxN0NDNEY5QUUwMi9LOGlvckxVczhN OV9NVGFVTUE5VGhtaGlONjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNjUSmKDqtWrpR+b3i4PQdPTd2sCo5PYaM+B6ryuHYC8Uii3tOUB6Z Ru8y+v9axkQ9pd0wqM47zHnK92cD1b5C2+W1G0DRRk0Wf49jiFeFVP89arFYOyzu VQwOUbRQ4RbcAiJNsZS6oAVT19pcZvTP9sfKbQyyYRVw6kvHomyiO9seRrArX8LN HpDmcwWkdUyPXsnA0ItfrfoH8EMzlegwgkMIPxTZXfzvTd0DR1k3UjqCx0+hlQUH x0s3xcRRVPWbYMDghINCBwYzDudjs2vrc+UscsZHLDNfg+cE4LNDtrSgRILGnmMD h0rFs2BaNlZZyMNszXJFGp4V6qsVdN5Y -----END CERTIFICATE-----Generated at Tue Apr 22 05:42:49 2025 by rpki-client