$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.mft File: kIDbUP8LdD_6MredDdXDGQIdbiQ.mft (raw, json) Hash identifier: Q4QeU8viDyfChjBwEiTNw5KOJO9vFp4NdJQqOIugeQ8= Subject key identifier: 4D:FE:D2:15:00:D0:72:8C:47:DD:32:CB:22:C8:F0:9B:01:C3:42:4D Authority key identifier: 90:80:DB:50:FF:0B:74:3F:FA:32:B7:9D:0D:D5:C3:19:02:1D:6E:24 Certificate issuer: /CN=A91B5377/serialNumber=9080DB50FF0B743FFA32B79D0DD5C319021D6E24 Certificate serial: 2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIDbUP8LdD_6MredDdXDGQIdbiQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.mft Manifest number: 2B Signing time: Sat 29 Mar 2025 07:01:54 +0000 Manifest this update: Sat 29 Mar 2025 07:01:54 +0000 Manifest next update: Sat 05 Apr 2025 07:01:54 +0000 Files and hashes: 1: kIDbUP8LdD_6MredDdXDGQIdbiQ.crl (hash: alOUkbRoHWFNJLsHWeojZy3bOkweWYshE22jIVnsZk0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.crl rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIDbUP8LdD_6MredDdXDGQIdbiQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5377 Validity Not Before: Mar 29 07:01:54 2025 GMT Not After : Apr 5 07:01:54 2025 GMT Subject: CN=67e79ae2-1636 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:6c:c2:89:03:f0:65:4f:56:58:84:fc:73:1c: 40:ac:33:cd:95:34:e3:c9:13:b7:36:3f:34:14:03: 0a:8d:3b:91:10:68:b0:f9:7d:9c:ec:3d:cd:42:f1: e2:3c:a9:f4:78:d0:53:fe:5e:22:7a:6d:6a:15:22: 4d:5f:1e:44:2a:a3:3d:6f:6c:00:02:b9:3d:13:f5: b2:d1:62:ac:0c:c1:d4:39:e2:9b:4a:05:c2:9f:74: 02:7d:ca:25:64:9e:bd:f5:f8:6a:f9:d5:91:1c:7f: 69:da:80:a7:a8:da:ca:8e:f3:e7:48:35:30:c8:4a: f3:ba:d6:95:c6:09:bf:b8:55:25:04:65:cf:75:7d: 2e:a1:e9:5c:23:03:10:ee:5f:70:04:ba:e3:c7:ad: af:f1:f8:ad:8c:49:49:a8:d3:79:87:23:52:96:01: a6:02:50:c1:9d:cb:46:bf:8d:5f:e7:d6:b6:14:d6: 4f:b0:88:cb:11:24:cc:36:fe:76:ee:c7:7e:16:79: fc:ad:e7:5b:2b:a3:b6:da:91:3b:81:bd:b8:fa:80: 7a:a8:02:51:eb:8d:56:b3:29:48:3a:51:39:77:c8: 31:8c:e2:3f:36:ac:48:b1:1d:fc:c2:37:ff:b8:94: cf:27:a5:0e:f6:ca:a9:3e:cf:08:1b:f6:01:87:2e: 6e:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:FE:D2:15:00:D0:72:8C:47:DD:32:CB:22:C8:F0:9B:01:C3:42:4D X509v3 Authority Key Identifier: keyid:90:80:DB:50:FF:0B:74:3F:FA:32:B7:9D:0D:D5:C3:19:02:1D:6E:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIDbUP8LdD_6MredDdXDGQIdbiQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:3b:38:4e:e4:50:21:ec:97:ca:ae:72:b6:50:81:e2:24:e4: 73:6d:0f:60:e3:7d:48:93:bd:cf:17:52:b3:93:0c:00:ce:33: d1:aa:d2:9d:89:3c:e6:a6:a3:58:64:5b:18:38:77:33:bd:1a: 2f:ea:44:01:1f:0c:bf:b8:a4:8a:75:c0:25:55:44:07:d4:bd: 87:a0:6a:d6:c8:6a:cf:e1:d9:6a:84:65:0d:1d:f0:f8:01:04: cc:ab:02:bd:74:a3:ff:6a:6f:53:b4:d6:70:18:6c:a6:04:1a: 78:c8:83:5c:2f:e8:aa:82:d6:d7:70:47:18:96:c4:a9:5f:33: 55:22:3a:6c:51:94:b3:2a:98:d6:06:79:54:83:09:05:8b:6c: d9:cd:d5:10:fb:5b:0d:28:51:a7:27:06:5c:79:df:80:7b:87: 04:a2:56:d5:75:b6:bd:4b:25:72:2e:77:d4:eb:95:e0:bd:47: 04:b4:19:f3:ce:93:19:3d:f8:ba:bc:a3:ae:af:e2:ea:28:e4: db:53:92:35:8a:6a:51:fb:be:93:8f:61:e4:69:bb:45:6f:ce: 6b:75:15:e5:8d:b9:1f:c2:c0:09:2d:d3:51:00:0e:4c:4e:ec: ad:22:7a:9e:74:85:bc:0a:fd:a5:30:65:13:1e:44:00:12:77: 9c:e7:c2:e6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NTM3NzExMC8GA1UEBRMoOTA4MERCNTBGRjBCNzQzRkZBMzJCNzlEMERENUMzMTkw MjFENkUyNDAeFw0yNTAzMjkwNzAxNTRaFw0yNTA0MDUwNzAxNTRaMBgxFjAUBgNV BAMTDTY3ZTc5YWUyLTE2MzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCjbMKJA/BlT1ZYhPxzHECsM82VNOPJE7c2PzQUAwqNO5EQaLD5fZzsPc1C8eI8 qfR40FP+XiJ6bWoVIk1fHkQqoz1vbAACuT0T9bLRYqwMwdQ54ptKBcKfdAJ9yiVk nr31+Gr51ZEcf2nagKeo2sqO8+dINTDISvO61pXGCb+4VSUEZc91fS6h6VwjAxDu X3AEuuPHra/x+K2MSUmo03mHI1KWAaYCUMGdy0a/jV/n1rYU1k+wiMsRJMw2/nbu x34Wefyt51sro7bakTuBvbj6gHqoAlHrjVazKUg6UTl3yDGM4j82rEixHfzCN/+4 lM8npQ72yqk+zwgb9gGHLm63AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUTf7SFQDQ coxH3TLLIsjwmwHDQk0wHwYDVR0jBBgwFoAUkIDbUP8LdD/6MredDdXDGQIdbiQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI1Mzc3L0YzQzQ0QTc4Q0M1 ODExRUY5OTk4NUQ4NkM0RjlBRTAyL2tJRGJVUDhMZERfNk1yZWREZFhER1FJZGJp US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIva0lEYlVQOExkRF82TXJlZERkWERHUUlkYmlRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI1 Mzc3L0YzQzQ0QTc4Q0M1ODExRUY5OTk4NUQ4NkM0RjlBRTAyL2tJRGJVUDhMZERf Nk1yZWREZFhER1FJZGJpUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI47OE7kUCHsl8qucrZQgeIk5HNtD2DjfUiTvc8XUrOTDADOM9Gq0p2J POamo1hkWxg4dzO9Gi/qRAEfDL+4pIp1wCVVRAfUvYegatbIas/h2WqEZQ0d8PgB BMyrAr10o/9qb1O01nAYbKYEGnjIg1wv6KqC1tdwRxiWxKlfM1UiOmxRlLMqmNYG eVSDCQWLbNnN1RD7Ww0oUacnBlx534B7hwSiVtV1tr1LJXIud9TrleC9RwS0GfPO kxk9+Lq8o66v4uoo5NtTkjWKalH7vpOPYeRpu0Vvzmt1FeWNuR/CwAkt01EADkxO 7K0iep50hbwK/aUwZRMeRAASd5znwuY= -----END CERTIFICATE-----Generated at Fri Apr 4 22:01:42 2025 by rpki-client