$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft File: kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft (raw, json) Hash identifier: eeNw05Ct1RpKzOLfa6OxpLVhwZCHsrQGBiKzNIdNcPY= Subject key identifier: 34:75:17:70:AA:FB:6B:1C:80:50:D1:68:73:1E:BC:68:06:B6:5C:07 Authority key identifier: 91:9F:A8:19:B2:FF:F1:45:52:1A:F6:64:03:52:78:E7:E7:91:4A:49 Certificate issuer: /CN=A91BB6E3/serialNumber=919FA819B2FFF145521AF664035278E7E7914A49 Certificate serial: 01B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kZ-oGbL_8UVSGvZkA1J45-eRSkk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft Manifest number: 019C Signing time: Fri 11 Apr 2025 02:53:37 +0000 Manifest this update: Fri 11 Apr 2025 02:53:36 +0000 Manifest next update: Fri 18 Apr 2025 02:53:36 +0000 Files and hashes: 1: kZ-oGbL_8UVSGvZkA1J45-eRSkk.crl (hash: O9httjCHtcvmCOXoC67VrQNUW2VAHlmTKbdGT67icxI=) 2: F96174ECC27D11EDB8226F2DC4F9AE02.roa (hash: kXeNIsHETQcXUic6LYufG6XvgVMVgH9sGtHQdmkZT90=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.crl rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kZ-oGbL_8UVSGvZkA1J45-eRSkk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 02:53:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 433 (0x1b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB6E3, serialNumber=919FA819B2FFF145521AF664035278E7E7914A49 Validity Not Before: Apr 11 02:53:36 2025 GMT Not After : Apr 18 02:53:36 2025 GMT Subject: CN=67f88430-1945 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:2d:2d:d5:7b:f1:b8:81:98:d0:ab:42:ed:f9: 95:5b:6b:81:40:3b:94:57:cd:04:7a:06:2c:be:cf: 32:22:00:8a:33:95:c4:e0:3e:f9:77:a5:86:f7:09: 05:60:7c:fa:84:8d:b3:57:ff:7e:ea:80:66:7c:86: f2:a2:9a:00:94:e2:e8:4e:2c:dc:4f:8a:23:4d:e0: c3:e6:98:62:94:48:15:55:a5:e9:e3:89:bf:12:26: ff:ee:45:b1:ba:96:d5:2b:04:bc:1a:90:42:f6:df: 4d:11:e0:9d:b6:d0:7d:94:e6:c6:6f:7b:62:bb:28: b4:ef:2b:45:ea:7c:cb:19:ca:30:0d:16:32:5f:b1: da:79:4b:5d:6b:fe:ce:95:c1:a0:30:dc:1d:cc:b6: 07:a1:a5:6c:ed:30:ba:59:6e:ba:0d:ad:df:30:1b: 73:d0:b2:73:e0:4d:ba:2d:8e:39:17:44:d2:d2:b2: 4b:55:9b:70:ac:ee:04:2f:7c:3f:85:d7:fc:64:cc: ee:a4:12:18:b8:66:f8:7c:d5:5c:85:f4:87:a0:d1: dc:10:02:19:81:cb:46:96:ab:29:5f:49:cb:2d:b1: 9c:f6:9b:7e:03:dc:63:19:1c:e1:28:9b:04:34:cb: 2b:b5:d2:67:56:a2:c7:d9:04:00:4d:98:96:e8:fc: da:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:75:17:70:AA:FB:6B:1C:80:50:D1:68:73:1E:BC:68:06:B6:5C:07 X509v3 Authority Key Identifier: keyid:91:9F:A8:19:B2:FF:F1:45:52:1A:F6:64:03:52:78:E7:E7:91:4A:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kZ-oGbL_8UVSGvZkA1J45-eRSkk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:e2:e7:fc:c9:56:1f:ba:cd:07:b3:19:15:87:42:6d:94:b7: 53:3d:25:60:6c:8c:07:98:7b:ed:9c:f7:ae:66:d6:a4:7f:9f: ea:8a:de:58:ec:da:85:8c:01:2b:ba:04:6b:5f:0f:3d:cd:e4: 25:01:39:06:97:0e:9d:d0:07:82:63:e2:23:db:45:0e:b2:1d: d9:ca:3a:16:ff:c6:14:37:de:70:b5:a2:60:e2:2c:40:93:d9: 84:8c:9a:2e:3c:5d:84:0d:ff:f5:b2:51:dd:c5:4a:63:98:d1: 53:c4:32:99:f8:1a:8f:ab:7a:23:31:68:cd:c8:48:f1:ca:09: 08:98:96:0a:ff:95:55:55:bb:03:59:bb:08:14:4e:00:ec:c5: 55:e9:4f:ff:fb:36:a8:67:80:08:09:45:c8:72:fd:30:af:27: cb:d7:26:e6:35:79:05:8f:03:81:55:84:95:40:db:fc:ba:03: fa:32:bb:3e:b0:73:5f:d3:fe:44:c6:58:2f:80:db:2f:41:b7: 08:fd:d0:1f:09:0b:87:75:92:29:c3:93:60:2e:3e:d2:b0:1c: f3:cb:32:72:1d:16:c2:84:73:50:4a:15:f9:e9:33:12:55:62: 1e:fb:68:f7:1c:cc:cc:a1:a0:77:a5:54:9d:2d:cc:97:76:8d: 0b:02:74:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI2RTMxMTAvBgNVBAUTKDkxOUZBODE5QjJGRkYxNDU1MjFBRjY2NDAzNTI3OEU3 RTc5MTRBNDkwHhcNMjUwNDExMDI1MzM2WhcNMjUwNDE4MDI1MzM2WjAYMRYwFAYD VQQDEw02N2Y4ODQzMC0xOTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAni0t1XvxuIGY0KtC7fmVW2uBQDuUV80EegYsvs8yIgCKM5XE4D75d6WG9wkF YHz6hI2zV/9+6oBmfIbyopoAlOLoTizcT4ojTeDD5philEgVVaXp44m/Eib/7kWx upbVKwS8GpBC9t9NEeCdttB9lObGb3tiuyi07ytF6nzLGcowDRYyX7HaeUtda/7O lcGgMNwdzLYHoaVs7TC6WW66Da3fMBtz0LJz4E26LY45F0TS0rJLVZtwrO4EL3w/ hdf8ZMzupBIYuGb4fNVchfSHoNHcEAIZgctGlqspX0nLLbGc9pt+A9xjGRzhKJsE NMsrtdJnVqLH2QQATZiW6PzaowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDR1F3Cq +2scgFDRaHMevGgGtlwHMB8GA1UdIwQYMBaAFJGfqBmy//FFUhr2ZANSeOfnkUpJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjZFMy9BMjJDODE0Q0My NzUxMUVEQjNCNEQ3MjhDNEY5QUUwMi9rWi1vR2JMXzhVVlNHdlprQTFKNDUtZVJT a2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2taLW9HYkxfOFVWU0d2WmtBMUo0NS1lUlNray5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjZFMy9BMjJDODE0Q0MyNzUxMUVEQjNCNEQ3MjhDNEY5QUUwMi9rWi1vR2JMXzhV VlNHdlprQTFKNDUtZVJTa2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZ4uf8yVYfus0HsxkVh0JtlLdTPSVgbIwHmHvtnPeuZtakf5/qit5Y 7NqFjAErugRrXw89zeQlATkGlw6d0AeCY+Ij20UOsh3ZyjoW/8YUN95wtaJg4ixA k9mEjJouPF2EDf/1slHdxUpjmNFTxDKZ+BqPq3ojMWjNyEjxygkImJYK/5VVVbsD WbsIFE4A7MVV6U//+zaoZ4AICUXIcv0wryfL1ybmNXkFjwOBVYSVQNv8ugP6Mrs+ sHNf0/5ExlgvgNsvQbcI/dAfCQuHdZIpw5NgLj7SsBzzyzJyHRbChHNQShX56TMS VWIe+2j3HMzMoaB3pVSdLcyXdo0LAnQm -----END CERTIFICATE-----Generated at Sat Apr 12 17:43:10 2025 by rpki-client