$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft File: kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft (raw, json) Hash identifier: Q6GPeK94Ru5lNhbLt+qkII8ZozvQLF88ckFIgCfClNE= Subject key identifier: 6B:1D:F2:A3:F5:D9:55:EE:EF:9B:99:28:7B:A4:50:EC:EB:60:05:0A Authority key identifier: 90:D9:9A:A8:D7:91:31:40:AF:AE:9E:E2:BF:EB:CD:A3:7B:A1:CD:28 Certificate issuer: /CN=A91C2875/serialNumber=90D99AA8D7913140AFAE9EE2BFEBCDA37BA1CD28 Certificate serial: 0348 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft Manifest number: 0340 Signing time: Wed 09 Apr 2025 00:44:47 +0000 Manifest this update: Wed 09 Apr 2025 00:44:47 +0000 Manifest next update: Wed 16 Apr 2025 00:44:47 +0000 Files and hashes: 1: kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl (hash: KwFKIhluTRQ7c0G5OAB/a/aPnmuo212+iH9rbudAVpk=) 2: ABB1EE64B4ED11ECBA3D016FC4F9AE02.roa (hash: KdODWWy5DaOqxG/rlhfUZW4he8HC+tvuYe4LwAo61T4=) 3: 0E9CF77EBA6811EC8058A213C4F9AE02.roa (hash: I5MvmpsL8y59IDd7Mhzk7RlviZnPSJZXIgkWIwxVqvA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 00:44:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 840 (0x348) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2875 Validity Not Before: Apr 9 00:44:47 2025 GMT Not After : Apr 16 00:44:47 2025 GMT Subject: CN=67f5c2ff-f41d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:47:97:41:9c:09:72:db:06:10:f5:e9:22:e9: e3:25:1a:53:dd:d3:d7:10:89:94:c9:19:5c:1c:bd: b7:d4:70:a8:bf:aa:9e:d2:db:4a:35:bb:e3:4f:89: 2d:ef:f7:22:a3:3c:af:3f:08:f3:1d:22:1d:32:22: d1:8d:d4:de:69:00:dd:ef:fa:3d:12:d3:5b:e6:1c: 98:4a:30:0a:06:4f:e2:1c:4a:f9:3c:5e:c4:a2:23: 53:06:00:f6:1f:50:ac:b0:fe:ec:0f:6c:6b:5c:0d: 02:03:1e:30:61:d3:2e:27:3f:58:ad:36:c8:70:47: 14:26:8a:29:96:f7:1c:7e:fd:26:66:f3:bc:db:f4: 00:a5:4f:77:6f:a3:cd:3f:1b:86:2f:6a:67:f0:c3: b7:be:52:dc:74:56:aa:b2:6e:92:e6:25:e8:59:53: e9:04:83:0b:4e:9c:cc:d0:ae:a1:71:d0:ee:00:54: 82:15:11:ed:c0:10:72:4a:b3:87:e7:25:fe:c0:2b: 56:6b:d1:70:15:40:4f:76:70:4e:c4:b4:e0:1f:49: 70:b9:8e:cf:23:cc:03:aa:08:c1:7e:be:4e:56:63: 11:07:4c:99:07:27:0b:dd:c6:3d:a4:89:21:7e:09: 32:06:89:08:e5:b2:71:ae:6b:2f:3d:4b:62:d2:14: 74:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:1D:F2:A3:F5:D9:55:EE:EF:9B:99:28:7B:A4:50:EC:EB:60:05:0A X509v3 Authority Key Identifier: keyid:90:D9:9A:A8:D7:91:31:40:AF:AE:9E:E2:BF:EB:CD:A3:7B:A1:CD:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:6b:f3:8d:ca:73:7f:1d:37:b4:38:8f:22:23:36:04:5b:29: 1e:d9:f9:1b:ab:80:2f:70:6d:2f:db:90:56:60:30:87:7d:a0: 9d:c2:d6:3e:e6:98:75:ee:62:9d:cf:dc:40:05:b2:3c:a9:f5: 84:10:c4:c1:86:24:3b:d9:37:88:88:82:12:a1:84:21:d3:31: 7f:45:5e:76:31:e3:83:e7:8c:09:7a:f4:a0:bd:4d:57:ff:23: 68:c9:d6:dd:43:73:cf:bc:32:a9:91:07:8f:42:1b:ad:e6:2a: eb:c5:32:4f:90:c9:50:04:25:7e:f8:22:e3:19:e7:44:de:d5: 27:5c:c2:6f:04:c6:69:61:3a:69:7d:f9:d2:e1:f9:c9:e8:fa: b8:75:74:3c:14:d7:38:1f:e1:30:2f:1f:90:7c:b2:12:29:d0: 75:5b:ed:9b:99:3c:16:4b:82:a2:2e:61:e6:c0:78:02:1a:80: 3d:a9:45:76:40:64:53:d4:a6:1d:8a:fb:64:7c:a1:b6:83:60: 66:28:aa:18:62:ed:c4:bf:75:82:dc:2f:76:da:8a:f0:9a:5b: 15:47:b6:e1:33:76:10:d7:7e:97:28:0b:cb:91:3b:6a:4c:d8: 96:fe:2e:31:9c:6a:b1:1d:85:77:4b:19:73:96:1f:6a:1f:5d: 72:e4:25:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA0gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzI4NzUxMTAvBgNVBAUTKDkwRDk5QUE4RDc5MTMxNDBBRkFFOUVFMkJGRUJDREEz N0JBMUNEMjgwHhcNMjUwNDA5MDA0NDQ3WhcNMjUwNDE2MDA0NDQ3WjAYMRYwFAYD VQQDEw02N2Y1YzJmZi1mNDFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApkeXQZwJctsGEPXpIunjJRpT3dPXEImUyRlcHL231HCov6qe0ttKNbvjT4kt 7/ciozyvPwjzHSIdMiLRjdTeaQDd7/o9EtNb5hyYSjAKBk/iHEr5PF7EoiNTBgD2 H1CssP7sD2xrXA0CAx4wYdMuJz9YrTbIcEcUJooplvccfv0mZvO82/QApU93b6PN PxuGL2pn8MO3vlLcdFaqsm6S5iXoWVPpBIMLTpzM0K6hcdDuAFSCFRHtwBBySrOH 5yX+wCtWa9FwFUBPdnBOxLTgH0lwuY7PI8wDqgjBfr5OVmMRB0yZBycL3cY9pIkh fgkyBokI5bJxrmsvPUti0hR04wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGsd8qP1 2VXu75uZKHukUOzrYAUKMB8GA1UdIwQYMBaAFJDZmqjXkTFAr66e4r/rzaN7oc0o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjg3NS9DMjVERTBFNkI0 RTgxMUVDOTgwQzQ0NzFDNEY5QUUwMi9rTm1hcU5lUk1VQ3ZycDdpdi12Tm8zdWh6 U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tObWFxTmVSTVVDdnJwN2l2LXZObzN1aHpTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Mjg3NS9DMjVERTBFNkI0RTgxMUVDOTgwQzQ0NzFDNEY5QUUwMi9rTm1hcU5lUk1V Q3ZycDdpdi12Tm8zdWh6U2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJa/ONynN/HTe0OI8iIzYEWyke2fkbq4AvcG0v25BWYDCHfaCdwtY+ 5ph17mKdz9xABbI8qfWEEMTBhiQ72TeIiIISoYQh0zF/RV52MeOD54wJevSgvU1X /yNoydbdQ3PPvDKpkQePQhut5irrxTJPkMlQBCV++CLjGedE3tUnXMJvBMZpYTpp ffnS4fnJ6Pq4dXQ8FNc4H+EwLx+QfLISKdB1W+2bmTwWS4KiLmHmwHgCGoA9qUV2 QGRT1KYdivtkfKG2g2BmKKoYYu3Ev3WC3C922orwmlsVR7bhM3YQ136XKAvLkTtq TNiW/i4xnGqxHYV3Sxlzlh9qH11y5CUr -----END CERTIFICATE-----Generated at Thu Apr 10 20:41:54 2025 by rpki-client