$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.mft File: KTvwacT02DHu52nVsTnjAh2zSwA.mft (raw, json) Hash identifier: 7wHYoaiudh/DLHBOlqU5A4LDqFC4/80pEBtgbCbRimg= Subject key identifier: 83:BD:95:53:02:67:71:53:A1:9D:45:45:E0:C1:8E:3C:E7:17:34:7F Authority key identifier: 29:3B:F0:69:C4:F4:D8:31:EE:E7:69:D5:B1:39:E3:02:1D:B3:4B:00 Certificate issuer: /CN=A91CE65A/serialNumber=293BF069C4F4D831EEE769D5B139E3021DB34B00 Certificate serial: 87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTvwacT02DHu52nVsTnjAh2zSwA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.mft Manifest number: 85 Signing time: Thu 03 Apr 2025 05:51:25 +0000 Manifest this update: Thu 03 Apr 2025 05:51:24 +0000 Manifest next update: Thu 10 Apr 2025 05:51:24 +0000 Files and hashes: 1: KTvwacT02DHu52nVsTnjAh2zSwA.crl (hash: uVdrHawrZLuuVrs3a+eVY0AFlnSJ9iIm4DBUOSDQaL0=) 2: 77BDF1A0497B11EFAE69D243C4F9AE02.roa (hash: EAkL+z2TTbEwn03dT2Ny9vtbrcbH4dnoXpbzZjpawbU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.crl rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTvwacT02DHu52nVsTnjAh2zSwA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 05:51:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 135 (0x87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE65A Validity Not Before: Apr 3 05:51:24 2025 GMT Not After : Apr 10 05:51:24 2025 GMT Subject: CN=67ee21dd-f9ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:fb:d7:25:08:55:c6:b9:b9:48:5f:9e:78:61: bd:5d:3b:a5:ca:1d:05:5c:84:07:ec:c1:bc:f1:12: 61:a2:35:16:9c:59:23:48:b4:c6:a3:f7:88:29:1f: 1d:c0:98:52:90:5b:66:cb:ff:af:f9:10:5c:13:74: 4b:53:fb:ff:d0:8d:8d:0e:7a:da:a1:9c:53:9a:fb: 22:f6:1e:c6:c0:aa:c9:61:09:94:d4:29:f6:a5:73: 83:a4:3e:f8:fe:3a:ab:ea:45:ec:d2:f7:bb:97:fb: 16:6a:b9:69:f6:b5:b3:98:aa:8d:4e:12:e3:48:23: 52:be:6f:bd:16:32:1a:69:03:e8:9f:0c:4e:4e:87: e0:46:f2:2c:c3:52:c2:5b:bf:dc:5c:ca:5b:8c:15: 8f:a5:b1:5b:13:ff:72:54:53:61:66:2c:1b:f3:7b: fc:18:47:13:25:52:c2:21:cb:55:19:59:a5:9d:c1: 9c:94:b9:88:8b:47:55:c7:8b:7a:61:e0:5a:37:f3: a0:34:f0:9e:15:d5:98:95:32:b6:f8:0c:9c:a5:fd: d8:42:b3:35:5f:59:f8:34:f2:85:cc:5d:2c:38:a0: e8:13:7c:b3:fa:b1:4d:48:71:79:d7:66:ed:94:2c: b7:fb:18:36:a7:9c:33:02:db:11:d4:7c:93:46:96: 03:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:BD:95:53:02:67:71:53:A1:9D:45:45:E0:C1:8E:3C:E7:17:34:7F X509v3 Authority Key Identifier: keyid:29:3B:F0:69:C4:F4:D8:31:EE:E7:69:D5:B1:39:E3:02:1D:B3:4B:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTvwacT02DHu52nVsTnjAh2zSwA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:a2:05:40:fc:66:60:74:7f:7a:b6:9e:35:4b:23:ab:50:25: c4:46:d4:6d:5e:1f:2a:a8:24:51:c7:3c:6b:47:46:7f:00:a6: 28:8b:ae:3a:3a:00:64:7f:9b:12:89:dc:9f:83:d4:0b:ac:e8: a7:61:19:90:b5:5b:ab:75:0d:45:6a:5b:d1:88:37:3b:e7:37: 42:b5:49:30:33:83:09:8e:04:01:4b:5e:83:f8:3f:1e:08:20: 83:7d:4b:46:4a:b9:59:82:93:b2:f4:95:b6:a9:83:af:2c:e2: fc:ad:e9:d8:54:ff:45:06:35:d0:f5:5c:13:be:f0:f2:f3:52: 50:4f:13:6c:6e:13:c3:45:01:2c:cb:72:f7:b7:85:b2:a4:c8: 0e:6b:13:95:a7:18:32:35:5f:11:cc:dc:70:e8:d7:fa:37:9b: 08:58:1b:fe:08:fd:09:d6:c5:cc:39:91:f4:ad:fa:5d:b9:60: 4e:09:57:c6:1b:f6:fb:e3:32:fb:e4:fe:28:fc:ae:69:dd:1d: e7:36:c3:cd:8f:58:1f:c3:8f:4d:5b:fc:d2:c7:9c:be:f9:db: 33:a6:4d:ec:9c:ff:70:33:66:04:77:e2:c0:23:ca:77:fa:16: 22:30:0f:50:e6:be:f9:30:cb:cd:bd:e9:52:43:8f:e0:d7:47: 46:2f:d4:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2NUExMTAvBgNVBAUTKDI5M0JGMDY5QzRGNEQ4MzFFRUU3NjlENUIxMzlFMzAy MURCMzRCMDAwHhcNMjUwNDAzMDU1MTI0WhcNMjUwNDEwMDU1MTI0WjAYMRYwFAYD VQQDEw02N2VlMjFkZC1mOWVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4/vXJQhVxrm5SF+eeGG9XTulyh0FXIQH7MG88RJhojUWnFkjSLTGo/eIKR8d wJhSkFtmy/+v+RBcE3RLU/v/0I2NDnraoZxTmvsi9h7GwKrJYQmU1Cn2pXODpD74 /jqr6kXs0ve7l/sWarlp9rWzmKqNThLjSCNSvm+9FjIaaQPonwxOTofgRvIsw1LC W7/cXMpbjBWPpbFbE/9yVFNhZiwb83v8GEcTJVLCIctVGVmlncGclLmIi0dVx4t6 YeBaN/OgNPCeFdWYlTK2+Aycpf3YQrM1X1n4NPKFzF0sOKDoE3yz+rFNSHF512bt lCy3+xg2p5wzAtsR1HyTRpYDiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIO9lVMC Z3FToZ1FReDBjjznFzR/MB8GA1UdIwQYMBaAFCk78GnE9Ngx7udp1bE54wIds0sA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTY1QS82NkU2RkUzNjQ5 N0ExMUVGQUY1NTE4NDJDNEY5QUUwMi9LVHZ3YWNUMDJESHU1Mm5Wc1RuakFoMnpT d0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tUdndhY1QwMkRIdTUyblZzVG5qQWgyelN3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTY1QS82NkU2RkUzNjQ5N0ExMUVGQUY1NTE4NDJDNEY5QUUwMi9LVHZ3YWNUMDJE SHU1Mm5Wc1RuakFoMnpTd0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALogVA/GZgdH96tp41SyOrUCXERtRtXh8qqCRRxzxrR0Z/AKYoi646 OgBkf5sSidyfg9QLrOinYRmQtVurdQ1FalvRiDc75zdCtUkwM4MJjgQBS16D+D8e CCCDfUtGSrlZgpOy9JW2qYOvLOL8renYVP9FBjXQ9VwTvvDy81JQTxNsbhPDRQEs y3L3t4WypMgOaxOVpxgyNV8RzNxw6Nf6N5sIWBv+CP0J1sXMOZH0rfpduWBOCVfG G/b74zL75P4o/K5p3R3nNsPNj1gfw49NW/zSx5y++dszpk3snP9wM2YEd+LAI8p3 +hYiMA9Q5r75MMvNvelSQ4/g10dGL9Ru -----END CERTIFICATE-----Generated at Fri Apr 4 22:30:00 2025 by rpki-client