$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft File: kBUoySF5F9lWch0caFZlNFvrVv0.mft (raw, json) Hash identifier: cdJIOpo0gTnMEH0gE/+wH0rpUDgOqT1Pb5z7gqNbJpI= Subject key identifier: 14:1C:3B:57:E4:C1:87:96:E2:32:3C:90:9F:65:23:51:22:68:FB:7F Authority key identifier: 90:15:28:C9:21:79:17:D9:56:72:1D:1C:68:56:65:34:5B:EB:56:FD Certificate issuer: /CN=A91CFAB9/serialNumber=901528C9217917D956721D1C685665345BEB56FD Certificate serial: 0316 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBUoySF5F9lWch0caFZlNFvrVv0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft Manifest number: 0312 Signing time: Wed 09 Apr 2025 00:35:29 +0000 Manifest this update: Wed 09 Apr 2025 00:35:29 +0000 Manifest next update: Wed 16 Apr 2025 00:35:29 +0000 Files and hashes: 1: kBUoySF5F9lWch0caFZlNFvrVv0.crl (hash: AQuiE3eJsS8+G0cYEx2UM52C0SU58Sw4kK/AM+aOMSU=) 2: 39A335D6CB3F11ECBEBC9A1DC4F9AE02.roa (hash: NmvW/sg0pEXjTHBegEg6TihBwGGc4JodMMQnzVosHvc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.crl rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBUoySF5F9lWch0caFZlNFvrVv0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 00:35:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 790 (0x316) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFAB9 Validity Not Before: Apr 9 00:35:29 2025 GMT Not After : Apr 16 00:35:29 2025 GMT Subject: CN=67f5c0d1-e728 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:2d:24:7f:ba:89:15:aa:f6:60:b0:4d:0b:c8: ee:5c:8e:0f:b3:71:dc:8d:09:98:5a:25:2d:eb:c9: c5:b0:d6:1d:a0:e7:11:5d:02:3f:51:cb:45:2c:66: 01:f3:f0:6d:23:4a:c3:b1:1e:88:02:4f:79:a2:bd: fd:f3:19:89:ef:8f:6d:82:55:9c:f6:a4:51:12:9e: ad:4b:c3:e8:99:f9:0f:0a:f6:25:72:f5:fa:36:9d: 67:78:d2:0b:4c:73:87:ee:4a:4a:df:ba:c5:13:fe: 05:ec:e4:9f:45:32:c2:6f:aa:9d:40:e3:61:55:f0: c2:72:2c:b5:f9:fd:38:e2:60:2e:01:72:e1:9d:ed: 23:20:ff:c5:5d:ee:b1:f1:c5:fa:93:4f:75:22:b4: 29:a2:68:3e:11:19:08:a2:10:9a:38:0c:21:92:98: cc:2d:66:65:15:37:1b:db:49:98:0d:8f:1b:02:d8: 7a:f6:7c:c7:8c:63:6f:11:28:0b:60:1e:c1:46:2d: 0b:26:2b:25:be:1b:67:76:25:8a:95:8d:5b:b2:10: a0:7f:06:59:7a:b2:06:a2:66:b6:51:22:3e:de:69: ae:69:7f:f6:52:e8:cf:bd:cf:b8:c8:ad:f3:56:6e: bb:84:db:d5:86:88:3b:76:3c:5a:25:e2:7f:51:62: 4a:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:1C:3B:57:E4:C1:87:96:E2:32:3C:90:9F:65:23:51:22:68:FB:7F X509v3 Authority Key Identifier: keyid:90:15:28:C9:21:79:17:D9:56:72:1D:1C:68:56:65:34:5B:EB:56:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBUoySF5F9lWch0caFZlNFvrVv0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:86:18:29:eb:c9:db:2d:e9:a5:bc:40:f2:6e:28:7f:b3:a3: da:2a:d0:b6:4d:3a:74:bf:82:cf:e6:0b:7b:71:3f:9c:d1:fd: 0e:8f:a9:4f:bb:df:66:50:72:3a:fc:7d:e6:5b:37:a0:ac:e7: 6c:af:54:dd:55:01:6e:3f:22:ab:b1:2d:13:86:a6:81:bb:2c: 68:35:43:ff:f3:68:99:81:78:33:fa:30:d5:c6:92:46:74:e8: b9:cf:7c:e7:b3:ff:86:34:84:82:c2:f0:56:41:97:16:18:78: ef:43:d1:7f:b7:71:75:27:b0:fb:21:60:5b:86:fb:3c:65:d2: 5b:dc:a4:0b:db:05:22:a3:9e:64:87:f8:65:f9:79:36:ab:a1: 33:d7:ef:d3:4d:f0:52:84:a2:d7:02:78:b8:3e:1b:24:a5:ab: 39:77:c3:7c:04:5b:80:47:bd:48:f8:c5:06:ec:08:1e:60:8b: 21:1c:d9:43:58:62:ad:cd:64:65:af:38:e7:ec:9b:00:86:97: 87:12:9c:81:33:86:ba:f4:57:9d:64:2e:95:7d:af:23:c7:4c: bf:61:95:94:b9:98:dc:49:d3:79:e2:7f:c8:0e:98:60:cd:3c: 37:d1:fe:9b:9f:2c:13:3c:2c:38:08:a0:c8:6e:34:77:6a:72: ef:a1:a0:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAxYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZBQjkxMTAvBgNVBAUTKDkwMTUyOEM5MjE3OTE3RDk1NjcyMUQxQzY4NTY2NTM0 NUJFQjU2RkQwHhcNMjUwNDA5MDAzNTI5WhcNMjUwNDE2MDAzNTI5WjAYMRYwFAYD VQQDEw02N2Y1YzBkMS1lNzI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAui0kf7qJFar2YLBNC8juXI4Ps3HcjQmYWiUt68nFsNYdoOcRXQI/UctFLGYB 8/BtI0rDsR6IAk95or398xmJ749tglWc9qRREp6tS8PomfkPCvYlcvX6Np1neNIL THOH7kpK37rFE/4F7OSfRTLCb6qdQONhVfDCciy1+f044mAuAXLhne0jIP/FXe6x 8cX6k091IrQpomg+ERkIohCaOAwhkpjMLWZlFTcb20mYDY8bAth69nzHjGNvESgL YB7BRi0LJislvhtndiWKlY1bshCgfwZZerIGoma2USI+3mmuaX/2UujPvc+4yK3z Vm67hNvVhog7djxaJeJ/UWJK6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBQcO1fk wYeW4jI8kJ9lI1EiaPt/MB8GA1UdIwQYMBaAFJAVKMkheRfZVnIdHGhWZTRb61b9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkFCOS8xQ0Q0NEY5RUM3 N0ExMUVDQjk0MzRDMkNDNEY5QUUwMi9rQlVveVNGNUY5bFdjaDBjYUZabE5GdnJW djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tCVW95U0Y1RjlsV2NoMGNhRlpsTkZ2clZ2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkFCOS8xQ0Q0NEY5RUM3N0ExMUVDQjk0MzRDMkNDNEY5QUUwMi9rQlVveVNGNUY5 bFdjaDBjYUZabE5GdnJWdjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCphhgp68nbLemlvEDybih/s6PaKtC2TTp0v4LP5gt7cT+c0f0Oj6lP u99mUHI6/H3mWzegrOdsr1TdVQFuPyKrsS0ThqaBuyxoNUP/82iZgXgz+jDVxpJG dOi5z3zns/+GNISCwvBWQZcWGHjvQ9F/t3F1J7D7IWBbhvs8ZdJb3KQL2wUio55k h/hl+Xk2q6Ez1+/TTfBShKLXAni4Phskpas5d8N8BFuAR71I+MUG7AgeYIshHNlD WGKtzWRlrzjn7JsAhpeHEpyBM4a69FedZC6Vfa8jx0y/YZWUuZjcSdN54n/IDphg zTw30f6bnywTPCw4CKDIbjR3anLvoaAD -----END CERTIFICATE-----Generated at Thu Apr 10 22:58:27 2025 by rpki-client