$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.mft File: kz73JgbZ1bKf46QfIMUrIMr1Vbo.mft (raw, json) Hash identifier: Oiz9YG/4MhexcFvIAuBTmY2OJxyO8M87Nshk4TIOuYo= Subject key identifier: 3C:A1:DF:72:E3:D4:99:57:B5:18:98:4E:C4:0E:40:F9:9D:0A:8C:17 Authority key identifier: 93:3E:F7:26:06:D9:D5:B2:9F:E3:A4:1F:20:C5:2B:20:CA:F5:55:BA Certificate issuer: /CN=A91D6503/serialNumber=933EF72606D9D5B29FE3A41F20C52B20CAF555BA Certificate serial: 07C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kz73JgbZ1bKf46QfIMUrIMr1Vbo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.mft Manifest number: 07BE Signing time: Wed 02 Apr 2025 21:05:02 +0000 Manifest this update: Wed 02 Apr 2025 21:05:02 +0000 Manifest next update: Wed 09 Apr 2025 21:05:02 +0000 Files and hashes: 1: kz73JgbZ1bKf46QfIMUrIMr1Vbo.crl (hash: Ea2Yj4OReT5LdmjYzM6D3VNejS++Coci2uilsE8+A5U=) 2: 3CC77D02EE8811EA9225690DC4F9AE02.roa (hash: IS2j0d/zVkxwnqe+1txywwwV0QyYZmwCTkV8FQIqSXQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.crl rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kz73JgbZ1bKf46QfIMUrIMr1Vbo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 21:05:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1988 (0x7c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6503 Validity Not Before: Apr 2 21:05:02 2025 GMT Not After : Apr 9 21:05:02 2025 GMT Subject: CN=67eda67e-f6f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:86:a9:18:50:84:6d:65:cf:ec:10:59:a4:03: a8:1b:7e:2a:8d:96:b7:39:f5:e9:6c:b8:95:02:a6: ca:f8:f9:10:46:32:99:23:45:f7:59:1a:56:89:99: 1e:b7:e7:fc:c4:1b:0b:ed:6d:e5:67:21:47:df:d8: 4a:37:69:80:67:9a:61:4e:4d:9d:f5:41:c3:78:55: 2b:c4:0e:5c:12:1e:c4:22:d8:9a:30:09:f2:b9:65: ee:d7:f2:ad:2c:21:f4:77:fe:6d:43:b8:45:c5:09: 72:c4:d9:eb:29:bf:88:8b:96:01:3d:df:76:e4:16: ed:61:81:83:fe:bd:05:40:52:e2:44:89:8e:5e:ce: 90:ae:e5:12:82:b9:e2:b2:1c:d9:9f:a9:03:a0:af: 1b:50:75:0d:22:72:26:d2:6b:e9:e0:80:bf:b2:81: 32:90:52:f1:d4:7c:ea:a7:05:90:e6:66:50:4e:67: 2d:80:a8:ce:da:91:93:49:2d:48:32:55:23:0f:3c: 61:af:c3:65:5c:48:9e:7c:de:1d:ca:b7:20:62:3e: e3:9d:e6:a8:ad:ba:cd:bd:d6:bb:5f:86:30:aa:e7: f5:22:3d:d1:3b:53:7a:60:f9:ab:58:ec:91:1b:a7: 30:ec:9e:f9:a6:10:1b:01:e7:8a:bc:14:5a:2f:a8: 54:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:A1:DF:72:E3:D4:99:57:B5:18:98:4E:C4:0E:40:F9:9D:0A:8C:17 X509v3 Authority Key Identifier: keyid:93:3E:F7:26:06:D9:D5:B2:9F:E3:A4:1F:20:C5:2B:20:CA:F5:55:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kz73JgbZ1bKf46QfIMUrIMr1Vbo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:73:16:97:3b:6d:4b:ba:15:a9:71:74:06:c2:fe:59:fb:e8: 40:2b:3d:21:2a:d9:c5:df:06:d2:8d:be:ea:5e:73:95:25:76: 5b:de:d2:38:7e:0a:48:04:f2:b7:20:08:b3:52:74:6c:16:73: f1:ef:ca:9a:b3:8a:e9:6e:4e:01:1b:3d:cd:e4:89:45:3a:da: 4a:c7:ce:55:f2:e3:0a:30:8b:1d:36:6d:cf:09:0c:bf:41:d8: dc:0a:3a:fc:31:78:fe:1f:74:cb:66:1a:ee:48:ef:53:79:99: 6a:7d:7b:df:e8:e2:32:32:3f:44:15:43:27:57:72:a2:ab:cc: 43:d6:1b:4c:eb:7d:6c:7d:fe:a7:35:16:4c:2d:91:0c:e4:a4: 41:07:cb:7c:93:61:92:fc:19:d2:b2:77:fb:b3:8b:e7:dc:ff: 58:8a:19:de:a5:cb:f6:c2:74:2c:48:96:79:58:f0:b7:2f:65: c9:c5:8d:3d:0c:4a:ad:46:a4:35:08:6d:27:4c:2c:02:98:e5: 3c:a5:54:43:f5:6a:13:70:f5:e3:ad:c3:1e:6f:06:27:38:15: 48:15:e6:49:08:5d:06:1b:00:15:6a:2b:ed:a0:ff:ce:c3:7e: 3f:c1:cc:b0:7f:ea:06:d6:26:5c:5d:0e:01:d1:3c:f3:d4:07: 66:6a:ac:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB8QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY1MDMxMTAvBgNVBAUTKDkzM0VGNzI2MDZEOUQ1QjI5RkUzQTQxRjIwQzUyQjIw Q0FGNTU1QkEwHhcNMjUwNDAyMjEwNTAyWhcNMjUwNDA5MjEwNTAyWjAYMRYwFAYD VQQDEw02N2VkYTY3ZS1mNmY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt4apGFCEbWXP7BBZpAOoG34qjZa3OfXpbLiVAqbK+PkQRjKZI0X3WRpWiZke t+f8xBsL7W3lZyFH39hKN2mAZ5phTk2d9UHDeFUrxA5cEh7EItiaMAnyuWXu1/Kt LCH0d/5tQ7hFxQlyxNnrKb+Ii5YBPd925BbtYYGD/r0FQFLiRImOXs6QruUSgrni shzZn6kDoK8bUHUNInIm0mvp4IC/soEykFLx1HzqpwWQ5mZQTmctgKjO2pGTSS1I MlUjDzxhr8NlXEiefN4dyrcgYj7jneaorbrNvda7X4Ywquf1Ij3RO1N6YPmrWOyR G6cw7J75phAbAeeKvBRaL6hUAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDyh33Lj 1JlXtRiYTsQOQPmdCowXMB8GA1UdIwQYMBaAFJM+9yYG2dWyn+OkHyDFKyDK9VW6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjUwMy8wMTU0QjRCNkVF ODcxMUVBQjUyQTVDMDlDNEY5QUUwMi9rejczSmdiWjFiS2Y0NlFmSU1VcklNcjFW Ym8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t6NzNKZ2JaMWJLZjQ2UWZJTVVySU1yMVZiby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjUwMy8wMTU0QjRCNkVFODcxMUVBQjUyQTVDMDlDNEY5QUUwMi9rejczSmdiWjFi S2Y0NlFmSU1VcklNcjFWYm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFcxaXO21LuhWpcXQGwv5Z++hAKz0hKtnF3wbSjb7qXnOVJXZb3tI4 fgpIBPK3IAizUnRsFnPx78qas4rpbk4BGz3N5IlFOtpKx85V8uMKMIsdNm3PCQy/ QdjcCjr8MXj+H3TLZhruSO9TeZlqfXvf6OIyMj9EFUMnV3Kiq8xD1htM631sff6n NRZMLZEM5KRBB8t8k2GS/BnSsnf7s4vn3P9Yihnepcv2wnQsSJZ5WPC3L2XJxY09 DEqtRqQ1CG0nTCwCmOU8pVRD9WoTcPXjrcMebwYnOBVIFeZJCF0GGwAVaivtoP/O w34/wcywf+oG1iZcXQ4B0Tzz1Admaqzx -----END CERTIFICATE-----Generated at Fri Apr 4 22:32:06 2025 by rpki-client