$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft File: KQN7v5LysPTDMKHN1KdiVs16VCI.mft (raw, json) Hash identifier: WMkqrSFl3xxuc+5GFVUUq4gJs4R+PE31kjL23voLlWg= Subject key identifier: 6B:9E:DF:5D:1E:F1:8E:2E:2B:5A:70:7D:36:87:B8:B5:CE:01:30:E5 Authority key identifier: 29:03:7B:BF:92:F2:B0:F4:C3:30:A1:CD:D4:A7:62:56:CD:7A:54:22 Certificate issuer: /CN=A91E9B89/serialNumber=29037BBF92F2B0F4C330A1CDD4A76256CD7A5422 Certificate serial: 70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQN7v5LysPTDMKHN1KdiVs16VCI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft Manifest number: 6F Signing time: Sat 05 Apr 2025 06:10:02 +0000 Manifest this update: Sat 05 Apr 2025 06:10:02 +0000 Manifest next update: Sat 12 Apr 2025 06:10:02 +0000 Files and hashes: 1: KQN7v5LysPTDMKHN1KdiVs16VCI.crl (hash: nuBlzZqWQ44kN50sugB0YPCcvq8UTzgM00EFNUvQr/4=) 2: 2025BD6C6C3311EF99E0EF34C4F9AE02.roa (hash: v8gSdO2Oyevi0udRA9oSIzZPAk2F5XphTGY0llKdCYI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.crl rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQN7v5LysPTDMKHN1KdiVs16VCI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 06:10:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 112 (0x70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9B89 Validity Not Before: Apr 5 06:10:02 2025 GMT Not After : Apr 12 06:10:02 2025 GMT Subject: CN=67f0c93a-ce3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:32:44:7b:05:7a:6d:ca:b9:53:be:38:12:22: 2f:25:1a:8d:a9:8d:c5:5d:17:b0:26:13:bf:c3:6f: 03:56:30:26:0e:f8:ae:86:15:1d:06:4f:c9:04:84: 29:2e:54:0a:30:f3:aa:da:77:1c:0f:14:8a:82:fc: 16:96:1f:50:32:26:30:a6:08:31:4a:8a:f8:16:70: bb:3d:e5:4c:42:7a:fa:d6:40:25:09:19:ab:fb:d8: ee:b0:0f:8b:95:69:54:14:2b:3a:70:91:9f:0b:d7: ac:e1:f2:61:18:7d:b1:78:71:06:70:f5:bd:3c:5f: 11:6c:0e:91:0e:d0:1c:1f:b6:18:c9:6b:63:5f:96: 4b:d3:78:52:bd:4b:03:80:7d:c5:e7:e4:13:11:71: 72:a3:b9:1d:c1:e6:a1:90:08:88:7e:3b:e5:7a:a5: 30:58:ee:2e:75:ab:dd:7f:37:69:37:26:be:83:cf: b0:1c:48:d7:d4:46:4e:b3:97:6f:a0:67:b6:01:81: 5c:e6:a7:8a:48:da:ad:1b:fb:0a:11:ae:0a:6d:47: 02:e2:e4:0d:c2:9e:8f:5c:88:ac:49:14:95:13:ea: 2a:2b:c7:8c:b5:b4:c9:b9:00:e7:e1:82:5a:d8:fb: 94:21:8b:cb:4d:7a:c8:bc:e5:28:38:6c:f5:74:04: 3d:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:9E:DF:5D:1E:F1:8E:2E:2B:5A:70:7D:36:87:B8:B5:CE:01:30:E5 X509v3 Authority Key Identifier: keyid:29:03:7B:BF:92:F2:B0:F4:C3:30:A1:CD:D4:A7:62:56:CD:7A:54:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQN7v5LysPTDMKHN1KdiVs16VCI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:57:d3:d8:d7:61:a5:f1:7b:c4:94:50:2a:aa:ba:8d:6e:b9: a5:e2:bd:38:22:ce:18:2c:67:0a:4d:49:aa:d7:b9:7a:ba:4c: ef:1b:0a:44:09:63:34:18:e0:85:07:78:2d:f1:3d:65:1d:03: 13:f3:1b:c9:91:e4:d7:bf:ae:c5:fd:8f:60:08:75:20:d1:c7: 80:59:ae:7a:2b:c2:ce:3f:4b:ec:32:8b:ef:e1:0e:a1:07:e5: ce:9f:66:a3:4b:4c:94:eb:3b:fc:eb:6e:48:33:f3:16:0f:6a: ea:18:92:20:ef:a5:02:64:ce:8d:02:e4:62:6c:54:9a:9c:97: 19:c6:37:8f:bf:70:a1:90:25:af:63:5f:85:53:c6:a9:22:98: 95:00:cc:09:7a:d3:8d:18:48:9c:55:34:4e:68:5c:3e:75:7c: 03:e8:b3:62:e8:81:b5:98:a6:f0:9d:1d:e0:77:93:59:03:d5: e8:cc:8f:fb:d9:e5:d6:e4:f5:9d:7d:33:9e:1b:10:19:5a:ac: 4d:fd:56:b5:82:af:6c:fd:e2:7e:5d:a6:a1:d9:fd:38:4e:18: 3d:d1:08:d9:66:db:22:76:0f:0a:be:70:a3:73:1f:13:ed:f3: b1:5e:64:fe:e1:f7:36:3f:79:1b:4e:18:42:f2:a7:22:d5:16: d8:d0:e3:ab -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF OUI4OTExMC8GA1UEBRMoMjkwMzdCQkY5MkYyQjBGNEMzMzBBMUNERDRBNzYyNTZD RDdBNTQyMjAeFw0yNTA0MDUwNjEwMDJaFw0yNTA0MTIwNjEwMDJaMBgxFjAUBgNV BAMTDTY3ZjBjOTNhLWNlM2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDNMkR7BXptyrlTvjgSIi8lGo2pjcVdF7AmE7/DbwNWMCYO+K6GFR0GT8kEhCku VAow86radxwPFIqC/BaWH1AyJjCmCDFKivgWcLs95UxCevrWQCUJGav72O6wD4uV aVQUKzpwkZ8L16zh8mEYfbF4cQZw9b08XxFsDpEO0BwfthjJa2NflkvTeFK9SwOA fcXn5BMRcXKjuR3B5qGQCIh+O+V6pTBY7i51q91/N2k3Jr6Dz7AcSNfURk6zl2+g Z7YBgVzmp4pI2q0b+woRrgptRwLi5A3Cno9ciKxJFJUT6iorx4y1tMm5AOfhglrY +5Qhi8tNesi85Sg4bPV0BD2fAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUa57fXR7x ji4rWnB9Noe4tc4BMOUwHwYDVR0jBBgwFoAUKQN7v5LysPTDMKHN1KdiVs16VCIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU5Qjg5LzQzNjdDMjBFNkMx ODExRUZBQjZCNjkwQ0M0RjlBRTAyL0tRTjd2NUx5c1BURE1LSE4xS2RpVnMxNlZD SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS1FON3Y1THlzUFRETUtITjFLZGlWczE2VkNJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU5 Qjg5LzQzNjdDMjBFNkMxODExRUZBQjZCNjkwQ0M0RjlBRTAyL0tRTjd2NUx5c1BU RE1LSE4xS2RpVnMxNlZDSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABZX09jXYaXxe8SUUCqquo1uuaXivTgizhgsZwpNSarXuXq6TO8bCkQJ YzQY4IUHeC3xPWUdAxPzG8mR5Ne/rsX9j2AIdSDRx4BZrnorws4/S+wyi+/hDqEH 5c6fZqNLTJTrO/zrbkgz8xYPauoYkiDvpQJkzo0C5GJsVJqclxnGN4+/cKGQJa9j X4VTxqkimJUAzAl6040YSJxVNE5oXD51fAPos2LogbWYpvCdHeB3k1kD1ejMj/vZ 5dbk9Z19M54bEBlarE39VrWCr2z94n5dpqHZ/ThOGD3RCNlm2yJ2Dwq+cKNzHxPt 87FeZP7h9zY/eRtOGELypyLVFtjQ46s= -----END CERTIFICATE-----Generated at Sat Apr 5 12:50:57 2025 by rpki-client