$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED469/97DE7A7E9CC211EEB302E061C4F9AE02/KLpuaH8fvYM7mhOq2MFCrY-vvKg.mft File: KLpuaH8fvYM7mhOq2MFCrY-vvKg.mft (raw, json) Hash identifier: yT4JU/X55pOy6reN/+8hymGWqS/l6pXTRBbq09EgSD0= Subject key identifier: 91:BE:BC:DE:53:E8:B0:7A:84:06:E0:DD:E2:59:BA:EB:A9:45:4F:05 Authority key identifier: 28:BA:6E:68:7F:1F:BD:83:3B:9A:13:AA:D8:C1:42:AD:8F:AF:BC:A8 Certificate issuer: /CN=A91ED469/serialNumber=28BA6E687F1FBD833B9A13AAD8C142AD8FAFBCA8 Certificate serial: FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KLpuaH8fvYM7mhOq2MFCrY-vvKg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED469/97DE7A7E9CC211EEB302E061C4F9AE02/KLpuaH8fvYM7mhOq2MFCrY-vvKg.mft Manifest number: FB Signing time: Fri 11 Apr 2025 04:28:06 +0000 Manifest this update: Fri 11 Apr 2025 04:28:05 +0000 Manifest next update: Fri 18 Apr 2025 04:28:05 +0000 Files and hashes: 1: KLpuaH8fvYM7mhOq2MFCrY-vvKg.crl (hash: CTBPsuH7psdIf+cx+/X/PQGazX9gZXgM7gAOATYtTFA=) 2: F259393A9CC211EEA3A14563C4F9AE02.roa (hash: H8jOBdWZy3BflOdKi2IUHX/jDGy3Qp76HCrr86p/kow=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED469/97DE7A7E9CC211EEB302E061C4F9AE02/KLpuaH8fvYM7mhOq2MFCrY-vvKg.crl rsync://rpki.apnic.net/member_repository/A91ED469/97DE7A7E9CC211EEB302E061C4F9AE02/KLpuaH8fvYM7mhOq2MFCrY-vvKg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KLpuaH8fvYM7mhOq2MFCrY-vvKg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 04:28:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 255 (0xff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED469, serialNumber=28BA6E687F1FBD833B9A13AAD8C142AD8FAFBCA8 Validity Not Before: Apr 11 04:28:05 2025 GMT Not After : Apr 18 04:28:05 2025 GMT Subject: CN=67f89a55-49c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:49:47:5d:76:47:45:54:14:81:f8:50:ba:f2: 01:76:59:6d:7e:30:e5:f9:d7:2c:cc:d2:3a:85:ad: 57:01:dd:e3:38:67:a2:d4:b0:d2:67:17:9e:64:79: b3:11:c4:ce:34:bc:dd:1e:29:01:20:01:98:65:5a: bf:b9:10:ba:db:f3:5d:a0:70:bb:da:6e:65:78:0b: bc:8a:32:79:43:a3:3d:fd:ce:c2:e4:a4:4f:81:26: 04:0a:9f:94:91:32:63:15:4d:d6:c7:f1:3b:7b:6f: 84:c5:15:30:a7:7f:31:30:27:b2:92:e8:35:d0:cc: 34:6c:98:cc:26:ff:38:b1:d5:fb:a7:24:c8:12:b1: 5c:63:50:6d:1b:bf:3a:b8:c0:61:e2:40:e4:1e:24: b9:08:01:c3:1f:cb:34:2c:70:31:70:20:e5:b8:13: d7:f7:d2:22:fe:30:0e:f9:dd:7f:63:aa:4a:4e:21: 1d:6b:f3:97:98:77:af:0e:71:19:81:7f:f3:14:4e: 0f:65:0b:27:ca:fd:dd:44:98:70:1e:80:d8:a5:d6: 66:32:32:ab:4e:47:46:90:ea:6d:9c:dc:49:1c:53: 86:85:29:90:d3:3b:50:3c:1e:d4:25:bb:2c:11:b6: 2c:0b:d9:64:e6:1c:e4:b6:6e:c3:20:04:c4:8c:11: eb:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:BE:BC:DE:53:E8:B0:7A:84:06:E0:DD:E2:59:BA:EB:A9:45:4F:05 X509v3 Authority Key Identifier: keyid:28:BA:6E:68:7F:1F:BD:83:3B:9A:13:AA:D8:C1:42:AD:8F:AF:BC:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED469/97DE7A7E9CC211EEB302E061C4F9AE02/KLpuaH8fvYM7mhOq2MFCrY-vvKg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KLpuaH8fvYM7mhOq2MFCrY-vvKg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED469/97DE7A7E9CC211EEB302E061C4F9AE02/KLpuaH8fvYM7mhOq2MFCrY-vvKg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:c8:25:ee:ee:ca:a6:d8:0c:65:94:a0:2b:b7:cf:61:50:01: 3d:c1:51:60:3b:12:f5:2a:6e:0a:9c:0c:19:b9:33:94:2a:7c: 0e:42:38:a0:21:56:c5:c2:7c:ec:72:f0:1f:a9:58:10:27:f4: 25:94:83:5d:0e:91:fc:5c:df:49:a0:f4:a0:8a:0d:2d:5f:1f: ce:ee:8e:fa:f2:0b:8d:22:e2:3b:57:b7:e5:f8:9f:de:a3:d3: 87:ba:77:e5:a0:df:ce:45:25:59:e3:1e:ea:42:97:17:4e:b7: 1f:3d:b4:1f:74:da:fa:5f:04:d2:82:57:6d:36:1f:cb:dd:ca: 0d:ed:67:1a:c4:20:81:9c:a9:96:54:d1:cd:34:38:09:83:28: 53:96:ea:7e:ec:47:6e:b3:ad:e3:aa:8f:55:6a:a0:8a:0e:17: ec:bf:af:95:27:04:07:1c:bf:4e:33:9a:28:7a:13:b5:31:42: b6:ff:6b:7b:5b:64:70:db:61:f1:e0:90:f5:12:01:cc:2b:48: 14:15:93:24:6a:17:17:d4:fc:40:6d:1c:9b:07:9c:50:32:b3: 0d:85:d4:89:2b:e9:81:8a:5e:f7:69:88:2f:aa:31:5e:37:7d: 4d:d8:b1:37:d2:91:24:af:c0:ca:27:cc:87:64:43:d4:ec:77: c9:25:d4:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAP8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ0NjkxMTAvBgNVBAUTKDI4QkE2RTY4N0YxRkJEODMzQjlBMTNBQUQ4QzE0MkFE OEZBRkJDQTgwHhcNMjUwNDExMDQyODA1WhcNMjUwNDE4MDQyODA1WjAYMRYwFAYD VQQDEw02N2Y4OWE1NS00OWM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy0lHXXZHRVQUgfhQuvIBdlltfjDl+dcszNI6ha1XAd3jOGei1LDSZxeeZHmz EcTONLzdHikBIAGYZVq/uRC62/NdoHC72m5leAu8ijJ5Q6M9/c7C5KRPgSYECp+U kTJjFU3Wx/E7e2+ExRUwp38xMCeykug10Mw0bJjMJv84sdX7pyTIErFcY1BtG786 uMBh4kDkHiS5CAHDH8s0LHAxcCDluBPX99Ii/jAO+d1/Y6pKTiEda/OXmHevDnEZ gX/zFE4PZQsnyv3dRJhwHoDYpdZmMjKrTkdGkOptnNxJHFOGhSmQ0ztQPB7UJbss EbYsC9lk5hzktm7DIATEjBHr5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJG+vN5T 6LB6hAbg3eJZuuupRU8FMB8GA1UdIwQYMBaAFCi6bmh/H72DO5oTqtjBQq2Pr7yo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDQ2OS85N0RFN0E3RTlD QzIxMUVFQjMwMkUwNjFDNEY5QUUwMi9LTHB1YUg4ZnZZTTdtaE9xMk1GQ3JZLXZ2 S2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tMcHVhSDhmdllNN21oT3EyTUZDclktdnZLZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDQ2OS85N0RFN0E3RTlDQzIxMUVFQjMwMkUwNjFDNEY5QUUwMi9LTHB1YUg4ZnZZ TTdtaE9xMk1GQ3JZLXZ2S2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjyCXu7sqm2AxllKArt89hUAE9wVFgOxL1Km4KnAwZuTOUKnwOQjig IVbFwnzscvAfqVgQJ/QllINdDpH8XN9JoPSgig0tXx/O7o768guNIuI7V7fl+J/e o9OHunfloN/ORSVZ4x7qQpcXTrcfPbQfdNr6XwTSgldtNh/L3coN7WcaxCCBnKmW VNHNNDgJgyhTlup+7Edus63jqo9VaqCKDhfsv6+VJwQHHL9OM5ooehO1MUK2/2t7 W2Rw22Hx4JD1EgHMK0gUFZMkahcX1PxAbRybB5xQMrMNhdSJK+mBil73aYgvqjFe N31N2LE30pEkr8DKJ8yHZEPU7HfJJdQh -----END CERTIFICATE-----Generated at Sun Apr 13 02:12:12 2025 by rpki-client