$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft File: kBqfnorkBi5SGbdlLY6f7n7FrjM.mft (raw, json) Hash identifier: fgTZdvIhPj7wSb8/FmcCOp8A5i2f4O/NBsAhsC81lBQ= Subject key identifier: 16:52:DB:ED:AD:15:CC:1C:1F:1D:A3:CC:85:F5:E9:E9:E2:16:83:85 Authority key identifier: 90:1A:9F:9E:8A:E4:06:2E:52:19:B7:65:2D:8E:9F:EE:7E:C5:AE:33 Certificate issuer: /CN=A91F2CE7/serialNumber=901A9F9E8AE4062E5219B7652D8E9FEE7EC5AE33 Certificate serial: 79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kBqfnorkBi5SGbdlLY6f7n7FrjM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft Manifest number: 77 Signing time: Sat 29 Mar 2025 06:03:06 +0000 Manifest this update: Sat 29 Mar 2025 06:03:06 +0000 Manifest next update: Sat 05 Apr 2025 06:03:06 +0000 Files and hashes: 1: kBqfnorkBi5SGbdlLY6f7n7FrjM.crl (hash: V/a9MfUT+37D7vtThRBzw6Ee4kjigiW0U2jbD1iaa/A=) 2: B377200E5ADD11EF9A462440C4F9AE02.roa (hash: ku0nQgImAfjqlfmOWSwIKN/zsrk6kYnMycZSjI2lh3o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.crl rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kBqfnorkBi5SGbdlLY6f7n7FrjM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 121 (0x79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2CE7 Validity Not Before: Mar 29 06:03:06 2025 GMT Not After : Apr 5 06:03:06 2025 GMT Subject: CN=67e78d1a-cf78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:e8:16:96:af:97:b1:a0:f2:f2:1a:27:ce:2c: 5b:1f:b4:71:a3:f3:68:35:7f:15:e2:89:a4:46:69: 1e:69:fe:48:9b:d3:8c:57:cf:9b:34:88:27:1b:ba: 1d:cf:67:78:2a:33:be:6e:46:31:6a:e8:21:7e:cd: 4f:bb:36:a0:91:89:81:aa:79:8a:22:6e:be:fa:8f: b4:28:3c:07:9a:b2:57:d2:93:e4:23:c6:c1:94:86: 23:77:28:bb:1d:ab:d8:1e:00:e0:ff:de:6c:45:ac: 27:75:2f:bb:33:51:5e:ed:7b:47:3a:69:0f:8d:99: af:d5:ca:e1:75:d4:d6:c2:d5:91:74:91:7d:2f:8c: 1b:3f:a6:be:52:90:9c:21:40:6c:7a:34:f7:11:e4: 22:20:bb:1f:e4:b8:48:d9:aa:76:ff:32:dd:2e:87: 95:02:c1:a2:51:5b:32:c3:57:92:41:7f:fb:be:d8: b5:35:91:d4:78:8a:50:30:c9:f3:36:3c:59:de:30: 85:c9:5f:58:32:2e:10:ed:01:7e:79:b1:ea:de:24: b7:92:53:8c:96:ea:09:8f:3a:7f:52:56:81:39:14: 8d:a7:03:38:1d:32:af:be:75:4e:f2:ee:72:a2:f6: a2:15:da:02:59:97:ad:9d:ee:f1:fe:e1:1e:e6:69: 43:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:52:DB:ED:AD:15:CC:1C:1F:1D:A3:CC:85:F5:E9:E9:E2:16:83:85 X509v3 Authority Key Identifier: keyid:90:1A:9F:9E:8A:E4:06:2E:52:19:B7:65:2D:8E:9F:EE:7E:C5:AE:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kBqfnorkBi5SGbdlLY6f7n7FrjM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:c8:1f:b3:c0:07:aa:e4:08:a8:8d:b4:c0:99:37:04:41:10: 03:28:b8:d7:d4:6b:4f:54:ed:9b:12:61:50:9d:1e:9e:d8:a7: e4:0b:c5:cd:b1:6c:57:16:ad:40:3d:0b:5f:6d:d2:16:d8:4f: 03:c4:0e:52:5f:70:07:83:e8:17:af:4b:46:2a:d0:9a:35:80: 22:3f:3b:38:93:30:05:e5:03:c3:3c:3a:16:a2:b8:a5:85:21: 59:b3:cb:7f:d2:cb:27:5f:c9:77:a0:4a:74:b3:8d:9e:06:83: ed:f9:fb:95:44:4d:22:27:20:93:c1:83:ae:de:33:1d:90:fa: b4:98:85:50:26:ae:0d:9f:ad:8a:1b:54:55:3d:f6:02:fd:bb: 47:54:17:6d:ed:2f:35:32:64:d6:75:26:9b:9a:be:da:cb:fa: 78:0d:78:f2:4b:62:ed:c2:f4:e9:a4:5c:53:8b:1f:f5:5d:d1: 67:36:4c:6a:c8:cc:3f:22:a4:4c:2e:1d:6d:82:c8:b0:3e:5d: 19:fb:4f:6e:45:47:5b:7d:ef:59:7c:b4:f4:c6:9e:47:2e:59: b7:3c:53:2a:a1:6b:17:d3:be:2d:d4:1b:5a:4c:d1:60:b4:ef: 20:87:9c:d8:28:fe:1e:10:e0:d6:48:70:e6:af:fb:f2:77:9f: 9b:5e:41:7f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MkNFNzExMC8GA1UEBRMoOTAxQTlGOUU4QUU0MDYyRTUyMTlCNzY1MkQ4RTlGRUU3 RUM1QUUzMzAeFw0yNTAzMjkwNjAzMDZaFw0yNTA0MDUwNjAzMDZaMBgxFjAUBgNV BAMTDTY3ZTc4ZDFhLWNmNzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCz6BaWr5exoPLyGifOLFsftHGj82g1fxXiiaRGaR5p/kib04xXz5s0iCcbuh3P Z3gqM75uRjFq6CF+zU+7NqCRiYGqeYoibr76j7QoPAeaslfSk+QjxsGUhiN3KLsd q9geAOD/3mxFrCd1L7szUV7te0c6aQ+Nma/VyuF11NbC1ZF0kX0vjBs/pr5SkJwh QGx6NPcR5CIgux/kuEjZqnb/Mt0uh5UCwaJRWzLDV5JBf/u+2LU1kdR4ilAwyfM2 PFneMIXJX1gyLhDtAX55sereJLeSU4yW6gmPOn9SVoE5FI2nAzgdMq++dU7y7nKi 9qIV2gJZl62d7vH+4R7maUP9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUFlLb7a0V zBwfHaPMhfXp6eIWg4UwHwYDVR0jBBgwFoAUkBqfnorkBi5SGbdlLY6f7n7FrjMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYyQ0U3LzcyRjc1Qjk4NUFE RDExRUY4MTJDOTIzRkM0RjlBRTAyL2tCcWZub3JrQmk1U0diZGxMWTZmN243RnJq TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIva0JxZm5vcmtCaTVTR2JkbExZNmY3bjdGcmpNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYy Q0U3LzcyRjc1Qjk4NUFERDExRUY4MTJDOTIzRkM0RjlBRTAyL2tCcWZub3JrQmk1 U0diZGxMWTZmN243RnJqTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGPIH7PAB6rkCKiNtMCZNwRBEAMouNfUa09U7ZsSYVCdHp7Yp+QLxc2x bFcWrUA9C19t0hbYTwPEDlJfcAeD6BevS0Yq0Jo1gCI/OziTMAXlA8M8OhaiuKWF IVmzy3/SyydfyXegSnSzjZ4Gg+35+5VETSInIJPBg67eMx2Q+rSYhVAmrg2frYob VFU99gL9u0dUF23tLzUyZNZ1JpuavtrL+ngNePJLYu3C9OmkXFOLH/Vd0Wc2TGrI zD8ipEwuHW2CyLA+XRn7T25FR1t971l8tPTGnkcuWbc8UyqhaxfTvi3UG1pM0WC0 7yCHnNgo/h4Q4NZIcOav+/J3n5teQX8= -----END CERTIFICATE-----Generated at Fri Apr 4 22:09:13 2025 by rpki-client