$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD6E4/ABE7E0561E0E11EE9170F429C4F9AE02/keKklwM5j7IArA6fpHZpFddL-eU.mft File: keKklwM5j7IArA6fpHZpFddL-eU.mft (raw, json) Hash identifier: TPfz0IHTco76MAmmJsHivs0ldWLKU0W2KMe503TAaq0= Subject key identifier: 51:42:42:94:BF:DF:69:84:6C:E6:96:59:6D:89:89:F7:DF:71:51:6D Authority key identifier: 91:E2:A4:97:03:39:8F:B2:00:AC:0E:9F:A4:76:69:15:D7:4B:F9:E5 Certificate issuer: /CN=A91FD6E4/serialNumber=91E2A49703398FB200AC0E9FA4766915D74BF9E5 Certificate serial: 0150 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keKklwM5j7IArA6fpHZpFddL-eU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD6E4/ABE7E0561E0E11EE9170F429C4F9AE02/keKklwM5j7IArA6fpHZpFddL-eU.mft Manifest number: 014D Signing time: Sun 13 Apr 2025 03:06:47 +0000 Manifest this update: Sun 13 Apr 2025 03:06:47 +0000 Manifest next update: Sun 20 Apr 2025 03:06:47 +0000 Files and hashes: 1: keKklwM5j7IArA6fpHZpFddL-eU.crl (hash: o+vce1FMWSe2AljeLbwZCJJiSh5q9CgAwh40a2pzLfk=) 2: 345AD30E1E1311EE846A3261C4F9AE02.roa (hash: zTYXuX3GDZ63v54RvQHdui7ccszwzNrfqOTF6/FnToE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD6E4/ABE7E0561E0E11EE9170F429C4F9AE02/keKklwM5j7IArA6fpHZpFddL-eU.crl rsync://rpki.apnic.net/member_repository/A91FD6E4/ABE7E0561E0E11EE9170F429C4F9AE02/keKklwM5j7IArA6fpHZpFddL-eU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keKklwM5j7IArA6fpHZpFddL-eU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Apr 2025 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 336 (0x150) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD6E4, serialNumber=91E2A49703398FB200AC0E9FA4766915D74BF9E5 Validity Not Before: Apr 13 03:06:47 2025 GMT Not After : Apr 20 03:06:47 2025 GMT Subject: CN=67fb2a47-8652 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:41:64:b9:fc:57:be:2d:30:d4:db:36:f0:7f: 32:3f:28:d0:3c:54:d7:3d:84:10:66:2a:89:39:f8: 69:81:43:4d:89:76:29:d2:00:ff:3e:6f:38:98:9e: 2e:4f:84:a1:bf:ff:b8:f2:ee:31:6e:59:55:69:6a: 00:8a:d1:ce:d6:76:f3:f6:4b:62:4d:4f:d2:0b:c6: b4:bb:d0:28:d0:cf:77:39:89:e0:fb:c4:07:95:90: e1:6e:6d:8e:f3:bf:a3:b5:59:01:6f:5e:ef:f5:9f: 4d:2e:5f:be:64:2e:63:36:c1:21:1f:e3:81:45:d1: 82:35:52:2d:3d:ca:4c:09:a2:74:de:49:df:5c:95: de:f1:7c:14:d1:b9:f9:b5:29:f7:b1:3c:b6:2e:96: a8:f9:6a:2c:7f:fc:eb:55:52:8e:51:b9:d9:cf:68: b1:01:0e:96:d8:d7:68:10:18:fe:fb:fb:14:74:0e: 26:66:97:7c:00:9c:76:af:26:7c:89:57:bf:4f:aa: b7:2c:91:c5:ab:6a:7a:be:98:f0:b3:e9:65:03:61: 68:db:01:8c:2f:17:dd:02:e4:33:0a:e7:24:12:aa: 39:b7:3d:ac:df:94:41:ef:50:7a:f7:ab:8e:16:b1: 38:83:b4:c2:6e:0d:cc:0a:8f:43:2a:6e:d7:5a:0f: 97:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:42:42:94:BF:DF:69:84:6C:E6:96:59:6D:89:89:F7:DF:71:51:6D X509v3 Authority Key Identifier: keyid:91:E2:A4:97:03:39:8F:B2:00:AC:0E:9F:A4:76:69:15:D7:4B:F9:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD6E4/ABE7E0561E0E11EE9170F429C4F9AE02/keKklwM5j7IArA6fpHZpFddL-eU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keKklwM5j7IArA6fpHZpFddL-eU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD6E4/ABE7E0561E0E11EE9170F429C4F9AE02/keKklwM5j7IArA6fpHZpFddL-eU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:67:ef:5c:74:c5:56:f0:c6:26:42:43:cb:64:86:ae:18:12: 87:f0:b8:52:98:14:c0:b2:2c:37:1d:38:c7:10:bd:12:0f:6e: ae:bb:ba:22:52:05:57:91:2e:6d:26:4b:fd:4c:6b:3e:5e:4e: 8f:69:e2:da:55:f7:77:88:50:d3:be:89:1c:0f:7f:19:14:2f: 96:2f:c7:76:88:8c:66:b1:cc:d7:be:6d:05:1a:0b:d2:f8:a1: 96:02:32:8e:1b:cc:2c:64:5d:b4:f6:d4:13:eb:7c:d7:26:b2: 2c:24:17:67:91:f9:ae:e0:f1:bf:dd:79:d5:cb:86:35:4c:0e: ed:9d:13:3a:43:7c:15:7f:e1:1f:0f:d7:34:31:be:46:83:66: f1:eb:5e:dc:8c:bf:74:bb:1e:92:89:00:af:2d:93:60:e3:8d: da:cd:13:e2:38:80:91:e6:47:21:08:cb:54:78:f1:4e:7d:dd: 09:5d:28:37:51:d6:ba:e0:69:42:b0:af:04:de:8d:7c:b1:e3: cf:2d:b0:76:88:b4:ee:b0:f5:86:6f:1b:1a:2d:eb:47:dd:00: e7:12:b0:55:69:0f:ba:e4:62:56:35:1b:a5:de:06:af:12:ba: 66:36:5c:59:a9:01:e2:e4:23:92:0a:fd:81:d6:1c:3e:d3:61: a5:78:fd:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQ2RTQxMTAvBgNVBAUTKDkxRTJBNDk3MDMzOThGQjIwMEFDMEU5RkE0NzY2OTE1 RDc0QkY5RTUwHhcNMjUwNDEzMDMwNjQ3WhcNMjUwNDIwMDMwNjQ3WjAYMRYwFAYD VQQDEw02N2ZiMmE0Ny04NjUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr0FkufxXvi0w1Ns28H8yPyjQPFTXPYQQZiqJOfhpgUNNiXYp0gD/Pm84mJ4u T4Shv/+48u4xbllVaWoAitHO1nbz9ktiTU/SC8a0u9Ao0M93OYng+8QHlZDhbm2O 87+jtVkBb17v9Z9NLl++ZC5jNsEhH+OBRdGCNVItPcpMCaJ03knfXJXe8XwU0bn5 tSn3sTy2Lpao+Wosf/zrVVKOUbnZz2ixAQ6W2NdoEBj++/sUdA4mZpd8AJx2ryZ8 iVe/T6q3LJHFq2p6vpjws+llA2Fo2wGMLxfdAuQzCuckEqo5tz2s35RB71B696uO FrE4g7TCbg3MCo9DKm7XWg+XrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFFCQpS/ 32mEbOaWWW2JifffcVFtMB8GA1UdIwQYMBaAFJHipJcDOY+yAKwOn6R2aRXXS/nl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDZFNC9BQkU3RTA1NjFF MEUxMUVFOTE3MEY0MjlDNEY5QUUwMi9rZUtrbHdNNWo3SUFyQTZmcEhacEZkZEwt ZVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tlS2tsd001ajdJQXJBNmZwSFpwRmRkTC1lVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDZFNC9BQkU3RTA1NjFFMEUxMUVFOTE3MEY0MjlDNEY5QUUwMi9rZUtrbHdNNWo3 SUFyQTZmcEhacEZkZEwtZVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpZ+9cdMVW8MYmQkPLZIauGBKH8LhSmBTAsiw3HTjHEL0SD26uu7oi UgVXkS5tJkv9TGs+Xk6PaeLaVfd3iFDTvokcD38ZFC+WL8d2iIxmsczXvm0FGgvS +KGWAjKOG8wsZF209tQT63zXJrIsJBdnkfmu4PG/3XnVy4Y1TA7tnRM6Q3wVf+Ef D9c0Mb5Gg2bx617cjL90ux6SiQCvLZNg443azRPiOICR5kchCMtUePFOfd0JXSg3 Uda64GlCsK8E3o18sePPLbB2iLTusPWGbxsaLetH3QDnErBVaQ+65GJWNRul3gav ErpmNlxZqQHi5COSCv2B1hw+02GleP2H -----END CERTIFICATE-----Generated at Sun Apr 13 05:31:38 2025 by rpki-client