$ rpki-client -vvf rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.mft File: kSlbu3W_quuVMbObNux1Id3jDWM.mft (raw, json) Hash identifier: x3Uy6uBmTOdN0n0MWRB93VgeUspl6wFS8dZ5JNuhK3Y= Subject key identifier: 7B:3F:8E:73:6F:B4:37:F7:24:1C:03:E1:19:7F:E0:2A:99:E7:37:0F Authority key identifier: 91:29:5B:BB:75:BF:AA:EB:95:31:B3:9B:36:EC:75:21:DD:E3:0D:63 Certificate issuer: /CN=A911D9B2/serialNumber=91295BBB75BFAAEB9531B39B36EC7521DDE30D63 Certificate serial: 011C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSlbu3W_quuVMbObNux1Id3jDWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.mft Manifest number: 010C Signing time: Thu 13 Mar 2025 03:32:40 +0000 Manifest this update: Thu 13 Mar 2025 03:32:40 +0000 Manifest next update: Thu 20 Mar 2025 03:32:40 +0000 Files and hashes: 1: kSlbu3W_quuVMbObNux1Id3jDWM.crl (hash: o9lyjiSXz0MnjKVlKicjW0W6+lUbRvxih1CKP7002no=) 2: 11A28878915611EE83F61C41C4F9AE02.roa (hash: PDLab9I2VoJXocP3omeTp4+5FxlvzesQ2sG877OCrkk=) 3: 59962840D01911EE96596B16C4F9AE02.roa (hash: jM6outMgdpJ44HUHhOOUfnOx+r280G0rdmU4B0AEX90=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.crl rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSlbu3W_quuVMbObNux1Id3jDWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 03:32:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 284 (0x11c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D9B2 Validity Not Before: Mar 13 03:32:40 2025 GMT Not After : Mar 20 03:32:40 2025 GMT Subject: CN=67d251d8-1321 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:0c:63:67:dc:ed:f2:2e:2f:7a:25:d7:32:83: cd:33:9d:b0:7e:3c:28:d7:8d:a2:17:17:03:d4:a3: 8e:1c:68:d3:55:08:71:b8:8f:5d:5f:a6:9b:f8:78: ab:d0:c9:8a:04:e2:a0:75:af:19:1e:7f:3e:b4:7d: 7b:27:4c:18:ab:1b:c3:48:90:46:c1:68:c5:a5:f4: 05:c5:50:cc:ed:94:31:16:67:03:0b:6e:a3:aa:d7: a0:7c:7e:96:3d:81:05:fa:7a:aa:19:35:d2:c8:52: 75:9c:e7:de:19:fa:97:30:f0:2c:99:2b:91:4a:90: 17:71:a7:16:7e:ac:62:33:b0:66:bc:3f:23:7d:1e: 04:5b:68:f5:45:59:61:ac:b3:b6:1c:de:0b:24:68: a7:93:c5:bd:45:6e:03:18:21:53:1c:99:c0:cf:75: 8f:62:43:f3:07:df:62:98:24:6e:de:b0:83:88:39: 79:dc:5a:85:c8:c3:42:d2:e7:2a:50:9f:f2:13:2e: 90:92:a8:d4:58:43:4e:03:5b:94:6b:b7:90:e3:15: 3f:88:30:ca:e0:a7:5b:32:22:65:9a:23:39:d1:9a: 13:d5:17:66:79:f8:bd:5d:f3:1b:b9:97:29:3d:dd: 8a:ca:08:bd:14:da:ca:ac:9c:3a:16:c3:a6:84:99: 26:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:3F:8E:73:6F:B4:37:F7:24:1C:03:E1:19:7F:E0:2A:99:E7:37:0F X509v3 Authority Key Identifier: keyid:91:29:5B:BB:75:BF:AA:EB:95:31:B3:9B:36:EC:75:21:DD:E3:0D:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSlbu3W_quuVMbObNux1Id3jDWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:27:0c:79:43:ba:5b:fb:8d:27:46:40:0b:d5:e1:f4:31:74: 12:fa:9a:d7:e6:65:48:0f:af:f1:61:ba:4d:4c:87:0f:fb:bd: b0:0c:e9:58:3d:af:ad:32:20:ac:f0:6a:c3:d3:d5:22:e4:5c: 67:7a:59:3f:d5:42:f5:9f:1f:ba:e3:72:7a:31:9c:52:31:b9: 05:b6:41:36:b7:3a:ac:94:82:01:21:5a:13:cb:7a:bf:bd:94: 8a:e7:65:9c:12:af:1e:dc:a5:5b:da:bd:9a:89:49:4b:59:8d: 92:2e:71:87:79:13:e5:ec:54:40:b1:af:05:54:b6:e6:0a:7f: b9:eb:25:fe:89:c0:99:dd:c1:5f:b5:af:98:b6:cf:6a:a2:95: 4d:3c:7b:60:13:f0:96:14:3b:fa:4c:4a:92:3c:83:0b:35:3f: 3f:b7:93:ce:0a:0e:7a:08:2d:61:2b:da:9f:53:df:20:e4:18: 38:e7:8f:8b:0d:87:81:8e:c1:87:80:4f:5f:83:11:62:fd:37: 73:d7:75:37:fc:09:33:b1:b7:f1:82:53:a7:09:d4:13:dc:5e: 48:b0:cf:9f:80:63:51:cc:9f:23:a4:10:88:a8:a1:c6:25:e2: cc:45:98:94:a7:04:04:f7:28:6c:af:1c:f5:b7:78:ec:3a:e8: ec:7d:f8:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQ5QjIxMTAvBgNVBAUTKDkxMjk1QkJCNzVCRkFBRUI5NTMxQjM5QjM2RUM3NTIx RERFMzBENjMwHhcNMjUwMzEzMDMzMjQwWhcNMjUwMzIwMDMzMjQwWjAYMRYwFAYD VQQDEw02N2QyNTFkOC0xMzIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzAxjZ9zt8i4veiXXMoPNM52wfjwo142iFxcD1KOOHGjTVQhxuI9dX6ab+Hir 0MmKBOKgda8ZHn8+tH17J0wYqxvDSJBGwWjFpfQFxVDM7ZQxFmcDC26jqtegfH6W PYEF+nqqGTXSyFJ1nOfeGfqXMPAsmSuRSpAXcacWfqxiM7BmvD8jfR4EW2j1RVlh rLO2HN4LJGink8W9RW4DGCFTHJnAz3WPYkPzB99imCRu3rCDiDl53FqFyMNC0ucq UJ/yEy6QkqjUWENOA1uUa7eQ4xU/iDDK4KdbMiJlmiM50ZoT1Rdmefi9XfMbuZcp Pd2Kygi9FNrKrJw6FsOmhJkmDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHs/jnNv tDf3JBwD4Rl/4CqZ5zcPMB8GA1UdIwQYMBaAFJEpW7t1v6rrlTGzmzbsdSHd4w1j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDlCMi8wQTZGM0I0Mjkx NTUxMUVFQTRDMEY2NjhDNEY5QUUwMi9rU2xidTNXX3F1dVZNYk9iTnV4MUlkM2pE V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tTbGJ1M1dfcXV1Vk1iT2JOdXgxSWQzakRXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDlCMi8wQTZGM0I0MjkxNTUxMUVFQTRDMEY2NjhDNEY5QUUwMi9rU2xidTNXX3F1 dVZNYk9iTnV4MUlkM2pEV00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPJwx5Q7pb+40nRkAL1eH0MXQS+prX5mVID6/xYbpNTIcP+72wDOlY Pa+tMiCs8GrD09Ui5Fxnelk/1UL1nx+643J6MZxSMbkFtkE2tzqslIIBIVoTy3q/ vZSK52WcEq8e3KVb2r2aiUlLWY2SLnGHeRPl7FRAsa8FVLbmCn+56yX+icCZ3cFf ta+Yts9qopVNPHtgE/CWFDv6TEqSPIMLNT8/t5POCg56CC1hK9qfU98g5Bg454+L DYeBjsGHgE9fgxFi/Tdz13U3/AkzsbfxglOnCdQT3F5IsM+fgGNRzJ8jpBCIqKHG JeLMRZiUpwQE9yhsrxz1t3jsOujsffis -----END CERTIFICATE-----Generated at Thu Mar 13 21:28:58 2025 by rpki-client