$ rpki-client -vvf rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.mft File: kSlbu3W_quuVMbObNux1Id3jDWM.mft (raw, json) Hash identifier: d9mnxptqtTCboIcNw3iDmLh7t6HjfRqNieN0PQddLUE= Subject key identifier: 28:59:85:53:73:89:21:57:64:66:EC:64:42:B9:E6:54:9E:EB:EC:C2 Authority key identifier: 91:29:5B:BB:75:BF:AA:EB:95:31:B3:9B:36:EC:75:21:DD:E3:0D:63 Certificate issuer: /CN=A911D9B2/serialNumber=91295BBB75BFAAEB9531B39B36EC7521DDE30D63 Certificate serial: 0135 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSlbu3W_quuVMbObNux1Id3jDWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.mft Manifest number: 0123 Signing time: Sat 19 Apr 2025 04:13:51 +0000 Manifest this update: Sat 19 Apr 2025 04:13:50 +0000 Manifest next update: Sat 26 Apr 2025 04:13:50 +0000 Files and hashes: 1: kSlbu3W_quuVMbObNux1Id3jDWM.crl (hash: 4Pi7gmtY/rIxyopWIlbmGreYy26B+6YSEGs13ssftiQ=) 2: 11A28878915611EE83F61C41C4F9AE02.roa (hash: wRjDxSYF9ME/+w7UeeO+MKXvgDC5w3qNX+JKTSzXhtw=) 3: 59962840D01911EE96596B16C4F9AE02.roa (hash: jM6outMgdpJ44HUHhOOUfnOx+r280G0rdmU4B0AEX90=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.crl rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSlbu3W_quuVMbObNux1Id3jDWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 04:13:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 309 (0x135) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D9B2, serialNumber=91295BBB75BFAAEB9531B39B36EC7521DDE30D63 Validity Not Before: Apr 19 04:13:50 2025 GMT Not After : Apr 26 04:13:50 2025 GMT Subject: CN=680322fe-f4ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ee:53:36:54:b9:d3:3e:e7:b9:4c:26:c6:d8: 0e:42:63:9e:a9:f7:99:39:a1:77:7e:ff:8c:9e:a6: cc:40:82:26:07:a5:95:33:f7:8e:35:50:da:f1:e3: ad:69:4c:bb:4b:16:52:d4:e8:82:ba:69:a8:fb:45: 16:fc:0b:85:db:bd:35:59:38:cb:42:87:45:73:b8: f3:b8:47:cb:de:84:82:fe:94:39:e2:9b:5e:5f:b2: 6e:6d:78:15:85:bf:34:99:50:12:72:bc:88:74:87: 3d:ea:84:6d:79:59:57:69:a0:36:20:76:bf:94:e1: 39:2d:fa:5a:bb:1f:b1:2c:f4:1f:ea:37:6c:89:5b: 5b:fe:2c:84:37:d1:7c:ed:44:fe:b6:d9:13:bc:9a: 1c:93:e7:c3:2e:09:bd:54:7d:f0:6f:f9:c0:40:d4: 6e:07:2d:a1:ff:0e:20:4c:26:cd:33:7f:51:de:75: 77:63:a1:c8:f7:eb:d2:35:80:b2:ca:4e:3a:58:d3: 2d:6f:d5:be:eb:22:bd:96:9e:91:84:3d:68:be:df: 88:3e:b6:00:2c:87:48:03:4a:e6:5a:ff:61:4a:15: 2e:38:96:ba:5a:c4:11:4d:17:02:ac:63:42:0d:d9: e5:7d:50:1e:5d:51:35:e1:e6:57:f7:33:f9:64:66: eb:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:59:85:53:73:89:21:57:64:66:EC:64:42:B9:E6:54:9E:EB:EC:C2 X509v3 Authority Key Identifier: keyid:91:29:5B:BB:75:BF:AA:EB:95:31:B3:9B:36:EC:75:21:DD:E3:0D:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSlbu3W_quuVMbObNux1Id3jDWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:8f:71:75:ee:4c:f9:45:09:64:0a:a1:09:e8:b0:45:6c:37: 2d:73:6e:d1:93:ed:ae:97:44:48:98:5f:5b:bf:4d:cb:be:a2: 5d:2b:d9:40:fd:c8:8a:d7:9a:e5:fa:21:70:5f:cd:92:62:06: d7:35:15:b4:db:73:70:17:2b:00:75:73:c3:79:a7:e7:35:d1: 51:53:a3:96:8e:bb:97:9f:33:47:1e:cd:b2:af:5b:b8:8c:49: 09:a6:b4:94:2e:73:ca:f3:66:53:d7:c3:3a:17:5e:a4:f9:9c: 99:2a:d3:c5:10:d9:24:0f:b2:e5:09:e0:65:08:ee:cd:6a:8f: 15:08:8c:ef:7b:e8:a6:1d:9a:d3:6d:9a:97:f3:31:74:ce:f0: 49:7a:11:3f:03:27:34:04:7e:b7:e0:80:0c:4a:37:dc:9b:f4: d9:e3:fe:88:c1:d9:95:95:ff:f7:f8:41:a5:f2:db:6e:d0:6e: 10:d5:7f:d5:bf:a1:bf:09:77:72:aa:cb:ed:39:a0:e4:a7:84: 4a:c2:a2:38:79:05:10:32:f3:c4:9f:62:7b:16:96:14:7c:a5: fb:9a:d2:1c:d0:85:e4:76:ad:90:77:3d:6f:94:bc:d7:ed:98: 99:c7:27:77:b4:1a:c5:f9:52:b6:23:72:c7:8b:65:ab:17:8c: 83:2c:42:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQ5QjIxMTAvBgNVBAUTKDkxMjk1QkJCNzVCRkFBRUI5NTMxQjM5QjM2RUM3NTIx RERFMzBENjMwHhcNMjUwNDE5MDQxMzUwWhcNMjUwNDI2MDQxMzUwWjAYMRYwFAYD VQQDEw02ODAzMjJmZS1mNGVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt+5TNlS50z7nuUwmxtgOQmOeqfeZOaF3fv+MnqbMQIImB6WVM/eONVDa8eOt aUy7SxZS1OiCummo+0UW/AuF2701WTjLQodFc7jzuEfL3oSC/pQ54pteX7JubXgV hb80mVAScryIdIc96oRteVlXaaA2IHa/lOE5Lfpaux+xLPQf6jdsiVtb/iyEN9F8 7UT+ttkTvJock+fDLgm9VH3wb/nAQNRuBy2h/w4gTCbNM39R3nV3Y6HI9+vSNYCy yk46WNMtb9W+6yK9lp6RhD1ovt+IPrYALIdIA0rmWv9hShUuOJa6WsQRTRcCrGNC DdnlfVAeXVE14eZX9zP5ZGbrgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFChZhVNz iSFXZGbsZEK55lSe6+zCMB8GA1UdIwQYMBaAFJEpW7t1v6rrlTGzmzbsdSHd4w1j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDlCMi8wQTZGM0I0Mjkx NTUxMUVFQTRDMEY2NjhDNEY5QUUwMi9rU2xidTNXX3F1dVZNYk9iTnV4MUlkM2pE V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tTbGJ1M1dfcXV1Vk1iT2JOdXgxSWQzakRXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDlCMi8wQTZGM0I0MjkxNTUxMUVFQTRDMEY2NjhDNEY5QUUwMi9rU2xidTNXX3F1 dVZNYk9iTnV4MUlkM2pEV00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmj3F17kz5RQlkCqEJ6LBFbDctc27Rk+2ul0RImF9bv03LvqJdK9lA /ciK15rl+iFwX82SYgbXNRW023NwFysAdXPDeafnNdFRU6OWjruXnzNHHs2yr1u4 jEkJprSULnPK82ZT18M6F16k+ZyZKtPFENkkD7LlCeBlCO7Nao8VCIzve+imHZrT bZqX8zF0zvBJehE/Ayc0BH634IAMSjfcm/TZ4/6IwdmVlf/3+EGl8ttu0G4Q1X/V v6G/CXdyqsvtOaDkp4RKwqI4eQUQMvPEn2J7FpYUfKX7mtIc0IXkdq2Qdz1vlLzX 7ZiZxyd3tBrF+VK2I3LHi2WrF4yDLEJp -----END CERTIFICATE-----Generated at Sun Apr 20 15:00:56 2025 by rpki-client