$ rpki-client -vvf rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft File: KaAJAT90Md42nADKtUcWypNFJtM.mft (raw, json) Hash identifier: PIj6nocMB1hD2B/ElJPPCf6t61xmISTfRa15JeVltmw= Subject key identifier: BF:C7:4C:50:EA:5F:9C:C5:D6:35:B7:0B:42:0C:50:7A:CA:C7:CA:65 Authority key identifier: 29:A0:09:01:3F:74:31:DE:36:9C:00:CA:B5:47:16:CA:93:45:26:D3 Certificate issuer: /CN=A91651CF/serialNumber=29A009013F7431DE369C00CAB54716CA934526D3 Certificate serial: 7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KaAJAT90Md42nADKtUcWypNFJtM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft Manifest number: 79 Signing time: Sat 31 May 2025 06:18:23 +0000 Manifest this update: Sat 31 May 2025 06:18:23 +0000 Manifest next update: Sat 07 Jun 2025 06:18:23 +0000 Files and hashes: 1: KaAJAT90Md42nADKtUcWypNFJtM.crl (hash: nVJBu1LqWfFmOJN4MHD3tEocOHtauQxFXnmacMvwGWw=) 2: C731AFD03B9A11F0B7924C1FC4F9AE02.roa (hash: 9OijFxAeR1Xs5oJ+COotVbhAxkaxtoAB6g/k9YHqdAY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.crl rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KaAJAT90Md42nADKtUcWypNFJtM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 06:18:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 122 (0x7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91651CF, serialNumber=29A009013F7431DE369C00CAB54716CA934526D3 Validity Not Before: May 31 06:18:23 2025 GMT Not After : Jun 7 06:18:23 2025 GMT Subject: CN=683a9f2f-a864 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:5c:2c:01:c1:fb:cc:df:e3:8f:77:f0:fb:5d: e5:d7:3f:50:fc:7f:23:44:3b:b3:82:a1:c2:a8:08: 75:b7:53:fa:6c:2b:d2:9a:f7:d8:82:c5:58:ab:af: 83:9d:72:49:8f:41:80:f7:38:7c:af:41:f8:83:c9: ff:dc:6c:0d:64:b8:46:65:79:f2:1a:a2:8a:da:f2: 1d:67:1f:43:36:d0:62:18:fe:36:ed:1e:b8:17:49: 17:3e:a3:a2:60:ad:2b:e8:e0:18:d0:8c:bb:3a:ce: f0:5d:22:48:26:02:95:8b:62:e8:d1:a6:94:96:1b: 88:1b:75:18:73:54:5d:83:79:b9:34:8c:9c:ec:35: 73:e3:26:b4:81:db:da:c0:8c:c5:e2:16:84:1a:73: 76:ea:2d:e9:48:a3:59:84:5f:c2:e1:bd:3f:09:b9: e6:f3:2f:4b:fa:1e:c1:36:7d:15:1d:2b:78:e7:89: ad:63:7c:20:0e:2e:59:2d:54:4d:46:36:fb:7f:34: ce:96:44:ab:a9:95:f7:43:66:cf:eb:ee:09:1f:21: b5:cb:28:eb:c3:7e:31:23:84:29:06:b5:4e:07:12: 8a:d2:c2:11:bd:09:63:0d:ee:f6:b7:2d:d4:cc:91: a9:db:f8:72:aa:b5:1c:41:6d:35:d7:a1:b5:d6:6f: e5:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:C7:4C:50:EA:5F:9C:C5:D6:35:B7:0B:42:0C:50:7A:CA:C7:CA:65 X509v3 Authority Key Identifier: keyid:29:A0:09:01:3F:74:31:DE:36:9C:00:CA:B5:47:16:CA:93:45:26:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KaAJAT90Md42nADKtUcWypNFJtM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:c8:08:00:8b:15:bc:ab:93:54:1f:d3:2d:21:d2:a0:b9:bd: 96:f1:65:f3:f6:db:74:84:94:49:82:d7:76:35:79:39:61:5b: 8c:41:2d:06:a5:43:11:7b:5b:b7:2d:80:ed:50:a7:8b:f5:7b: 72:8b:fc:d2:20:91:10:d0:66:8a:59:1d:2e:3b:55:71:ac:d4: 74:5b:34:12:33:48:b5:ba:7b:c3:db:b3:d6:fa:11:f7:d2:c5: aa:3c:c0:08:6a:1a:a9:00:68:ef:d0:53:ee:18:f0:f5:7a:dd: 37:c8:b7:ca:db:41:e1:5d:fe:74:89:c5:90:90:08:89:e3:cb: a5:d1:0c:97:b8:61:41:2e:63:85:9b:03:a6:af:34:0e:69:45: 21:18:38:c8:e1:3b:9b:1d:2c:e6:12:32:b6:6c:ab:60:83:db: 4f:cc:12:d2:9a:d6:6c:81:41:f4:88:77:af:e4:24:d5:89:74: 24:b5:33:38:72:d4:2f:10:53:92:31:af:00:9e:1b:5a:d0:59: 87:6e:85:79:10:b1:df:94:d5:17:52:70:1c:db:d8:7b:ef:fc: de:a6:be:57:3b:1a:83:8d:40:2c:9c:1d:de:fc:af:26:63:93: d2:b0:b8:db:1b:c9:77:8d:eb:f6:f4:56:0b:b8:82:b3:e6:4b: e0:34:a2:ef -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBejANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NTFDRjExMC8GA1UEBRMoMjlBMDA5MDEzRjc0MzFERTM2OUMwMENBQjU0NzE2Q0E5 MzQ1MjZEMzAeFw0yNTA1MzEwNjE4MjNaFw0yNTA2MDcwNjE4MjNaMBgxFjAUBgNV BAMTDTY4M2E5ZjJmLWE4NjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCXCwBwfvM3+OPd/D7XeXXP1D8fyNEO7OCocKoCHW3U/psK9Ka99iCxVirr4Od ckmPQYD3OHyvQfiDyf/cbA1kuEZlefIaoora8h1nH0M20GIY/jbtHrgXSRc+o6Jg rSvo4BjQjLs6zvBdIkgmApWLYujRppSWG4gbdRhzVF2Debk0jJzsNXPjJrSB29rA jMXiFoQac3bqLelIo1mEX8LhvT8JuebzL0v6HsE2fRUdK3jnia1jfCAOLlktVE1G Nvt/NM6WRKuplfdDZs/r7gkfIbXLKOvDfjEjhCkGtU4HEorSwhG9CWMN7va3LdTM kanb+HKqtRxBbTXXobXWb+UDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUv8dMUOpf nMXWNbcLQgxQesrHymUwHwYDVR0jBBgwFoAUKaAJAT90Md42nADKtUcWypNFJtMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1MUNGLzMwNDM2MzVDODZE NzExRUY4NTRERDQ3QkM0RjlBRTAyL0thQUpBVDkwTWQ0Mm5BREt0VWNXeXBORkp0 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS2FBSkFUOTBNZDQybkFES3RVY1d5cE5GSnRNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1 MUNGLzMwNDM2MzVDODZENzExRUY4NTRERDQ3QkM0RjlBRTAyL0thQUpBVDkwTWQ0 Mm5BREt0VWNXeXBORkp0TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJPICACLFbyrk1Qf0y0h0qC5vZbxZfP223SElEmC13Y1eTlhW4xBLQal QxF7W7ctgO1Qp4v1e3KL/NIgkRDQZopZHS47VXGs1HRbNBIzSLW6e8Pbs9b6EffS xao8wAhqGqkAaO/QU+4Y8PV63TfIt8rbQeFd/nSJxZCQCInjy6XRDJe4YUEuY4Wb A6avNA5pRSEYOMjhO5sdLOYSMrZsq2CD20/MEtKa1myBQfSId6/kJNWJdCS1Mzhy 1C8QU5IxrwCeG1rQWYduhXkQsd+U1RdScBzb2Hvv/N6mvlc7GoONQCycHd78ryZj k9KwuNsbyXeN6/b0Vgu4grPmS+A0ou8= -----END CERTIFICATE-----Generated at Sat May 31 17:11:24 2025 by rpki-client