$ rpki-client -vvf rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft File: kXkVGVyXGrRB_d7eb_PNNy51TLU.mft (raw, json) Hash identifier: 5tLqC4OAfHhxjqSWdOOuFueC1DkUPPf1yYlw3hxz0IA= Subject key identifier: D9:55:DA:04:35:A8:62:FA:F9:62:C0:3F:2B:F2:3C:D2:B6:3D:BC:A9 Authority key identifier: 91:79:15:19:5C:97:1A:B4:41:FD:DE:DE:6F:F3:CD:37:2E:75:4C:B5 Certificate issuer: /CN=A91795CA/serialNumber=917915195C971AB441FDDEDE6FF3CD372E754CB5 Certificate serial: 0611 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kXkVGVyXGrRB_d7eb_PNNy51TLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft Manifest number: 060C Signing time: Fri 28 Mar 2025 22:50:06 +0000 Manifest this update: Fri 28 Mar 2025 22:50:05 +0000 Manifest next update: Fri 04 Apr 2025 22:50:05 +0000 Files and hashes: 1: kXkVGVyXGrRB_d7eb_PNNy51TLU.crl (hash: /3CgJg7B/1+1NdUsaI38mpOj+cV4yzI9Owyypp4Vp2A=) 2: 2B8D76AE9BB711EBBB7BA02BC4F9AE02.roa (hash: GBv0Bwrza6PzeZcBlfUxDT4tM9xuaZtoH+l5x8EcaKE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.crl rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kXkVGVyXGrRB_d7eb_PNNy51TLU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 22:50:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1553 (0x611) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91795CA Validity Not Before: Mar 28 22:50:05 2025 GMT Not After : Apr 4 22:50:05 2025 GMT Subject: CN=67e7279d-9aad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:03:86:13:7b:93:ea:94:0b:f3:c5:f1:ae:ea: f8:39:c2:3c:f8:63:a5:49:a0:de:1f:92:dc:b8:30: 6b:85:eb:59:98:02:d8:e3:31:18:04:88:e5:14:77: 2e:33:6a:1a:ef:e3:00:7f:c6:94:64:07:3c:cf:fa: ff:9e:b6:0a:eb:65:6e:14:af:2c:8d:99:3b:3b:12: 8d:a4:cc:2c:06:51:b3:d5:ab:ab:ff:4a:3e:71:44: 85:bc:6f:c1:45:7e:b5:fd:2e:ce:ef:83:76:a3:b5: 4c:16:67:da:66:7f:c4:a6:78:9e:bb:4b:ab:b2:46: 91:08:70:af:b9:41:34:00:de:1b:b2:ad:19:a5:49: 1a:5a:f2:35:ab:c7:49:92:0d:6d:0a:13:95:db:0f: e2:73:0c:ab:ee:78:7f:f8:20:59:ce:ad:ab:99:65: 06:c4:e6:d6:d9:e3:81:e9:de:9a:39:6e:eb:d8:f3: 3f:46:38:3f:b4:95:c2:b3:4e:67:12:8f:37:02:73: 9a:84:f0:29:79:a1:51:e5:88:d5:81:34:cf:7a:a3: 2a:2a:98:d6:e7:d7:54:62:0a:c0:36:8b:1c:1a:5b: cf:0d:71:e2:a2:d8:5b:ee:31:12:03:28:4d:d5:00: 62:e3:32:08:45:cc:eb:fb:58:fb:9a:ae:54:1a:38: ba:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:55:DA:04:35:A8:62:FA:F9:62:C0:3F:2B:F2:3C:D2:B6:3D:BC:A9 X509v3 Authority Key Identifier: keyid:91:79:15:19:5C:97:1A:B4:41:FD:DE:DE:6F:F3:CD:37:2E:75:4C:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kXkVGVyXGrRB_d7eb_PNNy51TLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91795CA/63473756980611EBA87E2765C4F9AE02/kXkVGVyXGrRB_d7eb_PNNy51TLU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:2b:23:c2:e6:da:de:76:96:c2:2a:0e:5b:02:00:6a:0c:20: 45:0d:45:89:ae:05:e7:3f:30:e8:8d:c2:36:98:28:05:58:66: e3:06:5f:d9:d1:ab:83:04:bb:7b:ef:f4:57:56:20:b9:40:d2: fa:87:f8:8c:9e:06:98:de:66:b8:3b:73:e9:5d:96:cf:46:2a: bf:a0:2c:0d:0c:af:51:69:1d:47:60:71:4b:b5:e2:eb:b0:78: 06:37:6f:33:c5:05:4e:ec:84:78:83:62:ba:62:64:ba:bb:5a: 9f:4e:fa:81:2d:c4:96:31:3f:d0:7c:98:1e:43:4a:8f:54:79: 75:3e:a2:77:95:04:b3:78:a4:9a:06:44:23:a9:bb:00:e0:22: 94:0d:be:32:90:af:02:a4:18:87:bc:e8:80:95:95:b5:79:bb: e9:11:4a:e4:64:e9:84:67:57:b9:b4:c8:20:3f:69:df:49:f4: 72:21:42:6e:26:a3:8b:7a:19:c0:87:3c:2c:80:d8:16:19:f0: 4a:30:ad:7c:de:94:22:7e:ec:00:b3:a8:ca:0b:1f:41:50:f7: f9:cc:d5:29:34:e9:9f:65:05:33:1f:2c:0d:16:d3:94:74:0e: d8:05:c7:2a:7d:f2:7a:29:da:e0:86:3f:1a:f7:cd:12:57:92: 5f:04:a4:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk1Q0ExMTAvBgNVBAUTKDkxNzkxNTE5NUM5NzFBQjQ0MUZEREVERTZGRjNDRDM3 MkU3NTRDQjUwHhcNMjUwMzI4MjI1MDA1WhcNMjUwNDA0MjI1MDA1WjAYMRYwFAYD VQQDEw02N2U3Mjc5ZC05YWFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAswOGE3uT6pQL88Xxrur4OcI8+GOlSaDeH5LcuDBrhetZmALY4zEYBIjlFHcu M2oa7+MAf8aUZAc8z/r/nrYK62VuFK8sjZk7OxKNpMwsBlGz1aur/0o+cUSFvG/B RX61/S7O74N2o7VMFmfaZn/Epnieu0urskaRCHCvuUE0AN4bsq0ZpUkaWvI1q8dJ kg1tChOV2w/icwyr7nh/+CBZzq2rmWUGxObW2eOB6d6aOW7r2PM/Rjg/tJXCs05n Eo83AnOahPApeaFR5YjVgTTPeqMqKpjW59dUYgrANoscGlvPDXHiothb7jESAyhN 1QBi4zIIRczr+1j7mq5UGji6iwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNlV2gQ1 qGL6+WLAPyvyPNK2PbypMB8GA1UdIwQYMBaAFJF5FRlclxq0Qf3e3m/zzTcudUy1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTVDQS82MzQ3Mzc1Njk4 MDYxMUVCQTg3RTI3NjVDNEY5QUUwMi9rWGtWR1Z5WEdyUkJfZDdlYl9QTk55NTFU TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2tYa1ZHVnlYR3JSQl9kN2ViX1BOTnk1MVRMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTVDQS82MzQ3Mzc1Njk4MDYxMUVCQTg3RTI3NjVDNEY5QUUwMi9rWGtWR1Z5WEdy UkJfZDdlYl9QTk55NTFUTFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlKyPC5tredpbCKg5bAgBqDCBFDUWJrgXnPzDojcI2mCgFWGbjBl/Z 0auDBLt77/RXViC5QNL6h/iMngaY3ma4O3PpXZbPRiq/oCwNDK9RaR1HYHFLteLr sHgGN28zxQVO7IR4g2K6YmS6u1qfTvqBLcSWMT/QfJgeQ0qPVHl1PqJ3lQSzeKSa BkQjqbsA4CKUDb4ykK8CpBiHvOiAlZW1ebvpEUrkZOmEZ1e5tMggP2nfSfRyIUJu JqOLehnAhzwsgNgWGfBKMK183pQifuwAs6jKCx9BUPf5zNUpNOmfZQUzHywNFtOU dA7YBccqffJ6Kdrghj8a980SV5JfBKRO -----END CERTIFICATE-----Generated at Thu Apr 3 23:07:09 2025 by rpki-client