$ rpki-client -vvf rpki.apnic.net/member_repository/A91A81F7/30F46EEE9F8611EC8D9F3F34C4F9AE02/kzrtfDoGQianFEt0eMdAPazdgAU.mft File: kzrtfDoGQianFEt0eMdAPazdgAU.mft (raw, json) Hash identifier: pejWh6nTKVPJjSesTQFpij/TlxQsM49EWS7tpFQhlfg= Subject key identifier: 22:EC:4A:CE:B7:95:92:74:4E:62:EA:15:3C:C1:1E:65:DA:2D:42:D5 Authority key identifier: 93:3A:ED:7C:3A:06:42:26:A7:14:4B:74:78:C7:40:3D:AC:DD:80:05 Certificate issuer: /CN=A91A81F7/serialNumber=933AED7C3A064226A7144B7478C7403DACDD8005 Certificate serial: 0393 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrtfDoGQianFEt0eMdAPazdgAU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A81F7/30F46EEE9F8611EC8D9F3F34C4F9AE02/kzrtfDoGQianFEt0eMdAPazdgAU.mft Manifest number: 038F Signing time: Sat 31 May 2025 01:01:55 +0000 Manifest this update: Sat 31 May 2025 01:01:54 +0000 Manifest next update: Sat 07 Jun 2025 01:01:54 +0000 Files and hashes: 1: kzrtfDoGQianFEt0eMdAPazdgAU.crl (hash: lQFx4voB9MGhvRtlbvIQ9PV3dst6Ebc8CJVwIPmxzeM=) 2: 4D7F18D69F8911EC8270CE39C4F9AE02.roa (hash: DvvVhTWHCUbaFBHxMQ8UUW6nZ5VH6Qlov4BUrN8E2sA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A81F7/30F46EEE9F8611EC8D9F3F34C4F9AE02/kzrtfDoGQianFEt0eMdAPazdgAU.crl rsync://rpki.apnic.net/member_repository/A91A81F7/30F46EEE9F8611EC8D9F3F34C4F9AE02/kzrtfDoGQianFEt0eMdAPazdgAU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrtfDoGQianFEt0eMdAPazdgAU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:01:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 915 (0x393) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A81F7, serialNumber=933AED7C3A064226A7144B7478C7403DACDD8005 Validity Not Before: May 31 01:01:54 2025 GMT Not After : Jun 7 01:01:54 2025 GMT Subject: CN=683a5502-fab6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:cd:de:4c:82:c6:be:94:20:b9:bd:94:28:18: 04:78:8c:31:d0:c1:bd:3f:06:63:0b:1a:36:cb:29: 19:8b:46:73:2e:2e:e0:5c:0e:6a:20:b7:30:e1:40: 83:84:5c:dd:95:b6:5e:ec:2e:4a:fb:7b:bb:85:67: 71:70:23:b0:88:b8:a9:9c:a7:e8:08:01:e8:43:93: d4:98:bc:cb:6a:85:d2:14:a7:32:76:98:13:a5:fd: d6:e6:b4:86:30:8d:f1:56:68:c5:6b:8e:5c:d8:04: a4:16:04:66:87:17:73:62:86:ec:9d:e4:5c:36:4e: e8:f0:9d:70:7e:78:34:b9:51:07:aa:4c:9e:4d:d2: 47:f3:53:35:62:ed:98:1b:82:15:23:27:7e:04:e4: 37:93:df:31:2e:90:11:b9:3b:e4:e3:f9:dd:dc:98: d6:31:29:e2:44:31:e4:b2:c6:dd:4b:9b:3a:11:6a: bc:28:c6:7a:81:f9:35:b3:2c:fa:74:9a:ef:33:6d: 1d:e1:c7:cb:e7:43:a9:d5:b6:b7:2a:14:c5:e9:c5: b5:80:ab:44:73:1f:be:8f:f7:9c:2f:bc:65:42:a3: 0c:72:7b:1e:d4:97:3c:7d:dc:22:6a:56:06:96:49: 01:6f:75:9f:62:59:69:52:52:d0:65:43:7d:f4:fc: f2:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:EC:4A:CE:B7:95:92:74:4E:62:EA:15:3C:C1:1E:65:DA:2D:42:D5 X509v3 Authority Key Identifier: keyid:93:3A:ED:7C:3A:06:42:26:A7:14:4B:74:78:C7:40:3D:AC:DD:80:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A81F7/30F46EEE9F8611EC8D9F3F34C4F9AE02/kzrtfDoGQianFEt0eMdAPazdgAU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrtfDoGQianFEt0eMdAPazdgAU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A81F7/30F46EEE9F8611EC8D9F3F34C4F9AE02/kzrtfDoGQianFEt0eMdAPazdgAU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:b2:a6:e0:85:d8:82:fa:d5:8a:8a:11:86:66:c0:83:c6:37: 4d:de:8b:4a:db:76:22:b3:ca:c6:8a:54:aa:10:7f:81:4b:ae: 28:2d:b4:73:af:8e:2f:7d:31:30:34:3f:2c:af:19:8f:ff:bf: 6a:58:20:e1:2c:95:2a:41:df:ce:1b:5a:71:ec:a4:dc:7a:55: a6:81:cb:e0:f0:aa:31:ae:2b:36:57:80:27:dc:de:b2:01:d0: 98:bb:f1:d0:8d:6e:08:00:da:09:55:c7:91:c5:5c:0c:e0:e0: 8b:fe:4a:fb:4a:be:35:bd:a4:72:5b:79:26:90:4f:1e:80:35: 4a:7f:a8:84:b4:30:23:0e:2c:8d:1b:02:2f:02:28:01:7e:5c: 95:d2:f4:6f:3e:4e:3f:ea:b4:1b:6e:eb:34:76:2c:0b:a5:aa: 43:ea:70:f3:47:96:cd:b4:40:41:ec:42:f7:85:00:a2:86:6d: a7:d4:b7:54:5f:14:57:64:da:0e:6d:cd:60:7a:e2:3d:35:bf: b8:c4:26:78:a1:03:09:95:29:9b:84:dc:d3:31:23:79:5b:88: 2b:26:3a:a1:7c:70:16:e9:a7:b0:81:1f:36:53:e7:38:a6:0c: 37:97:c9:2e:fe:45:0c:5d:f0:f7:78:16:11:17:0a:22:4f:34: 63:2a:9b:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgxRjcxMTAvBgNVBAUTKDkzM0FFRDdDM0EwNjQyMjZBNzE0NEI3NDc4Qzc0MDNE QUNERDgwMDUwHhcNMjUwNTMxMDEwMTU0WhcNMjUwNjA3MDEwMTU0WjAYMRYwFAYD VQQDEw02ODNhNTUwMi1mYWI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt83eTILGvpQgub2UKBgEeIwx0MG9PwZjCxo2yykZi0ZzLi7gXA5qILcw4UCD hFzdlbZe7C5K+3u7hWdxcCOwiLipnKfoCAHoQ5PUmLzLaoXSFKcydpgTpf3W5rSG MI3xVmjFa45c2ASkFgRmhxdzYobsneRcNk7o8J1wfng0uVEHqkyeTdJH81M1Yu2Y G4IVIyd+BOQ3k98xLpARuTvk4/nd3JjWMSniRDHkssbdS5s6EWq8KMZ6gfk1syz6 dJrvM20d4cfL50Op1ba3KhTF6cW1gKtEcx++j/ecL7xlQqMMcnse1Jc8fdwialYG lkkBb3WfYllpUlLQZUN99PzyDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCLsSs63 lZJ0TmLqFTzBHmXaLULVMB8GA1UdIwQYMBaAFJM67Xw6BkImpxRLdHjHQD2s3YAF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODFGNy8zMEY0NkVFRTlG ODYxMUVDOEQ5RjNGMzRDNEY5QUUwMi9renJ0ZkRvR1FpYW5GRXQwZU1kQVBhemRn QVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t6cnRmRG9HUWlhbkZFdDBlTWRBUGF6ZGdBVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODFGNy8zMEY0NkVFRTlGODYxMUVDOEQ5RjNGMzRDNEY5QUUwMi9renJ0ZkRvR1Fp YW5GRXQwZU1kQVBhemRnQVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVsqbghdiC+tWKihGGZsCDxjdN3otK23Yis8rGilSqEH+BS64oLbRz r44vfTEwND8srxmP/79qWCDhLJUqQd/OG1px7KTcelWmgcvg8Koxris2V4An3N6y AdCYu/HQjW4IANoJVceRxVwM4OCL/kr7Sr41vaRyW3kmkE8egDVKf6iEtDAjDiyN GwIvAigBflyV0vRvPk4/6rQbbus0diwLpapD6nDzR5bNtEBB7EL3hQCihm2n1LdU XxRXZNoObc1geuI9Nb+4xCZ4oQMJlSmbhNzTMSN5W4grJjqhfHAW6aewgR82U+c4 pgw3l8ku/kUMXfD3eBYRFwoiTzRjKptQ -----END CERTIFICATE-----Generated at Sat May 31 16:56:15 2025 by rpki-client