$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft File: kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft (raw, json) Hash identifier: UMtkfOI0UIzo/3WLpBVnwIO6no6LwHQHp3cupfbpaRk= Subject key identifier: 1E:0B:46:C0:28:70:E0:8C:6B:43:27:7F:0A:5C:BB:05:28:E9:6D:15 Authority key identifier: 91:9F:A8:19:B2:FF:F1:45:52:1A:F6:64:03:52:78:E7:E7:91:4A:49 Certificate issuer: /CN=A91BB6E3/serialNumber=919FA819B2FFF145521AF664035278E7E7914A49 Certificate serial: 01C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kZ-oGbL_8UVSGvZkA1J45-eRSkk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft Manifest number: 01B4 Signing time: Sat 31 May 2025 03:02:30 +0000 Manifest this update: Sat 31 May 2025 03:02:29 +0000 Manifest next update: Sat 07 Jun 2025 03:02:29 +0000 Files and hashes: 1: kZ-oGbL_8UVSGvZkA1J45-eRSkk.crl (hash: 5y/I7w0l2E8sAkvnOn4YU0ngmXmohILpMfWjzI0Eu/g=) 2: F96174ECC27D11EDB8226F2DC4F9AE02.roa (hash: kXeNIsHETQcXUic6LYufG6XvgVMVgH9sGtHQdmkZT90=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.crl rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kZ-oGbL_8UVSGvZkA1J45-eRSkk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:02:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 457 (0x1c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB6E3, serialNumber=919FA819B2FFF145521AF664035278E7E7914A49 Validity Not Before: May 31 03:02:29 2025 GMT Not After : Jun 7 03:02:29 2025 GMT Subject: CN=683a7146-6903 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:60:17:82:bf:e3:d0:de:fc:0a:6d:57:46:a2: ed:2d:29:ae:2a:2a:c0:ba:73:38:3b:41:ba:b3:95: 7b:0f:bd:c6:e5:7f:19:52:db:ab:4c:f8:fc:44:19: 78:df:80:69:39:83:5b:13:85:ba:5d:c0:4a:b9:19: 0b:b1:69:ed:84:48:7a:50:42:d7:4e:3e:e4:2b:10: a4:6f:84:d7:26:fd:8d:18:a1:73:f0:f5:70:99:cc: 79:2e:f3:51:81:7d:3f:d3:74:32:ab:ef:30:fd:f7: 18:cc:27:e8:da:ff:39:c8:f6:ae:92:60:bc:92:4f: af:eb:42:99:c5:9a:8c:3a:33:06:06:5a:83:ca:9a: 95:7a:30:74:ee:49:a7:dd:82:1a:4b:fe:09:c1:0b: 5a:21:12:55:cb:f3:d8:90:10:23:c2:0f:c4:56:bc: f7:59:75:2e:37:12:89:04:66:d1:1d:af:4b:8f:69: ec:44:5c:be:ba:6f:25:49:f6:90:25:43:29:71:29: 54:03:10:d2:94:e6:a3:01:74:e1:f8:57:9f:0d:50: 36:20:7f:79:6e:a1:b1:e4:ea:e0:3b:41:6c:95:c4: a5:9d:b2:1f:03:79:e1:a9:a9:97:d1:fb:fc:05:0b: a5:91:fe:56:b5:4f:00:a6:af:20:c8:5d:1c:ea:38: f3:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:0B:46:C0:28:70:E0:8C:6B:43:27:7F:0A:5C:BB:05:28:E9:6D:15 X509v3 Authority Key Identifier: keyid:91:9F:A8:19:B2:FF:F1:45:52:1A:F6:64:03:52:78:E7:E7:91:4A:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kZ-oGbL_8UVSGvZkA1J45-eRSkk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:c6:ed:3e:a2:04:ca:00:30:1c:3b:5e:a9:db:d3:ac:a9:00: 65:91:7f:4c:c9:d9:28:65:bd:4e:d9:e4:07:83:f3:96:2a:02: 16:2f:d0:26:8b:07:86:50:b2:24:1d:d1:03:49:0c:45:d6:9d: b9:bd:8f:45:62:0d:22:26:d8:8d:79:c9:74:73:c3:79:59:10: 9c:0e:ea:07:5b:d9:da:a6:d3:71:07:24:03:32:46:ad:7e:32: a8:68:95:63:b2:2e:ac:ae:7a:b8:2f:d4:b8:a4:8f:71:d4:3b: 26:50:01:13:6d:d2:fd:c3:6b:b6:e7:2a:fb:49:c3:65:d4:6e: 2e:64:ef:9c:73:4c:56:d9:48:55:3b:c9:dd:d5:3e:c9:cf:1a: 53:fe:f3:5b:6a:72:f8:5d:ef:ad:5a:cb:5d:52:e4:2c:b4:e3: c3:22:56:60:99:8b:22:d2:40:d8:dd:d5:c8:6d:bd:91:e1:87: 62:d9:e8:c0:f3:44:f6:7c:9a:db:49:19:48:9a:51:92:33:52: 0a:1e:9e:4c:30:97:58:06:5f:ae:b6:6c:f1:54:ad:21:8b:da: 78:dc:18:42:ed:7d:7b:dd:8c:7a:a0:9e:9c:4c:0c:cc:39:7a: 88:22:bd:7d:7f:35:77:f8:98:3e:89:5b:35:33:21:c6:57:71: 17:88:9e:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAckwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI2RTMxMTAvBgNVBAUTKDkxOUZBODE5QjJGRkYxNDU1MjFBRjY2NDAzNTI3OEU3 RTc5MTRBNDkwHhcNMjUwNTMxMDMwMjI5WhcNMjUwNjA3MDMwMjI5WjAYMRYwFAYD VQQDEw02ODNhNzE0Ni02OTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzGAXgr/j0N78Cm1XRqLtLSmuKirAunM4O0G6s5V7D73G5X8ZUturTPj8RBl4 34BpOYNbE4W6XcBKuRkLsWnthEh6UELXTj7kKxCkb4TXJv2NGKFz8PVwmcx5LvNR gX0/03Qyq+8w/fcYzCfo2v85yPaukmC8kk+v60KZxZqMOjMGBlqDypqVejB07kmn 3YIaS/4JwQtaIRJVy/PYkBAjwg/EVrz3WXUuNxKJBGbRHa9Lj2nsRFy+um8lSfaQ JUMpcSlUAxDSlOajAXTh+FefDVA2IH95bqGx5OrgO0FslcSlnbIfA3nhqamX0fv8 BQulkf5WtU8Apq8gyF0c6jjzPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB4LRsAo cOCMa0MnfwpcuwUo6W0VMB8GA1UdIwQYMBaAFJGfqBmy//FFUhr2ZANSeOfnkUpJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjZFMy9BMjJDODE0Q0My NzUxMUVEQjNCNEQ3MjhDNEY5QUUwMi9rWi1vR2JMXzhVVlNHdlprQTFKNDUtZVJT a2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2taLW9HYkxfOFVWU0d2WmtBMUo0NS1lUlNray5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjZFMy9BMjJDODE0Q0MyNzUxMUVEQjNCNEQ3MjhDNEY5QUUwMi9rWi1vR2JMXzhV VlNHdlprQTFKNDUtZVJTa2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhxu0+ogTKADAcO16p29OsqQBlkX9MydkoZb1O2eQHg/OWKgIWL9Am iweGULIkHdEDSQxF1p25vY9FYg0iJtiNecl0c8N5WRCcDuoHW9naptNxByQDMkat fjKoaJVjsi6srnq4L9S4pI9x1DsmUAETbdL9w2u25yr7ScNl1G4uZO+cc0xW2UhV O8nd1T7JzxpT/vNbanL4Xe+tWstdUuQstOPDIlZgmYsi0kDY3dXIbb2R4Ydi2ejA 80T2fJrbSRlImlGSM1IKHp5MMJdYBl+utmzxVK0hi9p43BhC7X173Yx6oJ6cTAzM OXqIIr19fzV3+Jg+iVs1MyHGV3EXiJ5z -----END CERTIFICATE-----Generated at Sat May 31 16:52:10 2025 by rpki-client