$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft File: KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft (raw, json) Hash identifier: +oC0/rmc+gTm/8YmkdHT9OWkaWUIC5W9Q6bdIP117oM= Subject key identifier: BA:4C:8A:0A:A1:12:18:F1:5B:B4:87:3F:54:1F:93:D2:9D:01:D3:7E Authority key identifier: 28:F0:71:10:E4:35:84:A3:BA:6A:3A:4A:87:D6:8E:9E:B7:D3:E9:02 Certificate issuer: /CN=A91C5021/serialNumber=28F07110E43584A3BA6A3A4A87D68E9EB7D3E902 Certificate serial: 071B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft Manifest number: 0704 Signing time: Fri 28 Mar 2025 22:14:49 +0000 Manifest this update: Fri 28 Mar 2025 22:14:49 +0000 Manifest next update: Fri 04 Apr 2025 22:14:49 +0000 Files and hashes: 1: KPBxEOQ1hKO6ajpKh9aOnrfT6QI.crl (hash: +1d+wXQm8k1HruN3kFoyOWkduOx76DUWRZ6XMTbf3Hc=) 2: C42CEC7ECC3611EF9C79665CC4F9AE02.roa (hash: +9I46oBmobqbn5rox7c5LlYsiP1+hncBa8w/SO0pYyk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.crl rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 22:14:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1819 (0x71b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5021 Validity Not Before: Mar 28 22:14:49 2025 GMT Not After : Apr 4 22:14:49 2025 GMT Subject: CN=67e71f59-5e69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:01:df:73:a0:90:77:75:b0:3d:6e:62:75:92: b0:2c:1c:42:86:7b:d6:63:cc:2e:b0:ee:e7:3b:91: 6d:bb:2d:b6:1f:94:4a:62:18:7e:4b:4b:d0:a9:32: 95:be:69:97:6e:e7:a3:90:27:04:71:24:f2:e7:a4: 49:e4:e8:70:8d:79:eb:87:b5:b4:3d:46:71:e7:38: 02:87:ab:47:ea:a8:3b:eb:2b:33:e9:cd:e6:c0:b2: 5e:64:e1:2b:f7:14:b0:b5:17:31:21:f6:80:ef:56: e1:ab:4b:3b:66:43:1b:1d:bb:b8:83:b8:01:d4:10: 4b:01:d8:d8:97:56:f7:ba:5c:2b:cc:32:14:57:f5: 96:89:cd:b5:52:90:61:6e:2d:04:5d:63:84:13:41: 0a:9b:b2:fd:52:5d:60:51:aa:01:c4:a1:a3:8a:08: 66:10:80:81:32:3a:23:55:fc:7d:ed:90:f5:4a:82: b0:64:f1:5a:d7:8c:2c:21:5a:be:84:6c:d9:bc:a9: 2d:9e:11:e1:3b:8b:5d:6b:7d:10:62:7c:34:4e:f8: 19:4c:78:d7:b7:72:05:08:a6:dc:f6:2d:be:cf:30: f6:5e:b1:79:aa:72:0b:35:c0:53:49:bd:10:23:5a: 50:5f:7d:59:f1:31:42:93:53:db:12:f5:e1:14:62: 7d:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:4C:8A:0A:A1:12:18:F1:5B:B4:87:3F:54:1F:93:D2:9D:01:D3:7E X509v3 Authority Key Identifier: keyid:28:F0:71:10:E4:35:84:A3:BA:6A:3A:4A:87:D6:8E:9E:B7:D3:E9:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:b3:4e:de:97:0f:d1:01:70:95:5f:29:38:c9:d0:55:a0:34: 59:2b:98:11:ba:a4:ae:02:ee:c6:99:d6:d0:33:87:59:5e:18: 66:4b:14:47:ea:01:86:fd:29:58:d8:0c:8a:ae:20:85:1e:84: 4b:e0:9b:03:1e:e8:32:60:43:fb:ad:e3:05:cd:b9:ce:f8:10: 2d:42:a8:fd:68:28:c7:f1:a8:08:66:df:3e:b1:a6:e6:8d:55: b2:3d:ee:5e:9b:7c:8d:61:9d:3d:7b:c8:c2:31:cf:dd:46:af: bb:2f:7f:de:09:a8:3d:ec:c4:95:d2:af:89:c4:7f:57:02:ac: 33:ae:c3:e9:b3:8b:12:05:8c:26:cc:10:f6:f7:05:ed:81:e7: ba:1f:b7:4b:80:6f:47:0f:11:a6:ec:fe:d1:f1:7d:b7:68:71: 2a:6f:6b:b0:37:ec:57:a5:ff:58:44:b0:ca:ab:4d:03:01:10: 0f:92:8f:c5:35:bf:72:c0:11:c0:ca:56:51:90:8b:3b:39:77: 7f:78:b3:3a:9c:34:d3:37:5e:f8:a2:9b:6a:9d:bc:c7:ad:e3: d4:14:35:62:5e:d5:24:9a:a9:6e:35:d8:9d:da:dd:d2:20:3e: 4f:43:2e:df:29:ef:0d:8a:1a:22:77:aa:fb:c8:2a:a3:f3:13: 32:54:20:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBxswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzUwMjExMTAvBgNVBAUTKDI4RjA3MTEwRTQzNTg0QTNCQTZBM0E0QTg3RDY4RTlF QjdEM0U5MDIwHhcNMjUwMzI4MjIxNDQ5WhcNMjUwNDA0MjIxNDQ5WjAYMRYwFAYD VQQDEw02N2U3MWY1OS01ZTY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1wHfc6CQd3WwPW5idZKwLBxChnvWY8wusO7nO5Ftuy22H5RKYhh+S0vQqTKV vmmXbuejkCcEcSTy56RJ5OhwjXnrh7W0PUZx5zgCh6tH6qg76ysz6c3mwLJeZOEr 9xSwtRcxIfaA71bhq0s7ZkMbHbu4g7gB1BBLAdjYl1b3ulwrzDIUV/WWic21UpBh bi0EXWOEE0EKm7L9Ul1gUaoBxKGjighmEICBMjojVfx97ZD1SoKwZPFa14wsIVq+ hGzZvKktnhHhO4tda30QYnw0TvgZTHjXt3IFCKbc9i2+zzD2XrF5qnILNcBTSb0Q I1pQX31Z8TFCk1PbEvXhFGJ9PwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLpMigqh EhjxW7SHP1Qfk9KdAdN+MB8GA1UdIwQYMBaAFCjwcRDkNYSjumo6SofWjp630+kC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTAyMS85QUZENDg2QzNC QkMxMUVCQTc3NkYxNjFDNEY5QUUwMi9LUEJ4RU9RMWhLTzZhanBLaDlhT25yZlQ2 UUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tQQnhFT1ExaEtPNmFqcEtoOWFPbnJmVDZRSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTAyMS85QUZENDg2QzNCQkMxMUVCQTc3NkYxNjFDNEY5QUUwMi9LUEJ4RU9RMWhL TzZhanBLaDlhT25yZlQ2UUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVs07elw/RAXCVXyk4ydBVoDRZK5gRuqSuAu7GmdbQM4dZXhhmSxRH 6gGG/SlY2AyKriCFHoRL4JsDHugyYEP7reMFzbnO+BAtQqj9aCjH8agIZt8+sabm jVWyPe5em3yNYZ09e8jCMc/dRq+7L3/eCag97MSV0q+JxH9XAqwzrsPps4sSBYwm zBD29wXtgee6H7dLgG9HDxGm7P7R8X23aHEqb2uwN+xXpf9YRLDKq00DARAPko/F Nb9ywBHAylZRkIs7OXd/eLM6nDTTN174optqnbzHrePUFDViXtUkmqluNdid2t3S ID5PQy7fKe8Nihoid6r7yCqj8xMyVCDT -----END CERTIFICATE-----Generated at Thu Apr 3 07:43:22 2025 by rpki-client