$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft File: Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft (raw, json) Hash identifier: l2jn7LcMAelHZa+rgtpL9pNL0y1oOrZrU32b315Fqw8= Subject key identifier: 21:63:A1:F1:E9:C3:98:B0:D4:84:0A:3F:87:37:CD:0C:08:37:EF:BE Authority key identifier: 2B:3E:E4:4E:A9:CB:5B:81:29:6B:B6:7D:F0:F5:46:F8:AA:C8:A4:B4 Certificate issuer: /CN=A91F4F00/serialNumber=2B3EE44EA9CB5B81296BB67DF0F546F8AAC8A4B4 Certificate serial: 0779 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft Manifest number: 0773 Signing time: Sat 10 May 2025 21:07:56 +0000 Manifest this update: Sat 10 May 2025 21:07:56 +0000 Manifest next update: Sat 17 May 2025 21:07:56 +0000 Files and hashes: 1: Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl (hash: vi7/Arr5GawzIsuOFXfSbpFpfoYXBNAq82OA9lJaTmk=) 2: 395AFD84135811EB942A3E15C4F9AE02.roa (hash: +nVGHDmFpNMeCZK4D+EYT1WCdxSsITi4ixDFG3tX1xc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 21:07:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1913 (0x779) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4F00, serialNumber=2B3EE44EA9CB5B81296BB67DF0F546F8AAC8A4B4 Validity Not Before: May 10 21:07:56 2025 GMT Not After : May 17 21:07:56 2025 GMT Subject: CN=681fc02c-0604 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:9c:5c:d9:57:cc:31:ea:29:68:9d:82:80:8d: 4c:6c:c2:25:f5:44:61:83:7f:a8:4d:c0:b7:d8:b9: 98:f2:49:8d:0a:60:b1:e5:3e:ea:f0:3d:11:64:9f: 01:b0:62:1d:7a:c9:4c:c2:32:e8:d6:fe:b1:1b:51: 1e:49:8c:7b:82:3b:7d:39:e2:57:5f:39:a5:6f:03: 6c:80:e3:10:47:42:fe:6d:9d:a9:27:d2:51:0b:db: f3:4a:97:02:a6:8f:be:74:23:f8:9d:c3:db:a0:20: fe:f6:4a:3a:69:85:6c:8b:58:70:17:a8:1b:a9:b0: db:86:83:0f:9e:4b:c6:55:27:ae:4b:55:ba:49:ef: 07:e6:e6:f0:8a:8a:eb:ed:cb:9f:11:17:5f:79:4e: 62:e7:d6:72:01:64:31:f5:a8:bd:0d:d8:69:73:fc: 26:b8:c8:8d:ca:6e:a3:15:57:a4:ea:0e:23:63:23: 6d:2a:63:a3:6d:3a:56:cc:7f:fd:22:01:df:2d:c7: 9c:60:b7:5e:2f:ea:e1:5e:e8:23:43:7c:76:b8:ef: 58:21:1e:b9:01:cb:3f:63:34:16:7a:de:ef:f3:a1: 2e:1f:f8:e3:a8:2f:fb:d0:70:3e:3b:93:f0:6b:b7: ab:f2:88:ec:e1:a6:fb:af:2c:a7:8a:09:19:21:87: 29:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:63:A1:F1:E9:C3:98:B0:D4:84:0A:3F:87:37:CD:0C:08:37:EF:BE X509v3 Authority Key Identifier: keyid:2B:3E:E4:4E:A9:CB:5B:81:29:6B:B6:7D:F0:F5:46:F8:AA:C8:A4:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:68:19:34:ce:d8:d1:b3:9e:43:66:c6:f1:97:1d:1c:9b:bd: 9c:26:43:8e:3a:57:d3:b4:88:5d:c7:62:29:9f:85:cd:ac:57: 9f:f7:f6:07:cf:56:31:f2:26:b8:b0:7d:e5:da:12:7f:81:3a: 9b:79:98:0c:67:a0:7c:3e:48:5e:72:15:b3:fc:04:17:2b:69: fa:26:91:f0:08:e9:bd:12:8e:91:60:67:d3:fb:46:42:ce:db: 3c:8b:6b:66:82:72:79:3d:c4:1f:64:90:ae:67:c3:19:46:77: 51:fa:2d:5f:09:cb:4d:07:0e:f9:c4:c8:0e:a9:00:fd:ee:b2: 64:be:c4:40:70:dd:8c:92:8e:4c:c1:24:f9:1e:7d:f8:4d:7d: 06:68:a9:05:d8:79:1b:5c:74:69:bd:21:40:3a:53:bb:e2:b3: c8:91:d7:eb:b2:24:93:ab:39:b3:ba:94:c5:01:3b:88:18:b3: d4:a2:bc:2f:6b:24:da:fb:e5:7f:69:b2:bb:5c:53:4d:e1:6e: fe:a9:dd:6c:32:e5:5f:c5:76:14:47:26:81:91:a3:22:8f:09: 97:b2:60:73:6a:f6:e5:74:11:a0:32:f9:fb:7f:c2:2c:96:ab: 69:70:99:7d:83:c4:2c:ee:8a:44:7f:50:e0:f3:e3:7d:69:bb: e1:a3:a6:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB3kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRGMDAxMTAvBgNVBAUTKDJCM0VFNDRFQTlDQjVCODEyOTZCQjY3REYwRjU0NkY4 QUFDOEE0QjQwHhcNMjUwNTEwMjEwNzU2WhcNMjUwNTE3MjEwNzU2WjAYMRYwFAYD VQQDEw02ODFmYzAyYy0wNjA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwpxc2VfMMeopaJ2CgI1MbMIl9URhg3+oTcC32LmY8kmNCmCx5T7q8D0RZJ8B sGIdeslMwjLo1v6xG1EeSYx7gjt9OeJXXzmlbwNsgOMQR0L+bZ2pJ9JRC9vzSpcC po++dCP4ncPboCD+9ko6aYVsi1hwF6gbqbDbhoMPnkvGVSeuS1W6Se8H5ubwiorr 7cufERdfeU5i59ZyAWQx9ai9Ddhpc/wmuMiNym6jFVek6g4jYyNtKmOjbTpWzH/9 IgHfLcecYLdeL+rhXugjQ3x2uO9YIR65Acs/YzQWet7v86EuH/jjqC/70HA+O5Pw a7er8ojs4ab7ryynigkZIYcpWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCFjofHp w5iw1IQKP4c3zQwIN+++MB8GA1UdIwQYMBaAFCs+5E6py1uBKWu2ffD1RviqyKS0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEYwMC8zREE2OTAxNjEz NTcxMUVCQTIzREE3MTRDNEY5QUUwMi9LejdrVHFuTFc0RXBhN1o5OFBWRy1Lcklw TFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t6N2tUcW5MVzRFcGE3Wjk4UFZHLUtySXBMUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEYwMC8zREE2OTAxNjEzNTcxMUVCQTIzREE3MTRDNEY5QUUwMi9LejdrVHFuTFc0 RXBhN1o5OFBWRy1LcklwTFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASaBk0ztjRs55DZsbxlx0cm72cJkOOOlfTtIhdx2Ipn4XNrFef9/YH z1Yx8ia4sH3l2hJ/gTqbeZgMZ6B8PkhechWz/AQXK2n6JpHwCOm9Eo6RYGfT+0ZC zts8i2tmgnJ5PcQfZJCuZ8MZRndR+i1fCctNBw75xMgOqQD97rJkvsRAcN2Mko5M wST5Hn34TX0GaKkF2HkbXHRpvSFAOlO74rPIkdfrsiSTqzmzupTFATuIGLPUorwv ayTa++V/abK7XFNN4W7+qd1sMuVfxXYURyaBkaMijwmXsmBzavbldBGgMvn7f8Is lqtpcJl9g8Qs7opEf1Dg8+N9abvho6YA -----END CERTIFICATE-----Generated at Mon May 12 06:41:27 2025 by rpki-client