$ rpki-client -vvf rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft File: knWZPcnEM_JdNYCsd-OV0GaWSD0.mft (raw, json) Hash identifier: IfNe+7N/NNppqJjoPC/hKkyq6bBYtjSQpYGx3u1S75s= Subject key identifier: 03:CF:00:F6:A2:0F:94:09:8E:67:47:39:40:7F:E1:9F:10:B1:89:D5 Authority key identifier: 92:75:99:3D:C9:C4:33:F2:5D:35:80:AC:77:E3:95:D0:66:96:48:3D Certificate issuer: /CN=A91276A3/serialNumber=9275993DC9C433F25D3580AC77E395D06696483D Certificate serial: 06E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft Manifest number: 06D8 Signing time: Mon 12 May 2025 21:48:33 +0000 Manifest this update: Mon 12 May 2025 21:48:33 +0000 Manifest next update: Mon 19 May 2025 21:48:33 +0000 Files and hashes: 1: knWZPcnEM_JdNYCsd-OV0GaWSD0.crl (hash: 285dRTw/8lk7oDe6xWxvCSou4Qo7bDSsn6t3fsIKs5c=) 2: 57BAE77C517D11EB8949D438C4F9AE02.roa (hash: W8Pbilr3L/+CfQDONlD1s3S+g13SAXBwRt28BIl7t2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.crl rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 21:48:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1761 (0x6e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91276A3, serialNumber=9275993DC9C433F25D3580AC77E395D06696483D Validity Not Before: May 12 21:48:33 2025 GMT Not After : May 19 21:48:33 2025 GMT Subject: CN=68226cb1-e254 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:99:1a:62:d8:20:62:5a:38:8b:b5:2f:68:6e: 3b:52:26:91:4e:ec:d2:8b:49:cc:57:6a:f6:48:9f: 68:be:4e:92:7c:ff:fc:d6:71:3f:bf:e5:f0:c4:6c: 96:ed:7d:74:6e:c6:b4:06:a1:d7:93:3d:5d:38:09: d6:13:22:71:bb:c1:42:86:d4:83:60:e5:f8:19:dd: d2:83:07:10:0a:78:5a:a3:62:48:eb:40:4f:72:ed: 98:b7:38:24:f1:af:16:75:d2:7b:2d:91:26:56:c4: ea:df:13:f2:cc:54:3d:b4:61:49:33:63:70:10:20: 33:e6:ae:22:28:c5:ce:3a:a7:0b:08:26:81:20:a2: b7:85:57:6a:be:7f:8c:db:df:5e:f7:52:11:00:8c: df:88:83:5c:60:10:f3:85:16:32:2e:29:df:cc:61: 75:ca:ec:7a:fd:c6:83:e6:4d:48:d4:04:2b:d5:ab: 80:4e:9f:d8:b4:91:b6:a2:b3:10:3f:3f:0e:9b:b7: 33:06:f3:69:99:bc:5a:ec:4f:df:62:86:ae:c8:7c: 6d:70:87:e0:4b:04:57:ef:d9:6c:fd:5b:cc:c3:97: 8a:ef:dd:09:e3:bf:91:ac:5e:96:76:a7:ea:65:3f: cb:eb:a1:19:7c:3c:c8:99:62:e4:be:1a:f2:77:e8: ec:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:CF:00:F6:A2:0F:94:09:8E:67:47:39:40:7F:E1:9F:10:B1:89:D5 X509v3 Authority Key Identifier: keyid:92:75:99:3D:C9:C4:33:F2:5D:35:80:AC:77:E3:95:D0:66:96:48:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d2:34:03:fa:a5:87:d9:d7:67:a8:7d:70:73:5f:24:2f:d6:d2: ba:ad:12:cf:08:5e:bb:9f:1a:e4:3c:a1:17:d0:ca:e9:45:eb: 5f:1d:e5:9f:a0:13:4d:ce:3c:98:c0:66:37:d6:c9:88:5c:cf: 8b:f2:89:53:35:1d:7f:36:bd:80:43:68:3a:26:d6:a5:05:75: 48:94:84:34:2a:a7:3e:bf:87:c6:f0:bd:30:39:1a:c9:e7:c8: bd:f2:f7:89:7a:9c:be:cf:91:b2:90:eb:2f:2b:cd:b2:53:ec: 14:b9:45:22:6e:3e:bd:33:0d:7e:55:6c:1d:42:79:70:ef:8c: 70:4e:f8:a3:be:32:0b:12:07:2e:c1:a0:ee:57:55:27:c2:bb: d6:b2:4c:52:99:e8:a9:d3:8d:26:26:3b:05:1d:3b:ee:15:77: 8a:86:31:6a:81:81:aa:cb:15:80:a5:49:e5:9a:09:5c:e5:30: 12:44:82:67:4c:b8:09:74:4d:84:1a:31:7d:9b:54:b0:d3:d3: 93:5f:1f:da:a6:df:3b:19:75:0f:fd:3e:0c:05:7d:96:9e:2d: 2a:97:60:1f:9d:23:0b:1d:58:a6:94:e9:a0:fa:f1:a3:84:fa: 24:73:55:b0:aa:ad:a2:f5:10:bb:e6:98:0e:27:76:1a:f3:3e: b8:22:32:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBuEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc2QTMxMTAvBgNVBAUTKDkyNzU5OTNEQzlDNDMzRjI1RDM1ODBBQzc3RTM5NUQw NjY5NjQ4M0QwHhcNMjUwNTEyMjE0ODMzWhcNMjUwNTE5MjE0ODMzWjAYMRYwFAYD VQQDEw02ODIyNmNiMS1lMjU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0JkaYtggYlo4i7UvaG47UiaRTuzSi0nMV2r2SJ9ovk6SfP/81nE/v+XwxGyW 7X10bsa0BqHXkz1dOAnWEyJxu8FChtSDYOX4Gd3SgwcQCnhao2JI60BPcu2Ytzgk 8a8WddJ7LZEmVsTq3xPyzFQ9tGFJM2NwECAz5q4iKMXOOqcLCCaBIKK3hVdqvn+M 299e91IRAIzfiINcYBDzhRYyLinfzGF1yux6/caD5k1I1AQr1auATp/YtJG2orMQ Pz8Om7czBvNpmbxa7E/fYoauyHxtcIfgSwRX79ls/VvMw5eK790J47+RrF6Wdqfq ZT/L66EZfDzImWLkvhryd+js3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAPPAPai D5QJjmdHOUB/4Z8QsYnVMB8GA1UdIwQYMBaAFJJ1mT3JxDPyXTWArHfjldBmlkg9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzZBMy84MzIwQkQxQzUx N0IxMUVCODZDMkQ3MzZDNEY5QUUwMi9rbldaUGNuRU1fSmROWUNzZC1PVjBHYVdT RDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tuV1pQY25FTV9KZE5ZQ3NkLU9WMEdhV1NEMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzZBMy84MzIwQkQxQzUxN0IxMUVCODZDMkQ3MzZDNEY5QUUwMi9rbldaUGNuRU1f SmROWUNzZC1PVjBHYVdTRDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDSNAP6pYfZ12eofXBzXyQv1tK6rRLPCF67nxrkPKEX0MrpRetfHeWf oBNNzjyYwGY31smIXM+L8olTNR1/Nr2AQ2g6JtalBXVIlIQ0Kqc+v4fG8L0wORrJ 58i98veJepy+z5GykOsvK82yU+wUuUUibj69Mw1+VWwdQnlw74xwTvijvjILEgcu waDuV1UnwrvWskxSmeip040mJjsFHTvuFXeKhjFqgYGqyxWApUnlmglc5TASRIJn TLgJdE2EGjF9m1Sw09OTXx/apt87GXUP/T4MBX2Wni0ql2AfnSMLHVimlOmg+vGj hPokc1Wwqq2i9RC75pgOJ3Ya8z64IjI/ -----END CERTIFICATE-----Generated at Tue May 13 16:15:43 2025 by rpki-client