$ rpki-client -vvf rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft File: KbnmrAGSmMyglt6Jcancj3144dk.mft (raw, json) Hash identifier: MQq7Xf62jpxYNt6XRLBCBJUXtswtXDTe0QmjcX/auzY= Subject key identifier: 3B:39:E5:93:B3:23:0E:55:F3:CE:BE:F7:36:34:36:3C:7B:50:06:61 Authority key identifier: 29:B9:E6:AC:01:92:98:CC:A0:96:DE:89:71:A9:DC:8F:7D:78:E1:D9 Certificate issuer: /CN=A91371E4/serialNumber=29B9E6AC019298CCA096DE8971A9DC8F7D78E1D9 Certificate serial: 11C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KbnmrAGSmMyglt6Jcancj3144dk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft Manifest number: 11B6 Signing time: Mon 12 May 2025 17:07:41 +0000 Manifest this update: Mon 12 May 2025 17:07:41 +0000 Manifest next update: Mon 19 May 2025 17:07:41 +0000 Files and hashes: 1: KbnmrAGSmMyglt6Jcancj3144dk.crl (hash: GHTpZTD0ONxpU2n3reG/FqJdMwkxg4o9cQpSYFGxk3w=) 2: B6C2A27AF16A11E89550B621C4F9AE02.roa (hash: rYGwlaz3R02z4ql3MvAUj9rg5+gxsDR/Fvqrh9TzcP8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.crl rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KbnmrAGSmMyglt6Jcancj3144dk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 17:07:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4545 (0x11c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91371E4, serialNumber=29B9E6AC019298CCA096DE8971A9DC8F7D78E1D9 Validity Not Before: May 12 17:07:41 2025 GMT Not After : May 19 17:07:41 2025 GMT Subject: CN=68222add-9d96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:10:eb:61:00:9d:8c:46:c7:16:46:19:20:ae: b7:91:a5:03:c6:58:5e:89:57:01:32:19:bd:a6:e8: 48:a6:36:8f:49:31:aa:3a:10:6b:7c:5c:b5:3d:1c: 91:66:9c:66:43:80:89:55:2c:7a:08:9f:3b:f4:68: d5:e7:e5:97:ae:8a:9a:6a:fd:35:35:dc:90:78:28: 15:18:92:0c:69:ff:b6:e9:13:f6:e1:9d:71:d8:58: da:36:22:dc:4d:24:b1:22:ad:09:ec:67:c7:22:52: a4:00:41:d1:a1:58:fb:4c:2a:ee:ff:af:98:f7:4f: 03:a4:1c:e8:82:a3:79:0b:c8:b2:82:9d:d2:ff:85: 89:36:3a:0a:64:5a:00:84:1f:e5:e3:c0:04:16:34: b6:83:70:5c:31:c1:84:6a:5e:22:42:65:96:3e:cb: 7c:ca:77:cd:b2:94:a9:14:d7:69:1e:c0:c6:69:83: 95:2d:c3:8e:66:f8:f5:bf:ea:6e:c6:e5:84:84:67: 96:f7:2d:b7:4e:7f:49:b7:69:f4:69:5d:e4:21:cd: 04:44:5c:ad:06:cb:96:a5:42:4d:0a:8c:75:1d:91: 11:7d:59:65:c0:de:bf:24:7c:6b:5d:90:41:9e:94: 33:2a:4a:08:a1:6a:5b:17:41:fa:97:b6:03:e0:d7: ac:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:39:E5:93:B3:23:0E:55:F3:CE:BE:F7:36:34:36:3C:7B:50:06:61 X509v3 Authority Key Identifier: keyid:29:B9:E6:AC:01:92:98:CC:A0:96:DE:89:71:A9:DC:8F:7D:78:E1:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KbnmrAGSmMyglt6Jcancj3144dk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:6d:21:b4:3d:10:9f:83:56:45:2e:f0:21:2f:87:0e:0f:d8: 0f:45:6a:e1:d4:a1:21:32:ce:0d:f1:b5:cc:98:bd:d4:2f:ae: 09:97:9f:d9:a1:3a:d5:b0:e3:e8:ba:0b:7a:1a:49:c4:c5:f5: 1e:e6:b3:66:51:d4:a9:21:45:8d:d5:7c:0f:51:46:87:e0:78: 4e:ae:ed:96:4b:c6:1d:57:1a:6d:3a:99:3b:a6:4c:70:b0:47: 96:d2:4c:69:86:2d:d5:88:a6:67:fb:f0:98:3e:de:af:c5:c9: d0:47:bd:86:d4:a1:ba:bb:11:5c:7e:d1:1a:94:f5:e1:08:3d: 22:79:21:18:80:d1:7e:c8:82:07:fd:52:51:dc:43:a4:37:bd: 45:81:14:06:3b:e9:b2:52:98:d4:67:3a:7c:91:60:02:dc:48: 64:3f:13:d6:cf:d6:7d:38:e1:8b:64:5b:9f:0d:28:66:16:cf: 02:bb:1d:47:fa:43:7b:8c:be:1c:37:8f:f4:f6:a3:79:88:5c: 1b:3d:36:3f:d1:40:0f:9c:0d:4f:d1:40:87:eb:66:8a:9c:4a: 7c:6f:43:d8:74:c9:7a:dd:b3:42:b5:f7:99:40:ae:a5:31:94: 12:03:15:67:fe:db:77:12:16:7f:0d:c0:a5:62:ca:ca:6f:39: 57:83:da:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEcEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzcxRTQxMTAvBgNVBAUTKDI5QjlFNkFDMDE5Mjk4Q0NBMDk2REU4OTcxQTlEQzhG N0Q3OEUxRDkwHhcNMjUwNTEyMTcwNzQxWhcNMjUwNTE5MTcwNzQxWjAYMRYwFAYD VQQDEw02ODIyMmFkZC05ZDk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxxDrYQCdjEbHFkYZIK63kaUDxlheiVcBMhm9puhIpjaPSTGqOhBrfFy1PRyR ZpxmQ4CJVSx6CJ879GjV5+WXroqaav01NdyQeCgVGJIMaf+26RP24Z1x2FjaNiLc TSSxIq0J7GfHIlKkAEHRoVj7TCru/6+Y908DpBzogqN5C8iygp3S/4WJNjoKZFoA hB/l48AEFjS2g3BcMcGEal4iQmWWPst8ynfNspSpFNdpHsDGaYOVLcOOZvj1v+pu xuWEhGeW9y23Tn9Jt2n0aV3kIc0ERFytBsuWpUJNCox1HZERfVllwN6/JHxrXZBB npQzKkoIoWpbF0H6l7YD4NesQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDs55ZOz Iw5V886+9zY0Njx7UAZhMB8GA1UdIwQYMBaAFCm55qwBkpjMoJbeiXGp3I99eOHZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNzFFNC8zODI0N0E3MEYx NjkxMUU4QjNBNzlEMUVDNEY5QUUwMi9LYm5tckFHU21NeWdsdDZKY2FuY2ozMTQ0 ZGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tibm1yQUdTbU15Z2x0NkpjYW5jajMxNDRkay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NzFFNC8zODI0N0E3MEYxNjkxMUU4QjNBNzlEMUVDNEY5QUUwMi9LYm5tckFHU21N eWdsdDZKY2FuY2ozMTQ0ZGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVbSG0PRCfg1ZFLvAhL4cOD9gPRWrh1KEhMs4N8bXMmL3UL64Jl5/Z oTrVsOPougt6GknExfUe5rNmUdSpIUWN1XwPUUaH4HhOru2WS8YdVxptOpk7pkxw sEeW0kxphi3ViKZn+/CYPt6vxcnQR72G1KG6uxFcftEalPXhCD0ieSEYgNF+yIIH /VJR3EOkN71FgRQGO+myUpjUZzp8kWAC3EhkPxPWz9Z9OOGLZFufDShmFs8Cux1H +kN7jL4cN4/09qN5iFwbPTY/0UAPnA1P0UCH62aKnEp8b0PYdMl63bNCtfeZQK6l MZQSAxVn/tt3EhZ/DcClYsrKbzlXg9rx -----END CERTIFICATE-----Generated at Wed May 14 07:49:51 2025 by rpki-client