$ rpki-client -vvf rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft File: 2kcnine73_Ktn5igEaKnoufNYNg.mft (raw, json) Hash identifier: xctVF4onXZMsrwsyKsiJtTs2jl4p0WF/lLfwiHk1D2c= Subject key identifier: 37:17:F3:18:66:B9:9C:E1:49:0C:88:2B:37:03:92:B8:09:A8:1D:08 Authority key identifier: DA:47:27:8A:77:BB:DF:F2:AD:9F:98:A0:11:A2:A7:A2:E7:CD:60:D8 Certificate issuer: /CN=A91393BE/serialNumber=DA47278A77BBDFF2AD9F98A011A2A7A2E7CD60D8 Certificate serial: 95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft Manifest number: 93 Signing time: Thu 15 May 2025 05:39:46 +0000 Manifest this update: Thu 15 May 2025 05:39:45 +0000 Manifest next update: Thu 22 May 2025 05:39:45 +0000 Files and hashes: 1: 2kcnine73_Ktn5igEaKnoufNYNg.crl (hash: OcfOCotsxFgqOxoo5kxYEdRsixnRF3mQ0Me1HO83xaI=) 2: 05A966C652DB11EF990CB840C4F9AE02.roa (hash: 7cyDiCG+GWMMc47d/9wE/tr8+3lmCjNtDuQzc5Jy9ng=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.crl rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 05:39:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 149 (0x95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91393BE, serialNumber=DA47278A77BBDFF2AD9F98A011A2A7A2E7CD60D8 Validity Not Before: May 15 05:39:45 2025 GMT Not After : May 22 05:39:45 2025 GMT Subject: CN=68257e21-300e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:29:a4:42:5c:8b:9f:0a:58:de:74:c5:af:80: 60:d5:64:a6:9c:61:7c:a8:94:fc:8f:b5:09:42:57: d2:ef:95:f3:32:77:58:c2:ea:a9:48:9a:24:1e:39: e1:61:3c:e6:32:19:13:1f:44:b9:f8:65:ab:0c:2b: ec:b2:fa:cd:14:d4:bf:fd:99:83:a3:9e:5b:7d:fc: 70:4c:f4:8f:23:41:2e:95:b1:01:c6:0c:2d:78:c5: 95:65:97:5c:9e:22:77:ce:53:f3:c7:1d:9a:46:38: b8:0a:1d:67:e9:c3:0c:6c:4d:62:df:97:55:7b:a5: b5:ab:d5:bb:ae:ff:7f:8d:db:c9:5e:af:a9:d7:36: f5:5f:75:75:77:61:4f:ca:09:75:0d:33:89:9f:e3: b6:a9:f7:03:4f:2e:85:b9:24:5a:64:d0:58:4a:21: ce:67:91:02:72:7a:13:c4:91:b7:b6:aa:41:b2:5a: 30:f1:ee:93:92:d9:6d:b3:ca:eb:18:3c:44:82:57: ef:62:17:96:db:54:cb:28:b4:34:91:aa:9a:34:19: ad:42:e6:8b:8f:61:2d:b7:88:c4:b8:6c:a9:1b:db: b1:60:25:0d:98:5b:c7:b4:d2:7a:fc:fc:f7:34:16: 12:0d:b0:bb:47:7c:c1:36:4d:c2:90:13:e6:e0:aa: 89:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:17:F3:18:66:B9:9C:E1:49:0C:88:2B:37:03:92:B8:09:A8:1D:08 X509v3 Authority Key Identifier: keyid:DA:47:27:8A:77:BB:DF:F2:AD:9F:98:A0:11:A2:A7:A2:E7:CD:60:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:d4:87:41:91:e4:17:67:83:c5:ca:2b:e5:af:97:38:b1:74: 3b:7d:0f:ce:df:01:1b:21:50:be:7e:a9:4b:b8:a0:5f:eb:ba: a3:c8:c4:5a:21:be:5b:fe:e0:62:db:01:05:07:3f:f9:58:99: 3f:aa:64:55:1a:64:0e:e3:d5:79:ac:7b:ab:38:60:89:b4:8e: ca:d5:cf:27:33:1e:4e:9c:54:9e:00:41:14:f7:84:bd:ba:e1: 3f:9d:2c:cc:55:0a:9e:46:33:90:ad:1d:3f:bc:16:94:5d:1d: 86:26:16:2b:dd:89:12:f7:d5:17:4d:02:b1:d4:77:e6:fb:5c: 75:7f:07:c7:a0:15:28:e8:6a:43:a5:81:62:fc:9a:8a:50:6d: 4b:64:7f:99:cf:eb:a8:3d:c0:43:49:be:77:ad:05:4c:5e:68: 89:49:af:1f:9d:79:75:37:d4:d1:7c:24:71:68:42:55:c5:76: d2:27:1b:15:eb:40:28:1a:df:75:13:84:51:f3:c4:90:5a:74: b1:8a:7f:50:43:07:b1:00:28:6b:76:5e:cf:7e:36:fa:ea:74: c9:c1:9d:c4:a3:6f:ec:1a:71:4d:bc:bf:1a:37:39:60:0f:10: c1:57:ac:48:56:10:35:78:af:56:0b:32:c7:57:26:b9:ed:b0: b3:08:4b:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkzQkUxMTAvBgNVBAUTKERBNDcyNzhBNzdCQkRGRjJBRDlGOThBMDExQTJBN0Ey RTdDRDYwRDgwHhcNMjUwNTE1MDUzOTQ1WhcNMjUwNTIyMDUzOTQ1WjAYMRYwFAYD VQQDEw02ODI1N2UyMS0zMDBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7CmkQlyLnwpY3nTFr4Bg1WSmnGF8qJT8j7UJQlfS75XzMndYwuqpSJokHjnh YTzmMhkTH0S5+GWrDCvssvrNFNS//ZmDo55bffxwTPSPI0EulbEBxgwteMWVZZdc niJ3zlPzxx2aRji4Ch1n6cMMbE1i35dVe6W1q9W7rv9/jdvJXq+p1zb1X3V1d2FP ygl1DTOJn+O2qfcDTy6FuSRaZNBYSiHOZ5ECcnoTxJG3tqpBslow8e6Tktlts8rr GDxEglfvYheW21TLKLQ0kaqaNBmtQuaLj2Ett4jEuGypG9uxYCUNmFvHtNJ6/Pz3 NBYSDbC7R3zBNk3CkBPm4KqJ0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDcX8xhm uZzhSQyIKzcDkrgJqB0IMB8GA1UdIwQYMBaAFNpHJ4p3u9/yrZ+YoBGip6LnzWDY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTNCRS83NzQxNjE0QzUy RDMxMUVGQkFFRERDMUVDNEY5QUUwMi8ya2NuaW5lNzNfS3RuNWlnRWFLbm91Zk5Z TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJrY25pbmU3M19LdG41aWdFYUtub3VmTllOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTNCRS83NzQxNjE0QzUyRDMxMUVGQkFFRERDMUVDNEY5QUUwMi8ya2NuaW5lNzNf S3RuNWlnRWFLbm91Zk5ZTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBD1IdBkeQXZ4PFyivlr5c4sXQ7fQ/O3wEbIVC+fqlLuKBf67qjyMRa Ib5b/uBi2wEFBz/5WJk/qmRVGmQO49V5rHurOGCJtI7K1c8nMx5OnFSeAEEU94S9 uuE/nSzMVQqeRjOQrR0/vBaUXR2GJhYr3YkS99UXTQKx1Hfm+1x1fwfHoBUo6GpD pYFi/JqKUG1LZH+Zz+uoPcBDSb53rQVMXmiJSa8fnXl1N9TRfCRxaEJVxXbSJxsV 60AoGt91E4RR88SQWnSxin9QQwexAChrdl7Pfjb66nTJwZ3Eo2/sGnFNvL8aNzlg DxDBV6xIVhA1eK9WCzLHVya57bCzCEu3 -----END CERTIFICATE-----Generated at Thu May 15 12:26:26 2025 by rpki-client