$ rpki-client -vvf rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft File: KXr2WH-YpJnreNLMrjYW70KfV1A.mft (raw, json) Hash identifier: TJVx17OTPDHvPVNce+/cr9nUGiWDTWaRYf8kHnU3Lhg= Subject key identifier: 37:61:4F:63:E9:46:14:D3:62:75:FD:8A:B3:FA:9B:60:36:82:04:BD Authority key identifier: 29:7A:F6:58:7F:98:A4:99:EB:78:D2:CC:AE:36:16:EF:42:9F:57:50 Certificate issuer: /CN=A91411BC/serialNumber=297AF6587F98A499EB78D2CCAE3616EF429F5750 Certificate serial: 131F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXr2WH-YpJnreNLMrjYW70KfV1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft Manifest number: 1317 Signing time: Sun 18 May 2025 16:55:34 +0000 Manifest this update: Sun 18 May 2025 16:55:33 +0000 Manifest next update: Sun 25 May 2025 16:55:33 +0000 Files and hashes: 1: KXr2WH-YpJnreNLMrjYW70KfV1A.crl (hash: IMhabPOPTPwcgXYGQjdgUW2mLhbWh51TFCV+sVwlcIQ=) 2: B4996A22AC3411E88623474BC4F9AE02.roa (hash: Uautv1XlrGIKG3uUq9YoWLtURxeqWmVrl93Jj3fy9ko=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.crl rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXr2WH-YpJnreNLMrjYW70KfV1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 25 May 2025 15:52:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4895 (0x131f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91411BC, serialNumber=297AF6587F98A499EB78D2CCAE3616EF429F5750 Validity Not Before: May 18 16:55:33 2025 GMT Not After : May 25 16:55:33 2025 GMT Subject: CN=682a1106-fbaf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:2a:9f:dc:99:85:7f:58:25:38:ea:d3:42:40: 7e:f1:2e:a1:72:83:b5:70:8f:90:25:3b:70:0f:f3: 2a:09:27:91:c6:6c:6f:5d:1e:75:8c:de:c9:0a:ab: cb:3d:c5:95:33:35:42:31:6d:84:6c:93:e8:e6:11: 13:2a:f7:54:2c:45:12:ac:ca:55:3b:86:8d:dd:04: c0:43:1f:0f:43:47:0d:79:80:fc:d7:a9:8a:01:89: 73:14:80:8b:c0:cf:6e:65:97:c3:63:3d:da:b5:35: e9:2c:34:79:3d:32:cc:76:24:01:5a:1e:9a:82:96: e9:39:c8:b6:74:0c:0a:03:86:25:d2:f3:34:6b:96: e9:fe:23:1c:09:b9:86:80:39:5e:46:da:d6:07:3a: 1c:7f:6a:db:0a:f1:af:4d:4b:7d:31:3f:cc:22:e2: c2:97:99:7d:59:0e:d0:24:51:b2:41:36:7b:b2:a3: 8e:c2:96:2b:21:82:65:9e:05:e9:e3:36:2e:7f:59: d4:39:18:2f:d9:f4:3d:e4:8a:f6:9d:5f:22:a1:dd: 6c:0f:84:16:a2:e5:ba:d1:5e:e9:84:38:91:8b:a0: 67:e3:53:32:41:46:c9:8c:51:7f:37:29:23:06:7a: 90:3e:3f:0e:0f:30:6b:bd:82:04:ea:6e:0b:c3:7c: 28:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:61:4F:63:E9:46:14:D3:62:75:FD:8A:B3:FA:9B:60:36:82:04:BD X509v3 Authority Key Identifier: keyid:29:7A:F6:58:7F:98:A4:99:EB:78:D2:CC:AE:36:16:EF:42:9F:57:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXr2WH-YpJnreNLMrjYW70KfV1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:53:28:8d:fc:56:91:4e:d1:28:89:13:12:2e:ab:44:dc:60: 1d:9a:62:31:68:4b:e7:b5:8d:78:37:23:43:2b:53:57:eb:f4: bf:d3:f5:99:01:91:88:c3:15:d2:ab:5b:18:93:d2:27:2d:ea: 20:3e:28:02:6f:09:2a:e1:e7:1c:77:47:e9:bd:93:a7:28:25: 5d:f0:60:9a:1c:cd:80:e3:88:d1:54:10:b9:5d:f0:0e:90:5a: a6:66:16:42:d5:8d:e5:6f:04:de:91:c6:0b:0f:e0:ae:2d:dc: c5:28:23:d0:7f:2c:b0:83:41:68:64:2e:fd:1b:18:44:31:b8: cd:3a:2c:c0:e7:64:bf:76:bf:21:0a:89:89:48:26:5c:88:78: ad:8c:f5:4d:7c:d5:f6:b3:f8:b4:7c:fe:2d:2c:40:68:da:bc: 70:c0:83:c1:e6:84:b7:9d:20:3d:fa:7a:55:4f:70:ec:30:d8: d8:22:f0:3c:ef:6c:25:29:99:6b:94:f7:16:2a:97:2c:a1:79: 27:16:32:0d:4f:35:aa:e7:df:2d:d7:c5:6a:a9:0a:79:1e:c6: fa:0a:d6:72:c5:b0:a4:4f:60:09:1d:01:59:53:ac:5a:d7:aa: 88:25:e3:6f:89:31:36:13:8c:02:16:72:45:f9:cd:b0:e7:fb: f3:87:0a:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEx8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDExQkMxMTAvBgNVBAUTKDI5N0FGNjU4N0Y5OEE0OTlFQjc4RDJDQ0FFMzYxNkVG NDI5RjU3NTAwHhcNMjUwNTE4MTY1NTMzWhcNMjUwNTI1MTY1NTMzWjAYMRYwFAYD VQQDEw02ODJhMTEwNi1mYmFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyyqf3JmFf1glOOrTQkB+8S6hcoO1cI+QJTtwD/MqCSeRxmxvXR51jN7JCqvL PcWVMzVCMW2EbJPo5hETKvdULEUSrMpVO4aN3QTAQx8PQ0cNeYD816mKAYlzFICL wM9uZZfDYz3atTXpLDR5PTLMdiQBWh6agpbpOci2dAwKA4Yl0vM0a5bp/iMcCbmG gDleRtrWBzocf2rbCvGvTUt9MT/MIuLCl5l9WQ7QJFGyQTZ7sqOOwpYrIYJlngXp 4zYuf1nUORgv2fQ95Ir2nV8iod1sD4QWouW60V7phDiRi6Bn41MyQUbJjFF/Nykj BnqQPj8ODzBrvYIE6m4Lw3womQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDdhT2Pp RhTTYnX9irP6m2A2ggS9MB8GA1UdIwQYMBaAFCl69lh/mKSZ63jSzK42Fu9Cn1dQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MTFCQy9FMzE3MUIwMkFD MzMxMUU4QjIwNjk0NDlDNEY5QUUwMi9LWHIyV0gtWXBKbnJlTkxNcmpZVzcwS2ZW MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tYcjJXSC1ZcEpucmVOTE1yallXNzBLZlYxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MTFCQy9FMzE3MUIwMkFDMzMxMUU4QjIwNjk0NDlDNEY5QUUwMi9LWHIyV0gtWXBK bnJlTkxNcmpZVzcwS2ZWMUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuUyiN/FaRTtEoiRMSLqtE3GAdmmIxaEvntY14NyNDK1NX6/S/0/WZ AZGIwxXSq1sYk9InLeogPigCbwkq4eccd0fpvZOnKCVd8GCaHM2A44jRVBC5XfAO kFqmZhZC1Y3lbwTekcYLD+CuLdzFKCPQfyywg0FoZC79GxhEMbjNOizA52S/dr8h ComJSCZciHitjPVNfNX2s/i0fP4tLEBo2rxwwIPB5oS3nSA9+npVT3DsMNjYIvA8 72wlKZlrlPcWKpcsoXknFjINTzWq598t18VqqQp5Hsb6CtZyxbCkT2AJHQFZU6xa 16qIJeNviTE2E4wCFnJF+c2w5/vzhwpr -----END CERTIFICATE-----Generated at Sun May 18 20:05:51 2025 by rpki-client