$ rpki-client -vvf rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft File: kDfAsp43CSqDhSzkuIW3dqfB47Y.mft (raw, json) Hash identifier: /ul0S22tWD+0MYkuP2WkQ28JBHiyyJc2qevlQ66k8RE= Subject key identifier: CC:14:42:2F:37:85:2C:E0:CA:F8:A8:B0:13:F2:DD:CB:2E:65:E8:0A Authority key identifier: 90:37:C0:B2:9E:37:09:2A:83:85:2C:E4:B8:85:B7:76:A7:C1:E3:B6 Certificate issuer: /CN=A91957D1/serialNumber=9037C0B29E37092A83852CE4B885B776A7C1E3B6 Certificate serial: 0113 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft Manifest number: 0110 Signing time: Thu 15 May 2025 04:18:58 +0000 Manifest this update: Thu 15 May 2025 04:18:57 +0000 Manifest next update: Thu 22 May 2025 04:18:57 +0000 Files and hashes: 1: kDfAsp43CSqDhSzkuIW3dqfB47Y.crl (hash: bZyxWzk79fqAskEU/bfRTZZSpqPEBimdZf+m/8GjXEA=) 2: 72CE4D80958411EEB3748B58C4F9AE02.roa (hash: iKey44OboTB8NilxUb2DzRzq18OyDEY6fi5JIxPzxK0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.crl rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 04:18:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 275 (0x113) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91957D1, serialNumber=9037C0B29E37092A83852CE4B885B776A7C1E3B6 Validity Not Before: May 15 04:18:57 2025 GMT Not After : May 22 04:18:57 2025 GMT Subject: CN=68256b31-d700 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:74:0c:05:9b:21:17:88:aa:1d:80:ba:66:76: ff:b2:06:4e:9e:89:72:72:f1:2e:12:e5:6a:47:03: 09:61:b7:cd:26:f1:6a:e6:b4:00:85:6a:7a:97:54: ad:e6:8e:de:56:8c:fb:b5:75:a1:37:62:bd:5f:02: b2:81:c6:9d:68:1b:1d:f9:84:80:f9:5f:f3:f7:0c: dd:23:33:1a:0e:06:09:b1:a3:91:79:48:2a:c9:eb: 0e:47:33:40:8c:67:ac:87:cb:2c:b0:d7:43:37:94: 73:65:fb:07:fd:44:8e:47:63:c0:e7:dd:b5:35:83: da:21:70:86:ad:03:1f:43:42:3c:44:b8:60:4d:10: 3a:88:6b:b3:c4:4b:e7:c0:cd:82:00:0d:3d:4f:9b: c3:3d:dd:22:5e:3e:ef:ab:a8:4b:bb:00:a3:b1:d0: 81:7c:19:4b:3f:dd:d8:46:8c:e1:d1:5b:ec:15:f9: a7:84:ff:36:18:c6:5f:05:c2:77:92:b3:3e:f3:d4: f4:7d:79:b9:d8:8d:bb:fc:61:48:d4:ab:9e:f1:3e: d9:43:cc:48:40:67:95:09:86:20:54:90:80:91:16: 94:e7:09:98:cf:e3:22:be:23:f3:d4:93:18:f8:98: 18:04:c7:f0:70:33:62:4a:c8:94:c9:bf:2b:cd:8e: f2:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:14:42:2F:37:85:2C:E0:CA:F8:A8:B0:13:F2:DD:CB:2E:65:E8:0A X509v3 Authority Key Identifier: keyid:90:37:C0:B2:9E:37:09:2A:83:85:2C:E4:B8:85:B7:76:A7:C1:E3:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:b5:1e:5b:07:f1:dc:99:5b:9a:2b:7e:6b:97:6d:24:4c:77: 5b:12:88:8b:e9:42:00:04:69:3a:59:2f:8f:73:8f:ed:01:4a: b6:80:e0:ea:be:06:57:fe:a5:aa:c8:0e:bc:ea:1c:aa:c3:57: 8d:dd:1e:be:b4:c1:94:92:66:a7:54:2d:3d:43:7c:db:9a:9f: b2:6e:64:7d:f7:d8:1e:d4:0c:d1:0b:ad:5f:47:2e:0f:9c:4d: d8:e0:1c:de:1f:4e:f4:e9:4c:bd:89:42:be:22:14:02:96:f9: 1e:ce:56:b1:c4:15:74:60:9b:5e:de:3f:1a:72:e3:67:9b:60: bd:f5:c8:16:98:81:d0:87:c8:14:87:3d:e4:c8:bd:d4:29:01: 91:9d:44:36:c9:c1:c4:e8:a7:49:8b:e4:51:bd:7b:df:2a:ee: e1:9b:9f:1b:0b:6b:c8:34:91:47:af:18:61:f8:01:e1:61:2d: 11:f3:a8:5d:30:12:12:d3:8b:d5:b0:30:a3:52:83:cb:c5:db: e3:ef:57:ef:1e:9a:09:c1:88:3d:e5:bb:ec:04:e9:03:45:e3: b5:20:d9:be:73:28:a5:b3:e6:97:f4:24:93:7f:27:be:e7:37: fb:3e:69:3b:b6:3a:f9:2f:f1:b4:2e:16:8a:45:8f:02:ad:4e: b9:6d:37:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU3RDExMTAvBgNVBAUTKDkwMzdDMEIyOUUzNzA5MkE4Mzg1MkNFNEI4ODVCNzc2 QTdDMUUzQjYwHhcNMjUwNTE1MDQxODU3WhcNMjUwNTIyMDQxODU3WjAYMRYwFAYD VQQDEw02ODI1NmIzMS1kNzAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv3QMBZshF4iqHYC6Znb/sgZOnolycvEuEuVqRwMJYbfNJvFq5rQAhWp6l1St 5o7eVoz7tXWhN2K9XwKygcadaBsd+YSA+V/z9wzdIzMaDgYJsaOReUgqyesORzNA jGesh8sssNdDN5RzZfsH/USOR2PA5921NYPaIXCGrQMfQ0I8RLhgTRA6iGuzxEvn wM2CAA09T5vDPd0iXj7vq6hLuwCjsdCBfBlLP93YRozh0VvsFfmnhP82GMZfBcJ3 krM+89T0fXm52I27/GFI1Kue8T7ZQ8xIQGeVCYYgVJCAkRaU5wmYz+MiviPz1JMY +JgYBMfwcDNiSsiUyb8rzY7ymwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMwUQi83 hSzgyviosBPy3csuZegKMB8GA1UdIwQYMBaAFJA3wLKeNwkqg4Us5LiFt3anweO2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTdEMS9GMDUzNzc5NDkz QkQxMUVFODFGODBBNTJDNEY5QUUwMi9rRGZBc3A0M0NTcURoU3prdUlXM2RxZkI0 N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tEZkFzcDQzQ1NxRGhTemt1SVczZHFmQjQ3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTdEMS9GMDUzNzc5NDkzQkQxMUVFODFGODBBNTJDNEY5QUUwMi9rRGZBc3A0M0NT cURoU3prdUlXM2RxZkI0N1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPtR5bB/HcmVuaK35rl20kTHdbEoiL6UIABGk6WS+Pc4/tAUq2gODq vgZX/qWqyA686hyqw1eN3R6+tMGUkmanVC09Q3zbmp+ybmR999ge1AzRC61fRy4P nE3Y4BzeH0706Uy9iUK+IhQClvkezlaxxBV0YJte3j8acuNnm2C99cgWmIHQh8gU hz3kyL3UKQGRnUQ2ycHE6KdJi+RRvXvfKu7hm58bC2vINJFHrxhh+AHhYS0R86hd MBIS04vVsDCjUoPLxdvj71fvHpoJwYg95bvsBOkDReO1INm+cyils+aX9CSTfye+ 5zf7Pmk7tjr5L/G0LhaKRY8CrU65bTe9 -----END CERTIFICATE-----Generated at Fri May 16 02:36:29 2025 by rpki-client