$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.mft File: kfPcWc0PodJBy3h1fR2qksKsn2A.mft (raw, json) Hash identifier: KFvOqZ5NGzpXyr+0tJlODlbKbsCfou7uemjue8YFwBU= Subject key identifier: 79:B5:FB:53:85:22:CF:2B:B0:C0:D9:9D:FF:D0:02:FD:5B:B4:25:2A Authority key identifier: 91:F3:DC:59:CD:0F:A1:D2:41:CB:78:75:7D:1D:AA:92:C2:AC:9F:60 Certificate issuer: /CN=A91A0432/serialNumber=91F3DC59CD0FA1D241CB78757D1DAA92C2AC9F60 Certificate serial: 0388 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfPcWc0PodJBy3h1fR2qksKsn2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.mft Manifest number: 0382 Signing time: Thu 15 May 2025 00:55:08 +0000 Manifest this update: Thu 15 May 2025 00:55:08 +0000 Manifest next update: Thu 22 May 2025 00:55:08 +0000 Files and hashes: 1: kfPcWc0PodJBy3h1fR2qksKsn2A.crl (hash: YqwwvoiXHr/R1WPkj5qSNNhbK8tz3g7yeHShzKoGchc=) 2: 4114509A597511EFA2B79A84C4F9AE02.roa (hash: 0e5zzWh6ApozGk/jFChRqF4rHk2hQMmiudaU4V4FOFU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.crl rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfPcWc0PodJBy3h1fR2qksKsn2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 00:55:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 904 (0x388) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0432, serialNumber=91F3DC59CD0FA1D241CB78757D1DAA92C2AC9F60 Validity Not Before: May 15 00:55:08 2025 GMT Not After : May 22 00:55:08 2025 GMT Subject: CN=68253b6c-14be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:32:5f:32:23:34:ec:0b:37:0e:bb:bf:d1:1c: 53:b0:0f:c9:a6:7a:17:d6:91:b2:80:e9:c5:f7:25: 0c:9a:50:50:9f:d6:6b:39:29:5c:98:68:16:e7:18: da:91:bc:c7:a0:91:3b:63:87:4e:19:02:1b:ac:32: 02:73:3c:2f:6b:19:a4:3e:2f:db:90:a9:b9:00:6f: 46:76:34:e3:ce:7b:84:a7:f7:d6:8a:0c:0b:05:4a: 04:ab:1c:ae:e7:b9:a0:c9:3e:76:6d:7b:8e:78:f8: 22:e9:db:55:0f:9b:91:d0:0d:45:90:e4:95:8c:b8: c2:db:ae:ce:97:7a:80:34:0a:92:2a:d1:96:06:8e: 97:9a:00:52:bd:b5:ca:2b:a3:ab:08:30:76:5b:0c: e5:f8:78:71:7f:e9:af:3d:74:0f:96:f7:1b:be:b1: 10:be:8d:89:e1:84:ec:c8:7c:b1:b8:40:88:98:da: 48:42:1a:6b:4f:0f:68:bc:f2:4e:73:c7:7a:cc:15: 51:b2:d6:91:3c:36:df:e1:5e:e2:e7:e2:8b:bd:7d: 91:2f:77:14:3a:c6:5a:36:d8:a9:7f:9e:28:ac:3a: 79:a7:4e:e0:ee:4a:7b:35:98:74:18:b5:b5:5f:12: b1:10:dc:ab:10:de:36:ad:1f:c0:33:b0:ad:1b:90: e2:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:B5:FB:53:85:22:CF:2B:B0:C0:D9:9D:FF:D0:02:FD:5B:B4:25:2A X509v3 Authority Key Identifier: keyid:91:F3:DC:59:CD:0F:A1:D2:41:CB:78:75:7D:1D:AA:92:C2:AC:9F:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfPcWc0PodJBy3h1fR2qksKsn2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:0f:61:53:ae:73:6e:8c:8a:bd:38:92:7d:1d:a3:11:9a:94: 29:ed:b8:db:44:76:f4:15:de:56:f6:ca:71:ca:95:32:37:2b: a4:71:c3:c6:ca:c9:74:4e:f0:4f:81:07:3e:19:a0:61:96:2f: 57:72:05:64:83:7c:52:04:44:69:5a:d8:8c:2b:3c:34:37:7b: 63:89:54:65:61:af:fc:5e:a6:f4:51:c5:ea:44:cf:3d:ee:b4: 17:ca:4a:a7:be:d2:4f:4f:36:12:8b:5e:7b:3a:78:4a:ce:6d: 94:e3:de:7b:05:9f:84:7f:b0:e2:f1:8c:6c:bd:3d:ce:74:e4: 98:78:ce:f9:e9:85:5c:e7:31:df:24:a3:3e:51:f4:70:ba:a5: a1:d6:d6:b3:9b:cb:c5:f1:75:f9:e9:5d:f7:61:0b:cb:53:c6: 60:97:2e:52:ba:a8:5b:43:12:f5:1d:30:d9:7c:36:17:de:60: b2:80:2a:59:05:8f:11:ac:23:01:e8:c2:f3:a7:db:84:09:88: 85:c7:1f:1f:67:43:80:fd:d4:a1:50:96:66:da:4c:3a:81:16: 48:6a:15:cb:96:72:8c:6a:1c:0f:b0:3e:08:12:27:28:52:92: 25:85:38:fc:d5:7e:72:99:61:10:25:e9:ee:a2:0a:6d:5a:80: 4d:a5:38:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA4gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA0MzIxMTAvBgNVBAUTKDkxRjNEQzU5Q0QwRkExRDI0MUNCNzg3NTdEMURBQTky QzJBQzlGNjAwHhcNMjUwNTE1MDA1NTA4WhcNMjUwNTIyMDA1NTA4WjAYMRYwFAYD VQQDEw02ODI1M2I2Yy0xNGJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsTJfMiM07As3Dru/0RxTsA/JpnoX1pGygOnF9yUMmlBQn9ZrOSlcmGgW5xja kbzHoJE7Y4dOGQIbrDICczwvaxmkPi/bkKm5AG9GdjTjznuEp/fWigwLBUoEqxyu 57mgyT52bXuOePgi6dtVD5uR0A1FkOSVjLjC267Ol3qANAqSKtGWBo6XmgBSvbXK K6OrCDB2Wwzl+Hhxf+mvPXQPlvcbvrEQvo2J4YTsyHyxuECImNpIQhprTw9ovPJO c8d6zBVRstaRPDbf4V7i5+KLvX2RL3cUOsZaNtipf54orDp5p07g7kp7NZh0GLW1 XxKxENyrEN42rR/AM7CtG5DiwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHm1+1OF Is8rsMDZnf/QAv1btCUqMB8GA1UdIwQYMBaAFJHz3FnND6HSQct4dX0dqpLCrJ9g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDQzMi9GNUJGNjk5Q0E0 Q0ExMUVDQUM0RTU3NDRDNEY5QUUwMi9rZlBjV2MwUG9kSkJ5M2gxZlIycWtzS3Nu MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tmUGNXYzBQb2RKQnkzaDFmUjJxa3NLc24yQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDQzMi9GNUJGNjk5Q0E0Q0ExMUVDQUM0RTU3NDRDNEY5QUUwMi9rZlBjV2MwUG9k SkJ5M2gxZlIycWtzS3NuMkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQD2FTrnNujIq9OJJ9HaMRmpQp7bjbRHb0Fd5W9spxypUyNyukccPG ysl0TvBPgQc+GaBhli9XcgVkg3xSBERpWtiMKzw0N3tjiVRlYa/8Xqb0UcXqRM89 7rQXykqnvtJPTzYSi157OnhKzm2U4957BZ+Ef7Di8YxsvT3OdOSYeM756YVc5zHf JKM+UfRwuqWh1tazm8vF8XX56V33YQvLU8Zgly5SuqhbQxL1HTDZfDYX3mCygCpZ BY8RrCMB6MLzp9uECYiFxx8fZ0OA/dShUJZm2kw6gRZIahXLlnKMahwPsD4IEico UpIlhTj81X5ymWEQJenuogptWoBNpTgb -----END CERTIFICATE-----Generated at Fri May 16 12:48:46 2025 by rpki-client