$ rpki-client -vvf rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft File: kuYzl488XC0IYKzbDh3VEhAOie8.mft (raw, json) Hash identifier: idIen00kAUaTZeFuNlfwM8m0d26VeMxmWuBnmTNDsCQ= Subject key identifier: D9:19:16:66:BF:61:22:A0:72:7B:DA:68:8A:D6:3B:6D:75:EE:B7:08 Authority key identifier: 92:E6:33:97:8F:3C:5C:2D:08:60:AC:DB:0E:1D:D5:12:10:0E:89:EF Certificate issuer: /CN=A91A15FB/serialNumber=92E633978F3C5C2D0860ACDB0E1DD512100E89EF Certificate serial: AA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kuYzl488XC0IYKzbDh3VEhAOie8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft Manifest number: A9 Signing time: Thu 15 May 2025 05:23:25 +0000 Manifest this update: Thu 15 May 2025 05:23:25 +0000 Manifest next update: Thu 22 May 2025 05:23:25 +0000 Files and hashes: 1: kuYzl488XC0IYKzbDh3VEhAOie8.crl (hash: jeTlG070w26T4whGN/W48w9+tDWUY06FYxi5cCEYCsU=) 2: 431868FE2EC811EFBB3A6574C4F9AE02.roa (hash: yYqs2C5AMpVdcomEvwsEelNt35bcShUcpatPOoqg3y0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.crl rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kuYzl488XC0IYKzbDh3VEhAOie8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 05:23:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 170 (0xaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A15FB, serialNumber=92E633978F3C5C2D0860ACDB0E1DD512100E89EF Validity Not Before: May 15 05:23:25 2025 GMT Not After : May 22 05:23:25 2025 GMT Subject: CN=68257a4d-0b81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:d3:2c:b2:8f:fe:44:86:b8:f9:87:9f:e9:a0: 72:4e:78:13:ba:a5:b1:2a:7d:c5:70:7f:81:d3:24: 82:63:fa:53:17:0f:bf:59:a9:b8:84:09:79:93:c4: ee:49:09:b4:4c:9b:98:9f:c9:ed:b0:9a:a1:ec:08: 61:8c:0d:bf:71:ba:c7:f7:6f:27:6e:50:6c:34:65: 2e:18:49:06:ed:9f:c1:8a:fa:22:73:36:d2:f5:8d: cd:7e:ee:c9:1e:c9:2d:0c:c0:f9:17:1e:8a:b4:07: 10:cd:40:cc:e7:40:f2:84:65:1e:a6:08:7d:49:5b: cc:95:45:be:12:c4:06:67:98:99:5c:11:4f:8d:1a: fd:77:ec:1c:56:57:ca:5c:f9:94:67:cb:d2:8b:6a: 1b:76:89:71:aa:98:2f:ba:68:58:0b:c9:6f:d0:a8: 79:6f:d8:a9:60:61:ad:6a:85:40:3d:32:35:53:04: 93:b3:d0:81:b3:2a:af:ad:90:5f:ee:e2:e7:8a:f9: 55:e3:4f:ce:5c:16:98:ae:0f:3f:94:2e:67:9e:f2: ab:eb:f9:7f:43:d6:82:70:fa:db:50:69:8d:49:7e: c4:27:83:e1:9d:3c:ea:75:04:be:d6:71:5d:9f:ed: 4e:af:f7:44:52:e2:ec:62:f8:d4:e6:02:ce:67:64: 53:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:19:16:66:BF:61:22:A0:72:7B:DA:68:8A:D6:3B:6D:75:EE:B7:08 X509v3 Authority Key Identifier: keyid:92:E6:33:97:8F:3C:5C:2D:08:60:AC:DB:0E:1D:D5:12:10:0E:89:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kuYzl488XC0IYKzbDh3VEhAOie8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:37:25:d4:a2:c2:96:31:9e:88:3a:36:d6:ae:2c:d8:9b:cc: 3e:ff:54:53:d7:00:05:e3:13:8e:c0:0b:6d:56:96:e1:b8:16: a0:80:4c:8a:f5:3b:b0:81:33:7c:8d:7e:b5:84:47:f8:5f:c8: d9:4b:f0:44:89:33:e5:f5:23:a4:39:18:c6:60:d2:81:7a:46: 43:92:18:0d:f8:95:3e:36:3f:aa:c5:cc:9f:0d:d3:04:fd:df: 22:e2:d2:06:4a:6b:15:e8:67:eb:ff:a1:59:f7:af:6f:f4:f9: 74:1e:52:28:75:74:79:85:53:33:f3:68:dd:85:4c:c4:61:35: d5:50:67:63:96:1c:e5:ca:56:bb:6e:1a:b3:07:85:7a:6c:45: 61:d9:1e:79:97:3f:4b:cd:c7:51:85:a4:3a:f6:d9:8b:53:08: 4c:5b:bb:ef:28:6a:27:74:3c:12:ab:22:c9:74:c0:e8:91:c0: b6:b5:3e:05:bd:58:f7:6a:96:b2:27:01:ff:6d:bb:95:79:4c: 10:42:fa:c9:55:78:06:53:40:04:8a:62:7e:6d:48:dd:de:08: ee:13:88:96:d0:25:89:f3:25:6e:d6:a2:3a:2b:1b:93:de:ca: 08:24:16:d4:fb:6f:7c:32:22:7b:48:35:8f:ac:62:eb:7a:c1: b3:56:5e:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTE1RkIxMTAvBgNVBAUTKDkyRTYzMzk3OEYzQzVDMkQwODYwQUNEQjBFMURENTEy MTAwRTg5RUYwHhcNMjUwNTE1MDUyMzI1WhcNMjUwNTIyMDUyMzI1WjAYMRYwFAYD VQQDEw02ODI1N2E0ZC0wYjgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAldMsso/+RIa4+Yef6aByTngTuqWxKn3FcH+B0ySCY/pTFw+/Wam4hAl5k8Tu SQm0TJuYn8ntsJqh7AhhjA2/cbrH928nblBsNGUuGEkG7Z/BivoiczbS9Y3Nfu7J HsktDMD5Fx6KtAcQzUDM50DyhGUepgh9SVvMlUW+EsQGZ5iZXBFPjRr9d+wcVlfK XPmUZ8vSi2obdolxqpgvumhYC8lv0Kh5b9ipYGGtaoVAPTI1UwSTs9CBsyqvrZBf 7uLnivlV40/OXBaYrg8/lC5nnvKr6/l/Q9aCcPrbUGmNSX7EJ4PhnTzqdQS+1nFd n+1Or/dEUuLsYvjU5gLOZ2RTpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNkZFma/ YSKgcnvaaIrWO2117rcIMB8GA1UdIwQYMBaAFJLmM5ePPFwtCGCs2w4d1RIQDonv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTVGQi9CRTg4QTcwQzJF QzcxMUVGODIyMDgyNzNDNEY5QUUwMi9rdVl6bDQ4OFhDMElZS3piRGgzVkVoQU9p ZTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2t1WXpsNDg4WEMwSVlLemJEaDNWRWhBT2llOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTVGQi9CRTg4QTcwQzJFQzcxMUVGODIyMDgyNzNDNEY5QUUwMi9rdVl6bDQ4OFhD MElZS3piRGgzVkVoQU9pZTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjNyXUosKWMZ6IOjbWrizYm8w+/1RT1wAF4xOOwAttVpbhuBaggEyK 9TuwgTN8jX61hEf4X8jZS/BEiTPl9SOkORjGYNKBekZDkhgN+JU+Nj+qxcyfDdME /d8i4tIGSmsV6Gfr/6FZ969v9Pl0HlIodXR5hVMz82jdhUzEYTXVUGdjlhzlyla7 bhqzB4V6bEVh2R55lz9LzcdRhaQ69tmLUwhMW7vvKGondDwSqyLJdMDokcC2tT4F vVj3apayJwH/bbuVeUwQQvrJVXgGU0AEimJ+bUjd3gjuE4iW0CWJ8yVu1qI6KxuT 3soIJBbU+298MiJ7SDWPrGLresGzVl48 -----END CERTIFICATE-----Generated at Thu May 15 10:15:45 2025 by rpki-client