$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft File: KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft (raw, json) Hash identifier: BwLonuz/VKgLIsTAtZXz0zIR6PdgNXwnpJWCLSRO+Ww= Subject key identifier: CF:97:E9:5D:71:6A:79:EF:C9:4F:3E:A0:3D:11:D0:08:45:23:F0:15 Authority key identifier: 2A:45:A4:1D:60:E2:F1:04:D3:DD:39:C8:6F:14:BC:59:00:88:3F:4B Certificate issuer: /CN=A91A4287/serialNumber=2A45A41D60E2F104D3DD39C86F14BC5900883F4B Certificate serial: 20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkWkHWDi8QTT3TnIbxS8WQCIP0s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft Manifest number: 1F Signing time: Thu 15 May 2025 07:11:27 +0000 Manifest this update: Thu 15 May 2025 07:11:26 +0000 Manifest next update: Thu 22 May 2025 07:11:26 +0000 Files and hashes: 1: KkWkHWDi8QTT3TnIbxS8WQCIP0s.crl (hash: 5uSJgtmctUAkNNM78oUU5J8cZ4dYt6F+8mmDuG7OROE=) 2: 8CC07FC0047211F0A6541526C4F9AE02.roa (hash: PgYYJ9/o38WTea0u5fJFPWCIw+78oj+kOWm1Hogb3eo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.crl rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkWkHWDi8QTT3TnIbxS8WQCIP0s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 07:11:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32 (0x20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4287, serialNumber=2A45A41D60E2F104D3DD39C86F14BC5900883F4B Validity Not Before: May 15 07:11:26 2025 GMT Not After : May 22 07:11:26 2025 GMT Subject: CN=6825939f-c10b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:63:a3:85:89:d0:ce:2e:42:30:33:4d:a3:a4: 2a:7c:f3:ae:dd:1c:67:ff:f1:fb:ed:3f:58:e7:a9: c5:b8:27:a2:15:d3:8d:47:e5:ad:ff:f8:7d:6f:d8: 39:c3:1b:2b:a2:3a:59:66:ca:87:09:0c:f0:c7:16: 77:7a:de:0b:ab:2c:2f:ae:5f:50:78:24:d0:23:27: d9:67:ab:b8:fa:4f:2f:ab:0d:a4:7c:02:71:2f:35: cb:ba:06:12:4c:84:8f:cd:8b:94:b4:99:3b:b0:31: b8:57:07:c5:54:9d:37:bb:db:7e:0d:c3:37:0a:66: f7:b7:32:55:04:c1:3f:cc:4e:bd:f2:e8:ad:a3:fb: c7:6a:4c:d0:83:d1:32:a9:9d:0d:08:52:08:bf:df: 15:65:28:58:65:b1:c3:9a:6d:65:4d:af:00:af:f0: 59:97:68:37:2c:21:7d:70:28:90:e2:cc:85:01:0c: b2:e1:35:c9:bc:fc:ba:86:d2:8c:6b:86:bd:1d:3f: 0b:53:5a:4e:b6:24:ad:17:85:07:d6:c7:5d:be:29: 44:c4:c0:6c:af:25:29:f0:b0:c3:e7:ed:7d:b4:0c: 4e:bc:ea:ed:65:9f:b6:d5:45:22:d2:6b:7f:89:39: 71:c2:54:2b:56:cc:6b:4a:bf:92:4b:60:bc:f7:ad: 05:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:97:E9:5D:71:6A:79:EF:C9:4F:3E:A0:3D:11:D0:08:45:23:F0:15 X509v3 Authority Key Identifier: keyid:2A:45:A4:1D:60:E2:F1:04:D3:DD:39:C8:6F:14:BC:59:00:88:3F:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkWkHWDi8QTT3TnIbxS8WQCIP0s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:da:de:9b:13:47:a1:96:1e:45:51:c5:39:30:44:01:21:c6: 37:74:3f:32:dd:a2:bd:75:20:54:e9:00:38:73:68:83:2e:51: ca:15:0d:da:79:1c:c3:8e:e9:44:82:34:d0:17:48:f8:b9:c9: 1c:4a:4a:b0:12:87:fc:e2:7b:85:1a:ae:a6:e9:ff:90:83:23: fc:7c:70:ea:52:fa:92:90:dd:62:59:87:44:c9:f5:a8:55:7e: 66:e6:42:45:83:53:f3:87:4f:e4:6a:6a:54:5d:9e:8e:1a:eb: a8:44:2b:d0:b3:bb:7d:0b:d9:d5:a0:ae:6f:be:2c:85:86:c7: d2:de:8c:a3:0d:31:29:54:c6:21:be:8b:90:7f:2f:f6:57:ad: 64:77:4f:4e:d2:c2:24:30:b6:15:0f:6d:f4:b6:d2:1c:44:f5: 7c:f5:a3:bc:a2:ea:e0:6d:a6:f6:6e:7a:e7:8e:4e:0a:f8:45: bc:89:3e:6e:3e:22:fd:40:59:ba:66:5a:1f:93:b6:ed:fb:1e: 9f:47:de:d1:df:da:d8:d4:0a:d9:9c:33:7e:bd:b5:9a:67:be: 92:7b:6f:b4:ce:c4:e3:e7:b6:6f:5c:e1:66:cc:c3:dd:17:13: 1a:93:0d:49:c8:c1:1f:83:86:d7:97:27:90:da:f6:b6:75:7c: 84:72:2b:95 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NDI4NzExMC8GA1UEBRMoMkE0NUE0MUQ2MEUyRjEwNEQzREQzOUM4NkYxNEJDNTkw MDg4M0Y0QjAeFw0yNTA1MTUwNzExMjZaFw0yNTA1MjIwNzExMjZaMBgxFjAUBgNV BAMTDTY4MjU5MzlmLWMxMGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDVY6OFidDOLkIwM02jpCp8867dHGf/8fvtP1jnqcW4J6IV041H5a3/+H1v2DnD GyuiOllmyocJDPDHFnd63gurLC+uX1B4JNAjJ9lnq7j6Ty+rDaR8AnEvNcu6BhJM hI/Ni5S0mTuwMbhXB8VUnTe7234NwzcKZve3MlUEwT/MTr3y6K2j+8dqTNCD0TKp nQ0IUgi/3xVlKFhlscOabWVNrwCv8FmXaDcsIX1wKJDizIUBDLLhNcm8/LqG0oxr hr0dPwtTWk62JK0XhQfWx12+KUTEwGyvJSnwsMPn7X20DE686u1ln7bVRSLSa3+J OXHCVCtWzGtKv5JLYLz3rQUHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUz5fpXXFq ee/JTz6gPRHQCEUj8BUwHwYDVR0jBBgwFoAUKkWkHWDi8QTT3TnIbxS8WQCIP0sw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE0Mjg3LzM3Mjc4QzE2MDQ2 RDExRjBCNzdEMDM2MUM0RjlBRTAyL0trV2tIV0RpOFFUVDNUbklieFM4V1FDSVAw cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS2tXa0hXRGk4UVRUM1RuSWJ4UzhXUUNJUDBzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE0 Mjg3LzM3Mjc4QzE2MDQ2RDExRjBCNzdEMDM2MUM0RjlBRTAyL0trV2tIV0RpOFFU VDNUbklieFM4V1FDSVAwcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGza3psTR6GWHkVRxTkwRAEhxjd0PzLdor11IFTpADhzaIMuUcoVDdp5 HMOO6USCNNAXSPi5yRxKSrASh/zie4Uarqbp/5CDI/x8cOpS+pKQ3WJZh0TJ9ahV fmbmQkWDU/OHT+RqalRdno4a66hEK9Czu30L2dWgrm++LIWGx9LejKMNMSlUxiG+ i5B/L/ZXrWR3T07SwiQwthUPbfS20hxE9Xz1o7yi6uBtpvZueueOTgr4RbyJPm4+ Iv1AWbpmWh+Ttu37Hp9H3tHf2tjUCtmcM369tZpnvpJ7b7TOxOPntm9c4WbMw90X ExqTDUnIwR+DhteXJ5Da9rZ1fIRyK5U= -----END CERTIFICATE-----Generated at Fri May 16 02:55:15 2025 by rpki-client