$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0CAE/7C644EE66A7111EEA5B4CB26C4F9AE02/KYEeHbBovbur-3q2lfhYmL1hjGk.mft File: KYEeHbBovbur-3q2lfhYmL1hjGk.mft (raw, json) Hash identifier: kb1Fyg4HzZ1BYBXX/M5wAqil2/rjbmEMcj5Sjinjw/0= Subject key identifier: 01:3D:E9:1B:65:44:E6:4C:4C:BD:28:D5:0B:B9:FB:57:9B:FB:01:F9 Authority key identifier: 29:81:1E:1D:B0:68:BD:BB:AB:FB:7A:B6:95:F8:58:98:BD:61:8C:69 Certificate issuer: /CN=A91B0CAE/serialNumber=29811E1DB068BDBBABFB7AB695F85898BD618C69 Certificate serial: 012E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KYEeHbBovbur-3q2lfhYmL1hjGk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0CAE/7C644EE66A7111EEA5B4CB26C4F9AE02/KYEeHbBovbur-3q2lfhYmL1hjGk.mft Manifest number: 012B Signing time: Tue 13 May 2025 03:49:37 +0000 Manifest this update: Tue 13 May 2025 03:49:37 +0000 Manifest next update: Tue 20 May 2025 03:49:37 +0000 Files and hashes: 1: KYEeHbBovbur-3q2lfhYmL1hjGk.crl (hash: 1VSslrzSK6m0jEdPAmNtUFvT2/VlfK7fRewnTU6h5MU=) 2: 0B2052EA6D0D11EEA65D7522C4F9AE02.roa (hash: romYbuiWzdOqklzJCkUsUwW/w4kh63Rd2xMFubLjgPo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0CAE/7C644EE66A7111EEA5B4CB26C4F9AE02/KYEeHbBovbur-3q2lfhYmL1hjGk.crl rsync://rpki.apnic.net/member_repository/A91B0CAE/7C644EE66A7111EEA5B4CB26C4F9AE02/KYEeHbBovbur-3q2lfhYmL1hjGk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KYEeHbBovbur-3q2lfhYmL1hjGk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 03:49:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 302 (0x12e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0CAE, serialNumber=29811E1DB068BDBBABFB7AB695F85898BD618C69 Validity Not Before: May 13 03:49:37 2025 GMT Not After : May 20 03:49:37 2025 GMT Subject: CN=6822c151-fbd1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:61:19:92:07:a4:69:20:63:c2:53:3e:67:fc: 72:99:2d:c1:2c:fd:63:3b:6a:3d:a4:a6:9c:26:08: 35:46:72:8a:e4:f3:0e:c1:aa:da:4c:32:2c:87:48: 8e:4e:89:05:08:70:1a:d1:46:4c:59:ec:9c:d2:2b: 41:c4:c5:b3:38:a8:58:ec:29:59:0e:54:4b:e3:3b: 8a:f7:98:d0:0f:15:7a:9f:1d:47:dc:c2:1f:64:5d: 68:2d:1a:02:6f:b4:5b:3e:42:12:a5:45:c5:40:f8: db:a3:b3:1f:c8:70:5d:87:5a:7d:30:ea:33:05:66: 15:c2:97:90:1d:4b:28:db:6a:cf:f0:9b:fd:4f:42: ca:a7:a3:44:bc:79:08:c4:0c:02:47:ea:49:fa:c2: 25:05:37:cb:09:d1:9e:4c:20:25:04:61:df:c6:44: 8d:b1:87:43:cd:ea:c0:44:3c:51:12:1e:54:1b:1e: 1d:33:48:1f:2c:5c:6c:85:0e:2a:3f:30:1b:50:00: 4e:71:e0:2c:c5:b9:b0:40:ee:ff:72:95:54:a0:04: 33:7f:6f:58:cd:ed:d1:a3:46:30:a4:c2:7c:76:57: 36:dd:4f:e2:3a:b9:bf:f8:b2:37:78:0e:25:a0:6f: c5:5a:49:b7:4d:3d:41:95:59:47:63:0b:a9:bf:53: fb:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:3D:E9:1B:65:44:E6:4C:4C:BD:28:D5:0B:B9:FB:57:9B:FB:01:F9 X509v3 Authority Key Identifier: keyid:29:81:1E:1D:B0:68:BD:BB:AB:FB:7A:B6:95:F8:58:98:BD:61:8C:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0CAE/7C644EE66A7111EEA5B4CB26C4F9AE02/KYEeHbBovbur-3q2lfhYmL1hjGk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KYEeHbBovbur-3q2lfhYmL1hjGk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0CAE/7C644EE66A7111EEA5B4CB26C4F9AE02/KYEeHbBovbur-3q2lfhYmL1hjGk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:0b:c3:2b:7a:ad:a2:a2:ab:29:4d:15:58:c1:4a:6f:8c:d1: 4e:15:ef:a8:ed:78:e0:ec:87:ed:9d:45:a8:19:db:25:ba:7a: 1b:b0:95:66:38:9d:89:87:c9:ef:f3:c3:e7:03:cc:b8:7c:d9: e9:13:8e:7e:b0:f9:2f:03:dd:38:52:39:80:53:46:99:92:a4: 64:c5:e0:c6:79:54:da:6d:e2:76:98:3c:b4:54:c3:fc:07:28: 57:e3:1b:d9:af:d5:41:91:e7:3e:92:ba:30:0d:38:03:1d:c9: 5d:d3:bf:18:e4:36:3c:19:0b:60:d8:f1:ca:f6:5f:b8:7e:1a: a4:61:fd:05:99:8f:31:ac:ac:c5:c4:81:a7:4b:dc:bf:58:8e: d9:0a:8c:4c:fd:79:66:8b:56:6a:ce:f8:3f:8a:71:e5:a4:53: 86:d4:51:42:f9:79:10:a6:b8:79:a1:55:c7:e7:96:1d:85:98: 4f:a3:51:4b:23:b9:c7:ca:54:37:ee:07:2d:24:c6:08:08:97: 7f:e6:77:4b:ec:95:25:f7:5e:2f:e7:bc:c6:ca:eb:73:85:43: a6:1d:c3:91:fb:c0:62:f4:ad:54:3c:32:d1:5c:18:55:b6:d1: 98:8d:32:96:05:8f:4c:3d:43:a2:7a:e9:71:c2:09:bf:c5:54: 59:3b:72:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAS4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjBDQUUxMTAvBgNVBAUTKDI5ODExRTFEQjA2OEJEQkJBQkZCN0FCNjk1Rjg1ODk4 QkQ2MThDNjkwHhcNMjUwNTEzMDM0OTM3WhcNMjUwNTIwMDM0OTM3WjAYMRYwFAYD VQQDEw02ODIyYzE1MS1mYmQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArmEZkgekaSBjwlM+Z/xymS3BLP1jO2o9pKacJgg1RnKK5PMOwaraTDIsh0iO TokFCHAa0UZMWeyc0itBxMWzOKhY7ClZDlRL4zuK95jQDxV6nx1H3MIfZF1oLRoC b7RbPkISpUXFQPjbo7MfyHBdh1p9MOozBWYVwpeQHUso22rP8Jv9T0LKp6NEvHkI xAwCR+pJ+sIlBTfLCdGeTCAlBGHfxkSNsYdDzerARDxREh5UGx4dM0gfLFxshQ4q PzAbUABOceAsxbmwQO7/cpVUoAQzf29Yze3Ro0YwpMJ8dlc23U/iOrm/+LI3eA4l oG/FWkm3TT1BlVlHYwupv1P7eQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAE96Rtl ROZMTL0o1Qu5+1eb+wH5MB8GA1UdIwQYMBaAFCmBHh2waL27q/t6tpX4WJi9YYxp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMENBRS83QzY0NEVFNjZB NzExMUVFQTVCNENCMjZDNEY5QUUwMi9LWUVlSGJCb3ZidXItM3EybGZoWW1MMWhq R2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tZRWVIYkJvdmJ1ci0zcTJsZmhZbUwxaGpHay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MENBRS83QzY0NEVFNjZBNzExMUVFQTVCNENCMjZDNEY5QUUwMi9LWUVlSGJCb3Zi dXItM3EybGZoWW1MMWhqR2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABC8Mreq2ioqspTRVYwUpvjNFOFe+o7Xjg7IftnUWoGdslunobsJVm OJ2Jh8nv88PnA8y4fNnpE45+sPkvA904UjmAU0aZkqRkxeDGeVTabeJ2mDy0VMP8 ByhX4xvZr9VBkec+krowDTgDHcld078Y5DY8GQtg2PHK9l+4fhqkYf0FmY8xrKzF xIGnS9y/WI7ZCoxM/Xlmi1Zqzvg/inHlpFOG1FFC+XkQprh5oVXH55YdhZhPo1FL I7nHylQ37gctJMYICJd/5ndL7JUl914v57zGyutzhUOmHcOR+8Bi9K1UPDLRXBhV ttGYjTKWBY9MPUOieulxwgm/xVRZO3J/ -----END CERTIFICATE-----Generated at Wed May 14 11:39:28 2025 by rpki-client