$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.mft File: kIDbUP8LdD_6MredDdXDGQIdbiQ.mft (raw, json) Hash identifier: uJViMtHsCgZ5Z2kF9QkFj95ebHvw8z6OJBy5w0Sha7o= Subject key identifier: FD:46:2D:41:74:47:29:80:03:0C:2E:53:F7:81:CB:62:85:13:5F:5F Authority key identifier: 90:80:DB:50:FF:0B:74:3F:FA:32:B7:9D:0D:D5:C3:19:02:1D:6E:24 Certificate issuer: /CN=A91B5377/serialNumber=9080DB50FF0B743FFA32B79D0DD5C319021D6E24 Certificate serial: 42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIDbUP8LdD_6MredDdXDGQIdbiQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.mft Manifest number: 42 Signing time: Tue 13 May 2025 06:38:24 +0000 Manifest this update: Tue 13 May 2025 06:38:23 +0000 Manifest next update: Tue 20 May 2025 06:38:23 +0000 Files and hashes: 1: kIDbUP8LdD_6MredDdXDGQIdbiQ.crl (hash: SUHfKetjwviPbiXfm+AOnv79zpQD7sjvEX9L9/FoZWo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.crl rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIDbUP8LdD_6MredDdXDGQIdbiQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 06:38:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66 (0x42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5377, serialNumber=9080DB50FF0B743FFA32B79D0DD5C319021D6E24 Validity Not Before: May 13 06:38:23 2025 GMT Not After : May 20 06:38:23 2025 GMT Subject: CN=6822e8df-9dfc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:e7:e6:97:5b:ef:36:a6:5f:65:6c:36:69:cf: ee:c4:cc:9d:0c:12:3b:21:52:c4:9b:19:a2:e1:50: 7d:67:df:71:3f:a6:14:f9:89:0a:17:78:6f:3c:b8: 33:cc:56:fa:00:00:5f:c9:bb:ae:fe:b4:bd:16:1a: 8d:1c:2f:cc:8b:1a:0a:8e:15:19:9a:a8:1b:d3:cc: ad:9a:b3:2f:8f:a9:5f:e6:42:81:f1:27:98:59:4a: 57:58:47:a5:04:c6:83:72:20:27:fe:40:09:8a:57: 89:71:7a:52:af:c4:2a:43:1d:48:77:bd:15:17:0c: 2d:8a:19:cb:a5:0d:54:91:3a:44:2f:92:79:c1:a0: 52:8c:b9:90:27:b9:fa:2c:c8:2e:ec:58:de:d1:8f: fe:69:9a:a5:78:0e:a0:57:e0:da:47:68:34:6d:80: 7c:99:91:29:fa:d0:63:c0:6c:80:53:2d:63:55:b2: 3e:d3:ac:6f:ff:c8:16:85:ff:76:47:1c:42:0c:c1: b9:a3:0c:5a:02:09:cf:e6:5e:89:26:b5:4a:38:61: dc:6c:9c:54:43:24:96:27:fb:3c:2d:cb:5f:10:29: 9d:be:c6:1b:67:67:29:7e:58:d0:50:d9:9d:75:79: 9b:a0:3f:e4:ba:7c:36:81:27:e9:02:77:bc:3f:46: bc:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:46:2D:41:74:47:29:80:03:0C:2E:53:F7:81:CB:62:85:13:5F:5F X509v3 Authority Key Identifier: keyid:90:80:DB:50:FF:0B:74:3F:FA:32:B7:9D:0D:D5:C3:19:02:1D:6E:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIDbUP8LdD_6MredDdXDGQIdbiQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:91:7d:1d:2c:51:59:f3:a1:a3:b9:fe:76:fe:da:ab:ef:d5: 7c:6f:92:cc:2a:42:2c:0c:97:f9:3b:7c:f3:82:29:aa:20:3b: e4:c9:0a:de:b9:07:00:3a:c1:f4:65:87:7c:b1:44:a0:fe:1c: 93:51:77:aa:ee:e7:19:00:12:0f:b8:c5:41:30:70:53:b9:41: 4d:aa:09:cd:20:89:f3:17:08:cc:87:ca:0b:d9:5d:71:51:d4: 21:c6:b7:0f:70:74:30:f8:c5:3f:e0:3e:65:42:06:48:ba:fe: 8a:cc:d3:3d:ce:34:89:57:0a:57:a1:a1:20:79:1b:2b:eb:26: 71:28:34:42:97:7f:8f:a4:a4:7f:f2:8e:6d:36:08:45:67:a8: d2:75:0e:13:3d:e0:89:2a:5e:b7:39:93:58:a4:8c:c9:af:d9: 20:28:4e:3b:61:32:3a:c4:fd:19:a0:5d:82:3d:53:ac:b8:6c: 15:cc:75:77:09:80:06:ed:52:a2:91:fa:35:72:21:05:50:24: 9d:e8:dc:f6:27:c5:9b:99:bc:cf:9a:81:f7:20:32:fe:04:a0: 46:2b:56:5b:c8:32:24:b1:d8:10:79:c5:27:7d:75:62:ac:c7: 6f:9c:ff:79:3b:47:9e:5b:a6:8b:84:b5:77:aa:ce:98:2e:e0: 8d:fd:b6:97 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NTM3NzExMC8GA1UEBRMoOTA4MERCNTBGRjBCNzQzRkZBMzJCNzlEMERENUMzMTkw MjFENkUyNDAeFw0yNTA1MTMwNjM4MjNaFw0yNTA1MjAwNjM4MjNaMBgxFjAUBgNV BAMTDTY4MjJlOGRmLTlkZmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCh5+aXW+82pl9lbDZpz+7EzJ0MEjshUsSbGaLhUH1n33E/phT5iQoXeG88uDPM VvoAAF/Ju67+tL0WGo0cL8yLGgqOFRmaqBvTzK2asy+PqV/mQoHxJ5hZSldYR6UE xoNyICf+QAmKV4lxelKvxCpDHUh3vRUXDC2KGculDVSROkQvknnBoFKMuZAnufos yC7sWN7Rj/5pmqV4DqBX4NpHaDRtgHyZkSn60GPAbIBTLWNVsj7TrG//yBaF/3ZH HEIMwbmjDFoCCc/mXokmtUo4YdxsnFRDJJYn+zwty18QKZ2+xhtnZyl+WNBQ2Z11 eZugP+S6fDaBJ+kCd7w/RrxBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU/UYtQXRH KYADDC5T94HLYoUTX18wHwYDVR0jBBgwFoAUkIDbUP8LdD/6MredDdXDGQIdbiQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI1Mzc3L0YzQzQ0QTc4Q0M1 ODExRUY5OTk4NUQ4NkM0RjlBRTAyL2tJRGJVUDhMZERfNk1yZWREZFhER1FJZGJp US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIva0lEYlVQOExkRF82TXJlZERkWERHUUlkYmlRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI1 Mzc3L0YzQzQ0QTc4Q0M1ODExRUY5OTk4NUQ4NkM0RjlBRTAyL2tJRGJVUDhMZERf Nk1yZWREZFhER1FJZGJpUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAB2RfR0sUVnzoaO5/nb+2qvv1XxvkswqQiwMl/k7fPOCKaogO+TJCt65 BwA6wfRlh3yxRKD+HJNRd6ru5xkAEg+4xUEwcFO5QU2qCc0gifMXCMyHygvZXXFR 1CHGtw9wdDD4xT/gPmVCBki6/orM0z3ONIlXClehoSB5GyvrJnEoNEKXf4+kpH/y jm02CEVnqNJ1DhM94IkqXrc5k1ikjMmv2SAoTjthMjrE/RmgXYI9U6y4bBXMdXcJ gAbtUqKR+jVyIQVQJJ3o3PYnxZuZvM+agfcgMv4EoEYrVlvIMiSx2BB5xSd9dWKs x2+c/3k7R55bpouEtXeqzpgu4I39tpc= -----END CERTIFICATE-----Generated at Tue May 13 18:34:33 2025 by rpki-client