$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7897/B6C5941C1D3511EDA5E6307DC4F9AE02/KqJ4lEtBD6LIO3wq8yxmr6IMEns.mft File: KqJ4lEtBD6LIO3wq8yxmr6IMEns.mft (raw, json) Hash identifier: xPdE1cn4lZbff4XvMWakkYx6qSpTyD/Nc5hVL4UI2Yc= Subject key identifier: 93:97:DB:C5:95:2F:4A:B6:3C:D8:A7:D2:D0:0C:59:43:16:15:3E:98 Authority key identifier: 2A:A2:78:94:4B:41:0F:A2:C8:3B:7C:2A:F3:2C:66:AF:A2:0C:12:7B Certificate issuer: /CN=A91B7897/serialNumber=2AA278944B410FA2C83B7C2AF32C66AFA20C127B Certificate serial: 025A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KqJ4lEtBD6LIO3wq8yxmr6IMEns.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7897/B6C5941C1D3511EDA5E6307DC4F9AE02/KqJ4lEtBD6LIO3wq8yxmr6IMEns.mft Manifest number: 024E Signing time: Fri 09 May 2025 01:37:49 +0000 Manifest this update: Fri 09 May 2025 01:37:48 +0000 Manifest next update: Fri 16 May 2025 01:37:48 +0000 Files and hashes: 1: KqJ4lEtBD6LIO3wq8yxmr6IMEns.crl (hash: 8HZmQN5douBrUqQj+2gw0lEu47S1qty9jq3veqJ/JO0=) 2: 6C83604E1E2711EDAA33DF76C4F9AE02.roa (hash: bzrwDCcFjUbW1ddYfzBH2lmiEyj4Sa0r3rrfjXsh0+Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7897/B6C5941C1D3511EDA5E6307DC4F9AE02/KqJ4lEtBD6LIO3wq8yxmr6IMEns.crl rsync://rpki.apnic.net/member_repository/A91B7897/B6C5941C1D3511EDA5E6307DC4F9AE02/KqJ4lEtBD6LIO3wq8yxmr6IMEns.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KqJ4lEtBD6LIO3wq8yxmr6IMEns.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 01:37:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 602 (0x25a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7897, serialNumber=2AA278944B410FA2C83B7C2AF32C66AFA20C127B Validity Not Before: May 9 01:37:48 2025 GMT Not After : May 16 01:37:48 2025 GMT Subject: CN=681d5c6d-0e0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:56:a9:e8:b9:c2:1e:42:44:71:5a:c4:37:49: f8:ba:79:29:28:52:b7:6c:c9:ed:44:39:89:9c:25: 7c:9a:e5:09:57:ae:23:32:1a:f9:4a:d8:9a:7d:be: 24:2a:5e:7e:fb:02:04:23:b5:90:80:ca:ba:4b:62: 48:48:6b:ff:6a:fe:8b:74:a7:b4:d5:33:72:bd:9a: 19:af:87:b7:09:87:15:8e:ca:10:bb:9f:c3:8e:fa: 9c:0f:f5:94:8a:70:6c:d7:6a:f7:54:98:a6:1d:58: 52:a9:76:96:d4:8e:99:dd:89:3b:b5:63:56:c3:8b: f1:7c:db:21:88:3e:45:19:f4:a2:6a:bb:20:70:6f: 73:3a:c2:71:0c:13:b0:c1:3d:e8:d1:66:3b:fb:95: 2a:c1:60:7a:db:5a:c0:e1:39:0f:3e:4a:d1:25:c2: 88:5e:28:be:c2:8a:5c:57:ae:8d:c9:c7:98:9a:5f: 3e:32:a8:e2:59:66:6a:6f:7a:c2:54:16:0c:a9:6b: a0:d7:73:da:e9:1c:e5:49:65:79:34:b5:1a:0b:4c: 7c:82:e9:59:38:0b:69:a7:bd:da:17:72:d1:f8:77: 1d:a2:d3:1f:ab:75:7d:88:0b:40:3c:20:bc:58:67: 6b:8a:1f:6b:4b:d4:e9:1c:10:f5:2c:06:7f:b6:ee: ac:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:97:DB:C5:95:2F:4A:B6:3C:D8:A7:D2:D0:0C:59:43:16:15:3E:98 X509v3 Authority Key Identifier: keyid:2A:A2:78:94:4B:41:0F:A2:C8:3B:7C:2A:F3:2C:66:AF:A2:0C:12:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7897/B6C5941C1D3511EDA5E6307DC4F9AE02/KqJ4lEtBD6LIO3wq8yxmr6IMEns.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KqJ4lEtBD6LIO3wq8yxmr6IMEns.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7897/B6C5941C1D3511EDA5E6307DC4F9AE02/KqJ4lEtBD6LIO3wq8yxmr6IMEns.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:80:ab:ba:52:45:cc:cb:1d:cf:9b:5b:b0:0d:b7:ef:fd:a8: 3e:da:34:fc:1e:eb:96:96:64:c2:63:41:99:c0:cb:a0:e3:24: 3f:2a:3d:8f:e8:a6:93:16:1b:37:c0:12:22:34:a8:f6:30:be: 04:c4:c5:f5:71:d7:69:c7:47:67:0c:60:71:e8:23:e3:5e:0c: b7:84:67:a9:75:84:2e:d1:40:1d:0f:50:9e:d1:30:2f:dc:70: be:4c:d8:1a:cd:d5:66:2e:06:5a:f0:c2:95:7f:16:e2:94:40: b5:2c:36:4b:be:8a:0b:9d:38:9e:e8:81:74:e2:43:57:93:cc: e3:7d:e9:de:6f:cb:35:80:3a:09:aa:45:43:f6:23:03:6a:d7: e0:35:53:26:c7:f1:0b:01:4b:d1:4a:52:a4:49:5b:97:b9:2c: ca:f9:26:90:6c:d4:67:4a:70:c6:c0:66:2e:86:65:8e:f3:97: 0e:8c:cb:a9:29:9b:d6:6d:ba:25:48:da:fb:1f:38:1a:db:ee: 3b:6f:45:bd:06:56:37:d4:ff:bf:39:53:be:e2:7b:a8:6c:37: 51:f3:f7:1b:79:ef:b0:99:f8:b0:f3:73:9f:88:93:a2:2a:b1: b0:cb:42:a0:b6:13:17:9b:0d:4c:46:8f:07:8b:b7:08:60:2d: 17:49:2b:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc4OTcxMTAvBgNVBAUTKDJBQTI3ODk0NEI0MTBGQTJDODNCN0MyQUYzMkM2NkFG QTIwQzEyN0IwHhcNMjUwNTA5MDEzNzQ4WhcNMjUwNTE2MDEzNzQ4WjAYMRYwFAYD VQQDEw02ODFkNWM2ZC0wZTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAylap6LnCHkJEcVrEN0n4unkpKFK3bMntRDmJnCV8muUJV64jMhr5Stiafb4k Kl5++wIEI7WQgMq6S2JISGv/av6LdKe01TNyvZoZr4e3CYcVjsoQu5/DjvqcD/WU inBs12r3VJimHVhSqXaW1I6Z3Yk7tWNWw4vxfNshiD5FGfSiarsgcG9zOsJxDBOw wT3o0WY7+5UqwWB621rA4TkPPkrRJcKIXii+wopcV66NyceYml8+MqjiWWZqb3rC VBYMqWug13Pa6RzlSWV5NLUaC0x8gulZOAtpp73aF3LR+HcdotMfq3V9iAtAPCC8 WGdrih9rS9TpHBD1LAZ/tu6sbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJOX28WV L0q2PNin0tAMWUMWFT6YMB8GA1UdIwQYMBaAFCqieJRLQQ+iyDt8KvMsZq+iDBJ7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzg5Ny9CNkM1OTQxQzFE MzUxMUVEQTVFNjMwN0RDNEY5QUUwMi9LcUo0bEV0QkQ2TElPM3dxOHl4bXI2SU1F bnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0txSjRsRXRCRDZMSU8zd3E4eXhtcjZJTUVucy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Nzg5Ny9CNkM1OTQxQzFEMzUxMUVEQTVFNjMwN0RDNEY5QUUwMi9LcUo0bEV0QkQ2 TElPM3dxOHl4bXI2SU1FbnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMgKu6UkXMyx3Pm1uwDbfv/ag+2jT8HuuWlmTCY0GZwMug4yQ/Kj2P 6KaTFhs3wBIiNKj2ML4ExMX1cddpx0dnDGBx6CPjXgy3hGepdYQu0UAdD1Ce0TAv 3HC+TNgazdVmLgZa8MKVfxbilEC1LDZLvooLnTie6IF04kNXk8zjfeneb8s1gDoJ qkVD9iMDatfgNVMmx/ELAUvRSlKkSVuXuSzK+SaQbNRnSnDGwGYuhmWO85cOjMup KZvWbbolSNr7Hzga2+47b0W9BlY31P+/OVO+4nuobDdR8/cbee+wmfiw83OfiJOi KrGwy0KgthMXmw1MRo8Hi7cIYC0XSSsg -----END CERTIFICATE-----Generated at Sat May 10 13:50:24 2025 by rpki-client