$ rpki-client -vvf rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.mft File: Kroqo8s_lFgcXT2Ruja4qdjo3q0.mft (raw, json) Hash identifier: rW1dcNf0JMhB/QnPTkUfBFKKVV4Hw2l8Z0IXOSL6P3U= Subject key identifier: DF:46:E5:AC:6C:70:BC:81:D2:68:33:50:C6:92:53:0A:3A:1E:53:F1 Authority key identifier: 2A:BA:2A:A3:CB:3F:94:58:1C:5D:3D:91:BA:36:B8:A9:D8:E8:DE:AD Certificate issuer: /CN=A91B80C2/serialNumber=2ABA2AA3CB3F94581C5D3D91BA36B8A9D8E8DEAD Certificate serial: DD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kroqo8s_lFgcXT2Ruja4qdjo3q0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.mft Manifest number: CE Signing time: Sun 11 May 2025 04:38:17 +0000 Manifest this update: Sun 11 May 2025 04:38:16 +0000 Manifest next update: Sun 18 May 2025 04:38:16 +0000 Files and hashes: 1: Kroqo8s_lFgcXT2Ruja4qdjo3q0.crl (hash: d7LIYB43Di0Ep0yT/8bt591/iPR9teI/31658mHV8RI=) 2: 62B87A26895B11EFBA2A3B22C4F9AE02.roa (hash: GkfnFa85sf2ihLyLByQY01IPDXpueRzZ4fB3mmtkqLo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.crl rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kroqo8s_lFgcXT2Ruja4qdjo3q0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 04:38:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B80C2, serialNumber=2ABA2AA3CB3F94581C5D3D91BA36B8A9D8E8DEAD Validity Not Before: May 11 04:38:16 2025 GMT Not After : May 18 04:38:16 2025 GMT Subject: CN=682029b8-0c0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:a2:ef:e5:03:2c:f5:16:7a:04:02:ff:a9:d5: a2:fb:87:c1:bc:35:e8:13:05:f6:9b:da:9a:fe:76: b2:42:08:72:26:30:f6:7c:eb:dd:1d:76:2b:58:c9: e6:6a:2a:a2:df:60:80:03:c2:31:03:d5:00:0e:8d: 89:78:a7:c3:14:6e:e3:a0:e4:b9:2d:20:e7:07:45: d6:c0:59:cb:40:ab:63:4e:77:19:e9:0d:a7:09:3f: f3:d6:ac:ef:89:ff:b4:a5:01:34:c9:ef:e6:7d:b1: f3:0f:90:b9:0b:51:c2:2c:95:61:22:84:c9:2c:42: 12:e1:29:8b:1d:35:e0:34:88:b0:3a:28:6b:96:a9: b1:78:e3:ee:bb:de:c8:13:d8:0b:41:ca:60:bc:c4: 5b:49:71:84:7f:7c:6c:10:89:09:79:e5:85:63:5d: d4:07:42:93:86:a1:c3:40:41:2a:fc:48:89:dd:e0: 78:88:47:5b:0a:98:8d:33:1c:d7:b8:5b:61:f1:e8: a4:db:f2:b2:be:09:65:be:bf:0f:ca:91:98:0b:13: e4:09:e0:64:bb:95:b8:e2:aa:79:3f:cb:41:f7:b8: 7b:7c:5e:07:ef:f5:98:3a:96:89:5c:f3:d7:d0:04: 65:3d:29:bb:36:d3:7f:a8:9c:62:04:79:4a:4d:52: 4c:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:46:E5:AC:6C:70:BC:81:D2:68:33:50:C6:92:53:0A:3A:1E:53:F1 X509v3 Authority Key Identifier: keyid:2A:BA:2A:A3:CB:3F:94:58:1C:5D:3D:91:BA:36:B8:A9:D8:E8:DE:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kroqo8s_lFgcXT2Ruja4qdjo3q0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:9f:86:e5:fc:19:9c:33:88:0f:c1:39:50:96:47:ea:c3:3f: 5c:92:19:ca:19:16:ec:39:66:4e:c8:7c:f1:61:d8:f5:3c:05: cf:5c:06:1a:5f:da:44:33:a7:6b:0e:fe:8f:dd:b3:c8:f3:cd: ca:9f:3a:72:fa:89:e3:a4:41:91:63:01:e7:08:72:1d:72:99: ec:28:bd:a8:a0:38:0f:96:fa:39:ff:81:a0:e3:e2:53:2f:28: 4a:ab:76:c8:84:aa:f7:f5:2d:1a:17:12:de:8a:83:80:8c:8a: 8e:87:06:c8:ba:25:ea:ce:48:7b:16:ca:56:01:d4:a3:22:ed: 5e:a1:0c:04:79:66:83:27:35:f5:9d:9e:0f:c9:b7:79:40:d4: bc:8d:56:8d:3e:3b:7d:fb:74:75:3f:02:ad:5a:d1:b4:ec:51: 2e:f5:29:5a:3c:ba:96:f4:5d:40:0d:e2:38:49:73:2d:9f:ce: 23:a5:f9:6a:d8:e1:55:55:6a:a8:80:ba:df:9b:37:13:75:f0: c2:d4:73:d1:bf:15:1e:a8:9a:ef:04:7d:3c:f2:29:f6:16:b1: 27:0b:7c:76:fa:2c:13:83:43:73:f6:90:f3:7c:75:e5:59:1d: af:ea:30:96:ee:1b:f5:04:d6:67:98:1a:ee:17:0c:24:e6:4e: 11:39:f1:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgwQzIxMTAvBgNVBAUTKDJBQkEyQUEzQ0IzRjk0NTgxQzVEM0Q5MUJBMzZCOEE5 RDhFOERFQUQwHhcNMjUwNTExMDQzODE2WhcNMjUwNTE4MDQzODE2WjAYMRYwFAYD VQQDEw02ODIwMjliOC0wYzBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3aLv5QMs9RZ6BAL/qdWi+4fBvDXoEwX2m9qa/nayQghyJjD2fOvdHXYrWMnm aiqi32CAA8IxA9UADo2JeKfDFG7joOS5LSDnB0XWwFnLQKtjTncZ6Q2nCT/z1qzv if+0pQE0ye/mfbHzD5C5C1HCLJVhIoTJLEIS4SmLHTXgNIiwOihrlqmxeOPuu97I E9gLQcpgvMRbSXGEf3xsEIkJeeWFY13UB0KThqHDQEEq/EiJ3eB4iEdbCpiNMxzX uFth8eik2/Kyvgllvr8PypGYCxPkCeBku5W44qp5P8tB97h7fF4H7/WYOpaJXPPX 0ARlPSm7NtN/qJxiBHlKTVJMwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN9G5axs cLyB0mgzUMaSUwo6HlPxMB8GA1UdIwQYMBaAFCq6KqPLP5RYHF09kbo2uKnY6N6t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODBDMi85ODNFNjE1MDE3 MUExMUVGODY1Nzc1NEZDNEY5QUUwMi9Lcm9xbzhzX2xGZ2NYVDJSdWphNHFkam8z cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tyb3FvOHNfbEZnY1hUMlJ1amE0cWRqbzNxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODBDMi85ODNFNjE1MDE3MUExMUVGODY1Nzc1NEZDNEY5QUUwMi9Lcm9xbzhzX2xG Z2NYVDJSdWphNHFkam8zcTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3n4bl/BmcM4gPwTlQlkfqwz9ckhnKGRbsOWZOyHzxYdj1PAXPXAYa X9pEM6drDv6P3bPI883Knzpy+onjpEGRYwHnCHIdcpnsKL2ooDgPlvo5/4Gg4+JT LyhKq3bIhKr39S0aFxLeioOAjIqOhwbIuiXqzkh7FspWAdSjIu1eoQwEeWaDJzX1 nZ4Pybd5QNS8jVaNPjt9+3R1PwKtWtG07FEu9SlaPLqW9F1ADeI4SXMtn84jpflq 2OFVVWqogLrfmzcTdfDC1HPRvxUeqJrvBH088in2FrEnC3x2+iwTg0Nz9pDzfHXl WR2v6jCW7hv1BNZnmBruFwwk5k4ROfH5 -----END CERTIFICATE-----Generated at Tue May 13 02:34:44 2025 by rpki-client