$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft File: kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft (raw, json) Hash identifier: ZLsNygZtCaGR5YJbBcGqAqOF0J/ZigR8jxrigMeaHq4= Subject key identifier: 50:69:2B:4B:E5:F7:95:3C:25:5F:E0:A6:2E:0D:FB:96:D6:15:65:C2 Authority key identifier: 91:9F:A8:19:B2:FF:F1:45:52:1A:F6:64:03:52:78:E7:E7:91:4A:49 Certificate issuer: /CN=A91BB6E3/serialNumber=919FA819B2FFF145521AF664035278E7E7914A49 Certificate serial: 01C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kZ-oGbL_8UVSGvZkA1J45-eRSkk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft Manifest number: 01AB Signing time: Sun 11 May 2025 02:23:36 +0000 Manifest this update: Sun 11 May 2025 02:23:36 +0000 Manifest next update: Sun 18 May 2025 02:23:36 +0000 Files and hashes: 1: kZ-oGbL_8UVSGvZkA1J45-eRSkk.crl (hash: cBc900ityy8+qePXlBfEieMeOuTx1zeANyhhruYSx6U=) 2: F96174ECC27D11EDB8226F2DC4F9AE02.roa (hash: kXeNIsHETQcXUic6LYufG6XvgVMVgH9sGtHQdmkZT90=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.crl rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kZ-oGbL_8UVSGvZkA1J45-eRSkk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 02:23:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 448 (0x1c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB6E3, serialNumber=919FA819B2FFF145521AF664035278E7E7914A49 Validity Not Before: May 11 02:23:36 2025 GMT Not After : May 18 02:23:36 2025 GMT Subject: CN=68200a28-7600 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:b5:17:b2:db:fc:35:9a:76:85:2a:db:86:50: 17:d6:1c:dd:6d:58:86:f7:e5:e0:35:74:08:7e:7e: 3f:4d:2a:50:92:1c:8f:68:ba:35:be:63:02:bf:80: 47:cc:47:4d:0e:1a:ca:90:7d:a5:d4:11:2b:33:61: 1a:2d:59:7d:23:3c:df:a6:c2:35:1e:55:d1:c7:ef: 20:d9:10:32:d3:f5:d2:36:e7:d1:af:61:3d:50:21: 64:47:70:7b:9a:b1:ec:fc:6c:aa:16:7d:fb:56:88: fa:d9:71:90:86:9d:5b:af:e6:0b:03:89:ef:19:89: be:d8:dc:6b:14:34:41:d8:b4:ea:8f:78:c4:c4:f0: a4:47:68:72:aa:64:ba:e3:07:11:9a:a7:46:6f:2c: a5:1d:8e:17:41:82:bc:d1:b1:15:81:34:ed:cd:1b: 73:d2:17:4d:9c:bf:89:f4:f9:53:9f:18:e8:48:2f: b3:a4:f1:b1:3e:8b:43:63:91:a2:52:b6:58:28:49: da:0b:0b:6b:d0:48:7a:f9:e8:37:4e:3b:fa:d3:a4: b2:d3:75:3f:ae:07:81:12:f8:19:f0:22:63:3b:3d: 7a:c9:ef:2a:71:11:2e:58:50:df:76:17:d7:29:11: cc:57:71:33:21:5f:fd:62:74:8a:61:c5:de:59:75: 85:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:69:2B:4B:E5:F7:95:3C:25:5F:E0:A6:2E:0D:FB:96:D6:15:65:C2 X509v3 Authority Key Identifier: keyid:91:9F:A8:19:B2:FF:F1:45:52:1A:F6:64:03:52:78:E7:E7:91:4A:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kZ-oGbL_8UVSGvZkA1J45-eRSkk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:15:87:20:83:48:07:90:a5:38:5a:a9:e2:64:7f:de:7a:fe: ae:af:b3:e4:0a:74:cd:bd:59:2d:c4:bc:10:a1:e0:a0:82:01: 58:89:a9:52:ef:f5:3e:ba:1f:59:f3:74:be:25:b1:9c:29:88: b2:4f:a0:9b:df:03:c5:a8:47:8c:f6:91:f3:cc:3a:28:1d:48: f0:89:51:47:2f:19:27:56:0b:12:eb:60:1d:bb:51:6e:9f:7e: 60:be:dc:98:22:db:36:7b:76:28:3e:c7:66:2e:10:47:71:1c: cd:84:71:5e:f5:43:d2:57:4c:04:06:93:a2:51:6e:08:25:73: 24:4a:93:b1:90:ef:f3:ad:4c:10:7a:99:da:31:9a:a3:8f:49: 78:5f:4e:2d:11:73:91:25:04:39:3b:70:2a:86:f3:e2:9a:92: 31:96:2b:07:31:3a:d9:f7:12:83:fe:16:19:37:60:9e:4c:b2: 78:c3:81:0a:b0:67:82:01:f8:a2:ef:b5:e8:02:3e:7f:ef:c0: ef:d7:02:fa:b4:c2:79:70:13:a2:c9:b9:76:c7:e0:49:cd:08: a2:b3:1a:cc:84:c2:de:07:e4:36:73:05:cf:8b:1d:f6:86:33: 79:43:e8:32:61:00:49:60:4a:98:29:32:4f:81:37:7b:54:c5: 06:96:93:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI2RTMxMTAvBgNVBAUTKDkxOUZBODE5QjJGRkYxNDU1MjFBRjY2NDAzNTI3OEU3 RTc5MTRBNDkwHhcNMjUwNTExMDIyMzM2WhcNMjUwNTE4MDIyMzM2WjAYMRYwFAYD VQQDEw02ODIwMGEyOC03NjAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp7UXstv8NZp2hSrbhlAX1hzdbViG9+XgNXQIfn4/TSpQkhyPaLo1vmMCv4BH zEdNDhrKkH2l1BErM2EaLVl9IzzfpsI1HlXRx+8g2RAy0/XSNufRr2E9UCFkR3B7 mrHs/GyqFn37Voj62XGQhp1br+YLA4nvGYm+2NxrFDRB2LTqj3jExPCkR2hyqmS6 4wcRmqdGbyylHY4XQYK80bEVgTTtzRtz0hdNnL+J9PlTnxjoSC+zpPGxPotDY5Gi UrZYKEnaCwtr0Eh6+eg3Tjv606Sy03U/rgeBEvgZ8CJjOz16ye8qcREuWFDfdhfX KRHMV3EzIV/9YnSKYcXeWXWFnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFBpK0vl 95U8JV/gpi4N+5bWFWXCMB8GA1UdIwQYMBaAFJGfqBmy//FFUhr2ZANSeOfnkUpJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjZFMy9BMjJDODE0Q0My NzUxMUVEQjNCNEQ3MjhDNEY5QUUwMi9rWi1vR2JMXzhVVlNHdlprQTFKNDUtZVJT a2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2taLW9HYkxfOFVWU0d2WmtBMUo0NS1lUlNray5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjZFMy9BMjJDODE0Q0MyNzUxMUVEQjNCNEQ3MjhDNEY5QUUwMi9rWi1vR2JMXzhV VlNHdlprQTFKNDUtZVJTa2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaFYcgg0gHkKU4WqniZH/eev6ur7PkCnTNvVktxLwQoeCgggFYialS 7/U+uh9Z83S+JbGcKYiyT6Cb3wPFqEeM9pHzzDooHUjwiVFHLxknVgsS62Adu1Fu n35gvtyYIts2e3YoPsdmLhBHcRzNhHFe9UPSV0wEBpOiUW4IJXMkSpOxkO/zrUwQ epnaMZqjj0l4X04tEXORJQQ5O3AqhvPimpIxlisHMTrZ9xKD/hYZN2CeTLJ4w4EK sGeCAfii77XoAj5/78Dv1wL6tMJ5cBOiybl2x+BJzQiisxrMhMLeB+Q2cwXPix32 hjN5Q+gyYQBJYEqYKTJPgTd7VMUGlpMn -----END CERTIFICATE-----Generated at Mon May 12 18:36:31 2025 by rpki-client