$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft File: kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft (raw, json) Hash identifier: RyD9ko/Jby+Sq+KEO+iZyrmcfMH5kR+QNK5KO/gZXmc= Subject key identifier: E2:E3:87:84:1B:37:0D:C9:80:91:18:EB:42:2E:93:AA:D0:1C:E0:BC Authority key identifier: 90:D9:9A:A8:D7:91:31:40:AF:AE:9E:E2:BF:EB:CD:A3:7B:A1:CD:28 Certificate issuer: /CN=A91C2875/serialNumber=90D99AA8D7913140AFAE9EE2BFEBCDA37BA1CD28 Certificate serial: 0359 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft Manifest number: 0351 Signing time: Tue 13 May 2025 00:47:59 +0000 Manifest this update: Tue 13 May 2025 00:47:58 +0000 Manifest next update: Tue 20 May 2025 00:47:58 +0000 Files and hashes: 1: kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl (hash: 1JFPpBqHNKfArhUVuOn4ZNfeiBci7flTYOeXHIpMZkc=) 2: ABB1EE64B4ED11ECBA3D016FC4F9AE02.roa (hash: KdODWWy5DaOqxG/rlhfUZW4he8HC+tvuYe4LwAo61T4=) 3: 0E9CF77EBA6811EC8058A213C4F9AE02.roa (hash: I5MvmpsL8y59IDd7Mhzk7RlviZnPSJZXIgkWIwxVqvA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 00:47:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 857 (0x359) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2875, serialNumber=90D99AA8D7913140AFAE9EE2BFEBCDA37BA1CD28 Validity Not Before: May 13 00:47:58 2025 GMT Not After : May 20 00:47:58 2025 GMT Subject: CN=682296bf-3ca3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:a0:c7:b9:ed:4a:b5:0b:03:82:10:70:71:52: 6e:fa:25:2c:d6:7f:64:75:80:0f:e5:46:50:62:a2: ab:b1:84:7d:d2:40:7d:50:e3:3d:81:59:e2:1a:4e: 9c:d2:93:86:08:3a:05:8d:8f:d4:63:d0:a8:2e:4b: 94:42:4f:06:cd:86:53:6c:ca:66:cd:d6:7b:ff:19: 88:6d:09:50:4f:5a:b9:96:90:a8:06:be:81:ac:de: 83:81:e7:23:b7:3a:65:3f:4f:96:f8:05:d5:16:8e: a5:f7:57:f2:8d:90:19:9e:62:d8:a5:05:09:a0:6b: 32:5b:bc:59:60:2d:27:ca:05:ae:04:bd:88:57:b8: 22:db:1c:24:ad:a6:c0:0d:69:ec:29:7f:7c:f7:cc: 10:37:03:d9:da:b8:ba:d7:85:df:17:06:93:e2:37: 27:23:a4:7c:a0:70:53:24:65:c0:99:bd:ef:fa:ec: a9:a0:f1:5c:01:75:ef:83:64:e2:34:e6:56:09:5a: 1d:5b:6e:36:7d:ec:44:74:59:93:d1:56:73:b6:99: dd:34:95:50:ff:0d:38:eb:b5:aa:91:d5:ea:a8:2f: e4:8c:a4:99:5a:43:93:6f:c1:16:6c:b9:dc:10:89: 17:8e:45:98:a4:a7:11:71:1e:3e:b3:2b:5b:74:9b: 4b:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:E3:87:84:1B:37:0D:C9:80:91:18:EB:42:2E:93:AA:D0:1C:E0:BC X509v3 Authority Key Identifier: keyid:90:D9:9A:A8:D7:91:31:40:AF:AE:9E:E2:BF:EB:CD:A3:7B:A1:CD:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:6a:a3:fc:cd:3d:3a:29:bd:10:8f:f1:40:03:22:86:db:6a: e6:e8:60:42:0b:a3:cd:a5:f8:46:9e:1a:33:d0:e4:74:7d:7c: 7e:e2:21:42:77:07:52:dc:94:d1:ea:aa:b7:98:c3:ec:34:01: 62:02:a0:45:58:34:28:a1:9a:46:b2:0e:71:79:c5:bd:53:39: 28:70:72:53:bf:34:62:54:5f:32:e9:d2:48:50:3c:c7:87:2f: 31:c1:fa:60:da:81:05:51:bd:f9:db:a4:8c:07:84:7f:ce:88: c2:a7:4f:80:0f:c9:7a:ab:e2:e6:73:db:d4:3a:86:11:43:8c: cc:3c:d0:21:1d:60:69:29:db:68:a0:cb:97:35:18:96:80:ec: 24:66:88:c1:0d:26:99:a3:03:97:a5:07:98:df:ed:d6:b3:0f: 78:b8:a1:2c:a6:58:47:11:9a:4e:be:87:75:ac:7a:6d:5a:64: ac:1a:7c:88:b5:ec:f0:f4:d8:b5:2c:d1:0f:46:41:2b:e4:54: ee:eb:4e:74:ba:b4:71:c6:37:81:41:55:ea:49:73:97:f9:85: 67:54:75:a6:24:9e:21:3a:61:c6:9d:4c:9b:44:70:1e:67:23: 8a:9b:48:7f:c1:01:39:8d:03:b9:13:0f:55:ee:ea:61:fe:1c: f8:c4:09:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA1kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzI4NzUxMTAvBgNVBAUTKDkwRDk5QUE4RDc5MTMxNDBBRkFFOUVFMkJGRUJDREEz N0JBMUNEMjgwHhcNMjUwNTEzMDA0NzU4WhcNMjUwNTIwMDA0NzU4WjAYMRYwFAYD VQQDEw02ODIyOTZiZi0zY2EzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2KDHue1KtQsDghBwcVJu+iUs1n9kdYAP5UZQYqKrsYR90kB9UOM9gVniGk6c 0pOGCDoFjY/UY9CoLkuUQk8GzYZTbMpmzdZ7/xmIbQlQT1q5lpCoBr6BrN6Dgecj tzplP0+W+AXVFo6l91fyjZAZnmLYpQUJoGsyW7xZYC0nygWuBL2IV7gi2xwkrabA DWnsKX9898wQNwPZ2ri614XfFwaT4jcnI6R8oHBTJGXAmb3v+uypoPFcAXXvg2Ti NOZWCVodW242fexEdFmT0VZztpndNJVQ/w0467WqkdXqqC/kjKSZWkOTb8EWbLnc EIkXjkWYpKcRcR4+sytbdJtLKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOLjh4Qb Nw3JgJEY60Iuk6rQHOC8MB8GA1UdIwQYMBaAFJDZmqjXkTFAr66e4r/rzaN7oc0o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjg3NS9DMjVERTBFNkI0 RTgxMUVDOTgwQzQ0NzFDNEY5QUUwMi9rTm1hcU5lUk1VQ3ZycDdpdi12Tm8zdWh6 U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tObWFxTmVSTVVDdnJwN2l2LXZObzN1aHpTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Mjg3NS9DMjVERTBFNkI0RTgxMUVDOTgwQzQ0NzFDNEY5QUUwMi9rTm1hcU5lUk1V Q3ZycDdpdi12Tm8zdWh6U2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXaqP8zT06Kb0Qj/FAAyKG22rm6GBCC6PNpfhGnhoz0OR0fXx+4iFC dwdS3JTR6qq3mMPsNAFiAqBFWDQooZpGsg5xecW9UzkocHJTvzRiVF8y6dJIUDzH hy8xwfpg2oEFUb3526SMB4R/zojCp0+AD8l6q+Lmc9vUOoYRQ4zMPNAhHWBpKdto oMuXNRiWgOwkZojBDSaZowOXpQeY3+3Wsw94uKEsplhHEZpOvod1rHptWmSsGnyI tezw9Ni1LNEPRkEr5FTu6050urRxxjeBQVXqSXOX+YVnVHWmJJ4hOmHGnUybRHAe ZyOKm0h/wQE5jQO5Ew9V7uph/hz4xAlP -----END CERTIFICATE-----Generated at Tue May 13 04:40:30 2025 by rpki-client