$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft File: KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft (raw, json) Hash identifier: KBpV/OiQ73G1bFqeQJXoYh754oLoulKK39PDQF6BEKE= Subject key identifier: FB:C7:1F:77:42:A8:84:B5:38:59:38:93:A5:EE:A3:46:74:8A:1E:A5 Authority key identifier: 28:C0:60:7D:96:83:1A:3D:18:09:33:45:B3:72:58:EE:3B:D7:F3:E7 Certificate issuer: /CN=A91C5AEE/serialNumber=28C0607D96831A3D18093345B37258EE3BD7F3E7 Certificate serial: 0138 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KMBgfZaDGj0YCTNFs3JY7jvX8-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft Manifest number: 0136 Signing time: Sun 11 May 2025 03:18:50 +0000 Manifest this update: Sun 11 May 2025 03:18:50 +0000 Manifest next update: Sun 18 May 2025 03:18:50 +0000 Files and hashes: 1: KMBgfZaDGj0YCTNFs3JY7jvX8-c.crl (hash: b4EfRayBfcBtyC4SacABY0wGjMSMC47Q72kJNPibuwE=) 2: 21525A1C520B11EE8B79021AC4F9AE02.roa (hash: s8Vu/R6gOMwvLzsGf3nk9tFhiMljx1hOH6LnsMms3Vg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.crl rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KMBgfZaDGj0YCTNFs3JY7jvX8-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 03:18:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 312 (0x138) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5AEE, serialNumber=28C0607D96831A3D18093345B37258EE3BD7F3E7 Validity Not Before: May 11 03:18:50 2025 GMT Not After : May 18 03:18:50 2025 GMT Subject: CN=6820171a-d465 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:ff:94:1a:78:00:92:36:71:1a:b6:12:9d:c3: 1b:cc:a1:ed:50:b9:58:e3:39:87:e9:f0:c6:17:ee: 3b:76:ec:e4:3a:ae:82:41:74:84:4d:98:d7:0e:ab: a5:e9:53:49:67:d0:8e:46:09:24:bd:8a:c0:cc:15: f1:11:ad:46:23:fc:16:ea:36:c4:1c:c9:cf:e8:18: ac:01:51:78:02:f0:d6:85:51:5a:58:a3:50:79:7a: 07:0b:94:98:9d:93:65:6a:65:0d:8c:32:da:31:37: 99:5c:fa:1b:81:56:b5:c7:3a:3e:37:59:f1:01:f8: a3:81:19:8f:e2:f7:6c:dd:08:1a:40:c8:be:e1:da: dd:7c:fd:bf:5d:f9:18:bd:93:34:7e:68:2d:09:7f: b1:7b:6e:a0:74:41:45:7c:b4:d8:a8:53:b1:57:68: 0d:d9:60:31:72:fb:e3:31:31:4c:4a:68:0d:f9:05: dc:66:a5:de:81:f8:5d:c0:eb:88:0e:69:fd:19:88: a3:08:5b:84:0d:02:ab:41:89:cf:a8:76:26:bf:b4: 3b:43:12:c3:ad:ef:67:15:4b:38:c3:34:28:bb:e4: f1:3c:3b:89:c4:94:55:09:d4:c6:54:f2:73:3d:84: 66:9f:09:bb:00:2b:a0:5b:8e:92:fd:81:59:25:1c: eb:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:C7:1F:77:42:A8:84:B5:38:59:38:93:A5:EE:A3:46:74:8A:1E:A5 X509v3 Authority Key Identifier: keyid:28:C0:60:7D:96:83:1A:3D:18:09:33:45:B3:72:58:EE:3B:D7:F3:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KMBgfZaDGj0YCTNFs3JY7jvX8-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:ba:fd:5f:49:9a:7c:2a:c5:f4:64:07:6e:17:45:40:0d:b2: 6b:48:28:6c:2a:8a:a4:46:89:49:82:af:8e:44:08:2c:db:83: c6:51:cf:73:64:81:17:ee:69:cb:cd:ee:61:10:2c:95:ad:39: 4c:78:2e:bb:0e:23:b3:bd:44:3f:3a:48:03:2a:da:6c:5b:44: 25:29:67:33:eb:81:28:b0:01:32:98:65:ba:9e:b0:7f:c4:a7: f6:cd:f2:12:04:bd:33:73:d9:5d:4a:36:10:b9:e1:92:7d:aa: 2e:47:d7:78:57:8d:d0:60:9c:64:ab:ee:4e:df:79:f9:da:3f: a2:92:9b:56:0b:60:b2:f5:25:89:c3:8a:9b:e9:71:b9:cb:04: 5a:e6:2c:3e:a9:dd:a8:eb:16:32:4b:12:05:45:2f:4b:3b:24: 3b:72:a5:8e:ee:37:8f:2c:2f:68:8a:84:19:59:d0:46:68:4b: dd:de:7d:ab:3e:0d:33:b0:9f:8f:53:11:c1:09:90:6c:91:36: 06:b2:75:57:84:54:8e:0e:77:f3:bc:59:aa:f1:7b:36:25:0d: 51:d8:dc:b3:0c:b1:ef:d8:e4:9f:79:92:09:af:1a:79:f0:ec: 2c:3c:93:6c:65:6d:a9:bb:9c:ef:52:5c:7c:20:53:6c:64:2d: ab:7d:b3:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzVBRUUxMTAvBgNVBAUTKDI4QzA2MDdEOTY4MzFBM0QxODA5MzM0NUIzNzI1OEVF M0JEN0YzRTcwHhcNMjUwNTExMDMxODUwWhcNMjUwNTE4MDMxODUwWjAYMRYwFAYD VQQDEw02ODIwMTcxYS1kNDY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzf+UGngAkjZxGrYSncMbzKHtULlY4zmH6fDGF+47duzkOq6CQXSETZjXDqul 6VNJZ9CORgkkvYrAzBXxEa1GI/wW6jbEHMnP6BisAVF4AvDWhVFaWKNQeXoHC5SY nZNlamUNjDLaMTeZXPobgVa1xzo+N1nxAfijgRmP4vds3QgaQMi+4drdfP2/XfkY vZM0fmgtCX+xe26gdEFFfLTYqFOxV2gN2WAxcvvjMTFMSmgN+QXcZqXegfhdwOuI Dmn9GYijCFuEDQKrQYnPqHYmv7Q7QxLDre9nFUs4wzQou+TxPDuJxJRVCdTGVPJz PYRmnwm7ACugW46S/YFZJRzrRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPvHH3dC qIS1OFk4k6Xuo0Z0ih6lMB8GA1UdIwQYMBaAFCjAYH2Wgxo9GAkzRbNyWO471/Pn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNUFFRS8zRTM5MDFGMjUy MDcxMUVFQjU3QjU4NzdDNEY5QUUwMi9LTUJnZlphREdqMFlDVE5GczNKWTdqdlg4 LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tNQmdmWmFER2owWUNUTkZzM0pZN2p2WDgtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NUFFRS8zRTM5MDFGMjUyMDcxMUVFQjU3QjU4NzdDNEY5QUUwMi9LTUJnZlphREdq MFlDVE5GczNKWTdqdlg4LWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsuv1fSZp8KsX0ZAduF0VADbJrSChsKoqkRolJgq+ORAgs24PGUc9z ZIEX7mnLze5hECyVrTlMeC67DiOzvUQ/OkgDKtpsW0QlKWcz64EosAEymGW6nrB/ xKf2zfISBL0zc9ldSjYQueGSfaouR9d4V43QYJxkq+5O33n52j+ikptWC2Cy9SWJ w4qb6XG5ywRa5iw+qd2o6xYySxIFRS9LOyQ7cqWO7jePLC9oioQZWdBGaEvd3n2r Pg0zsJ+PUxHBCZBskTYGsnVXhFSODnfzvFmq8Xs2JQ1R2NyzDLHv2OSfeZIJrxp5 8OwsPJNsZW2pu5zvUlx8IFNsZC2rfbMa -----END CERTIFICATE-----Generated at Mon May 12 08:17:30 2025 by rpki-client