$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA6E6/3B83AFE0F0D011ED8050766AC4F9AE02/kS3Nd84XYnPZShzEJZKtBclnamI.mft File: kS3Nd84XYnPZShzEJZKtBclnamI.mft (raw, json) Hash identifier: EQYqlJMRNbhaMKDQ/tHX5M/83wUEGq+iPK3036NfDeE= Subject key identifier: 31:FD:F0:9C:48:8D:18:9C:AD:C6:9C:7A:B9:4B:8D:9A:07:61:D1:DF Authority key identifier: 91:2D:CD:77:CE:17:62:73:D9:4A:1C:C4:25:92:AD:05:C9:67:6A:62 Certificate issuer: /CN=A91CA6E6/serialNumber=912DCD77CE176273D94A1CC42592AD05C9676A62 Certificate serial: 0179 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kS3Nd84XYnPZShzEJZKtBclnamI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA6E6/3B83AFE0F0D011ED8050766AC4F9AE02/kS3Nd84XYnPZShzEJZKtBclnamI.mft Manifest number: 0237 Signing time: Thu 15 May 2025 03:09:15 +0000 Manifest this update: Thu 15 May 2025 03:09:14 +0000 Manifest next update: Thu 22 May 2025 03:09:14 +0000 Files and hashes: 1: kS3Nd84XYnPZShzEJZKtBclnamI.crl (hash: BLv1MFA5gTl1trotvy90W0tKVEI62vyLDTWl644o6Ys=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA6E6/3B83AFE0F0D011ED8050766AC4F9AE02/kS3Nd84XYnPZShzEJZKtBclnamI.crl rsync://rpki.apnic.net/member_repository/A91CA6E6/3B83AFE0F0D011ED8050766AC4F9AE02/kS3Nd84XYnPZShzEJZKtBclnamI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kS3Nd84XYnPZShzEJZKtBclnamI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 03:09:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 377 (0x179) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA6E6, serialNumber=912DCD77CE176273D94A1CC42592AD05C9676A62 Validity Not Before: May 15 03:09:14 2025 GMT Not After : May 22 03:09:14 2025 GMT Subject: CN=68255adb-23bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:03:10:07:ad:ec:8d:90:80:6a:45:7c:26:62: 54:71:79:65:45:9d:65:f0:dc:1a:29:c4:85:10:57: 04:18:1b:ec:63:1e:2b:7f:80:9d:b1:1e:78:b9:c1: 66:c5:2f:d1:14:f1:a3:71:8f:72:a5:53:fc:fb:3e: 6f:73:e2:55:67:b0:89:7f:2c:2b:bb:ce:26:fc:a6: 17:35:4b:aa:63:2e:5c:dd:8c:5d:9d:6d:66:96:66: d3:bc:27:d8:df:01:17:55:68:14:f9:56:b5:13:53: 24:fd:4f:be:b5:04:75:72:dc:c1:bd:b1:69:26:d7: ca:f2:8c:c1:73:ca:84:dc:75:12:9d:54:6d:e0:62: aa:73:8a:15:4f:2f:23:26:0a:9d:2c:5f:87:c9:37: 31:71:fd:ee:ca:2e:8e:a3:d0:cc:d6:0d:b6:02:6d: 4c:23:6d:c0:69:b5:9f:69:41:fc:2b:c4:27:8f:9b: c5:a9:ac:dc:99:a4:d3:44:81:a8:bf:72:8a:3f:43: 5e:3c:51:27:f3:e4:00:c1:65:d8:5c:52:0f:7e:b2: 3d:6d:99:41:39:80:77:bb:17:af:9f:cc:5b:71:9d: 52:55:31:87:77:45:c2:ed:14:1a:65:e4:19:73:65: be:be:37:61:69:d7:29:1e:6e:0f:1f:c2:a0:66:34: cf:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:FD:F0:9C:48:8D:18:9C:AD:C6:9C:7A:B9:4B:8D:9A:07:61:D1:DF X509v3 Authority Key Identifier: keyid:91:2D:CD:77:CE:17:62:73:D9:4A:1C:C4:25:92:AD:05:C9:67:6A:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA6E6/3B83AFE0F0D011ED8050766AC4F9AE02/kS3Nd84XYnPZShzEJZKtBclnamI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kS3Nd84XYnPZShzEJZKtBclnamI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA6E6/3B83AFE0F0D011ED8050766AC4F9AE02/kS3Nd84XYnPZShzEJZKtBclnamI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:5d:71:50:b2:d8:fd:0b:1e:74:64:f9:eb:53:e8:45:3f:f2: b7:ac:3e:ca:4c:59:ba:75:a8:1a:aa:7a:49:d7:f8:b7:de:4e: f0:15:54:ac:15:b7:f7:bc:ef:3a:ee:0d:94:aa:7d:bf:37:20: 7d:24:5d:86:15:79:ef:b1:f7:b0:4c:bc:34:8e:75:71:49:c7: 44:cf:50:0e:a3:b1:9e:7e:de:03:a1:0c:c5:77:55:e0:0c:b8: fd:96:0c:68:43:a9:31:df:78:f4:1b:fa:7e:d5:ad:47:03:1c: 7f:af:52:38:f4:40:57:62:ee:ee:55:a1:d5:85:93:dc:e2:cb: 0a:50:bf:c3:12:cc:49:ab:2a:c9:21:df:47:d0:95:9e:08:3e: a6:20:f3:ea:d2:c0:2d:2c:54:bc:30:f8:36:7a:6e:af:0e:75: 9f:cb:aa:1c:11:c1:69:01:67:9d:05:c2:3a:ab:43:eb:cb:0f: 46:30:c1:fc:84:bc:74:50:43:31:4e:94:df:38:ef:98:d6:9f: 42:b9:09:41:3a:ab:4c:d0:8f:b5:76:91:a6:f7:61:ea:9d:ec: 6e:9c:6d:0a:68:92:5f:56:0e:8b:bb:03:12:bc:5e:58:be:bc: 5b:2b:aa:b9:af:6e:57:02:95:ea:cb:dc:bf:85:3e:4e:23:89: df:6c:d0:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0E2RTYxMTAvBgNVBAUTKDkxMkRDRDc3Q0UxNzYyNzNEOTRBMUNDNDI1OTJBRDA1 Qzk2NzZBNjIwHhcNMjUwNTE1MDMwOTE0WhcNMjUwNTIyMDMwOTE0WjAYMRYwFAYD VQQDEw02ODI1NWFkYi0yM2JiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0QMQB63sjZCAakV8JmJUcXllRZ1l8NwaKcSFEFcEGBvsYx4rf4CdsR54ucFm xS/RFPGjcY9ypVP8+z5vc+JVZ7CJfywru84m/KYXNUuqYy5c3YxdnW1mlmbTvCfY 3wEXVWgU+Va1E1Mk/U++tQR1ctzBvbFpJtfK8ozBc8qE3HUSnVRt4GKqc4oVTy8j JgqdLF+HyTcxcf3uyi6Oo9DM1g22Am1MI23AabWfaUH8K8Qnj5vFqazcmaTTRIGo v3KKP0NePFEn8+QAwWXYXFIPfrI9bZlBOYB3uxevn8xbcZ1SVTGHd0XC7RQaZeQZ c2W+vjdhadcpHm4PH8KgZjTPGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDH98JxI jRicrcacerlLjZoHYdHfMB8GA1UdIwQYMBaAFJEtzXfOF2Jz2UocxCWSrQXJZ2pi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQTZFNi8zQjgzQUZFMEYw RDAxMUVEODA1MDc2NkFDNEY5QUUwMi9rUzNOZDg0WFluUFpTaHpFSlpLdEJjbG5h bUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tTM05kODRYWW5QWlNoekVKWkt0QmNsbmFtSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QTZFNi8zQjgzQUZFMEYwRDAxMUVEODA1MDc2NkFDNEY5QUUwMi9rUzNOZDg0WFlu UFpTaHpFSlpLdEJjbG5hbUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPXXFQstj9Cx50ZPnrU+hFP/K3rD7KTFm6dagaqnpJ1/i33k7wFVSs Fbf3vO867g2Uqn2/NyB9JF2GFXnvsfewTLw0jnVxScdEz1AOo7Geft4DoQzFd1Xg DLj9lgxoQ6kx33j0G/p+1a1HAxx/r1I49EBXYu7uVaHVhZPc4ssKUL/DEsxJqyrJ Id9H0JWeCD6mIPPq0sAtLFS8MPg2em6vDnWfy6ocEcFpAWedBcI6q0Pryw9GMMH8 hLx0UEMxTpTfOO+Y1p9CuQlBOqtM0I+1dpGm92HqnexunG0KaJJfVg6LuwMSvF5Y vrxbK6q5r25XApXqy9y/hT5OI4nfbNCo -----END CERTIFICATE-----Generated at Sat May 17 00:16:39 2025 by rpki-client