$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.mft File: kz73JgbZ1bKf46QfIMUrIMr1Vbo.mft (raw, json) Hash identifier: fANVLInRo8wqZ8Cp/sNRrE2spJRiEWQAWO54eRAJtGo= Subject key identifier: AF:F1:52:FC:5A:FE:16:6C:10:15:44:DA:B0:CB:EF:F7:80:EC:B8:2E Authority key identifier: 93:3E:F7:26:06:D9:D5:B2:9F:E3:A4:1F:20:C5:2B:20:CA:F5:55:BA Certificate issuer: /CN=A91D6503/serialNumber=933EF72606D9D5B29FE3A41F20C52B20CAF555BA Certificate serial: 07D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kz73JgbZ1bKf46QfIMUrIMr1Vbo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.mft Manifest number: 07D3 Signing time: Wed 14 May 2025 21:08:15 +0000 Manifest this update: Wed 14 May 2025 21:08:14 +0000 Manifest next update: Wed 21 May 2025 21:08:14 +0000 Files and hashes: 1: kz73JgbZ1bKf46QfIMUrIMr1Vbo.crl (hash: Sq9BE3hqaSJXGNABlYZzDhPEETTsFJvCeWVBUFC/Xec=) 2: 3CC77D02EE8811EA9225690DC4F9AE02.roa (hash: IS2j0d/zVkxwnqe+1txywwwV0QyYZmwCTkV8FQIqSXQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.crl rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kz73JgbZ1bKf46QfIMUrIMr1Vbo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 21:08:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2009 (0x7d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6503, serialNumber=933EF72606D9D5B29FE3A41F20C52B20CAF555BA Validity Not Before: May 14 21:08:14 2025 GMT Not After : May 21 21:08:14 2025 GMT Subject: CN=6825063e-00d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:1c:da:26:ae:61:f3:2e:b0:b6:1a:5c:7a:1d: 17:68:0b:6c:2f:e0:db:15:75:7d:14:a6:ef:57:a0: d8:e7:81:33:be:8d:d4:61:41:6d:df:fa:a4:93:78: ee:6d:02:b4:23:c1:f4:f9:75:5b:08:aa:8b:b7:3d: d6:8a:a9:b7:d9:22:d5:fe:80:f5:9f:aa:64:47:fc: 9a:34:12:50:a9:ec:02:81:3a:35:6b:d6:86:a3:48: ae:ab:e2:83:71:0e:d7:26:ab:1f:6c:aa:99:27:5a: 40:e0:aa:a7:1a:40:83:c7:06:e5:a1:02:a5:70:1d: 50:bb:4e:cf:eb:b5:58:12:cb:d9:93:9f:0f:45:a9: 9a:de:75:bf:9e:30:49:b0:e5:71:b7:62:2e:c6:38: a5:84:95:32:15:f9:f3:6d:1b:95:f1:bb:49:83:60: ce:8d:0d:67:ce:78:8d:10:8c:8b:e5:ab:77:59:aa: 3b:92:4a:cd:05:71:6c:10:44:fb:65:37:e0:ad:dd: 61:83:83:6b:43:7c:50:18:6d:7f:cc:11:5f:9f:59: f0:3b:c7:b4:99:d5:01:0c:29:8d:a6:3a:e0:70:7e: af:32:79:ac:d5:8c:ea:f8:04:2c:e6:7a:59:31:cb: b7:cd:d5:df:99:e6:f9:3f:83:d6:43:c3:b0:53:28: 98:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:F1:52:FC:5A:FE:16:6C:10:15:44:DA:B0:CB:EF:F7:80:EC:B8:2E X509v3 Authority Key Identifier: keyid:93:3E:F7:26:06:D9:D5:B2:9F:E3:A4:1F:20:C5:2B:20:CA:F5:55:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kz73JgbZ1bKf46QfIMUrIMr1Vbo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d8:75:6f:70:b3:44:23:9e:a5:9b:6d:69:f5:f0:fd:21:fc:c5: 8b:12:95:12:6c:67:7a:f6:a0:90:44:55:1b:fd:7e:3e:6a:7d: 21:0e:16:74:4c:8d:f8:9d:d9:f7:c9:d5:02:a6:d1:65:b0:c5: 24:de:f5:c2:1c:e3:10:3f:ef:2a:d8:d0:e1:15:eb:95:b9:77: 32:df:a1:64:97:53:39:89:da:82:db:09:d9:a2:8a:b4:4e:20: 9a:0f:b3:ed:49:22:f2:e4:fe:2b:c6:19:fc:23:0a:82:a4:02: 03:f2:29:61:4a:09:a3:5d:aa:41:75:d9:11:97:1e:d7:05:fd: 33:00:92:68:b1:46:5b:b2:a1:ff:80:ec:6d:70:5e:e4:6c:98: c1:ee:11:33:44:91:ca:b0:c1:db:cb:b1:61:8c:8b:01:51:80: 9f:aa:b6:1a:81:9b:c3:78:94:72:ad:f8:50:35:96:cb:a0:0f: 27:48:90:02:5b:98:36:bd:34:82:07:c6:65:26:ee:6c:df:95: e1:03:66:3a:70:4f:e8:4b:f1:6f:f8:18:dd:0f:a6:62:64:c4: bc:ad:0f:7b:c4:d6:78:29:cd:95:b1:8c:25:5e:b0:1f:c1:df: 9a:e6:6b:7d:01:15:b3:18:40:46:8e:15:42:d0:31:2a:c1:aa: 00:e8:38:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY1MDMxMTAvBgNVBAUTKDkzM0VGNzI2MDZEOUQ1QjI5RkUzQTQxRjIwQzUyQjIw Q0FGNTU1QkEwHhcNMjUwNTE0MjEwODE0WhcNMjUwNTIxMjEwODE0WjAYMRYwFAYD VQQDEw02ODI1MDYzZS0wMGQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoBzaJq5h8y6wthpceh0XaAtsL+DbFXV9FKbvV6DY54Ezvo3UYUFt3/qkk3ju bQK0I8H0+XVbCKqLtz3Wiqm32SLV/oD1n6pkR/yaNBJQqewCgTo1a9aGo0iuq+KD cQ7XJqsfbKqZJ1pA4KqnGkCDxwbloQKlcB1Qu07P67VYEsvZk58PRama3nW/njBJ sOVxt2IuxjilhJUyFfnzbRuV8btJg2DOjQ1nzniNEIyL5at3Wao7kkrNBXFsEET7 ZTfgrd1hg4NrQ3xQGG1/zBFfn1nwO8e0mdUBDCmNpjrgcH6vMnms1Yzq+AQs5npZ Mcu3zdXfmeb5P4PWQ8OwUyiY7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK/xUvxa /hZsEBVE2rDL7/eA7LguMB8GA1UdIwQYMBaAFJM+9yYG2dWyn+OkHyDFKyDK9VW6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjUwMy8wMTU0QjRCNkVF ODcxMUVBQjUyQTVDMDlDNEY5QUUwMi9rejczSmdiWjFiS2Y0NlFmSU1VcklNcjFW Ym8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t6NzNKZ2JaMWJLZjQ2UWZJTVVySU1yMVZiby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjUwMy8wMTU0QjRCNkVFODcxMUVBQjUyQTVDMDlDNEY5QUUwMi9rejczSmdiWjFi S2Y0NlFmSU1VcklNcjFWYm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDYdW9ws0QjnqWbbWn18P0h/MWLEpUSbGd69qCQRFUb/X4+an0hDhZ0 TI34ndn3ydUCptFlsMUk3vXCHOMQP+8q2NDhFeuVuXcy36Fkl1M5idqC2wnZooq0 TiCaD7PtSSLy5P4rxhn8IwqCpAID8ilhSgmjXapBddkRlx7XBf0zAJJosUZbsqH/ gOxtcF7kbJjB7hEzRJHKsMHby7FhjIsBUYCfqrYagZvDeJRyrfhQNZbLoA8nSJAC W5g2vTSCB8ZlJu5s35XhA2Y6cE/oS/Fv+BjdD6ZiZMS8rQ97xNZ4Kc2VsYwlXrAf wd+a5mt9ARWzGEBGjhVC0DEqwaoA6Dii -----END CERTIFICATE-----Generated at Fri May 16 18:00:22 2025 by rpki-client