$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.mft File: Khx4XL6-fNe6tToSO2BVhg9gfxg.mft (raw, json) Hash identifier: FaeTZNTVd9cypfZq1LQr9WWfFCuCTLluc5jzfzYutQ8= Subject key identifier: B9:34:AD:61:03:A6:5C:B8:4E:1C:C8:5B:35:7B:A0:CD:52:93:B0:0F Authority key identifier: 2A:1C:78:5C:BE:BE:7C:D7:BA:B5:3A:12:3B:60:55:86:0F:60:7F:18 Certificate issuer: /CN=A91D6AB2/serialNumber=2A1C785CBEBE7CD7BAB53A123B6055860F607F18 Certificate serial: 0825 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Khx4XL6-fNe6tToSO2BVhg9gfxg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.mft Manifest number: 0C28 Signing time: Sun 04 May 2025 20:33:15 +0000 Manifest this update: Sun 04 May 2025 20:33:14 +0000 Manifest next update: Sun 11 May 2025 20:33:14 +0000 Files and hashes: 1: Khx4XL6-fNe6tToSO2BVhg9gfxg.crl (hash: pSMJB64o9TbTuQmAWDzIBQEwMm6s9dhIJ5P42+ZfyIo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.crl rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Khx4XL6-fNe6tToSO2BVhg9gfxg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 20:33:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2085 (0x825) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6AB2, serialNumber=2A1C785CBEBE7CD7BAB53A123B6055860F607F18 Validity Not Before: May 4 20:33:14 2025 GMT Not After : May 11 20:33:14 2025 GMT Subject: CN=6817cf0b-b850 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:3d:0b:d6:8e:6b:42:1c:a3:03:09:a7:a3:d1: 9f:da:b5:48:1d:da:13:19:11:81:1b:47:3d:8d:4c: b6:22:7c:96:39:e1:d4:99:f4:b3:c5:74:de:7c:a4: 62:44:e9:0d:2c:f1:e9:c8:94:df:34:d3:4d:59:4b: 9d:fe:7b:13:f8:17:ae:59:6c:60:91:4c:34:f1:33: 18:2a:87:67:b2:e1:89:db:96:15:f5:44:8e:bf:f7: 39:9e:5e:d4:b1:2e:22:25:81:2b:f8:0d:25:f0:dc: 44:e1:cb:12:b7:42:4c:51:92:b5:f2:da:52:33:01: e4:88:9f:62:91:1f:d5:97:86:37:da:e3:ff:4c:48: 93:7e:71:e7:f3:00:4c:6f:0b:13:0d:c8:27:a1:7e: 7c:7c:43:ce:91:4f:08:9f:04:af:68:f2:27:31:7c: 5d:ce:75:8d:26:85:21:3a:46:21:00:51:d2:73:38: 3b:13:84:42:c4:aa:7e:4a:84:92:83:0b:7d:2b:af: 13:c8:8b:e3:2d:b3:a6:a6:5d:54:9a:7c:78:09:2b: de:78:ab:b5:4b:08:af:cc:9e:a4:cd:f8:b7:ec:77: ab:a2:51:f7:9f:45:08:d3:0e:a2:fa:e5:cf:b1:ab: 29:fc:ef:72:b3:73:46:83:5c:08:1a:53:18:55:1f: e7:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:34:AD:61:03:A6:5C:B8:4E:1C:C8:5B:35:7B:A0:CD:52:93:B0:0F X509v3 Authority Key Identifier: keyid:2A:1C:78:5C:BE:BE:7C:D7:BA:B5:3A:12:3B:60:55:86:0F:60:7F:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Khx4XL6-fNe6tToSO2BVhg9gfxg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:0e:29:36:cc:ff:13:b9:80:7f:55:d0:57:2d:67:12:be:88: 59:5f:63:9f:c5:13:48:24:aa:60:f8:a5:f3:25:c0:8c:05:3e: 89:b8:a6:ae:23:e5:55:b4:b8:56:4f:a5:d3:a6:31:3c:77:a7: 16:e8:09:02:6e:09:08:1e:84:b0:33:ee:ca:45:35:e0:86:86: 01:c0:06:8f:53:ae:64:65:bd:c5:b0:3e:d6:96:25:4b:25:c7: 1a:3d:66:d2:94:e8:ca:f5:c1:ba:68:4d:4c:af:b6:1c:66:37: 2e:af:44:f4:44:ed:bc:31:db:cf:27:85:6c:3e:ca:ba:18:47: 69:a8:cf:fb:e6:0c:f4:7c:13:8b:34:9e:4f:32:e4:13:ae:60: 74:f3:35:09:3e:1d:b3:4d:df:92:fa:ae:3f:56:56:c1:5c:f9: c0:ae:8b:f2:56:96:67:52:cc:13:aa:0d:ba:ff:64:c9:9c:9e: f5:f9:91:a8:1f:d2:1b:69:53:2c:20:31:dd:de:9e:68:3e:62: e6:12:6c:df:54:67:1e:0d:07:f6:68:a0:88:8f:be:5e:df:e1: 6a:31:49:88:ac:09:ed:ba:7e:84:72:66:c1:9e:81:3e:45:a5: 2e:7b:af:61:21:c5:1e:1c:d9:6e:49:36:74:12:59:5e:05:ea: 23:fc:3f:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDZBQjIxMTAvBgNVBAUTKDJBMUM3ODVDQkVCRTdDRDdCQUI1M0ExMjNCNjA1NTg2 MEY2MDdGMTgwHhcNMjUwNTA0MjAzMzE0WhcNMjUwNTExMjAzMzE0WjAYMRYwFAYD VQQDEw02ODE3Y2YwYi1iODUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtj0L1o5rQhyjAwmno9Gf2rVIHdoTGRGBG0c9jUy2InyWOeHUmfSzxXTefKRi ROkNLPHpyJTfNNNNWUud/nsT+BeuWWxgkUw08TMYKodnsuGJ25YV9USOv/c5nl7U sS4iJYEr+A0l8NxE4csSt0JMUZK18tpSMwHkiJ9ikR/Vl4Y32uP/TEiTfnHn8wBM bwsTDcgnoX58fEPOkU8InwSvaPInMXxdznWNJoUhOkYhAFHSczg7E4RCxKp+SoSS gwt9K68TyIvjLbOmpl1Umnx4CSveeKu1SwivzJ6kzfi37HerolH3n0UI0w6i+uXP sasp/O9ys3NGg1wIGlMYVR/nDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLk0rWED ply4ThzIWzV7oM1Sk7APMB8GA1UdIwQYMBaAFCoceFy+vnzXurU6EjtgVYYPYH8Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENkFCMi8wQUYyRUFBQUNG NzAxMUVBOEFFNTVENDhDNEY5QUUwMi9LaHg0WEw2LWZOZTZ0VG9TTzJCVmhnOWdm eGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0toeDRYTDYtZk5lNnRUb1NPMkJWaGc5Z2Z4Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NkFCMi8wQUYyRUFBQUNGNzAxMUVBOEFFNTVENDhDNEY5QUUwMi9LaHg0WEw2LWZO ZTZ0VG9TTzJCVmhnOWdmeGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBDik2zP8TuYB/VdBXLWcSvohZX2OfxRNIJKpg+KXzJcCMBT6JuKau I+VVtLhWT6XTpjE8d6cW6AkCbgkIHoSwM+7KRTXghoYBwAaPU65kZb3FsD7WliVL JccaPWbSlOjK9cG6aE1Mr7YcZjcur0T0RO28MdvPJ4VsPsq6GEdpqM/75gz0fBOL NJ5PMuQTrmB08zUJPh2zTd+S+q4/VlbBXPnArovyVpZnUswTqg26/2TJnJ71+ZGo H9IbaVMsIDHd3p5oPmLmEmzfVGceDQf2aKCIj75e3+FqMUmIrAntun6EcmbBnoE+ RaUue69hIcUeHNluSTZ0ElleBeoj/D+1 -----END CERTIFICATE-----Generated at Mon May 5 12:46:03 2025 by rpki-client