$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft File: KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft (raw, json) Hash identifier: CYEtTnJnSucKJru8U4S+2i3mvTxcGZ8YQaG/UifctyU= Subject key identifier: 5E:D3:65:CA:61:86:9F:E9:EA:D6:B9:75:C5:E2:A8:36:61:E3:57:A8 Authority key identifier: 28:F1:8E:C7:49:EA:91:B5:A3:29:97:49:F2:AB:E2:78:8A:10:C6:91 Certificate issuer: /CN=A91DA252/serialNumber=28F18EC749EA91B5A3299749F2ABE2788A10C691 Certificate serial: 09A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPGOx0nqkbWjKZdJ8qvieIoQxpE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft Manifest number: 099E Signing time: Mon 12 May 2025 19:54:43 +0000 Manifest this update: Mon 12 May 2025 19:54:42 +0000 Manifest next update: Mon 19 May 2025 19:54:42 +0000 Files and hashes: 1: KPGOx0nqkbWjKZdJ8qvieIoQxpE.crl (hash: NPTZhIvkdTXbliy8rQMOZKWo9y22WDiDeiBZ0j8bkzk=) 2: 81E66AB486DD11EAA5DCD466C4F9AE02.roa (hash: PABbUqoLwf3xZn77dm2ppG3YXtLL0LLzakgXhNUgKAg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.crl rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPGOx0nqkbWjKZdJ8qvieIoQxpE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 19:54:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2468 (0x9a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA252, serialNumber=28F18EC749EA91B5A3299749F2ABE2788A10C691 Validity Not Before: May 12 19:54:42 2025 GMT Not After : May 19 19:54:42 2025 GMT Subject: CN=68225202-5d5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:ce:44:41:62:0a:20:6e:a8:44:ea:85:68:00: 9f:63:3a:48:95:3c:ec:f4:33:20:f4:cd:a5:62:57: fc:71:33:f3:4e:07:85:fd:86:0b:f8:09:9f:de:93: fe:54:d2:33:7d:ff:33:7e:7b:c7:7f:c1:7f:cb:1b: d6:01:ba:2a:6b:c5:ff:4f:0d:43:73:a1:a4:71:7a: 09:0f:7b:0b:52:4c:64:cd:da:4f:65:b5:19:d4:ab: 1e:62:71:84:38:ee:70:d2:49:22:b6:f9:50:eb:c4: 82:b1:9b:6d:21:06:8b:0f:fa:87:a5:a9:84:f8:22: ad:e3:b0:56:d8:3d:51:38:17:f7:66:cc:58:6c:52: ea:13:af:bf:8d:d4:c2:2d:e9:bf:45:09:d7:f7:ba: 6e:eb:a2:64:01:c3:53:36:d2:59:fd:ff:f9:88:7a: 28:15:18:17:4c:7b:c5:e7:62:d5:b9:7e:fa:eb:fe: 23:30:85:94:b8:9b:b7:55:69:2d:41:35:d1:c1:c2: 24:0c:88:5a:25:34:09:7c:fb:b0:4c:cb:cf:b4:ed: 2c:6f:32:52:27:12:c6:02:0a:b1:9c:a3:e9:3e:ac: 09:eb:12:8c:e9:9f:b7:79:a2:cb:46:71:51:18:95: fb:b4:1a:23:e2:e9:fe:dc:72:b9:03:ab:00:eb:ad: a4:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:D3:65:CA:61:86:9F:E9:EA:D6:B9:75:C5:E2:A8:36:61:E3:57:A8 X509v3 Authority Key Identifier: keyid:28:F1:8E:C7:49:EA:91:B5:A3:29:97:49:F2:AB:E2:78:8A:10:C6:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPGOx0nqkbWjKZdJ8qvieIoQxpE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:f3:28:60:ab:e5:3d:41:27:01:bb:4e:76:74:c7:b0:37:32: 6a:e0:a2:a0:bc:71:fb:82:43:e4:33:b4:c5:5b:49:25:77:04: 7e:6a:2b:35:25:8c:29:45:7a:75:dc:f7:3f:7a:4a:5a:81:10: b5:02:a9:73:23:dd:b3:6c:f0:1e:34:b2:fd:c3:c3:c0:86:d3: cf:df:06:99:5b:68:ad:e3:b7:73:c2:a6:e6:46:6d:03:fa:44: de:bd:19:5f:f7:97:32:07:9c:7b:bb:da:ba:ca:65:4d:08:d2: ec:a9:c3:2e:f0:21:7b:08:e1:bd:c0:86:22:1e:6b:92:2a:94: 80:eb:d4:5c:03:fd:38:b9:5a:9d:58:05:00:14:83:9d:4e:96: ae:ba:19:cc:8c:ef:1e:83:be:ca:3b:c9:83:69:c6:fd:42:ef: 14:c8:e9:2d:f8:06:d8:3f:6d:ab:fc:2d:b4:73:ca:6d:8e:e3: cb:ec:78:dd:77:c6:ff:2b:36:e2:a8:66:73:3d:b1:e3:07:f1: d4:37:3d:c2:7e:c6:eb:1c:9d:29:b7:70:4d:04:87:c3:81:04: d4:74:98:cf:3e:ec:c3:1a:e7:9b:1c:85:78:f8:83:9c:e5:7d: 04:a2:62:82:92:34:30:30:4f:cf:ff:ef:cc:96:3b:16:6e:6a: 4c:ae:11:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCaQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEyNTIxMTAvBgNVBAUTKDI4RjE4RUM3NDlFQTkxQjVBMzI5OTc0OUYyQUJFMjc4 OEExMEM2OTEwHhcNMjUwNTEyMTk1NDQyWhcNMjUwNTE5MTk1NDQyWjAYMRYwFAYD VQQDEw02ODIyNTIwMi01ZDVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1c5EQWIKIG6oROqFaACfYzpIlTzs9DMg9M2lYlf8cTPzTgeF/YYL+Amf3pP+ VNIzff8zfnvHf8F/yxvWAboqa8X/Tw1Dc6GkcXoJD3sLUkxkzdpPZbUZ1KseYnGE OO5w0kkitvlQ68SCsZttIQaLD/qHpamE+CKt47BW2D1ROBf3ZsxYbFLqE6+/jdTC Lem/RQnX97pu66JkAcNTNtJZ/f/5iHooFRgXTHvF52LVuX766/4jMIWUuJu3VWkt QTXRwcIkDIhaJTQJfPuwTMvPtO0sbzJSJxLGAgqxnKPpPqwJ6xKM6Z+3eaLLRnFR GJX7tBoj4un+3HK5A6sA662krQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF7TZcph hp/p6ta5dcXiqDZh41eoMB8GA1UdIwQYMBaAFCjxjsdJ6pG1oymXSfKr4niKEMaR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTI1Mi9GMDgxNzE2ODg2 REMxMUVBOUJEM0M0NjZDNEY5QUUwMi9LUEdPeDBucWtiV2pLWmRKOHF2aWVJb1F4 cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tQR094MG5xa2JXaktaZEo4cXZpZUlvUXhwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTI1Mi9GMDgxNzE2ODg2REMxMUVBOUJEM0M0NjZDNEY5QUUwMi9LUEdPeDBucWti V2pLWmRKOHF2aWVJb1F4cEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB18yhgq+U9QScBu052dMewNzJq4KKgvHH7gkPkM7TFW0kldwR+ais1 JYwpRXp13Pc/ekpagRC1AqlzI92zbPAeNLL9w8PAhtPP3waZW2it47dzwqbmRm0D +kTevRlf95cyB5x7u9q6ymVNCNLsqcMu8CF7COG9wIYiHmuSKpSA69RcA/04uVqd WAUAFIOdTpauuhnMjO8eg77KO8mDacb9Qu8UyOkt+AbYP22r/C20c8ptjuPL7Hjd d8b/KzbiqGZzPbHjB/HUNz3CfsbrHJ0pt3BNBIfDgQTUdJjPPuzDGuebHIV4+IOc 5X0EomKCkjQwME/P/+/MljsWbmpMrhFa -----END CERTIFICATE-----Generated at Tue May 13 08:49:23 2025 by rpki-client