$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft File: Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft (raw, json) Hash identifier: KNd9qYFsEXXFZnoSReDaIz/PwTd0WMPlENIg/K3PAS0= Subject key identifier: 0F:14:55:C0:0B:97:9D:C9:52:DA:1B:96:B9:0A:2B:03:2A:D1:F7:36 Authority key identifier: 2B:3E:E4:4E:A9:CB:5B:81:29:6B:B6:7D:F0:F5:46:F8:AA:C8:A4:B4 Certificate issuer: /CN=A91F4F00/serialNumber=2B3EE44EA9CB5B81296BB67DF0F546F8AAC8A4B4 Certificate serial: 077B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft Manifest number: 0775 Signing time: Wed 14 May 2025 21:33:11 +0000 Manifest this update: Wed 14 May 2025 21:33:10 +0000 Manifest next update: Wed 21 May 2025 21:33:10 +0000 Files and hashes: 1: Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl (hash: lUlhMyBMPNIbXaUVX1ec8ccNt49Og55V5D5biyyD3Yk=) 2: 395AFD84135811EB942A3E15C4F9AE02.roa (hash: +nVGHDmFpNMeCZK4D+EYT1WCdxSsITi4ixDFG3tX1xc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 21:33:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1915 (0x77b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4F00, serialNumber=2B3EE44EA9CB5B81296BB67DF0F546F8AAC8A4B4 Validity Not Before: May 14 21:33:10 2025 GMT Not After : May 21 21:33:10 2025 GMT Subject: CN=68250c16-199f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:c1:d4:d6:b4:db:ef:b6:a0:40:66:6b:aa:29: c0:1b:78:82:4d:6c:83:9f:a9:55:8f:6a:ec:42:44: 54:3c:a8:7b:b4:59:f2:bd:98:ba:4d:0d:69:6c:f2: 78:9e:43:6f:4f:be:a9:2d:0c:b9:69:53:36:88:49: a3:75:61:61:c5:25:7a:1b:07:c4:74:4d:fd:75:82: 1c:95:a6:41:af:75:80:71:fd:3d:29:7b:f4:f5:64: 85:93:fb:3e:2d:33:84:78:95:a5:2c:33:9a:d5:22: 95:40:bc:cc:b0:98:60:46:06:9a:7e:bb:f2:fe:e2: 8b:ae:08:e7:ae:54:9b:2e:31:51:26:70:9d:f8:4b: 2c:d0:0c:4b:2e:e6:ec:56:a6:f0:97:c6:f6:60:c5: 9c:ca:8c:38:29:6f:53:05:57:1e:59:d2:19:17:1a: 89:06:89:a7:4f:fe:85:a7:d7:65:f0:76:a3:f8:fa: 70:93:f7:92:ab:fb:82:1e:ad:25:1a:08:3a:94:5c: 51:09:4a:ff:af:84:3d:82:08:26:c5:f4:d6:b7:9c: 0e:4c:05:a3:73:33:f5:bb:70:48:9a:cc:fa:33:69: b8:9d:72:d4:33:8e:30:c4:a9:be:b8:23:4a:2d:cb: ce:8b:e6:51:28:73:a1:01:e2:4f:31:74:c2:d4:a3: a4:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:14:55:C0:0B:97:9D:C9:52:DA:1B:96:B9:0A:2B:03:2A:D1:F7:36 X509v3 Authority Key Identifier: keyid:2B:3E:E4:4E:A9:CB:5B:81:29:6B:B6:7D:F0:F5:46:F8:AA:C8:A4:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:e8:24:58:e4:cc:3f:72:41:40:8f:60:9d:4b:2d:9d:a2:95: 5e:f6:23:0e:8c:2f:04:ea:18:5a:e5:11:c5:67:14:b5:b0:b4: fc:8d:16:33:ae:5b:42:bf:3b:06:7d:80:7e:3c:24:f4:2d:56: 9c:61:db:29:12:e6:fa:40:24:d7:a0:4d:8d:ba:c4:1f:b6:dd: ef:0e:6b:1f:ca:7a:b1:ae:fd:b9:ff:05:f7:b3:d3:fd:98:69: c2:a1:e9:67:e2:64:f2:70:70:ef:16:61:45:27:56:59:d8:9d: 13:b4:3a:47:67:8b:22:d6:71:3e:f8:e7:e1:fb:41:c6:87:a8: b1:8a:ad:23:94:e7:0a:d3:18:1d:94:8d:14:77:bf:d8:9e:2b: 99:81:4f:28:bd:14:5a:7b:b6:10:6a:03:6f:68:da:4d:e6:7a: be:c7:60:04:1c:67:d2:9c:89:cc:f6:11:6d:cd:bb:9d:9a:5a: 88:b7:3f:35:95:32:9b:1c:4f:01:48:a2:0d:54:25:60:67:d1: 0e:fb:8a:70:33:63:d2:93:da:57:d9:5d:cd:4f:d1:76:54:ee: ba:9c:a4:37:c7:14:7c:91:a7:21:a9:87:26:e5:6c:bd:f7:08: 0d:12:21:91:f7:85:fb:81:75:6d:a1:06:24:ee:35:c8:b3:88: 27:42:f7:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB3swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRGMDAxMTAvBgNVBAUTKDJCM0VFNDRFQTlDQjVCODEyOTZCQjY3REYwRjU0NkY4 QUFDOEE0QjQwHhcNMjUwNTE0MjEzMzEwWhcNMjUwNTIxMjEzMzEwWjAYMRYwFAYD VQQDEw02ODI1MGMxNi0xOTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqsHU1rTb77agQGZrqinAG3iCTWyDn6lVj2rsQkRUPKh7tFnyvZi6TQ1pbPJ4 nkNvT76pLQy5aVM2iEmjdWFhxSV6GwfEdE39dYIclaZBr3WAcf09KXv09WSFk/s+ LTOEeJWlLDOa1SKVQLzMsJhgRgaafrvy/uKLrgjnrlSbLjFRJnCd+Ess0AxLLubs Vqbwl8b2YMWcyow4KW9TBVceWdIZFxqJBomnT/6Fp9dl8Haj+Ppwk/eSq/uCHq0l Ggg6lFxRCUr/r4Q9gggmxfTWt5wOTAWjczP1u3BImsz6M2m4nXLUM44wxKm+uCNK LcvOi+ZRKHOhAeJPMXTC1KOkVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA8UVcAL l53JUtoblrkKKwMq0fc2MB8GA1UdIwQYMBaAFCs+5E6py1uBKWu2ffD1RviqyKS0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEYwMC8zREE2OTAxNjEz NTcxMUVCQTIzREE3MTRDNEY5QUUwMi9LejdrVHFuTFc0RXBhN1o5OFBWRy1Lcklw TFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t6N2tUcW5MVzRFcGE3Wjk4UFZHLUtySXBMUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEYwMC8zREE2OTAxNjEzNTcxMUVCQTIzREE3MTRDNEY5QUUwMi9LejdrVHFuTFc0 RXBhN1o5OFBWRy1LcklwTFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBC6CRY5Mw/ckFAj2CdSy2dopVe9iMOjC8E6hha5RHFZxS1sLT8jRYz rltCvzsGfYB+PCT0LVacYdspEub6QCTXoE2NusQftt3vDmsfynqxrv25/wX3s9P9 mGnCoeln4mTycHDvFmFFJ1ZZ2J0TtDpHZ4si1nE++Ofh+0HGh6ixiq0jlOcK0xgd lI0Ud7/YniuZgU8ovRRae7YQagNvaNpN5nq+x2AEHGfSnInM9hFtzbudmlqItz81 lTKbHE8BSKINVCVgZ9EO+4pwM2PSk9pX2V3NT9F2VO66nKQ3xxR8kachqYcm5Wy9 9wgNEiGR94X7gXVtoQYk7jXIs4gnQvdS -----END CERTIFICATE-----Generated at Fri May 16 10:50:51 2025 by rpki-client