$ rpki-client -vvf rpki.apnic.net/member_repository/A91F79A2/1A05E6EE2D2E11EFA54C8042C4F9AE02/kTOsvs_e7PTaOiIigng09bc6-qc.mft File: kTOsvs_e7PTaOiIigng09bc6-qc.mft (raw, json) Hash identifier: XNIn7OiRbK0peGSmwM/oU33boWOkn3D+SZ+zYnenZoc= Subject key identifier: 89:3A:B2:76:24:A7:B7:48:60:93:F0:60:78:E5:AF:F2:6E:1B:9B:BD Authority key identifier: 91:33:AC:BE:CF:DE:EC:F4:DA:3A:22:22:82:78:34:F5:B7:3A:FA:A7 Certificate issuer: /CN=A91F79A2/serialNumber=9133ACBECFDEECF4DA3A2222827834F5B73AFAA7 Certificate serial: A7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kTOsvs_e7PTaOiIigng09bc6-qc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F79A2/1A05E6EE2D2E11EFA54C8042C4F9AE02/kTOsvs_e7PTaOiIigng09bc6-qc.mft Manifest number: A7 Signing time: Fri 09 May 2025 05:06:43 +0000 Manifest this update: Fri 09 May 2025 05:06:43 +0000 Manifest next update: Fri 16 May 2025 05:06:43 +0000 Files and hashes: 1: kTOsvs_e7PTaOiIigng09bc6-qc.crl (hash: VZmLGq7/EJktoLuMtBuBT7+CjK1SgnCwy7TDVqGNzDE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F79A2/1A05E6EE2D2E11EFA54C8042C4F9AE02/kTOsvs_e7PTaOiIigng09bc6-qc.crl rsync://rpki.apnic.net/member_repository/A91F79A2/1A05E6EE2D2E11EFA54C8042C4F9AE02/kTOsvs_e7PTaOiIigng09bc6-qc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kTOsvs_e7PTaOiIigng09bc6-qc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 05:06:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 167 (0xa7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F79A2, serialNumber=9133ACBECFDEECF4DA3A2222827834F5B73AFAA7 Validity Not Before: May 9 05:06:43 2025 GMT Not After : May 16 05:06:43 2025 GMT Subject: CN=681d8d63-4c0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:b2:79:5f:a0:f4:ed:10:0d:74:f5:da:a0:c6: 80:62:a4:af:99:22:e7:a8:b5:ed:0b:5b:25:51:41: 84:00:9c:51:2e:2d:87:70:1d:75:b7:c8:c1:c5:6d: 7a:f0:e8:aa:b1:97:01:51:03:f1:20:d5:92:b4:5a: aa:e7:b8:0b:56:aa:c8:70:68:52:d0:8a:62:c2:fa: 81:d5:55:79:71:9a:96:2b:a3:1e:bf:a0:89:a0:ac: 95:9a:8a:52:a0:30:bb:70:b3:15:29:7a:b4:2e:9c: b6:24:82:0d:dc:33:a2:dc:d1:e1:5e:e5:d3:8c:ab: 03:b3:7a:dd:2a:2d:d5:78:11:fc:c8:29:84:97:ca: 82:72:90:a9:65:f5:0a:58:7c:6c:5d:5d:9e:05:7f: 84:9d:3e:45:03:f6:82:63:80:c4:12:fc:5c:5a:a0: 88:3c:77:35:b9:b5:25:3a:7d:29:ae:a8:4b:c3:3f: 96:cd:27:f3:24:f6:47:05:1e:08:6d:d1:4b:f8:4c: 64:15:a9:a2:12:37:d8:64:63:f2:2c:51:49:e8:d9: 6d:1d:6d:ef:de:d0:ea:83:04:1c:b3:6e:09:a3:1f: b7:05:e0:94:f2:9e:b8:82:b4:94:bb:04:d4:80:cd: e6:c8:bb:16:e0:b5:f3:10:23:69:d8:41:4d:53:b1: 92:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:3A:B2:76:24:A7:B7:48:60:93:F0:60:78:E5:AF:F2:6E:1B:9B:BD X509v3 Authority Key Identifier: keyid:91:33:AC:BE:CF:DE:EC:F4:DA:3A:22:22:82:78:34:F5:B7:3A:FA:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F79A2/1A05E6EE2D2E11EFA54C8042C4F9AE02/kTOsvs_e7PTaOiIigng09bc6-qc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kTOsvs_e7PTaOiIigng09bc6-qc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F79A2/1A05E6EE2D2E11EFA54C8042C4F9AE02/kTOsvs_e7PTaOiIigng09bc6-qc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:2a:67:87:af:59:b9:7e:7d:5b:67:e0:c0:ce:dc:90:0d:37: e5:89:d7:18:84:7f:ac:97:e2:5d:8d:58:e2:9a:48:fc:74:0e: 07:3b:41:62:a7:c8:fe:eb:6a:f7:be:7c:f4:1d:da:b4:50:0c: 68:ad:95:03:b4:90:57:61:8b:bc:bd:6d:f1:5a:f4:5f:63:25: a7:02:32:e5:9e:07:cf:ac:43:8c:98:12:15:fe:d4:86:0d:d7: 87:5c:85:8d:85:e3:e0:14:a6:53:85:77:6b:8c:d3:40:40:39: 78:0e:e1:15:b4:7c:50:e7:e0:55:f5:17:4a:cc:15:07:8e:f1: be:84:7a:f0:a8:d2:6d:a4:e6:e1:ef:b2:f0:7a:c2:7d:47:cd: bc:9a:db:02:a9:e5:30:14:a2:ce:dd:50:9b:af:5f:ac:34:b9: ef:f3:d1:f2:08:3c:2c:65:c5:59:ca:94:59:b1:e3:8a:87:28: 01:2d:76:e1:1b:1c:2f:9c:0e:78:dd:6e:c8:f4:bb:a7:af:b9: b1:5e:f7:09:fb:ac:0a:64:d9:da:36:d3:70:b5:c7:55:8d:fa: 02:6f:92:7b:e0:25:5f:ad:ec:32:6d:ee:5e:a7:63:38:9f:e4: bb:23:9d:4d:39:34:40:09:0b:75:86:81:35:ec:c1:37:b1:bc: 53:28:c7:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjc5QTIxMTAvBgNVBAUTKDkxMzNBQ0JFQ0ZERUVDRjREQTNBMjIyMjgyNzgzNEY1 QjczQUZBQTcwHhcNMjUwNTA5MDUwNjQzWhcNMjUwNTE2MDUwNjQzWjAYMRYwFAYD VQQDEw02ODFkOGQ2My00YzBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzLJ5X6D07RANdPXaoMaAYqSvmSLnqLXtC1slUUGEAJxRLi2HcB11t8jBxW16 8OiqsZcBUQPxINWStFqq57gLVqrIcGhS0IpiwvqB1VV5cZqWK6Mev6CJoKyVmopS oDC7cLMVKXq0Lpy2JIIN3DOi3NHhXuXTjKsDs3rdKi3VeBH8yCmEl8qCcpCpZfUK WHxsXV2eBX+EnT5FA/aCY4DEEvxcWqCIPHc1ubUlOn0prqhLwz+WzSfzJPZHBR4I bdFL+ExkFamiEjfYZGPyLFFJ6NltHW3v3tDqgwQcs24Jox+3BeCU8p64grSUuwTU gM3myLsW4LXzECNp2EFNU7GS5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIk6snYk p7dIYJPwYHjlr/JuG5u9MB8GA1UdIwQYMBaAFJEzrL7P3uz02joiIoJ4NPW3Ovqn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzlBMi8xQTA1RTZFRTJE MkUxMUVGQTU0QzgwNDJDNEY5QUUwMi9rVE9zdnNfZTdQVGFPaUlpZ25nMDliYzYt cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tUT3N2c19lN1BUYU9pSWlnbmcwOWJjNi1xYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzlBMi8xQTA1RTZFRTJEMkUxMUVGQTU0QzgwNDJDNEY5QUUwMi9rVE9zdnNfZTdQ VGFPaUlpZ25nMDliYzYtcWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBKmeHr1m5fn1bZ+DAztyQDTflidcYhH+sl+JdjVjimkj8dA4HO0Fi p8j+62r3vnz0Hdq0UAxorZUDtJBXYYu8vW3xWvRfYyWnAjLlngfPrEOMmBIV/tSG DdeHXIWNhePgFKZThXdrjNNAQDl4DuEVtHxQ5+BV9RdKzBUHjvG+hHrwqNJtpObh 77LwesJ9R828mtsCqeUwFKLO3VCbr1+sNLnv89HyCDwsZcVZypRZseOKhygBLXbh GxwvnA543W7I9Lunr7mxXvcJ+6wKZNnaNtNwtcdVjfoCb5J74CVfrewybe5ep2M4 n+S7I51NOTRACQt1hoE17ME3sbxTKMeV -----END CERTIFICATE-----Generated at Fri May 9 23:52:59 2025 by rpki-client