$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDCFE/96505B2480E411ECB92DCB4DC4F9AE02/kqxPvhcOqd-J8MgxjDzUX5OlIzQ.mft File: kqxPvhcOqd-J8MgxjDzUX5OlIzQ.mft (raw, json) Hash identifier: iWn5l+lxGpeS1AU/CJ4p3IrfvxWiyJA7SuqdaMFy5p4= Subject key identifier: 03:D6:D1:17:CA:22:06:31:54:9E:D3:B2:51:83:B4:27:D0:5F:77:51 Authority key identifier: 92:AC:4F:BE:17:0E:A9:DF:89:F0:C8:31:8C:3C:D4:5F:93:A5:23:34 Certificate issuer: /CN=A91FDCFE/serialNumber=92AC4FBE170EA9DF89F0C8318C3CD45F93A52334 Certificate serial: 03E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kqxPvhcOqd-J8MgxjDzUX5OlIzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDCFE/96505B2480E411ECB92DCB4DC4F9AE02/kqxPvhcOqd-J8MgxjDzUX5OlIzQ.mft Manifest number: 03DD Signing time: Tue 13 May 2025 00:22:49 +0000 Manifest this update: Tue 13 May 2025 00:22:48 +0000 Manifest next update: Tue 20 May 2025 00:22:48 +0000 Files and hashes: 1: kqxPvhcOqd-J8MgxjDzUX5OlIzQ.crl (hash: /RvKC63toG9nbpKqwUvMBlFQdEXoRHOGZ/lEOe5PCPo=) 2: A5621F3480EA11EC9B13735BC4F9AE02.roa (hash: 8vDL+87ujwmt0cTUprGHDVqUcQ7iOWe78XinpUQSTr4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDCFE/96505B2480E411ECB92DCB4DC4F9AE02/kqxPvhcOqd-J8MgxjDzUX5OlIzQ.crl rsync://rpki.apnic.net/member_repository/A91FDCFE/96505B2480E411ECB92DCB4DC4F9AE02/kqxPvhcOqd-J8MgxjDzUX5OlIzQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kqxPvhcOqd-J8MgxjDzUX5OlIzQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 00:22:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 999 (0x3e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDCFE, serialNumber=92AC4FBE170EA9DF89F0C8318C3CD45F93A52334 Validity Not Before: May 13 00:22:48 2025 GMT Not After : May 20 00:22:48 2025 GMT Subject: CN=682290d9-8ecc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:9e:64:a3:1d:63:d7:03:85:d1:60:dd:57:af: 74:be:b8:79:76:4e:4d:24:d6:8a:3d:9b:50:cb:0b: fb:b7:9e:b5:36:78:34:70:30:72:2e:ad:fa:a1:35: c3:aa:9a:6f:fd:9e:d2:9b:bf:d0:af:ef:9f:26:7f: fc:28:83:10:7f:2b:0c:ea:2b:1d:71:b7:05:60:c5: 26:ac:f4:70:02:75:05:84:12:d6:bc:86:c4:cd:54: 09:44:5b:bd:a7:1b:23:58:cf:3d:a8:28:39:cd:8c: 5d:d0:58:94:3c:9d:bf:50:cb:8d:9a:12:9a:13:0a: 8e:c9:12:95:cc:20:98:b3:11:7b:9b:77:9c:ff:5d: 65:68:ed:e0:48:8f:57:47:c5:d2:71:c9:ef:74:28: c3:c5:2b:8c:b0:f7:d7:7d:77:8f:fc:75:38:a4:75: bd:47:48:1e:63:f0:21:a7:99:1a:14:75:f1:7b:2e: ab:17:e6:02:91:dd:51:9c:35:e1:55:f1:28:d4:ca: 37:f2:31:ce:42:fe:5f:e5:ff:77:bf:88:6b:1c:98: 87:e2:12:af:55:e7:b3:39:2f:0c:9a:5c:63:cb:f3: 2a:16:88:8f:3d:5e:00:91:98:c4:5a:45:a6:b2:31: 1b:8a:59:aa:c0:1b:b3:20:05:8e:8c:b5:b4:4e:96: fc:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:D6:D1:17:CA:22:06:31:54:9E:D3:B2:51:83:B4:27:D0:5F:77:51 X509v3 Authority Key Identifier: keyid:92:AC:4F:BE:17:0E:A9:DF:89:F0:C8:31:8C:3C:D4:5F:93:A5:23:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDCFE/96505B2480E411ECB92DCB4DC4F9AE02/kqxPvhcOqd-J8MgxjDzUX5OlIzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kqxPvhcOqd-J8MgxjDzUX5OlIzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDCFE/96505B2480E411ECB92DCB4DC4F9AE02/kqxPvhcOqd-J8MgxjDzUX5OlIzQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:0e:2b:b0:88:66:8d:18:ac:f9:6e:06:47:63:83:b2:81:75: 75:77:56:87:b9:ce:5e:3c:ef:5b:12:b0:8e:d3:42:ca:80:d4: e9:a5:bc:64:68:c3:b5:97:18:88:2b:a8:ee:11:6c:70:de:a2: f6:f2:67:27:43:db:0b:dc:68:d9:c3:c2:43:db:c7:14:ca:00: 7b:56:d0:e0:7c:82:d6:f0:18:38:bd:e7:62:12:a3:f0:ef:7f: e6:76:05:35:a9:c0:23:56:43:11:c8:7e:8f:17:b2:d4:b2:02: cf:2d:d1:3c:a4:68:14:58:e8:b5:c0:c3:2e:78:94:21:13:7e: 74:5f:f2:09:db:00:79:a9:70:b2:32:d0:ba:39:fd:82:bf:de: 3a:cd:c6:ac:33:d4:61:45:97:ed:f1:3c:f0:89:c7:f7:62:26: d1:13:97:75:18:a4:56:29:e0:63:b2:6b:a2:52:ca:5b:44:a1: 55:09:0c:c9:69:b4:3d:4a:28:d5:83:cd:ef:6e:2c:59:86:bf: b5:f5:6a:66:9e:41:da:eb:d8:7c:60:b7:73:7e:81:f0:ab:34: 5f:98:c5:9c:c9:3f:b9:63:4e:a5:bc:cc:ce:3d:c7:9a:f0:11: fe:24:88:ca:c9:0f:98:4f:ed:73:70:05:19:47:e7:2d:44:93: ca:14:3e:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRDRkUxMTAvBgNVBAUTKDkyQUM0RkJFMTcwRUE5REY4OUYwQzgzMThDM0NENDVG OTNBNTIzMzQwHhcNMjUwNTEzMDAyMjQ4WhcNMjUwNTIwMDAyMjQ4WjAYMRYwFAYD VQQDEw02ODIyOTBkOS04ZWNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArJ5kox1j1wOF0WDdV690vrh5dk5NJNaKPZtQywv7t561Nng0cDByLq36oTXD qppv/Z7Sm7/Qr++fJn/8KIMQfysM6isdcbcFYMUmrPRwAnUFhBLWvIbEzVQJRFu9 pxsjWM89qCg5zYxd0FiUPJ2/UMuNmhKaEwqOyRKVzCCYsxF7m3ec/11laO3gSI9X R8XSccnvdCjDxSuMsPfXfXeP/HU4pHW9R0geY/Ahp5kaFHXxey6rF+YCkd1RnDXh VfEo1Mo38jHOQv5f5f93v4hrHJiH4hKvVeezOS8Mmlxjy/MqFoiPPV4AkZjEWkWm sjEbilmqwBuzIAWOjLW0Tpb8nQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAPW0RfK IgYxVJ7TslGDtCfQX3dRMB8GA1UdIwQYMBaAFJKsT74XDqnfifDIMYw81F+TpSM0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRENGRS85NjUwNUIyNDgw RTQxMUVDQjkyRENCNERDNEY5QUUwMi9rcXhQdmhjT3FkLUo4TWd4akR6VVg1T2xJ elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2txeFB2aGNPcWQtSjhNZ3hqRHpVWDVPbEl6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RENGRS85NjUwNUIyNDgwRTQxMUVDQjkyRENCNERDNEY5QUUwMi9rcXhQdmhjT3Fk LUo4TWd4akR6VVg1T2xJelEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/DiuwiGaNGKz5bgZHY4OygXV1d1aHuc5ePO9bErCO00LKgNTppbxk aMO1lxiIK6juEWxw3qL28mcnQ9sL3GjZw8JD28cUygB7VtDgfILW8Bg4vediEqPw 73/mdgU1qcAjVkMRyH6PF7LUsgLPLdE8pGgUWOi1wMMueJQhE350X/IJ2wB5qXCy MtC6Of2Cv946zcasM9RhRZft8Tzwicf3YibRE5d1GKRWKeBjsmuiUspbRKFVCQzJ abQ9SijVg83vbixZhr+19WpmnkHa69h8YLdzfoHwqzRfmMWcyT+5Y06lvMzOPcea 8BH+JIjKyQ+YT+1zcAUZR+ctRJPKFD6J -----END CERTIFICATE-----Generated at Wed May 14 10:23:00 2025 by rpki-client