$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft File: kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft (raw, json) Hash identifier: eK0qv4cXMfZP8nUIXCD/tYcZcwgEv4eDRQk8+oSfZIY= Subject key identifier: A0:21:A0:89:A9:2B:AE:CB:49:E9:94:FF:6D:23:45:4A:CC:BF:40:6F Authority key identifier: 91:17:6D:16:9C:42:F0:3D:95:28:2B:BB:A2:04:C4:E4:4D:31:ED:09 Certificate issuer: /CN=A91FF5B9/serialNumber=91176D169C42F03D95282BBBA204C4E44D31ED09 Certificate serial: 1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft Manifest number: 18 Signing time: Wed 07 May 2025 07:07:55 +0000 Manifest this update: Wed 07 May 2025 07:07:54 +0000 Manifest next update: Wed 14 May 2025 07:07:54 +0000 Files and hashes: 1: kRdtFpxC8D2VKCu7ogTE5E0x7Qk.crl (hash: Y3/8hS6p3OhPcL1CoDoKZ3bSyF+d55M3ajdf5YRu7BM=) 2: DA700744185511F09304D972C4F9AE02.roa (hash: AVDeCRqbZoyZl3fF1YnTf6HcDZbje6RSX9dEEeI1q44=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.crl rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 14 May 2025 07:07:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26 (0x1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF5B9, serialNumber=91176D169C42F03D95282BBBA204C4E44D31ED09 Validity Not Before: May 7 07:07:54 2025 GMT Not After : May 14 07:07:54 2025 GMT Subject: CN=681b06ca-19e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:4d:f6:f8:0c:99:3c:71:b1:0d:cd:87:03:9e: 77:18:53:7b:39:ac:44:43:f6:82:d0:84:cf:36:9f: be:4a:3c:30:96:75:78:f9:19:94:6c:58:3c:35:3f: 9a:60:4a:71:01:7a:13:03:30:46:dd:a9:59:c2:40: ff:be:e5:09:0e:34:40:da:2e:b1:e2:c5:32:74:94: 0d:8c:c6:54:24:39:d7:f6:40:d1:e5:e2:b6:ec:13: 9f:ce:9d:ab:3a:72:98:0e:fe:ed:cd:7f:cf:64:ac: 35:11:3a:39:ac:04:00:d2:a6:02:74:55:58:1a:f1: 31:0d:5e:bc:ca:cc:b1:87:40:8a:05:7c:c4:62:a6: 3d:e3:49:01:21:a2:a9:e7:02:ed:30:24:53:2c:1e: 2a:e8:c1:a1:5d:5b:9e:7b:84:84:f7:0f:e1:9a:8d: d6:a4:75:13:df:dc:7a:ef:f7:f8:db:94:8f:7b:a9: b6:ec:98:a0:31:30:d9:a5:2d:29:09:5b:15:a9:2c: a5:82:76:e9:10:87:d5:3b:69:43:b9:af:0a:1e:22: b1:cc:75:ae:0e:08:f4:25:ec:69:bd:67:41:5f:34: 8c:d1:86:56:d4:69:07:68:2b:35:2d:fb:aa:e7:0b: a0:6b:49:31:f9:dc:ad:46:ac:c5:7a:d1:95:04:45: 1a:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:21:A0:89:A9:2B:AE:CB:49:E9:94:FF:6D:23:45:4A:CC:BF:40:6F X509v3 Authority Key Identifier: keyid:91:17:6D:16:9C:42:F0:3D:95:28:2B:BB:A2:04:C4:E4:4D:31:ED:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:e7:0c:86:40:6a:8a:04:ee:db:f1:1f:96:60:b5:dd:0e:20: db:f3:3a:f3:b6:4f:31:cd:4b:c2:84:57:f2:5e:28:9b:51:3f: 3b:3f:e1:e0:20:4d:24:03:13:df:18:c9:12:31:39:51:84:ad: 01:73:2b:b9:84:e5:f1:c4:29:02:b0:c8:8c:c9:8a:1a:22:b6: cf:51:51:e6:5f:68:bf:fe:9f:32:ab:40:d4:35:67:4f:ab:40: 8b:e7:7e:02:3f:b6:4c:6a:bb:2b:d9:70:70:89:16:ff:c8:bc: f1:87:59:06:3c:4a:4a:bb:25:07:29:7a:31:bf:7e:2b:7a:36: 6c:05:38:ce:e9:21:75:08:cf:71:66:1a:26:fe:df:76:75:c9: 14:d7:21:14:74:73:35:5b:77:b5:24:05:ac:6d:6d:59:e8:ac: a5:70:a1:f0:2c:49:43:3a:ce:4f:4f:f6:c1:19:fb:d4:a3:a8: 6a:ff:ca:36:4e:2f:53:ca:b6:aa:b2:39:be:72:ef:1b:d2:64: 74:4b:b4:8f:4a:96:82:c2:ec:12:33:4e:78:8a:39:90:88:5d: 47:3f:69:09:77:fb:ee:e9:ca:55:a5:3f:d8:c1:bb:6b:26:1b: dd:54:99:63:04:f1:43:9b:99:3a:75:18:22:37:75:dd:f9:23: 3b:95:75:65 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG RjVCOTExMC8GA1UEBRMoOTExNzZEMTY5QzQyRjAzRDk1MjgyQkJCQTIwNEM0RTQ0 RDMxRUQwOTAeFw0yNTA1MDcwNzA3NTRaFw0yNTA1MTQwNzA3NTRaMBgxFjAUBgNV BAMTDTY4MWIwNmNhLTE5ZTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDaTfb4DJk8cbENzYcDnncYU3s5rERD9oLQhM82n75KPDCWdXj5GZRsWDw1P5pg SnEBehMDMEbdqVnCQP++5QkONEDaLrHixTJ0lA2MxlQkOdf2QNHl4rbsE5/Onas6 cpgO/u3Nf89krDUROjmsBADSpgJ0VVga8TENXrzKzLGHQIoFfMRipj3jSQEhoqnn Au0wJFMsHirowaFdW557hIT3D+GajdakdRPf3Hrv9/jblI97qbbsmKAxMNmlLSkJ WxWpLKWCdukQh9U7aUO5rwoeIrHMda4OCPQl7Gm9Z0FfNIzRhlbUaQdoKzUt+6rn C6BrSTH53K1GrMV60ZUERRpxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUoCGgiakr rstJ6ZT/bSNFSsy/QG8wHwYDVR0jBBgwFoAUkRdtFpxC8D2VKCu7ogTE5E0x7Qkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZGNUI5LzUyMDJEMDI4MERG OTExRjA4RTZFNzYyQUM0RjlBRTAyL2tSZHRGcHhDOEQyVktDdTdvZ1RFNUUweDdR ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIva1JkdEZweEM4RDJWS0N1N29nVEU1RTB4N1FrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZG NUI5LzUyMDJEMDI4MERGOTExRjA4RTZFNzYyQUM0RjlBRTAyL2tSZHRGcHhDOEQy VktDdTdvZ1RFNUUweDdRay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGnnDIZAaooE7tvxH5Zgtd0OINvzOvO2TzHNS8KEV/JeKJtRPzs/4eAg TSQDE98YyRIxOVGErQFzK7mE5fHEKQKwyIzJihoits9RUeZfaL/+nzKrQNQ1Z0+r QIvnfgI/tkxquyvZcHCJFv/IvPGHWQY8Skq7JQcpejG/fit6NmwFOM7pIXUIz3Fm Gib+33Z1yRTXIRR0czVbd7UkBaxtbVnorKVwofAsSUM6zk9P9sEZ+9SjqGr/yjZO L1PKtqqyOb5y7xvSZHRLtI9KloLC7BIzTniKOZCIXUc/aQl3++7pylWlP9jBu2sm G91UmWME8UObmTp1GCI3dd35IzuVdWU= -----END CERTIFICATE-----Generated at Thu May 8 07:12:44 2025 by rpki-client