$ rpki-client -vvf rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.mft File: ka7pYNxB_5jtGzcjNDFzk4Em3J8.mft (raw, json) Hash identifier: fcum+5FjxmqeIEqFpZYq2bPxycv0hIgyJtZ6DHLVoJM= Subject key identifier: 0B:4A:5E:3B:88:C0:11:9E:ED:F5:42:0E:E3:C1:B1:14:8D:96:8B:A9 Authority key identifier: 91:AE:E9:60:DC:41:FF:98:ED:1B:37:23:34:31:73:93:81:26:DC:9F Certificate issuer: /CN=A91128B5/serialNumber=91AEE960DC41FF98ED1B3723343173938126DC9F Certificate serial: 05E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ka7pYNxB_5jtGzcjNDFzk4Em3J8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.mft Manifest number: 05DF Signing time: Thu 12 Jun 2025 22:36:08 +0000 Manifest this update: Thu 12 Jun 2025 22:36:08 +0000 Manifest next update: Thu 19 Jun 2025 22:36:08 +0000 Files and hashes: 1: ka7pYNxB_5jtGzcjNDFzk4Em3J8.crl (hash: DDn8Xenub5+fMOhI4Prm/kZWUeVWaUpvRyeekRny3as=) 2: 74BDB7D0B96C11EB956C1D2DC4F9AE02.roa (hash: IADvK+KgV5vnYxJ4wHU1Xtz8TSGee8Bm5ZckrfzrChM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.crl rsync://rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ka7pYNxB_5jtGzcjNDFzk4Em3J8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 22:36:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1508 (0x5e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91128B5, serialNumber=91AEE960DC41FF98ED1B3723343173938126DC9F Validity Not Before: Jun 12 22:36:08 2025 GMT Not After : Jun 19 22:36:08 2025 GMT Subject: CN=684b5658-8e8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:76:53:e9:5b:1e:80:9d:87:76:a8:7a:fe:45: ad:cc:8d:cc:21:f4:9e:52:70:78:18:90:5b:4d:05: 96:0c:a7:d7:c1:b2:44:7d:ee:6c:04:e2:cf:70:7f: ab:01:ec:db:88:85:d9:57:4a:68:bc:2e:e7:42:ad: 34:46:84:ff:c4:27:13:9f:c0:5c:bc:13:b0:30:91: 0d:85:77:29:46:6e:0a:5c:63:a6:90:3a:1a:11:b2: 95:09:81:e1:19:e2:b4:c0:ca:ad:05:f1:1d:5e:3d: 9b:6b:e1:04:b0:3f:4e:65:e2:40:1f:c6:99:7b:b1: c1:e1:93:c6:e5:39:71:a2:76:99:de:86:16:39:7c: 81:18:3e:7c:9f:b1:7a:d8:bf:a2:44:29:87:cf:b4: b4:c3:a1:25:0f:31:de:16:61:8b:b7:39:f4:43:7a: 2a:7c:d2:ef:a1:1e:cf:87:eb:4e:35:27:cc:4d:1a: 8e:83:ea:6a:e3:4f:d0:5c:b4:80:93:68:1a:00:77: 36:16:7d:bb:5f:1b:73:4f:1e:09:e0:2d:5b:44:de: 89:28:a9:0f:0d:4c:9b:ef:89:c6:80:d4:da:16:3a: 84:45:f4:ee:e2:ae:89:01:bb:d6:9d:f0:62:e4:76: fd:1e:71:01:09:ac:85:fc:fb:45:ad:70:00:2b:a3: 26:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:4A:5E:3B:88:C0:11:9E:ED:F5:42:0E:E3:C1:B1:14:8D:96:8B:A9 X509v3 Authority Key Identifier: keyid:91:AE:E9:60:DC:41:FF:98:ED:1B:37:23:34:31:73:93:81:26:DC:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ka7pYNxB_5jtGzcjNDFzk4Em3J8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:5d:04:db:91:c9:4b:ef:4b:64:4a:a1:21:e3:ad:9b:39:38: c2:7f:06:e9:6c:da:62:bd:e2:e3:0f:2c:a9:66:1a:af:ec:6f: 18:df:46:0a:2c:55:97:98:90:5c:76:3f:25:3c:cb:1d:b8:ca: 31:7a:8c:58:38:3c:9d:d8:27:ad:6b:cb:99:d9:e1:be:c1:2a: 1c:c1:b3:5f:06:53:f3:38:9f:bb:14:6c:d8:ab:b7:e0:ca:23: eb:c7:a3:66:3e:01:4a:b9:cf:df:f1:ff:af:3e:2b:2e:9d:fb: 84:2a:57:4d:24:1d:9c:74:42:f1:cd:bd:6a:59:23:e2:9b:15: 43:5c:be:09:38:48:cd:b3:d1:f3:91:d3:cd:db:03:1a:78:c4: e4:81:88:87:3e:15:aa:af:b8:06:06:93:00:21:3d:30:b0:87: fb:c8:a6:b8:f8:98:07:e9:49:e4:11:37:6e:df:a1:13:44:a5: bc:55:68:1d:a5:95:14:ad:21:a4:8a:dd:a6:cc:1b:95:65:ab: f2:24:dc:52:46:de:12:bb:f7:10:dd:df:9b:aa:cd:f0:13:d8: 03:5f:1e:4c:e3:30:9d:97:33:84:4f:05:29:72:49:d1:0d:93: 45:de:72:20:bc:86:6f:16:e7:0e:6c:fe:17:20:62:0d:2c:96: 39:46:13:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBeQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI4QjUxMTAvBgNVBAUTKDkxQUVFOTYwREM0MUZGOThFRDFCMzcyMzM0MzE3Mzkz ODEyNkRDOUYwHhcNMjUwNjEyMjIzNjA4WhcNMjUwNjE5MjIzNjA4WjAYMRYwFAYD VQQDEw02ODRiNTY1OC04ZThlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1nZT6VsegJ2Hdqh6/kWtzI3MIfSeUnB4GJBbTQWWDKfXwbJEfe5sBOLPcH+r AezbiIXZV0povC7nQq00RoT/xCcTn8BcvBOwMJENhXcpRm4KXGOmkDoaEbKVCYHh GeK0wMqtBfEdXj2ba+EEsD9OZeJAH8aZe7HB4ZPG5TlxonaZ3oYWOXyBGD58n7F6 2L+iRCmHz7S0w6ElDzHeFmGLtzn0Q3oqfNLvoR7Ph+tONSfMTRqOg+pq40/QXLSA k2gaAHc2Fn27XxtzTx4J4C1bRN6JKKkPDUyb74nGgNTaFjqERfTu4q6JAbvWnfBi 5Hb9HnEBCayF/PtFrXAAK6MmhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAtKXjuI wBGe7fVCDuPBsRSNloupMB8GA1UdIwQYMBaAFJGu6WDcQf+Y7Rs3IzQxc5OBJtyf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjhCNS8zRUJDRDFEQUI5 NkIxMUVCQjE2RUVGMkNDNEY5QUUwMi9rYTdwWU54Ql81anRHemNqTkRGems0RW0z SjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2thN3BZTnhCXzVqdEd6Y2pOREZ6azRFbTNKOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjhCNS8zRUJDRDFEQUI5NkIxMUVCQjE2RUVGMkNDNEY5QUUwMi9rYTdwWU54Ql81 anRHemNqTkRGems0RW0zSjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATXQTbkclL70tkSqEh462bOTjCfwbpbNpiveLjDyypZhqv7G8Y30YK LFWXmJBcdj8lPMsduMoxeoxYODyd2Ceta8uZ2eG+wSocwbNfBlPzOJ+7FGzYq7fg yiPrx6NmPgFKuc/f8f+vPisunfuEKldNJB2cdELxzb1qWSPimxVDXL4JOEjNs9Hz kdPN2wMaeMTkgYiHPhWqr7gGBpMAIT0wsIf7yKa4+JgH6UnkETdu36ETRKW8VWgd pZUUrSGkit2mzBuVZavyJNxSRt4Su/cQ3d+bqs3wE9gDXx5M4zCdlzOETwUpcknR DZNF3nIgvIZvFucObP4XIGINLJY5RhMk -----END CERTIFICATE-----Generated at Sat Jun 14 19:01:10 2025 by rpki-client