$ rpki-client -vvf rpki.apnic.net/member_repository/A91233D4/25A061806B1F11EA8130A65FC4F9AE02/KpPhRZdmUGGV3_yZtSM2K-WsDWs.mft File: KpPhRZdmUGGV3_yZtSM2K-WsDWs.mft (raw, json) Hash identifier: caqr+43Kt/RiomthudnNFdyBrR/4e9+MwMUFB9ruKWk= Subject key identifier: 02:17:8E:DA:A5:EF:AA:03:53:F6:42:21:E4:E5:0F:15:C4:F6:1F:13 Authority key identifier: 2A:93:E1:45:97:66:50:61:95:DF:FC:99:B5:23:36:2B:E5:AC:0D:6B Certificate issuer: /CN=A91233D4/serialNumber=2A93E1459766506195DFFC99B523362BE5AC0D6B Certificate serial: 0A5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KpPhRZdmUGGV3_yZtSM2K-WsDWs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91233D4/25A061806B1F11EA8130A65FC4F9AE02/KpPhRZdmUGGV3_yZtSM2K-WsDWs.mft Manifest number: 0A4B Signing time: Thu 12 Jun 2025 19:31:52 +0000 Manifest this update: Thu 12 Jun 2025 19:31:52 +0000 Manifest next update: Thu 19 Jun 2025 19:31:52 +0000 Files and hashes: 1: KpPhRZdmUGGV3_yZtSM2K-WsDWs.crl (hash: klH7MLcAr9OgjQbx7NlKDQp5QYXuJGz1m472uESFq48=) 2: A08B108A78D411EAA8C57711C4F9AE02.roa (hash: 3OpBGXXCJTXlZTJu94VcICtCah5ixfAdvhW279UITTY=) 3: A1D479B878D411EAA8C57711C4F9AE02.roa (hash: OYgq0o9dgNrqTYjdakq5qNzK/yt9wMabsIU2jLZbz/U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91233D4/25A061806B1F11EA8130A65FC4F9AE02/KpPhRZdmUGGV3_yZtSM2K-WsDWs.crl rsync://rpki.apnic.net/member_repository/A91233D4/25A061806B1F11EA8130A65FC4F9AE02/KpPhRZdmUGGV3_yZtSM2K-WsDWs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KpPhRZdmUGGV3_yZtSM2K-WsDWs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 19:31:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2653 (0xa5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91233D4, serialNumber=2A93E1459766506195DFFC99B523362BE5AC0D6B Validity Not Before: Jun 12 19:31:52 2025 GMT Not After : Jun 19 19:31:52 2025 GMT Subject: CN=684b2b28-93b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ae:8b:bf:ae:32:05:e2:e5:ef:66:6c:2c:72: 7b:3d:86:61:fa:b9:fd:0e:bc:36:d6:81:35:09:3e: 27:a0:48:97:77:f7:a8:4d:61:62:d5:79:17:44:8d: 06:72:96:53:e7:7f:db:7f:78:76:0a:b9:66:17:8b: 07:8b:88:53:a7:a0:8f:9a:ee:57:b2:d9:44:f9:0b: f5:ec:09:c1:46:73:64:11:ae:42:4a:4b:e3:50:84: 9e:16:fb:25:9c:b8:49:b2:9d:aa:df:3a:a9:41:c7: 72:cc:6c:20:c2:96:e9:0e:db:3e:d7:ce:54:00:d4: 33:2f:15:b1:5d:86:e8:95:ae:f2:f3:3d:cf:6e:ab: f6:0b:1e:01:d4:34:ab:75:5c:d9:00:2d:28:f3:42: 34:d6:f5:52:f5:34:a8:68:78:e3:c9:56:a8:a9:79: 2e:03:2a:df:4f:3a:26:ac:4f:04:55:9c:90:b0:ee: 0b:d0:7d:ca:e5:6a:d3:f8:e0:ff:1b:05:5a:69:54: e8:8e:0b:69:9d:6c:81:ae:50:8a:55:bd:f5:fa:48: ec:cc:75:b6:db:38:7c:fc:50:b6:1a:54:9a:01:9b: 10:67:52:26:f8:bc:ff:0f:43:1e:ca:ac:a6:79:60: d8:07:5c:71:b9:04:97:60:00:ea:be:a1:c7:e7:8a: db:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:17:8E:DA:A5:EF:AA:03:53:F6:42:21:E4:E5:0F:15:C4:F6:1F:13 X509v3 Authority Key Identifier: keyid:2A:93:E1:45:97:66:50:61:95:DF:FC:99:B5:23:36:2B:E5:AC:0D:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91233D4/25A061806B1F11EA8130A65FC4F9AE02/KpPhRZdmUGGV3_yZtSM2K-WsDWs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KpPhRZdmUGGV3_yZtSM2K-WsDWs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91233D4/25A061806B1F11EA8130A65FC4F9AE02/KpPhRZdmUGGV3_yZtSM2K-WsDWs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:43:59:a6:b0:c8:7a:af:59:ff:e4:19:c0:4f:fe:2b:65:0f: 9e:e1:78:bb:d6:0a:c2:c5:ae:f4:34:0d:9e:94:9e:0a:3e:ca: 05:1e:21:3f:fe:24:08:61:72:6b:b9:a3:02:f8:90:c7:f2:60: 4a:7b:31:5d:9c:ee:bd:52:1a:43:c8:a2:08:28:93:d1:ef:70: da:4f:13:57:9e:9a:67:08:23:82:6d:82:c5:86:e9:d5:82:a3: db:6b:64:e6:9d:d2:06:1c:c0:62:93:49:02:be:14:da:56:93: 66:7c:90:ef:10:0b:30:fe:c7:bf:51:b7:ba:70:a9:b0:a4:3d: 5d:2a:87:fb:8d:d9:cc:74:31:7e:6d:80:41:2b:0e:b7:09:e3: be:a9:c3:87:d1:ca:02:d6:cb:80:b2:36:78:b8:34:0b:c0:26: 5a:ab:5a:54:66:34:fa:8f:8f:22:e8:d8:8f:f9:51:82:82:5a: 60:90:2c:08:29:d9:a6:2a:41:70:35:da:d5:8c:24:ba:d4:13: 54:4c:a1:99:e6:83:17:dc:f3:f2:d3:92:45:44:5c:0a:07:6e: 1a:a5:48:34:e9:50:fa:da:be:09:7d:2a:4f:1c:44:3b:85:54: b3:0f:36:5f:05:ef:f7:73:6b:d2:cc:d1:89:03:f5:61:e7:ef: f3:f6:3e:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCl0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjMzRDQxMTAvBgNVBAUTKDJBOTNFMTQ1OTc2NjUwNjE5NURGRkM5OUI1MjMzNjJC RTVBQzBENkIwHhcNMjUwNjEyMTkzMTUyWhcNMjUwNjE5MTkzMTUyWjAYMRYwFAYD VQQDEw02ODRiMmIyOC05M2I0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx66Lv64yBeLl72ZsLHJ7PYZh+rn9Drw21oE1CT4noEiXd/eoTWFi1XkXRI0G cpZT53/bf3h2CrlmF4sHi4hTp6CPmu5XstlE+Qv17AnBRnNkEa5CSkvjUISeFvsl nLhJsp2q3zqpQcdyzGwgwpbpDts+185UANQzLxWxXYbola7y8z3Pbqv2Cx4B1DSr dVzZAC0o80I01vVS9TSoaHjjyVaoqXkuAyrfTzomrE8EVZyQsO4L0H3K5WrT+OD/ GwVaaVTojgtpnWyBrlCKVb31+kjszHW22zh8/FC2GlSaAZsQZ1Im+Lz/D0Meyqym eWDYB1xxuQSXYADqvqHH54rbNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAIXjtql 76oDU/ZCIeTlDxXE9h8TMB8GA1UdIwQYMBaAFCqT4UWXZlBhld/8mbUjNivlrA1r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzNENC8yNUEwNjE4MDZC MUYxMUVBODEzMEE2NUZDNEY5QUUwMi9LcFBoUlpkbVVHR1YzX3ladFNNMkstV3NE V3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0twUGhSWmRtVUdHVjNfeVp0U00ySy1Xc0RXcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzNENC8yNUEwNjE4MDZCMUYxMUVBODEzMEE2NUZDNEY5QUUwMi9LcFBoUlpkbVVH R1YzX3ladFNNMkstV3NEV3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChQ1mmsMh6r1n/5BnAT/4rZQ+e4Xi71grCxa70NA2elJ4KPsoFHiE/ /iQIYXJruaMC+JDH8mBKezFdnO69UhpDyKIIKJPR73DaTxNXnppnCCOCbYLFhunV gqPba2TmndIGHMBik0kCvhTaVpNmfJDvEAsw/se/Ube6cKmwpD1dKof7jdnMdDF+ bYBBKw63CeO+qcOH0coC1suAsjZ4uDQLwCZaq1pUZjT6j48i6NiP+VGCglpgkCwI KdmmKkFwNdrVjCS61BNUTKGZ5oMX3PPy05JFRFwKB24apUg06VD62r4JfSpPHEQ7 hVSzDzZfBe/3c2vSzNGJA/Vh5+/z9j7O -----END CERTIFICATE-----Generated at Sat Jun 14 19:30:56 2025 by rpki-client