$ rpki-client -vvf rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft File: knWZPcnEM_JdNYCsd-OV0GaWSD0.mft (raw, json) Hash identifier: IRWjlT5o5uWnYNXSUs992RIfF4BqkOHjX0P/yKo4l+w= Subject key identifier: 73:A3:40:37:8A:DD:CF:A0:A0:3B:58:A5:4C:B9:54:6A:91:79:B9:81 Authority key identifier: 92:75:99:3D:C9:C4:33:F2:5D:35:80:AC:77:E3:95:D0:66:96:48:3D Certificate issuer: /CN=A91276A3/serialNumber=9275993DC9C433F25D3580AC77E395D06696483D Certificate serial: 06F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft Manifest number: 06E7 Signing time: Thu 12 Jun 2025 21:38:42 +0000 Manifest this update: Thu 12 Jun 2025 21:38:41 +0000 Manifest next update: Thu 19 Jun 2025 21:38:41 +0000 Files and hashes: 1: knWZPcnEM_JdNYCsd-OV0GaWSD0.crl (hash: LwY/itr4oFXfsj6x09VNh2gK7rjV2iwT/30ehk2waT0=) 2: 57BAE77C517D11EB8949D438C4F9AE02.roa (hash: W8Pbilr3L/+CfQDONlD1s3S+g13SAXBwRt28BIl7t2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.crl rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 21:38:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1776 (0x6f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91276A3, serialNumber=9275993DC9C433F25D3580AC77E395D06696483D Validity Not Before: Jun 12 21:38:41 2025 GMT Not After : Jun 19 21:38:41 2025 GMT Subject: CN=684b48e2-6a7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:fc:4a:51:62:a1:c3:dd:92:2c:15:f7:02:03: 49:b8:6b:a1:d1:86:0b:99:4a:50:17:3e:c0:3b:bb: 1f:ce:49:c6:e5:4e:91:78:6c:54:70:eb:1f:b7:d9: f7:7c:06:dd:73:38:8e:53:39:3b:63:4e:58:f7:7c: 1d:ac:3f:b2:b5:17:9d:8e:66:e9:93:bd:a3:10:cb: 3b:81:ea:f8:b1:7c:b9:46:6c:e4:1b:8b:32:cc:dc: 94:40:97:87:28:43:f5:b3:ef:5a:38:36:ce:b3:69: 25:1a:ab:eb:d0:8c:3b:f7:a3:27:a8:ea:48:91:d3: 9b:46:81:5b:ef:d2:f1:d2:d6:e8:0c:43:fc:b2:12: ca:03:a5:ac:da:96:ee:db:24:99:bb:bd:6e:b6:b5: 32:f2:a1:67:a8:26:d8:cf:5f:fc:6b:cd:1d:0c:f0: 7c:1e:55:e6:bd:c3:52:59:92:9f:d5:1b:30:55:ad: 24:36:66:60:b4:ab:f4:6b:da:3f:ab:02:9c:99:6e: 65:ed:8c:2d:fe:54:dc:69:29:e0:99:f3:65:7f:b3: e8:fb:84:bb:16:b6:ec:ba:6c:35:75:fa:4c:95:c1: 59:dd:ab:5c:1a:03:d8:6d:db:d4:90:e4:2d:0e:e2: d7:04:98:65:b1:f7:bb:e5:6d:a5:31:4c:b4:95:2a: d4:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:A3:40:37:8A:DD:CF:A0:A0:3B:58:A5:4C:B9:54:6A:91:79:B9:81 X509v3 Authority Key Identifier: keyid:92:75:99:3D:C9:C4:33:F2:5D:35:80:AC:77:E3:95:D0:66:96:48:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:88:4a:ca:63:fa:49:c7:d4:b0:73:74:f2:8b:61:ed:2f:80: 12:49:5e:e6:b3:c0:ae:be:e6:47:d4:4e:f5:4a:83:b7:0a:10: a7:ed:c6:e2:1a:be:62:fc:75:cd:52:37:aa:0a:30:3a:90:d6: ab:87:8a:bd:7f:43:f1:cb:ee:2d:b9:40:08:b5:e4:b3:de:f7: b2:54:a0:bb:d1:58:d6:e0:28:45:9b:23:32:70:d7:31:6d:41: ff:f5:30:dc:14:f0:0c:67:a1:58:dc:58:98:69:6e:35:a8:0c: 54:db:e6:69:ed:e3:db:fb:73:7e:83:e6:79:85:b1:41:e3:30: d6:99:e4:1d:99:04:e4:7c:da:63:9c:d2:a8:b0:d4:c0:c9:5f: 64:4a:4b:31:00:d7:1e:ed:3c:0e:bb:8a:d5:74:17:20:e5:00: ec:ee:85:f3:91:a8:c9:ac:6f:ea:08:fa:a1:f7:3e:f5:fd:59: 11:d9:6a:50:64:3f:a7:c0:70:44:7f:24:ae:ab:23:f3:a5:55: 4d:23:4b:4e:cd:46:46:0c:8c:91:0a:e0:47:ad:73:f5:6c:1b: 70:37:c8:1f:49:7f:9a:c0:09:ce:37:59:59:c2:fa:a2:c9:5e: e7:00:c8:e8:29:69:18:9b:3c:0d:51:2d:0f:c4:0c:77:a7:b0: c6:7e:7f:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBvAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc2QTMxMTAvBgNVBAUTKDkyNzU5OTNEQzlDNDMzRjI1RDM1ODBBQzc3RTM5NUQw NjY5NjQ4M0QwHhcNMjUwNjEyMjEzODQxWhcNMjUwNjE5MjEzODQxWjAYMRYwFAYD VQQDEw02ODRiNDhlMi02YTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5PxKUWKhw92SLBX3AgNJuGuh0YYLmUpQFz7AO7sfzknG5U6ReGxUcOsft9n3 fAbdcziOUzk7Y05Y93wdrD+ytRedjmbpk72jEMs7ger4sXy5RmzkG4syzNyUQJeH KEP1s+9aODbOs2klGqvr0Iw796MnqOpIkdObRoFb79Lx0tboDEP8shLKA6Ws2pbu 2ySZu71utrUy8qFnqCbYz1/8a80dDPB8HlXmvcNSWZKf1RswVa0kNmZgtKv0a9o/ qwKcmW5l7Ywt/lTcaSngmfNlf7Po+4S7Frbsumw1dfpMlcFZ3atcGgPYbdvUkOQt DuLXBJhlsfe75W2lMUy0lSrU4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHOjQDeK 3c+goDtYpUy5VGqRebmBMB8GA1UdIwQYMBaAFJJ1mT3JxDPyXTWArHfjldBmlkg9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzZBMy84MzIwQkQxQzUx N0IxMUVCODZDMkQ3MzZDNEY5QUUwMi9rbldaUGNuRU1fSmROWUNzZC1PVjBHYVdT RDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tuV1pQY25FTV9KZE5ZQ3NkLU9WMEdhV1NEMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzZBMy84MzIwQkQxQzUxN0IxMUVCODZDMkQ3MzZDNEY5QUUwMi9rbldaUGNuRU1f SmROWUNzZC1PVjBHYVdTRDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGiErKY/pJx9Swc3Tyi2HtL4ASSV7ms8CuvuZH1E71SoO3ChCn7cbi Gr5i/HXNUjeqCjA6kNarh4q9f0Pxy+4tuUAIteSz3veyVKC70VjW4ChFmyMycNcx bUH/9TDcFPAMZ6FY3FiYaW41qAxU2+Zp7ePb+3N+g+Z5hbFB4zDWmeQdmQTkfNpj nNKosNTAyV9kSksxANce7TwOu4rVdBcg5QDs7oXzkajJrG/qCPqh9z71/VkR2WpQ ZD+nwHBEfySuqyPzpVVNI0tOzUZGDIyRCuBHrXP1bBtwN8gfSX+awAnON1lZwvqi yV7nAMjoKWkYmzwNUS0PxAx3p7DGfn/m -----END CERTIFICATE-----Generated at Sat Jun 14 19:12:28 2025 by rpki-client