$ rpki-client -vvf rpki.apnic.net/member_repository/A912F387/FE4D78E2B5C111EE95B58341C4F9AE02/KBiMFu7JB0JxcnjCic-C9QTyWqk.mft File: KBiMFu7JB0JxcnjCic-C9QTyWqk.mft (raw, json) Hash identifier: 0uhZVQq/9ovokZ+qWURx6kLRB9xgZIuU53TYiPsbhfE= Subject key identifier: 03:E9:DF:7B:27:90:0B:C3:F4:71:89:CD:9A:97:90:FA:8C:B5:1E:04 Authority key identifier: 28:18:8C:16:EE:C9:07:42:71:72:78:C2:89:CF:82:F5:04:F2:5A:A9 Certificate issuer: /CN=A912F387/serialNumber=28188C16EEC90742717278C289CF82F504F25AA9 Certificate serial: 0114 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KBiMFu7JB0JxcnjCic-C9QTyWqk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F387/FE4D78E2B5C111EE95B58341C4F9AE02/KBiMFu7JB0JxcnjCic-C9QTyWqk.mft Manifest number: 010E Signing time: Sun 15 Jun 2025 03:48:34 +0000 Manifest this update: Sun 15 Jun 2025 03:48:34 +0000 Manifest next update: Sun 22 Jun 2025 03:48:34 +0000 Files and hashes: 1: KBiMFu7JB0JxcnjCic-C9QTyWqk.crl (hash: ef+MQh+5LR//lIi2ppcrZVcaBoLws6oMIOyggKA4alA=) 2: FCA046066C8611EFBF35D221C4F9AE02.roa (hash: LLGlR1swQUGpHRHzrbzk96I6Zx3kb8thD/xfxQf3uHA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F387/FE4D78E2B5C111EE95B58341C4F9AE02/KBiMFu7JB0JxcnjCic-C9QTyWqk.crl rsync://rpki.apnic.net/member_repository/A912F387/FE4D78E2B5C111EE95B58341C4F9AE02/KBiMFu7JB0JxcnjCic-C9QTyWqk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KBiMFu7JB0JxcnjCic-C9QTyWqk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 03:48:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 276 (0x114) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F387, serialNumber=28188C16EEC90742717278C289CF82F504F25AA9 Validity Not Before: Jun 15 03:48:34 2025 GMT Not After : Jun 22 03:48:34 2025 GMT Subject: CN=684e4292-607b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:6c:a4:17:db:bf:14:2f:99:5a:ea:26:00:35: 8b:a7:b2:b3:7a:81:71:26:80:ba:4d:30:19:e7:c3: 1a:82:32:62:cf:a5:17:18:ba:98:3f:26:43:cd:e9: 26:09:84:bb:5c:b3:77:4d:c5:5b:09:6f:e5:87:cc: 08:61:47:c9:20:c8:2a:b9:76:97:51:9b:2c:85:ac: dc:cf:69:fb:af:6f:a1:f2:f3:e6:ab:38:7c:71:2d: 56:3e:51:4f:3b:65:89:98:75:f0:93:df:cd:8b:0c: 85:a4:91:b8:a2:8a:5f:08:af:16:b0:8f:a1:65:4d: c1:84:2a:fa:46:28:68:04:e9:6e:73:06:7a:a1:d5: 39:40:5c:a2:d7:9e:16:10:9f:51:3b:4e:1a:b7:45: 2c:50:ef:e6:d8:a8:2d:d0:7b:96:53:82:a5:2d:51: 7b:9b:b6:56:ef:bc:97:73:36:7b:8b:f6:25:cb:e9: 0f:cf:1c:11:ac:13:8c:6f:90:c0:58:a9:e6:ca:64: d5:87:5e:09:16:14:71:ff:23:83:63:ce:d2:8d:d7: da:ba:a6:39:33:02:59:6f:db:dc:50:1e:ad:2e:50: f0:8d:a0:34:96:57:7c:39:01:a8:83:3c:f8:45:b0: 07:66:05:30:72:6d:eb:bc:ba:b5:d4:93:18:cc:ca: 25:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:E9:DF:7B:27:90:0B:C3:F4:71:89:CD:9A:97:90:FA:8C:B5:1E:04 X509v3 Authority Key Identifier: keyid:28:18:8C:16:EE:C9:07:42:71:72:78:C2:89:CF:82:F5:04:F2:5A:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F387/FE4D78E2B5C111EE95B58341C4F9AE02/KBiMFu7JB0JxcnjCic-C9QTyWqk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KBiMFu7JB0JxcnjCic-C9QTyWqk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F387/FE4D78E2B5C111EE95B58341C4F9AE02/KBiMFu7JB0JxcnjCic-C9QTyWqk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:37:ef:e8:6f:86:79:83:89:03:ad:a5:ad:71:fe:5a:3b:24: a8:c0:a1:7a:20:e6:68:99:ca:94:ef:37:02:6b:30:64:38:e4: 3d:28:34:42:25:da:34:b9:86:31:b8:4e:5e:5c:23:93:70:01: 73:35:c9:42:b5:da:ba:0f:c7:00:e6:13:15:8d:85:65:6e:70: a3:67:6b:9b:ef:d5:18:1c:d8:ae:b9:a2:5d:2b:b3:f2:f8:d3: 42:22:bc:4a:37:2e:7c:48:9a:20:bf:bc:2a:67:36:1f:e5:ee: 27:5f:43:a8:d2:6b:b0:9f:a7:1c:ba:cb:f8:fc:24:6a:2a:b1: 3e:6d:3d:fd:11:f0:ab:2e:b4:4c:db:4d:ac:22:c2:33:d6:77: 2d:20:d7:ef:4d:5c:1b:a0:1c:55:d6:a0:03:f6:53:ae:7c:3f: 4f:aa:07:7d:3a:eb:00:00:4e:1f:9e:ab:37:ed:d6:49:ef:c3: 06:cc:bc:f0:9f:5d:16:7e:de:f6:79:05:8d:c3:ce:b1:2a:94: 3d:dc:e2:fa:de:64:9e:9d:23:e4:06:de:30:bf:42:61:63:b5: 19:b4:c9:e7:ac:08:2b:ed:f2:77:cd:b1:3f:f2:14:2e:85:a9: 66:99:14:d1:39:03:65:ae:54:2e:9b:11:cb:60:33:06:de:d7: e7:8c:6c:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkYzODcxMTAvBgNVBAUTKDI4MTg4QzE2RUVDOTA3NDI3MTcyNzhDMjg5Q0Y4MkY1 MDRGMjVBQTkwHhcNMjUwNjE1MDM0ODM0WhcNMjUwNjIyMDM0ODM0WjAYMRYwFAYD VQQDEw02ODRlNDI5Mi02MDdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt2ykF9u/FC+ZWuomADWLp7KzeoFxJoC6TTAZ58MagjJiz6UXGLqYPyZDzekm CYS7XLN3TcVbCW/lh8wIYUfJIMgquXaXUZsshazcz2n7r2+h8vPmqzh8cS1WPlFP O2WJmHXwk9/NiwyFpJG4oopfCK8WsI+hZU3BhCr6RihoBOlucwZ6odU5QFyi154W EJ9RO04at0UsUO/m2Kgt0HuWU4KlLVF7m7ZW77yXczZ7i/Yly+kPzxwRrBOMb5DA WKnmymTVh14JFhRx/yODY87SjdfauqY5MwJZb9vcUB6tLlDwjaA0lld8OQGogzz4 RbAHZgUwcm3rvLq11JMYzMolLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAPp33sn kAvD9HGJzZqXkPqMtR4EMB8GA1UdIwQYMBaAFCgYjBbuyQdCcXJ4wonPgvUE8lqp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRjM4Ny9GRTRENzhFMkI1 QzExMUVFOTVCNTgzNDFDNEY5QUUwMi9LQmlNRnU3SkIwSnhjbmpDaWMtQzlRVHlX cWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tCaU1GdTdKQjBKeGNuakNpYy1DOVFUeVdxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RjM4Ny9GRTRENzhFMkI1QzExMUVFOTVCNTgzNDFDNEY5QUUwMi9LQmlNRnU3SkIw SnhjbmpDaWMtQzlRVHlXcWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6N+/ob4Z5g4kDraWtcf5aOySowKF6IOZomcqU7zcCazBkOOQ9KDRC Jdo0uYYxuE5eXCOTcAFzNclCtdq6D8cA5hMVjYVlbnCjZ2ub79UYHNiuuaJdK7Py +NNCIrxKNy58SJogv7wqZzYf5e4nX0Oo0muwn6ccusv4/CRqKrE+bT39EfCrLrRM 202sIsIz1nctINfvTVwboBxV1qAD9lOufD9Pqgd9OusAAE4fnqs37dZJ78MGzLzw n10Wft72eQWNw86xKpQ93OL63mSenSPkBt4wv0JhY7UZtMnnrAgr7fJ3zbE/8hQu halmmRTROQNlrlQumxHLYDMG3tfnjGx1 -----END CERTIFICATE-----Generated at Mon Jun 16 13:14:23 2025 by rpki-client