$ rpki-client -vvf rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft File: kB-Ykfv38n1Bah7gazGwFlquHcU.mft (raw, json) Hash identifier: Uxz3mgCnj8b4AnDWrSrUiArfwqS6KLoXnSvWjcRtSzE= Subject key identifier: 43:FE:5D:25:8C:9F:F5:19:06:C2:14:93:CD:5E:BA:09:B7:6A:0F:16 Authority key identifier: 90:1F:98:91:FB:F7:F2:7D:41:6A:1E:E0:6B:31:B0:16:5A:AE:1D:C5 Certificate issuer: /CN=A9132D93/serialNumber=901F9891FBF7F27D416A1EE06B31B0165AAE1DC5 Certificate serial: 03EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft Manifest number: 03EA Signing time: Fri 13 Jun 2025 00:04:44 +0000 Manifest this update: Fri 13 Jun 2025 00:04:43 +0000 Manifest next update: Fri 20 Jun 2025 00:04:43 +0000 Files and hashes: 1: kB-Ykfv38n1Bah7gazGwFlquHcU.crl (hash: aBX1J1ksIydwxEyezneZ74xe8bU5MAs3OiH6nWruRog=) 2: 4E0503CA7F3F11ECBB0EA972C4F9AE02.roa (hash: zGO+SfCUiN93pLbUpzCLUs56wrah6tVni3k+tYi9qSM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.crl rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 00:04:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1006 (0x3ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132D93, serialNumber=901F9891FBF7F27D416A1EE06B31B0165AAE1DC5 Validity Not Before: Jun 13 00:04:43 2025 GMT Not After : Jun 20 00:04:43 2025 GMT Subject: CN=684b6b1b-c7b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:c7:0d:ee:c2:00:4b:29:93:48:ea:9a:78:57: 2b:03:ba:81:e7:85:8c:5c:e3:3f:dc:6f:38:8b:b6: 59:14:10:16:ac:8a:48:84:df:52:24:1c:40:a9:0b: 21:27:20:a2:d5:fd:0a:ff:ae:3c:ec:35:06:19:cf: 32:19:e5:98:4d:c7:a8:dd:c4:c2:65:28:5e:bd:62: 60:a5:66:13:6a:c9:f5:d2:59:04:2e:0a:9c:7f:aa: 64:7a:97:1b:c4:c1:f9:77:6a:94:b0:aa:bc:4b:ef: 4f:fa:4d:7d:49:88:39:61:10:98:9a:01:89:51:b0: df:a6:96:46:a5:ec:15:41:22:7a:93:3e:94:31:05: 73:27:75:37:1f:c9:71:8f:bf:fd:d7:1c:4a:7b:72: cd:60:aa:8b:54:95:12:64:68:c7:14:20:1e:07:f9: dd:82:73:0b:59:87:c9:db:4f:b2:8d:15:ab:53:83: 04:c9:51:f3:8f:70:d2:97:91:95:bb:43:7a:93:fd: d2:65:21:35:3d:3d:91:f0:31:8e:6f:9e:2a:4b:da: 51:91:b1:db:be:c6:48:9f:72:ab:6f:f6:37:51:2f: 2e:e0:a0:7e:27:03:a0:27:9f:68:34:a2:68:da:ce: 6c:51:77:0e:25:c5:06:21:6f:f6:d8:6d:ed:38:4c: 6d:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:FE:5D:25:8C:9F:F5:19:06:C2:14:93:CD:5E:BA:09:B7:6A:0F:16 X509v3 Authority Key Identifier: keyid:90:1F:98:91:FB:F7:F2:7D:41:6A:1E:E0:6B:31:B0:16:5A:AE:1D:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:6c:92:af:84:d5:38:a9:b4:4d:58:a3:f7:47:62:80:1d:c6: 9b:6b:f9:5c:a5:20:4c:b1:7c:0a:51:2d:19:bb:1c:f2:19:12: d5:b9:b9:d5:a2:dc:d7:b8:22:df:16:cc:8d:12:72:dd:ea:92: 09:aa:73:d7:15:ca:b5:6e:ae:22:a9:c9:1a:a2:2f:98:e6:c4: e6:86:39:01:d9:e7:17:af:ab:e1:79:bc:29:52:a7:aa:12:41: ab:7d:ba:01:09:83:ca:63:bc:3d:17:74:96:4a:78:64:c6:0e: 81:a1:a6:47:a8:9a:71:74:b4:92:af:4e:0a:fd:3f:4a:f8:db: 89:73:3f:c4:d0:01:14:f6:d7:db:c5:5e:a1:ee:cc:6c:ac:bf: 0d:6d:c9:d7:7e:ed:c3:86:29:25:c9:92:6c:ea:46:34:72:90: 3c:a8:e8:d8:2b:52:45:ef:cd:df:b1:25:ae:b7:49:99:87:61: a1:37:64:3e:1b:71:ac:91:7a:ee:05:bf:0d:75:1a:ea:90:ff: 42:82:d0:4f:0f:4a:64:b3:96:f7:0e:de:a9:fc:1a:73:f3:ba: 9c:a0:63:0e:24:55:80:80:f1:9b:d6:2a:df:d2:61:14:1d:5d: 6a:3c:52:55:10:ca:28:03:e2:b5:5f:ee:32:47:cd:69:86:e3: 94:f5:22:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJEOTMxMTAvBgNVBAUTKDkwMUY5ODkxRkJGN0YyN0Q0MTZBMUVFMDZCMzFCMDE2 NUFBRTFEQzUwHhcNMjUwNjEzMDAwNDQzWhcNMjUwNjIwMDAwNDQzWjAYMRYwFAYD VQQDEw02ODRiNmIxYi1jN2I4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA78cN7sIASymTSOqaeFcrA7qB54WMXOM/3G84i7ZZFBAWrIpIhN9SJBxAqQsh JyCi1f0K/6487DUGGc8yGeWYTceo3cTCZShevWJgpWYTasn10lkELgqcf6pkepcb xMH5d2qUsKq8S+9P+k19SYg5YRCYmgGJUbDfppZGpewVQSJ6kz6UMQVzJ3U3H8lx j7/91xxKe3LNYKqLVJUSZGjHFCAeB/ndgnMLWYfJ20+yjRWrU4MEyVHzj3DSl5GV u0N6k/3SZSE1PT2R8DGOb54qS9pRkbHbvsZIn3Krb/Y3US8u4KB+JwOgJ59oNKJo 2s5sUXcOJcUGIW/22G3tOExtXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEP+XSWM n/UZBsIUk81eugm3ag8WMB8GA1UdIwQYMBaAFJAfmJH79/J9QWoe4GsxsBZarh3F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkQ5My8wRjg3NEE3NDdG M0QxMUVDOEExRENDNzFDNEY5QUUwMi9rQi1Za2Z2MzhuMUJhaDdnYXpHd0ZscXVI Y1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tCLVlrZnYzOG4xQmFoN2dhekd3RmxxdUhjVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkQ5My8wRjg3NEE3NDdGM0QxMUVDOEExRENDNzFDNEY5QUUwMi9rQi1Za2Z2Mzhu MUJhaDdnYXpHd0ZscXVIY1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvbJKvhNU4qbRNWKP3R2KAHcaba/lcpSBMsXwKUS0ZuxzyGRLVubnV otzXuCLfFsyNEnLd6pIJqnPXFcq1bq4iqckaoi+Y5sTmhjkB2ecXr6vhebwpUqeq EkGrfboBCYPKY7w9F3SWSnhkxg6BoaZHqJpxdLSSr04K/T9K+NuJcz/E0AEU9tfb xV6h7sxsrL8NbcnXfu3DhiklyZJs6kY0cpA8qOjYK1JF783fsSWut0mZh2GhN2Q+ G3GskXruBb8NdRrqkP9CgtBPD0pks5b3Dt6p/Bpz87qcoGMOJFWAgPGb1irf0mEU HV1qPFJVEMooA+K1X+4yR81phuOU9SJK -----END CERTIFICATE-----Generated at Sat Jun 14 19:39:23 2025 by rpki-client