$ rpki-client -vvf rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft File: KtPYi16OCwUUGjvJL4XkJzoFYqE.mft (raw, json) Hash identifier: dnkji0F5ePYppGXEnru3BOCRlxa90tVRzN1qXwUWXCU= Subject key identifier: 7E:BA:79:49:06:84:F1:EB:64:28:13:3E:AA:6D:7E:F6:76:CB:BC:08 Authority key identifier: 2A:D3:D8:8B:5E:8E:0B:05:14:1A:3B:C9:2F:85:E4:27:3A:05:62:A1 Certificate issuer: /CN=A9132F27/serialNumber=2AD3D88B5E8E0B05141A3BC92F85E4273A0562A1 Certificate serial: 0108 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft Manifest number: 0106 Signing time: Thu 19 Jun 2025 04:25:44 +0000 Manifest this update: Thu 19 Jun 2025 04:25:44 +0000 Manifest next update: Thu 26 Jun 2025 04:25:44 +0000 Files and hashes: 1: KtPYi16OCwUUGjvJL4XkJzoFYqE.crl (hash: g3Ts7tvXnwJ+rziXKrSWWPFcApPccQ86tnvAuTYUBJ4=) 2: 1D74CCE2BB6D11EEB670B00CC4F9AE02.roa (hash: c7azquHGHrdqjZWXwOVhESd2h6ZSF7h+7L/HwU2cJDw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.crl rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 04:25:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 264 (0x108) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132F27, serialNumber=2AD3D88B5E8E0B05141A3BC92F85E4273A0562A1 Validity Not Before: Jun 19 04:25:44 2025 GMT Not After : Jun 26 04:25:44 2025 GMT Subject: CN=68539148-e22b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:d9:04:29:e3:70:05:79:cb:63:b8:7a:30:47: 89:82:38:34:25:11:18:b7:ee:ae:c2:44:b9:c2:b0: 19:e2:32:fa:8f:3a:00:f9:b0:b9:00:6a:58:be:19: 67:6f:4d:59:05:8a:06:30:9c:32:d7:76:a8:67:09: d6:44:a8:21:84:7e:a8:eb:aa:21:15:76:4d:b7:84: dc:6e:f3:be:57:4c:0d:0f:10:0c:c8:ba:4d:f2:70: 62:cc:3e:ee:84:c8:c1:73:02:31:a3:fe:b9:5e:75: 3f:52:ff:6e:5f:e2:26:3b:f8:ed:ee:2b:8f:01:7f: de:1a:ad:80:99:bb:0e:3c:37:df:3b:d9:1d:94:6b: eb:07:11:c0:2c:5c:14:46:b3:88:5b:a9:cf:78:ab: 7e:cd:2a:fe:26:ef:55:2a:15:32:bf:35:87:19:27: 40:5f:67:7b:37:dc:8e:db:e2:2e:f9:d8:cd:4e:41: d0:97:a0:b2:9b:e5:85:08:df:ac:fa:4c:36:84:ed: 31:cb:6b:2a:36:65:c3:dc:49:14:3c:9c:21:af:72: ad:46:1f:b1:52:0a:d6:80:2f:ab:9a:ba:0c:28:02: f6:4d:20:57:ba:f3:e5:ec:43:10:06:c3:f5:9d:95: a4:9d:69:84:e9:eb:41:63:fa:39:a1:91:cf:a5:34: e3:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:BA:79:49:06:84:F1:EB:64:28:13:3E:AA:6D:7E:F6:76:CB:BC:08 X509v3 Authority Key Identifier: keyid:2A:D3:D8:8B:5E:8E:0B:05:14:1A:3B:C9:2F:85:E4:27:3A:05:62:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:2d:e3:0f:f8:b9:c8:cd:af:d3:89:46:b1:b2:4f:dd:77:b9: d0:2d:3a:a6:16:91:7a:15:e9:50:42:81:78:74:59:59:0e:16: fb:25:44:be:97:75:a7:5f:6e:4d:d3:b3:a4:49:2b:89:b8:62: 5e:1e:7b:54:11:02:75:a2:0d:96:8a:17:e5:09:ff:ad:65:fc: 04:c0:4f:e9:71:16:c4:57:df:5f:ef:2c:af:8a:8c:60:4c:6a: 2f:4b:23:49:be:ae:6e:7c:f1:f5:c5:c3:47:e0:e6:19:1c:4b: b3:32:5c:1e:4a:b3:95:11:6a:88:1f:df:8b:ff:60:50:ad:62: 09:87:c9:7b:5f:54:88:7d:c8:7b:14:78:b7:cf:f2:74:1a:e8: 53:9f:a4:38:47:7f:94:bb:5e:1c:77:60:e2:a5:27:83:60:4a: c7:24:da:48:77:31:21:58:a4:c6:c0:21:67:ed:0a:b2:ee:a6: 8e:af:6b:ce:53:b1:d9:a6:eb:a1:00:80:cb:8e:21:51:98:b0: ec:36:4b:28:0d:30:85:0d:0a:1f:80:ee:90:2d:39:5f:12:13: ed:c9:45:88:df:fa:44:e3:e8:25:40:0f:e6:43:5c:b8:25:29: 3e:f8:e2:1d:08:63:10:dc:03:17:1b:69:7d:01:fc:7c:3e:3b: 92:f2:65:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJGMjcxMTAvBgNVBAUTKDJBRDNEODhCNUU4RTBCMDUxNDFBM0JDOTJGODVFNDI3 M0EwNTYyQTEwHhcNMjUwNjE5MDQyNTQ0WhcNMjUwNjI2MDQyNTQ0WjAYMRYwFAYD VQQDEw02ODUzOTE0OC1lMjJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu9kEKeNwBXnLY7h6MEeJgjg0JREYt+6uwkS5wrAZ4jL6jzoA+bC5AGpYvhln b01ZBYoGMJwy13aoZwnWRKghhH6o66ohFXZNt4TcbvO+V0wNDxAMyLpN8nBizD7u hMjBcwIxo/65XnU/Uv9uX+ImO/jt7iuPAX/eGq2AmbsOPDffO9kdlGvrBxHALFwU RrOIW6nPeKt+zSr+Ju9VKhUyvzWHGSdAX2d7N9yO2+Iu+djNTkHQl6Cym+WFCN+s +kw2hO0xy2sqNmXD3EkUPJwhr3KtRh+xUgrWgC+rmroMKAL2TSBXuvPl7EMQBsP1 nZWknWmE6etBY/o5oZHPpTTjAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH66eUkG hPHrZCgTPqptfvZ2y7wIMB8GA1UdIwQYMBaAFCrT2ItejgsFFBo7yS+F5Cc6BWKh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkYyNy83QUNERjlBQUJC NkMxMUVFQTY4MEFFNkRDNEY5QUUwMi9LdFBZaTE2T0N3VVVHanZKTDRYa0p6b0ZZ cUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0t0UFlpMTZPQ3dVVUdqdkpMNFhrSnpvRllxRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkYyNy83QUNERjlBQUJCNkMxMUVFQTY4MEFFNkRDNEY5QUUwMi9LdFBZaTE2T0N3 VVVHanZKTDRYa0p6b0ZZcUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkLeMP+LnIza/TiUaxsk/dd7nQLTqmFpF6FelQQoF4dFlZDhb7JUS+ l3WnX25N07OkSSuJuGJeHntUEQJ1og2WihflCf+tZfwEwE/pcRbEV99f7yyvioxg TGovSyNJvq5ufPH1xcNH4OYZHEuzMlweSrOVEWqIH9+L/2BQrWIJh8l7X1SIfch7 FHi3z/J0GuhTn6Q4R3+Uu14cd2DipSeDYErHJNpIdzEhWKTGwCFn7Qqy7qaOr2vO U7HZpuuhAIDLjiFRmLDsNksoDTCFDQofgO6QLTlfEhPtyUWI3/pE4+glQA/mQ1y4 JSk++OIdCGMQ3AMXG2l9Afx8PjuS8mU6 -----END CERTIFICATE-----Generated at Thu Jun 19 20:10:16 2025 by rpki-client