$ rpki-client -vvf rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft File: KbnmrAGSmMyglt6Jcancj3144dk.mft (raw, json) Hash identifier: H+Wv6xdamDwHg5CQZCtOvy0YRHqg7QVZe+1KH5GgoEk= Subject key identifier: 99:7D:B2:5D:81:6F:EA:98:39:92:AF:96:19:63:21:A7:70:7C:F4:8D Authority key identifier: 29:B9:E6:AC:01:92:98:CC:A0:96:DE:89:71:A9:DC:8F:7D:78:E1:D9 Certificate issuer: /CN=A91371E4/serialNumber=29B9E6AC019298CCA096DE8971A9DC8F7D78E1D9 Certificate serial: 11D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KbnmrAGSmMyglt6Jcancj3144dk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft Manifest number: 11C6 Signing time: Sat 14 Jun 2025 17:07:31 +0000 Manifest this update: Sat 14 Jun 2025 17:07:31 +0000 Manifest next update: Sat 21 Jun 2025 17:07:31 +0000 Files and hashes: 1: KbnmrAGSmMyglt6Jcancj3144dk.crl (hash: APhwmqPHFUBnwl+LQawscC49xTZSD9wvpvcnixZcIaM=) 2: B6C2A27AF16A11E89550B621C4F9AE02.roa (hash: rYGwlaz3R02z4ql3MvAUj9rg5+gxsDR/Fvqrh9TzcP8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.crl rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KbnmrAGSmMyglt6Jcancj3144dk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:07:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4561 (0x11d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91371E4, serialNumber=29B9E6AC019298CCA096DE8971A9DC8F7D78E1D9 Validity Not Before: Jun 14 17:07:31 2025 GMT Not After : Jun 21 17:07:31 2025 GMT Subject: CN=684dac53-25d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ac:f6:97:34:77:81:66:28:23:bb:b4:31:b7: 40:91:c6:81:7a:f8:9f:69:0d:c9:fa:d4:cf:fc:78: 84:51:b9:90:29:21:a2:81:dc:a6:9a:06:3d:7b:f3: 2d:43:bf:e1:ea:10:e9:6e:a5:88:52:41:c7:2d:d8: 0a:bc:2f:fa:87:ed:45:a5:cf:cb:92:24:7f:7b:40: 51:ba:da:39:70:30:96:0a:e4:68:a0:32:c5:c3:e4: 2b:20:1b:7f:fc:ea:a6:18:3c:26:95:73:db:32:2a: c4:ac:7b:03:b1:b6:f2:22:24:52:de:c7:f3:e5:6e: f3:c1:c6:bb:14:18:a4:45:d7:4e:6f:76:07:bf:d5: a1:7b:d4:5e:f0:46:8d:b0:d2:53:eb:bc:29:a1:b5: 9b:94:3a:75:eb:b9:ba:16:18:46:05:56:27:3a:17: 38:81:fe:d1:37:1c:d1:41:5f:94:0d:9d:90:44:75: 91:af:30:17:0a:12:a7:e0:e5:4d:42:0e:74:93:33: e7:d1:27:10:3e:c1:79:17:39:45:1d:69:a9:9c:da: 93:cf:64:8c:e3:c4:75:44:bd:83:70:e0:99:29:55: 37:94:4c:a8:ff:1b:ff:04:18:19:a6:78:cf:77:f2: e2:30:68:88:96:b7:69:13:4e:f8:0e:f8:06:7b:92: 64:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:7D:B2:5D:81:6F:EA:98:39:92:AF:96:19:63:21:A7:70:7C:F4:8D X509v3 Authority Key Identifier: keyid:29:B9:E6:AC:01:92:98:CC:A0:96:DE:89:71:A9:DC:8F:7D:78:E1:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KbnmrAGSmMyglt6Jcancj3144dk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:7e:26:ef:ee:df:26:53:b7:77:75:32:a7:6c:9c:e9:91:df: c3:36:8c:74:63:cf:56:b9:93:0f:44:5e:4e:95:74:7e:d7:85: 43:b6:4d:60:ee:d7:ad:9a:9e:43:0d:42:f7:9b:a6:69:7f:8f: d1:da:d3:e3:83:c1:39:f5:67:f1:b9:a1:e4:a6:8a:0c:33:ee: ed:ad:3d:78:7a:f8:d3:74:6f:db:d6:97:96:31:3b:da:25:39: cc:a3:98:68:91:a6:62:a3:b9:c8:69:6a:03:c5:ea:98:8d:04: 87:8f:b6:13:88:00:7e:6e:2f:a8:8f:24:58:28:e6:4b:66:13: 2a:fc:09:68:40:4f:27:44:b6:a7:b6:d0:2e:f5:0d:ff:56:4c: 73:03:ad:08:a1:9f:c0:7c:20:2a:d2:10:e1:93:05:46:c3:18: 91:05:9b:47:36:de:c5:7b:e8:de:d3:39:8a:50:4b:59:64:2a: e1:be:d5:19:a2:07:61:b2:8a:b6:43:91:62:cc:3c:b5:70:c6: 6d:dd:10:10:87:c3:29:62:31:58:33:c6:ee:11:97:b2:ba:ad: 88:91:68:46:a3:2b:7e:a9:64:f4:7f:5e:cd:60:8a:f9:66:b6: 9d:0a:58:5d:ce:4d:e5:80:67:ab:e5:92:45:7f:cf:d5:fd:e5: 33:b7:1d:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEdEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzcxRTQxMTAvBgNVBAUTKDI5QjlFNkFDMDE5Mjk4Q0NBMDk2REU4OTcxQTlEQzhG N0Q3OEUxRDkwHhcNMjUwNjE0MTcwNzMxWhcNMjUwNjIxMTcwNzMxWjAYMRYwFAYD VQQDEw02ODRkYWM1My0yNWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvqz2lzR3gWYoI7u0MbdAkcaBevifaQ3J+tTP/HiEUbmQKSGigdymmgY9e/Mt Q7/h6hDpbqWIUkHHLdgKvC/6h+1Fpc/LkiR/e0BRuto5cDCWCuRooDLFw+QrIBt/ /OqmGDwmlXPbMirErHsDsbbyIiRS3sfz5W7zwca7FBikRddOb3YHv9Whe9Re8EaN sNJT67wpobWblDp167m6FhhGBVYnOhc4gf7RNxzRQV+UDZ2QRHWRrzAXChKn4OVN Qg50kzPn0ScQPsF5FzlFHWmpnNqTz2SM48R1RL2DcOCZKVU3lEyo/xv/BBgZpnjP d/LiMGiIlrdpE074DvgGe5JkdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJl9sl2B b+qYOZKvlhljIadwfPSNMB8GA1UdIwQYMBaAFCm55qwBkpjMoJbeiXGp3I99eOHZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNzFFNC8zODI0N0E3MEYx NjkxMUU4QjNBNzlEMUVDNEY5QUUwMi9LYm5tckFHU21NeWdsdDZKY2FuY2ozMTQ0 ZGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tibm1yQUdTbU15Z2x0NkpjYW5jajMxNDRkay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NzFFNC8zODI0N0E3MEYxNjkxMUU4QjNBNzlEMUVDNEY5QUUwMi9LYm5tckFHU21N eWdsdDZKY2FuY2ozMTQ0ZGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3fibv7t8mU7d3dTKnbJzpkd/DNox0Y89WuZMPRF5OlXR+14VDtk1g 7tetmp5DDUL3m6Zpf4/R2tPjg8E59WfxuaHkpooMM+7trT14evjTdG/b1peWMTva JTnMo5hokaZio7nIaWoDxeqYjQSHj7YTiAB+bi+ojyRYKOZLZhMq/AloQE8nRLan ttAu9Q3/VkxzA60IoZ/AfCAq0hDhkwVGwxiRBZtHNt7Fe+je0zmKUEtZZCrhvtUZ ogdhsoq2Q5FizDy1cMZt3RAQh8MpYjFYM8buEZeyuq2IkWhGoyt+qWT0f17NYIr5 ZradClhdzk3lgGer5ZJFf8/V/eUztx2O -----END CERTIFICATE-----Generated at Sun Jun 15 09:37:16 2025 by rpki-client