$ rpki-client -vvf rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft File: 2kcnine73_Ktn5igEaKnoufNYNg.mft (raw, json) Hash identifier: GCZVFE5fYSbX6HlqEXgUW93uCzZN6EYMY2J2JIERbMU= Subject key identifier: B9:42:71:6C:4D:C3:6C:EE:B8:6A:BE:E3:D9:E1:B7:11:AA:49:F4:25 Authority key identifier: DA:47:27:8A:77:BB:DF:F2:AD:9F:98:A0:11:A2:A7:A2:E7:CD:60:D8 Certificate issuer: /CN=A91393BE/serialNumber=DA47278A77BBDFF2AD9F98A011A2A7A2E7CD60D8 Certificate serial: C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft Manifest number: C1 Signing time: Mon 11 Aug 2025 06:01:28 +0000 Manifest this update: Mon 11 Aug 2025 06:01:28 +0000 Manifest next update: Mon 18 Aug 2025 06:01:28 +0000 Files and hashes: 1: 2kcnine73_Ktn5igEaKnoufNYNg.crl (hash: LNndQIaRCB22cTgQLbU1bbD6w8UTJ/4t6iR2kvp9I80=) 2: 05A966C652DB11EF990CB840C4F9AE02.roa (hash: uXZnZkbG2vzbvvdgakCXJGAe3jQgXul+4/g2eod9UgM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.crl rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 06:01:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 196 (0xc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91393BE, serialNumber=DA47278A77BBDFF2AD9F98A011A2A7A2E7CD60D8 Validity Not Before: Aug 11 06:01:28 2025 GMT Not After : Aug 18 06:01:28 2025 GMT Subject: CN=68998738-8ee3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:16:a6:41:e1:ef:6b:55:38:46:77:ce:86:57: 37:d2:a1:65:26:c0:95:4f:ce:a9:a5:3d:36:e9:20: 2b:5d:d7:f3:cf:cf:0c:a9:0d:90:92:1c:4f:94:6d: 72:5e:99:70:4b:99:89:6c:15:dd:6d:7e:80:ed:b6: 87:36:43:2b:72:21:09:82:f6:e4:0c:b7:af:ca:ec: 6b:d7:12:b7:19:ba:61:ff:fc:43:1a:f5:54:e3:2b: 42:f6:6f:cb:13:62:a7:5c:30:f9:ce:06:4f:f8:65: be:26:4c:7f:88:91:b8:26:da:3a:92:45:16:db:0b: f0:57:b4:bd:e4:48:81:be:b4:81:f8:ae:76:d5:1b: a6:e9:8c:6b:e6:2b:4e:26:0d:aa:37:da:3c:2b:cb: 44:59:d4:ad:4a:b2:b2:11:ee:61:c5:fd:75:3e:8d: b0:ae:b6:69:b3:32:46:3b:1e:76:6f:70:bb:4c:3d: 60:8a:7b:e0:4f:d4:59:1a:01:a9:5d:53:2a:ae:f5: 9f:1f:64:6c:9b:3e:8e:a9:31:d3:4c:c2:89:78:d5: d6:6b:6f:94:59:69:5a:0b:8e:5f:29:a5:12:fc:73: a1:dd:9b:96:9d:6f:46:aa:94:19:78:62:7b:63:93: a5:ca:cf:18:a0:9d:31:73:76:c6:72:db:b2:96:65: 4e:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:42:71:6C:4D:C3:6C:EE:B8:6A:BE:E3:D9:E1:B7:11:AA:49:F4:25 X509v3 Authority Key Identifier: keyid:DA:47:27:8A:77:BB:DF:F2:AD:9F:98:A0:11:A2:A7:A2:E7:CD:60:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:e7:31:d8:6a:ed:ff:aa:14:a4:a8:c3:62:dc:67:75:5b:39: a3:b7:bf:74:1a:04:db:0a:f5:80:08:92:33:27:4b:43:75:69: e4:dd:b7:c3:75:61:7b:57:5e:53:f6:4b:b6:c5:29:e5:a7:dd: 2c:11:b1:3d:7f:24:0f:26:20:1c:5d:6e:df:bb:26:97:26:01: 77:85:f5:61:2a:49:4e:8f:f3:e4:33:c6:ef:cd:a6:92:1d:97: ee:1d:5a:9a:3c:2c:9c:e8:74:47:6d:44:dd:b6:2d:d5:85:4f: 4d:16:f6:e0:f3:c2:f2:e2:c6:fc:75:b8:fb:b7:92:be:7e:66: 34:36:e2:08:ca:43:8c:c8:3d:16:9f:94:a2:75:bd:03:0b:e9: ed:2e:06:86:6c:48:6b:b5:97:4a:45:78:23:23:ce:09:bc:85: 40:a0:3a:01:d7:4d:7f:a4:2b:6c:de:69:c2:69:be:4b:85:f9: a8:95:17:6f:7f:0c:a7:a5:85:75:4d:ef:41:cc:01:e7:ce:b2: 63:90:fb:bc:2a:85:85:94:37:74:30:3c:4f:ee:2c:ad:f1:48: a7:44:36:ba:f9:a8:d4:c9:a3:c3:d6:a2:c3:1e:2f:d5:b6:48: 27:69:3a:0a:93:b0:58:f9:17:1c:1c:a0:29:cd:fb:86:cf:59: 1b:27:4c:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkzQkUxMTAvBgNVBAUTKERBNDcyNzhBNzdCQkRGRjJBRDlGOThBMDExQTJBN0Ey RTdDRDYwRDgwHhcNMjUwODExMDYwMTI4WhcNMjUwODE4MDYwMTI4WjAYMRYwFAYD VQQDEw02ODk5ODczOC04ZWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0RamQeHva1U4RnfOhlc30qFlJsCVT86ppT026SArXdfzz88MqQ2QkhxPlG1y XplwS5mJbBXdbX6A7baHNkMrciEJgvbkDLevyuxr1xK3Gbph//xDGvVU4ytC9m/L E2KnXDD5zgZP+GW+Jkx/iJG4Jto6kkUW2wvwV7S95EiBvrSB+K521Rum6Yxr5itO Jg2qN9o8K8tEWdStSrKyEe5hxf11Po2wrrZpszJGOx52b3C7TD1ginvgT9RZGgGp XVMqrvWfH2Rsmz6OqTHTTMKJeNXWa2+UWWlaC45fKaUS/HOh3ZuWnW9GqpQZeGJ7 Y5Olys8YoJ0xc3bGctuylmVOGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLlCcWxN w2zuuGq+49nhtxGqSfQlMB8GA1UdIwQYMBaAFNpHJ4p3u9/yrZ+YoBGip6LnzWDY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTNCRS83NzQxNjE0QzUy RDMxMUVGQkFFRERDMUVDNEY5QUUwMi8ya2NuaW5lNzNfS3RuNWlnRWFLbm91Zk5Z TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJrY25pbmU3M19LdG41aWdFYUtub3VmTllOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTNCRS83NzQxNjE0QzUyRDMxMUVGQkFFRERDMUVDNEY5QUUwMi8ya2NuaW5lNzNf S3RuNWlnRWFLbm91Zk5ZTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCF5zHYau3/qhSkqMNi3Gd1Wzmjt790GgTbCvWACJIzJ0tDdWnk3bfD dWF7V15T9ku2xSnlp90sEbE9fyQPJiAcXW7fuyaXJgF3hfVhKklOj/PkM8bvzaaS HZfuHVqaPCyc6HRHbUTdti3VhU9NFvbg88Ly4sb8dbj7t5K+fmY0NuIIykOMyD0W n5Sidb0DC+ntLgaGbEhrtZdKRXgjI84JvIVAoDoB101/pCts3mnCab5LhfmolRdv fwynpYV1Te9BzAHnzrJjkPu8KoWFlDd0MDxP7iyt8UinRDa6+ajUyaPD1qLDHi/V tkgnaToKk7BY+RccHKApzfuGz1kbJ0yH -----END CERTIFICATE-----Generated at Wed Aug 13 00:29:58 2025 by rpki-client