$ rpki-client -vvf rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft File: 2kcnine73_Ktn5igEaKnoufNYNg.mft (raw, json) Hash identifier: 7CnNxegTGQ87yLnyEogEMAezxN84aKTdcjrgtxUBO28= Subject key identifier: 21:20:C5:F6:17:BA:21:60:BE:C1:03:04:E5:77:83:9F:48:63:20:24 Authority key identifier: DA:47:27:8A:77:BB:DF:F2:AD:9F:98:A0:11:A2:A7:A2:E7:CD:60:D8 Certificate issuer: /CN=A91393BE/serialNumber=DA47278A77BBDFF2AD9F98A011A2A7A2E7CD60D8 Certificate serial: A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft Manifest number: A2 Signing time: Sun 15 Jun 2025 05:17:50 +0000 Manifest this update: Sun 15 Jun 2025 05:17:50 +0000 Manifest next update: Sun 22 Jun 2025 05:17:50 +0000 Files and hashes: 1: 2kcnine73_Ktn5igEaKnoufNYNg.crl (hash: MoaUY4FX9XRSOzFj7TRKYWMU2O/A52GUqT0Zr/SJBOk=) 2: 05A966C652DB11EF990CB840C4F9AE02.roa (hash: 7cyDiCG+GWMMc47d/9wE/tr8+3lmCjNtDuQzc5Jy9ng=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.crl rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 164 (0xa4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91393BE, serialNumber=DA47278A77BBDFF2AD9F98A011A2A7A2E7CD60D8 Validity Not Before: Jun 15 05:17:50 2025 GMT Not After : Jun 22 05:17:50 2025 GMT Subject: CN=684e577e-ae45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:b2:eb:e3:0a:59:8a:46:e4:0c:4a:d5:f9:16: 0f:73:6b:a9:84:1c:b2:ae:16:f6:36:42:32:b0:32: b5:46:66:17:72:55:b8:69:04:28:9e:b8:a7:bb:85: 03:5a:f0:9d:dd:aa:30:ea:f5:ae:3f:e2:84:ff:82: 17:4a:9b:04:95:7f:3d:09:75:4e:d7:e8:75:17:f4: 3a:b9:9d:0f:f8:19:99:08:14:7c:38:44:cc:b0:96: a4:b5:91:a3:6a:55:fc:06:19:5e:a2:5d:0c:0d:9a: 74:60:5a:24:33:f4:92:2a:1f:cd:55:a3:b5:97:8f: a0:8f:7b:31:1d:d6:fe:af:ef:71:30:53:0d:3c:52: 69:e7:49:2a:85:95:72:5c:18:17:8e:46:42:ea:c4: 7e:8c:b2:fd:ce:94:28:91:97:72:04:db:34:cc:72: ae:da:5a:7f:e8:ae:0e:e0:a3:59:6d:b2:71:57:17: 5b:d2:0e:15:ac:95:4a:f7:0f:78:9c:45:08:97:14: d9:46:b4:e9:f8:eb:97:79:3e:61:a5:59:81:d3:f1: 95:60:b6:10:c2:39:9b:a8:57:3e:91:d8:7d:2d:1b: 44:4d:38:b3:f0:7c:92:f9:de:cd:00:10:2f:33:ea: 8f:4d:86:a7:7a:e0:b0:a8:12:94:e9:2e:89:2c:eb: d4:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:20:C5:F6:17:BA:21:60:BE:C1:03:04:E5:77:83:9F:48:63:20:24 X509v3 Authority Key Identifier: keyid:DA:47:27:8A:77:BB:DF:F2:AD:9F:98:A0:11:A2:A7:A2:E7:CD:60:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:4b:15:a8:04:ce:b5:e7:07:db:71:2f:49:4c:75:29:cb:eb: 24:63:d1:d7:54:c8:93:d7:b3:c1:47:67:fa:a5:94:66:51:77: 7c:72:c6:b1:0a:21:10:07:4c:10:4a:bc:d9:ca:89:a7:15:1b: 7d:f4:95:21:c3:f5:ff:df:10:2b:a0:59:32:fd:25:1f:84:5b: 3b:45:fd:06:2f:51:d3:11:d3:ec:5b:56:f3:31:d7:fc:0c:87: 7f:8e:96:16:f4:a4:b8:62:3c:aa:98:0d:cd:47:d0:de:02:41: 12:a8:2e:01:92:95:fb:fd:91:f9:90:01:a2:68:c8:40:57:35: 42:ad:dd:58:cc:aa:0d:ff:89:c8:8d:37:a1:ff:5c:90:e6:4f: 64:2a:fa:4e:4a:7d:f6:3c:1e:62:3d:2f:63:56:e7:50:a7:2c: ab:50:1b:af:49:9b:f3:df:51:16:de:dc:3e:91:aa:d1:00:fb: a4:bc:ad:34:92:cf:41:97:ab:81:31:cb:c8:ac:dd:65:2b:74: 39:33:4b:32:3b:ba:cb:8c:43:bb:68:d7:3a:80:fc:f9:60:03: b2:69:c0:f1:48:24:21:a1:df:67:49:d4:9c:f0:57:4f:fa:81: f4:6e:83:ea:6d:03:bf:2d:c9:da:d9:cc:15:a6:ec:9e:a1:dc: 40:8f:a9:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkzQkUxMTAvBgNVBAUTKERBNDcyNzhBNzdCQkRGRjJBRDlGOThBMDExQTJBN0Ey RTdDRDYwRDgwHhcNMjUwNjE1MDUxNzUwWhcNMjUwNjIyMDUxNzUwWjAYMRYwFAYD VQQDEw02ODRlNTc3ZS1hZTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA97Lr4wpZikbkDErV+RYPc2uphByyrhb2NkIysDK1RmYXclW4aQQonrinu4UD WvCd3aow6vWuP+KE/4IXSpsElX89CXVO1+h1F/Q6uZ0P+BmZCBR8OETMsJaktZGj alX8Bhleol0MDZp0YFokM/SSKh/NVaO1l4+gj3sxHdb+r+9xMFMNPFJp50kqhZVy XBgXjkZC6sR+jLL9zpQokZdyBNs0zHKu2lp/6K4O4KNZbbJxVxdb0g4VrJVK9w94 nEUIlxTZRrTp+OuXeT5hpVmB0/GVYLYQwjmbqFc+kdh9LRtETTiz8HyS+d7NABAv M+qPTYaneuCwqBKU6S6JLOvURQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCEgxfYX uiFgvsEDBOV3g59IYyAkMB8GA1UdIwQYMBaAFNpHJ4p3u9/yrZ+YoBGip6LnzWDY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTNCRS83NzQxNjE0QzUy RDMxMUVGQkFFRERDMUVDNEY5QUUwMi8ya2NuaW5lNzNfS3RuNWlnRWFLbm91Zk5Z TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJrY25pbmU3M19LdG41aWdFYUtub3VmTllOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTNCRS83NzQxNjE0QzUyRDMxMUVGQkFFRERDMUVDNEY5QUUwMi8ya2NuaW5lNzNf S3RuNWlnRWFLbm91Zk5ZTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoSxWoBM615wfbcS9JTHUpy+skY9HXVMiT17PBR2f6pZRmUXd8csax CiEQB0wQSrzZyomnFRt99JUhw/X/3xAroFky/SUfhFs7Rf0GL1HTEdPsW1bzMdf8 DId/jpYW9KS4YjyqmA3NR9DeAkESqC4BkpX7/ZH5kAGiaMhAVzVCrd1YzKoN/4nI jTeh/1yQ5k9kKvpOSn32PB5iPS9jVudQpyyrUBuvSZvz31EW3tw+karRAPukvK00 ks9Bl6uBMcvIrN1lK3Q5M0syO7rLjEO7aNc6gPz5YAOyacDxSCQhod9nSdSc8FdP +oH0boPqbQO/Lcna2cwVpuyeodxAj6m4 -----END CERTIFICATE-----Generated at Sun Jun 15 10:04:21 2025 by rpki-client