$ rpki-client -vvf rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft File: kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft (raw, json) Hash identifier: Xl5mxZAFQb1HfEG3v+tA/xBnD2N6gu0LapgYBOmn8cM= Subject key identifier: A2:D3:4F:9F:AD:3A:35:ED:C1:45:EE:EE:39:19:3D:28:F3:C8:4E:DD Authority key identifier: 90:7B:03:8A:DE:C7:C3:FA:9C:64:93:0E:64:19:B2:FB:BA:B9:C8:1C Certificate issuer: /CN=A913A7A6/serialNumber=907B038ADEC7C3FA9C64930E6419B2FBBAB9C81C Certificate serial: 0A1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHsDit7Hw_qcZJMOZBmy-7q5yBw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft Manifest number: 0A16 Signing time: Sat 14 Jun 2025 19:37:12 +0000 Manifest this update: Sat 14 Jun 2025 19:37:12 +0000 Manifest next update: Sat 21 Jun 2025 19:37:12 +0000 Files and hashes: 1: kHsDit7Hw_qcZJMOZBmy-7q5yBw.crl (hash: aE0sgGO+8ev3g5FoGAdewBs6s8cPLbm4amiQbdbuuJU=) 2: D4AECB7A701611EF824F7281C4F9AE02.roa (hash: 05sTqgo+Z4rvsk50BgwNBJM+KFLlXu8LZA40jZLQRSk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.crl rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHsDit7Hw_qcZJMOZBmy-7q5yBw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 19:37:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2589 (0xa1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A7A6, serialNumber=907B038ADEC7C3FA9C64930E6419B2FBBAB9C81C Validity Not Before: Jun 14 19:37:12 2025 GMT Not After : Jun 21 19:37:12 2025 GMT Subject: CN=684dcf68-d0e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:66:d5:04:15:ae:52:f6:87:e6:93:6d:bb:d6: 9d:95:44:7d:7e:18:ce:ae:9d:e2:a4:50:0d:60:2d: ce:92:cf:96:f6:90:26:df:da:d7:69:e0:5c:4d:c6: 24:3c:09:28:d7:f0:9a:76:e4:f4:ed:09:14:32:77: 80:32:6e:92:69:6f:bd:6a:bb:f9:98:ce:4f:6f:23: 39:1f:f9:ba:d7:7d:2c:29:d1:52:34:80:41:24:fe: 26:7b:51:b7:06:19:27:ad:60:2a:8d:d2:ed:17:fd: 33:e5:fe:a1:76:c5:89:39:27:b1:5a:72:d6:8b:6d: 5e:52:cc:75:24:87:72:52:e3:33:7f:18:ac:ed:62: a8:29:a1:bd:c4:29:98:95:5c:cb:84:7f:ad:14:c4: 70:95:ef:2c:5c:ee:ca:db:d0:51:fd:37:f9:f2:eb: b9:1d:27:94:ba:f5:48:16:3b:a3:4d:56:91:3e:95: 9e:51:75:51:a4:f8:28:d8:85:46:ab:f6:50:b6:10: 4f:19:a1:51:1a:de:bc:18:f3:27:d4:74:43:3a:ac: 88:07:e6:f8:0c:be:3b:88:ea:6f:13:69:dd:9c:3d: d1:32:aa:22:b0:41:b9:8d:7b:43:ae:41:da:c1:f5: 67:dc:cf:de:36:b4:80:67:fd:d9:77:01:f3:cd:16: 61:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:D3:4F:9F:AD:3A:35:ED:C1:45:EE:EE:39:19:3D:28:F3:C8:4E:DD X509v3 Authority Key Identifier: keyid:90:7B:03:8A:DE:C7:C3:FA:9C:64:93:0E:64:19:B2:FB:BA:B9:C8:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHsDit7Hw_qcZJMOZBmy-7q5yBw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:88:db:b5:a2:ce:ae:59:59:99:4e:40:3c:25:93:95:8d:90: 19:25:aa:1a:1d:91:f7:67:2c:b5:81:48:8f:b8:c9:f8:49:d9: a5:67:cf:ea:51:d7:94:4a:c3:46:ac:90:6e:a4:48:56:01:6b: 03:5c:d8:85:79:bc:84:a9:9c:be:68:3c:6e:75:d7:bc:1f:6d: 01:5b:fb:e3:9e:3c:cf:05:4c:85:67:17:23:03:8f:88:ea:8e: 34:bd:31:01:fc:08:c3:5c:68:8c:a4:2b:ed:de:f8:73:6f:4a: 99:6f:ac:46:d6:07:fb:ee:04:e7:eb:0c:30:3e:90:16:fb:d9: 1e:30:d9:67:86:86:32:77:f2:ce:19:81:d7:1f:e4:95:e4:11: 6e:42:f3:60:25:49:13:aa:40:25:1d:c8:96:cf:e7:85:32:2a: 67:1d:7c:a2:cb:a7:45:c2:86:83:04:56:63:c8:d7:29:9d:4f: 11:8d:58:ee:1f:bb:9f:d8:ae:98:c1:0e:a9:1c:49:c0:f5:ff: 02:fa:09:d3:d1:e4:4c:0a:c2:ff:a6:61:1b:74:4b:07:fe:de: 77:76:8d:de:86:48:dd:a3:50:49:45:a2:46:cc:f2:e3:0a:0e: 39:d1:55:2b:61:7d:be:c9:a7:56:cf:ed:b3:4f:d4:21:a4:4d: 46:b7:55:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCh0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E3QTYxMTAvBgNVBAUTKDkwN0IwMzhBREVDN0MzRkE5QzY0OTMwRTY0MTlCMkZC QkFCOUM4MUMwHhcNMjUwNjE0MTkzNzEyWhcNMjUwNjIxMTkzNzEyWjAYMRYwFAYD VQQDEw02ODRkY2Y2OC1kMGUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxGbVBBWuUvaH5pNtu9adlUR9fhjOrp3ipFANYC3Oks+W9pAm39rXaeBcTcYk PAko1/CaduT07QkUMneAMm6SaW+9arv5mM5PbyM5H/m6130sKdFSNIBBJP4me1G3 BhknrWAqjdLtF/0z5f6hdsWJOSexWnLWi21eUsx1JIdyUuMzfxis7WKoKaG9xCmY lVzLhH+tFMRwle8sXO7K29BR/Tf58uu5HSeUuvVIFjujTVaRPpWeUXVRpPgo2IVG q/ZQthBPGaFRGt68GPMn1HRDOqyIB+b4DL47iOpvE2ndnD3RMqoisEG5jXtDrkHa wfVn3M/eNrSAZ/3ZdwHzzRZhXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKLTT5+t OjXtwUXu7jkZPSjzyE7dMB8GA1UdIwQYMBaAFJB7A4rex8P6nGSTDmQZsvu6ucgc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTdBNi80REI5NDQzQTcz QjYxMUVBOUI4QzFGNUNDNEY5QUUwMi9rSHNEaXQ3SHdfcWNaSk1PWkJteS03cTV5 QncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tIc0RpdDdId19xY1pKTU9aQm15LTdxNXlCdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTdBNi80REI5NDQzQTczQjYxMUVBOUI4QzFGNUNDNEY5QUUwMi9rSHNEaXQ3SHdf cWNaSk1PWkJteS03cTV5QncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaiNu1os6uWVmZTkA8JZOVjZAZJaoaHZH3Zyy1gUiPuMn4SdmlZ8/q UdeUSsNGrJBupEhWAWsDXNiFebyEqZy+aDxudde8H20BW/vjnjzPBUyFZxcjA4+I 6o40vTEB/AjDXGiMpCvt3vhzb0qZb6xG1gf77gTn6wwwPpAW+9keMNlnhoYyd/LO GYHXH+SV5BFuQvNgJUkTqkAlHciWz+eFMipnHXyiy6dFwoaDBFZjyNcpnU8RjVju H7uf2K6YwQ6pHEnA9f8C+gnT0eRMCsL/pmEbdEsH/t53do3ehkjdo1BJRaJGzPLj Cg450VUrYX2+yadWz+2zT9QhpE1Gt1Xb -----END CERTIFICATE-----Generated at Sun Jun 15 08:50:36 2025 by rpki-client