$ rpki-client -vvf rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft File: KXr2WH-YpJnreNLMrjYW70KfV1A.mft (raw, json) Hash identifier: R2sh6TgXO0kvKMBIlz2qzDAKg+ZtDtAwGDPQ7argkSw= Subject key identifier: 07:37:19:7C:09:20:F2:93:16:87:32:A5:89:5C:04:1D:E6:2B:3E:E9 Authority key identifier: 29:7A:F6:58:7F:98:A4:99:EB:78:D2:CC:AE:36:16:EF:42:9F:57:50 Certificate issuer: /CN=A91411BC/serialNumber=297AF6587F98A499EB78D2CCAE3616EF429F5750 Certificate serial: 132D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXr2WH-YpJnreNLMrjYW70KfV1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft Manifest number: 1325 Signing time: Sat 14 Jun 2025 16:58:19 +0000 Manifest this update: Sat 14 Jun 2025 16:58:19 +0000 Manifest next update: Sat 21 Jun 2025 16:58:19 +0000 Files and hashes: 1: KXr2WH-YpJnreNLMrjYW70KfV1A.crl (hash: IdDDoOhmBewvsbPS4UV4kwJAOsv+UwNm1VAsKWFHLuA=) 2: B4996A22AC3411E88623474BC4F9AE02.roa (hash: Uautv1XlrGIKG3uUq9YoWLtURxeqWmVrl93Jj3fy9ko=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.crl rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXr2WH-YpJnreNLMrjYW70KfV1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 16:58:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4909 (0x132d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91411BC, serialNumber=297AF6587F98A499EB78D2CCAE3616EF429F5750 Validity Not Before: Jun 14 16:58:19 2025 GMT Not After : Jun 21 16:58:19 2025 GMT Subject: CN=684daa2b-34f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:c0:27:ae:37:55:5c:d3:27:76:85:05:b5:36: 94:2d:d2:31:d8:06:09:ed:22:b8:40:81:ea:3f:94: a0:d3:3f:e3:b9:4b:6c:5a:36:64:03:f2:c5:6e:38: 3f:2e:0d:c4:38:52:d2:3d:48:37:fe:f1:03:0d:b5: 24:ab:a8:6f:78:73:5b:1a:4d:29:ff:42:b5:9f:2e: 49:89:e5:18:a0:91:07:ef:27:b3:76:48:9c:14:40: ef:bf:f7:50:6b:2f:ba:0a:cd:7e:ea:2c:6b:19:5a: bb:0f:9f:b5:5c:16:4c:e5:ad:38:82:0f:0c:d8:64: e3:7b:84:e3:0d:85:2e:40:aa:4d:a2:04:39:2c:75: 09:ac:70:51:df:56:08:47:79:c0:38:4a:98:1f:5d: c1:cb:01:0f:9f:aa:af:cb:93:c2:88:b1:a0:26:dd: 7a:6b:e3:88:6f:86:c6:12:54:d7:bc:83:ce:04:ed: 6c:1b:b3:6d:5b:dc:c5:9c:3d:d7:22:8f:35:10:61: 0e:1e:56:f7:82:6c:07:76:e7:ed:ad:ed:eb:ac:f2: 60:06:91:23:8b:73:12:93:da:ba:1f:1a:66:e8:e5: f8:0f:cc:91:b3:75:8e:bb:1d:fe:3f:6c:99:27:75: 03:91:70:fe:85:9b:81:08:07:63:4c:d6:f6:86:67: e9:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:37:19:7C:09:20:F2:93:16:87:32:A5:89:5C:04:1D:E6:2B:3E:E9 X509v3 Authority Key Identifier: keyid:29:7A:F6:58:7F:98:A4:99:EB:78:D2:CC:AE:36:16:EF:42:9F:57:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXr2WH-YpJnreNLMrjYW70KfV1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:3a:94:72:46:4e:87:34:7a:7f:eb:86:67:af:d7:35:fb:7e: f8:72:b0:3e:56:d1:e5:02:07:a0:15:4c:d3:6b:e2:e3:f3:c9: 45:13:e0:68:c5:cb:eb:07:31:19:85:1f:6f:86:4d:65:80:67: d6:33:13:9c:b1:12:e3:ad:cb:88:b7:2f:ac:b3:aa:5e:7a:da: 07:9c:b9:e1:fd:90:82:c5:ef:d1:f3:2c:e6:77:2c:11:eb:cf: 9b:1d:ec:2f:25:54:a1:33:f6:66:0c:dc:72:30:92:7f:ef:b3: 82:1b:59:5c:ec:c9:bf:fd:72:b0:77:fd:73:dc:b2:19:9d:49: 2c:6a:05:c8:33:12:bc:19:8f:03:d2:e5:6a:07:e7:8a:57:d7: ee:78:24:04:8a:24:3a:a2:47:03:2c:3c:50:fc:90:c4:97:bf: eb:bd:78:3f:4e:90:e0:91:68:0d:b9:91:62:97:a2:3f:ef:08: c9:51:ae:bb:4a:56:c1:8f:95:aa:81:2f:d5:7e:6f:dc:1d:74: 31:db:0c:8c:cc:6d:cd:db:56:7e:c0:a9:f5:f7:b0:8b:7c:4f: e8:ac:a2:eb:c6:b4:97:67:b7:2a:a7:8c:1f:12:81:04:ab:7f: 60:74:ef:6c:43:4d:26:50:51:77:8c:66:19:5a:1c:13:c9:e3: 64:20:a8:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEy0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDExQkMxMTAvBgNVBAUTKDI5N0FGNjU4N0Y5OEE0OTlFQjc4RDJDQ0FFMzYxNkVG NDI5RjU3NTAwHhcNMjUwNjE0MTY1ODE5WhcNMjUwNjIxMTY1ODE5WjAYMRYwFAYD VQQDEw02ODRkYWEyYi0zNGYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3MAnrjdVXNMndoUFtTaULdIx2AYJ7SK4QIHqP5Sg0z/juUtsWjZkA/LFbjg/ Lg3EOFLSPUg3/vEDDbUkq6hveHNbGk0p/0K1ny5JieUYoJEH7yezdkicFEDvv/dQ ay+6Cs1+6ixrGVq7D5+1XBZM5a04gg8M2GTje4TjDYUuQKpNogQ5LHUJrHBR31YI R3nAOEqYH13BywEPn6qvy5PCiLGgJt16a+OIb4bGElTXvIPOBO1sG7NtW9zFnD3X Io81EGEOHlb3gmwHduftre3rrPJgBpEji3MSk9q6Hxpm6OX4D8yRs3WOux3+P2yZ J3UDkXD+hZuBCAdjTNb2hmfprQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAc3GXwJ IPKTFocypYlcBB3mKz7pMB8GA1UdIwQYMBaAFCl69lh/mKSZ63jSzK42Fu9Cn1dQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MTFCQy9FMzE3MUIwMkFD MzMxMUU4QjIwNjk0NDlDNEY5QUUwMi9LWHIyV0gtWXBKbnJlTkxNcmpZVzcwS2ZW MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tYcjJXSC1ZcEpucmVOTE1yallXNzBLZlYxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MTFCQy9FMzE3MUIwMkFDMzMxMUU4QjIwNjk0NDlDNEY5QUUwMi9LWHIyV0gtWXBK bnJlTkxNcmpZVzcwS2ZWMUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAOpRyRk6HNHp/64Znr9c1+374crA+VtHlAgegFUzTa+Lj88lFE+Bo xcvrBzEZhR9vhk1lgGfWMxOcsRLjrcuIty+ss6peetoHnLnh/ZCCxe/R8yzmdywR 68+bHewvJVShM/ZmDNxyMJJ/77OCG1lc7Mm//XKwd/1z3LIZnUksagXIMxK8GY8D 0uVqB+eKV9fueCQEiiQ6okcDLDxQ/JDEl7/rvXg/TpDgkWgNuZFil6I/7wjJUa67 SlbBj5WqgS/Vfm/cHXQx2wyMzG3N21Z+wKn197CLfE/orKLrxrSXZ7cqp4wfEoEE q39gdO9sQ00mUFF3jGYZWhwTyeNkIKgU -----END CERTIFICATE-----Generated at Sat Jun 14 19:41:50 2025 by rpki-client