$ rpki-client -vvf rpki.apnic.net/member_repository/A9157BC3/708E6F68926111EDA5204E64C4F9AE02/KKyX2Zh-eNvuncufA3NcKDvOGGI.mft File: KKyX2Zh-eNvuncufA3NcKDvOGGI.mft (raw, json) Hash identifier: PA9kq19k/IQtrV9wpIawbCB4oBkSEyPeP6+Vq8trvEg= Subject key identifier: 30:DA:77:69:55:6E:A9:77:7E:3E:77:30:F9:57:E2:BC:70:FF:3C:AB Authority key identifier: 28:AC:97:D9:98:7E:78:DB:EE:9D:CB:9F:03:73:5C:28:3B:CE:18:62 Certificate issuer: /CN=A9157BC3/serialNumber=28AC97D9987E78DBEE9DCB9F03735C283BCE1862 Certificate serial: 01C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KKyX2Zh-eNvuncufA3NcKDvOGGI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157BC3/708E6F68926111EDA5204E64C4F9AE02/KKyX2Zh-eNvuncufA3NcKDvOGGI.mft Manifest number: 01C5 Signing time: Sun 15 Jun 2025 02:15:01 +0000 Manifest this update: Sun 15 Jun 2025 02:15:01 +0000 Manifest next update: Sun 22 Jun 2025 02:15:01 +0000 Files and hashes: 1: KKyX2Zh-eNvuncufA3NcKDvOGGI.crl (hash: Ms4jufcmXmbw+7tD0GAiHl87XC/L5LP4TqArS/ueJXs=) 2: 1FCD9DE2926611EDA99A9419C4F9AE02.roa (hash: RqBWzz5uXzyQ1KueU4cHYCTj7govMSTdgiL2egEdolc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157BC3/708E6F68926111EDA5204E64C4F9AE02/KKyX2Zh-eNvuncufA3NcKDvOGGI.crl rsync://rpki.apnic.net/member_repository/A9157BC3/708E6F68926111EDA5204E64C4F9AE02/KKyX2Zh-eNvuncufA3NcKDvOGGI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KKyX2Zh-eNvuncufA3NcKDvOGGI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:15:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 456 (0x1c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157BC3, serialNumber=28AC97D9987E78DBEE9DCB9F03735C283BCE1862 Validity Not Before: Jun 15 02:15:01 2025 GMT Not After : Jun 22 02:15:01 2025 GMT Subject: CN=684e2ca5-d1c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:02:69:78:99:84:f7:86:87:b4:01:9f:ca:11: 93:51:16:f9:6d:f3:07:00:92:e7:44:69:f7:47:61: 49:0a:76:d2:b7:4e:48:a9:71:ec:af:9c:12:5a:b8: 12:69:16:8d:15:08:58:bc:83:4c:74:01:1b:a4:85: 0e:b9:70:f1:f2:6b:f7:23:f2:fd:6d:2a:e3:35:66: fe:9a:50:c7:51:01:a4:12:fa:65:a7:0d:aa:41:da: 2d:18:da:62:5d:69:cb:d1:65:32:ec:19:9d:df:56: d7:92:99:c4:1c:20:e3:98:0e:a3:ee:80:5f:25:29: 56:b5:54:6f:19:13:42:8a:48:86:76:a9:27:50:1f: 5e:a0:eb:0b:72:63:22:92:e9:e5:2c:8f:70:4b:fb: 0f:08:37:1b:04:d2:c5:9c:33:c3:c2:06:e8:28:89: 94:b7:75:b0:93:dd:b0:ad:09:cd:a4:1b:b6:4a:31: 83:5a:2f:2b:86:c9:6f:e9:29:ca:de:38:1c:06:52: c0:40:f9:c9:54:ad:ea:12:f5:4a:13:a5:a4:b0:a6: fa:d2:65:63:fe:2b:3f:53:10:b3:3b:d2:51:bd:a6: c5:ba:7f:5e:89:1b:26:f0:c7:71:78:be:28:1f:ec: 66:65:f1:9d:0c:ad:7c:33:5a:10:a2:2e:c2:38:e6: 72:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:DA:77:69:55:6E:A9:77:7E:3E:77:30:F9:57:E2:BC:70:FF:3C:AB X509v3 Authority Key Identifier: keyid:28:AC:97:D9:98:7E:78:DB:EE:9D:CB:9F:03:73:5C:28:3B:CE:18:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157BC3/708E6F68926111EDA5204E64C4F9AE02/KKyX2Zh-eNvuncufA3NcKDvOGGI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KKyX2Zh-eNvuncufA3NcKDvOGGI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157BC3/708E6F68926111EDA5204E64C4F9AE02/KKyX2Zh-eNvuncufA3NcKDvOGGI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:dd:d6:3c:50:54:e6:66:0d:da:da:29:7b:63:df:07:9a:41: 10:aa:92:a7:c6:a6:c4:df:78:04:b1:36:59:dd:aa:65:a8:b1: 13:f2:b6:5a:4b:fc:fc:7c:09:5b:fd:97:ef:bd:f1:6c:b2:1c: c9:95:f8:07:e0:c9:22:64:3b:b0:01:07:2a:72:d9:94:1a:55: 5f:ac:f0:a1:16:27:2a:75:ab:a2:64:fd:5c:0d:5a:0e:83:21: bb:8c:e6:5c:82:ba:e5:e2:0e:70:69:f1:41:ac:f7:60:d3:eb: 71:05:87:e4:de:51:dd:32:82:2d:5f:fd:85:5d:31:dd:2e:4a: 1b:bf:7a:30:b9:87:b3:bf:3c:96:98:f4:43:8f:b8:66:69:69: 2d:f1:0d:a9:57:58:39:21:35:e8:72:31:d8:e6:65:39:82:b6: 9e:74:6a:89:91:28:ff:bb:5c:65:7d:44:ee:99:f8:5a:9d:f6: 8a:37:80:04:f2:b0:d2:a2:99:4a:77:db:d6:b9:75:2b:f0:6a: d8:a1:a2:d8:f7:13:17:23:bf:f6:1e:f1:94:2d:ad:45:8e:ea: dc:bb:de:25:4b:14:92:c5:18:91:02:df:34:66:60:2d:7f:c6: 3e:67:bd:c0:0f:65:0a:ad:f3:56:50:02:64:bb:ad:26:a3:9c: 11:c5:a6:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdCQzMxMTAvBgNVBAUTKDI4QUM5N0Q5OTg3RTc4REJFRTlEQ0I5RjAzNzM1QzI4 M0JDRTE4NjIwHhcNMjUwNjE1MDIxNTAxWhcNMjUwNjIyMDIxNTAxWjAYMRYwFAYD VQQDEw02ODRlMmNhNS1kMWM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9AJpeJmE94aHtAGfyhGTURb5bfMHAJLnRGn3R2FJCnbSt05IqXHsr5wSWrgS aRaNFQhYvINMdAEbpIUOuXDx8mv3I/L9bSrjNWb+mlDHUQGkEvplpw2qQdotGNpi XWnL0WUy7Bmd31bXkpnEHCDjmA6j7oBfJSlWtVRvGRNCikiGdqknUB9eoOsLcmMi kunlLI9wS/sPCDcbBNLFnDPDwgboKImUt3Wwk92wrQnNpBu2SjGDWi8rhslv6SnK 3jgcBlLAQPnJVK3qEvVKE6WksKb60mVj/is/UxCzO9JRvabFun9eiRsm8MdxeL4o H+xmZfGdDK18M1oQoi7COOZyoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDDad2lV bql3fj53MPlX4rxw/zyrMB8GA1UdIwQYMBaAFCisl9mYfnjb7p3LnwNzXCg7zhhi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0JDMy83MDhFNkY2ODky NjExMUVEQTUyMDRFNjRDNEY5QUUwMi9LS3lYMlpoLWVOdnVuY3VmQTNOY0tEdk9H R0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tLeVgyWmgtZU52dW5jdWZBM05jS0R2T0dHSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0JDMy83MDhFNkY2ODkyNjExMUVEQTUyMDRFNjRDNEY5QUUwMi9LS3lYMlpoLWVO dnVuY3VmQTNOY0tEdk9HR0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/3dY8UFTmZg3a2il7Y98HmkEQqpKnxqbE33gEsTZZ3aplqLET8rZa S/z8fAlb/ZfvvfFsshzJlfgH4MkiZDuwAQcqctmUGlVfrPChFicqdauiZP1cDVoO gyG7jOZcgrrl4g5wafFBrPdg0+txBYfk3lHdMoItX/2FXTHdLkobv3owuYezvzyW mPRDj7hmaWkt8Q2pV1g5ITXocjHY5mU5graedGqJkSj/u1xlfUTumfhanfaKN4AE 8rDSoplKd9vWuXUr8GrYoaLY9xMXI7/2HvGULa1Fjurcu94lSxSSxRiRAt80ZmAt f8Y+Z73AD2UKrfNWUAJku60mo5wRxab1 -----END CERTIFICATE-----Generated at Sun Jun 15 08:32:44 2025 by rpki-client