$ rpki-client -vvf rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft File: KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft (raw, json) Hash identifier: 0rTQTvxt2p/wI8dsDCTgHBHSCHW0f++UGMlnXlER6Tc= Subject key identifier: FB:6D:95:5F:EB:66:AA:84:13:5B:7E:F1:07:12:D5:D7:23:22:2B:A6 Authority key identifier: 28:75:29:DC:20:CA:0E:CE:95:A7:A5:56:E1:0B:CD:FD:72:37:D8:D8 Certificate issuer: /CN=A91602ED/serialNumber=287529DC20CA0ECE95A7A556E10BCDFD7237D8D8 Certificate serial: 067E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft Manifest number: 0678 Signing time: Thu 12 Jun 2025 21:58:34 +0000 Manifest this update: Thu 12 Jun 2025 21:58:34 +0000 Manifest next update: Thu 19 Jun 2025 21:58:34 +0000 Files and hashes: 1: KHUp3CDKDs6Vp6VW4QvN_XI32Ng.crl (hash: Y0i1OM1QKcG5pj8GLe381lOJrFXKV32LE54OC1hKHWY=) 2: 7883418E943A11EBB6706530C4F9AE02.roa (hash: TnZM67noo4lbQHfXpAgCtw+JAFkneMpGmuhyQRw2ydg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.crl rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 21:58:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1662 (0x67e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91602ED, serialNumber=287529DC20CA0ECE95A7A556E10BCDFD7237D8D8 Validity Not Before: Jun 12 21:58:34 2025 GMT Not After : Jun 19 21:58:34 2025 GMT Subject: CN=684b4d8a-7520 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:5c:fd:df:03:76:66:68:79:d5:dd:52:8a:3f: ee:b8:09:8d:b3:7a:ce:20:2f:4e:25:6a:89:20:ce: f4:6c:b0:d3:55:3b:96:f5:6e:b6:6a:76:5b:d8:ec: c8:2c:8d:2c:66:5f:1c:c0:e3:05:e7:61:d3:61:91: 3a:b7:96:b1:a3:5f:84:d3:12:27:f9:6d:69:be:31: 0f:0a:2a:a1:01:2e:04:de:87:ec:b1:8c:4d:ee:95: 7e:5b:f2:f2:d6:7e:a6:bd:1e:00:3c:82:84:2c:41: fe:bd:78:9a:91:bc:24:75:5f:30:82:2d:7c:25:a1: 3e:3c:08:d4:28:b3:fd:78:88:49:6c:aa:67:92:c4: 43:d9:41:76:ea:32:5d:39:8f:a2:13:f7:53:11:83: 48:ae:57:36:6c:49:f3:fa:d2:e6:63:c4:f1:d8:70: 20:15:d4:ab:a4:88:5a:f9:3e:fa:0b:34:61:52:dc: a7:00:37:17:22:67:cf:a4:ca:ea:90:b4:65:ba:4a: 3f:74:f3:65:ca:d5:3d:35:15:f9:46:16:7b:9e:0b: 29:08:7a:3a:02:68:e8:25:b4:09:2e:1d:bf:cb:c5: 65:42:97:20:87:bb:30:5c:12:96:84:be:dc:f4:52: 36:f1:c5:23:8f:db:89:0b:77:57:c1:51:62:56:80: 9c:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:6D:95:5F:EB:66:AA:84:13:5B:7E:F1:07:12:D5:D7:23:22:2B:A6 X509v3 Authority Key Identifier: keyid:28:75:29:DC:20:CA:0E:CE:95:A7:A5:56:E1:0B:CD:FD:72:37:D8:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:32:15:22:c4:3f:32:46:34:fa:b6:6e:f4:5d:84:d2:55:e9: f6:b2:9b:18:ae:6b:9b:eb:d5:38:db:c8:e7:f7:bb:55:b2:dd: 00:a2:84:1c:9c:af:a3:60:e8:17:b1:25:5a:53:04:16:5c:02: 4f:39:47:03:53:13:15:14:00:c6:b9:67:0a:e8:43:9a:64:08: 73:66:b8:b2:58:bc:95:24:14:7d:d8:a4:a4:d6:64:3d:a4:fa: 17:5a:f6:b5:e0:34:30:78:9b:c6:02:8c:8a:da:33:63:4e:71: 34:9f:f0:3c:c4:42:24:14:fc:85:29:59:45:65:8e:19:32:ad: c3:34:b8:7d:1e:0c:a6:d8:4b:d0:f1:c8:87:9f:d8:c2:e9:fe: 67:42:bd:12:22:cc:cf:92:22:7b:7f:a4:b8:50:42:42:39:4f: e9:5a:c3:1f:3c:ed:fd:3b:2c:17:f4:8d:a4:c4:d7:01:60:5e: 46:c8:8c:53:4d:05:b0:86:57:ad:13:69:10:2e:69:19:b2:05: 01:e8:d1:60:3b:7a:65:d7:16:ab:b6:5c:02:a5:36:0a:f9:6f: ac:4a:d5:9f:61:3f:e7:a5:d8:89:58:a1:b9:dc:23:df:34:a1: 9b:3f:a4:ae:10:bc:b2:d5:20:da:f1:e0:0a:cb:06:c3:fe:8c: d9:3a:b9:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBn4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjAyRUQxMTAvBgNVBAUTKDI4NzUyOURDMjBDQTBFQ0U5NUE3QTU1NkUxMEJDREZE NzIzN0Q4RDgwHhcNMjUwNjEyMjE1ODM0WhcNMjUwNjE5MjE1ODM0WjAYMRYwFAYD VQQDEw02ODRiNGQ4YS03NTIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA41z93wN2Zmh51d1Sij/uuAmNs3rOIC9OJWqJIM70bLDTVTuW9W62anZb2OzI LI0sZl8cwOMF52HTYZE6t5axo1+E0xIn+W1pvjEPCiqhAS4E3ofssYxN7pV+W/Ly 1n6mvR4APIKELEH+vXiakbwkdV8wgi18JaE+PAjUKLP9eIhJbKpnksRD2UF26jJd OY+iE/dTEYNIrlc2bEnz+tLmY8Tx2HAgFdSrpIha+T76CzRhUtynADcXImfPpMrq kLRluko/dPNlytU9NRX5RhZ7ngspCHo6AmjoJbQJLh2/y8VlQpcgh7swXBKWhL7c 9FI28cUjj9uJC3dXwVFiVoCc7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPttlV/r ZqqEE1t+8QcS1dcjIiumMB8GA1UdIwQYMBaAFCh1Kdwgyg7OlaelVuELzf1yN9jY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDJFRC8xNjdCQzYzQzdD MUIxMUVCOUYzRjNDNjVDNEY5QUUwMi9LSFVwM0NES0RzNlZwNlZXNFF2Tl9YSTMy TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tIVXAzQ0RLRHM2VnA2Vlc0UXZOX1hJMzJOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDJFRC8xNjdCQzYzQzdDMUIxMUVCOUYzRjNDNjVDNEY5QUUwMi9LSFVwM0NES0Rz NlZwNlZXNFF2Tl9YSTMyTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRMhUixD8yRjT6tm70XYTSVen2spsYrmub69U428jn97tVst0AooQc nK+jYOgXsSVaUwQWXAJPOUcDUxMVFADGuWcK6EOaZAhzZriyWLyVJBR92KSk1mQ9 pPoXWva14DQweJvGAoyK2jNjTnE0n/A8xEIkFPyFKVlFZY4ZMq3DNLh9Hgym2EvQ 8ciHn9jC6f5nQr0SIszPkiJ7f6S4UEJCOU/pWsMfPO39OywX9I2kxNcBYF5GyIxT TQWwhletE2kQLmkZsgUB6NFgO3pl1xartlwCpTYK+W+sStWfYT/npdiJWKG53CPf NKGbP6SuELyy1SDa8eAKywbD/ozZOrmy -----END CERTIFICATE-----Generated at Sat Jun 14 19:01:45 2025 by rpki-client