$ rpki-client -vvf rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft File: _-KgNynzLTIiepnJJRWMgspUuVc.mft (raw, json) Hash identifier: Ihu11MZo0lyYux4V4gs9DgENFpwHeXtcU1APaYeS2CA= Subject key identifier: 15:2F:7E:D1:B7:BC:CF:17:BE:CF:69:76:67:62:A5:6E:C6:66:EE:F3 Authority key identifier: FF:E2:A0:37:29:F3:2D:32:22:7A:99:C9:25:15:8C:82:CA:54:B9:57 Certificate issuer: /CN=A917225D/serialNumber=FFE2A03729F32D32227A99C925158C82CA54B957 Certificate serial: 34B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-KgNynzLTIiepnJJRWMgspUuVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft Manifest number: 34A8 Signing time: Wed 18 Jun 2025 14:23:13 +0000 Manifest this update: Wed 18 Jun 2025 14:23:13 +0000 Manifest next update: Wed 25 Jun 2025 14:23:13 +0000 Files and hashes: 1: _-KgNynzLTIiepnJJRWMgspUuVc.crl (hash: lY0Xp9vFGh7oHJ4BWH9SkQfhZbOT8zHgeVmvVsHHwjI=) 2: A0121BD4871711EA924C6626C4F9AE02.roa (hash: nOTO05trzCD6uEEv4FInP/xVHgXMSyk7YCzU2yFeaPI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.crl rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-KgNynzLTIiepnJJRWMgspUuVc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 14:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13497 (0x34b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917225D, serialNumber=FFE2A03729F32D32227A99C925158C82CA54B957 Validity Not Before: Jun 18 14:23:13 2025 GMT Not After : Jun 25 14:23:13 2025 GMT Subject: CN=6852cbd1-cb6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:71:cb:34:e9:c8:af:60:e0:cd:96:d8:ca:67: 66:bc:54:b4:52:b9:c3:44:79:bb:4c:5e:c6:10:d7: 96:5e:5d:a1:c2:aa:6e:2c:de:2e:b5:0e:1c:8e:33: 43:ed:5a:2d:dc:73:14:f3:c0:1f:62:51:67:02:97: d3:1c:44:9b:ff:0b:16:ae:98:5d:08:12:f4:f8:ad: ec:48:16:26:93:2b:92:64:66:b9:60:23:8c:31:02: 05:fc:b2:a4:1d:c5:e5:3f:d1:db:49:34:e2:79:cb: 39:c7:fb:f1:bf:25:e6:a0:90:8f:90:f2:84:46:e2: a0:85:df:a2:41:d5:3b:0f:eb:b4:f2:9b:2d:10:95: 0b:1d:da:ac:8c:d4:ec:e3:ac:33:5a:f7:5e:42:c2: 99:70:c2:ef:e0:49:22:93:62:37:c7:d2:42:4b:70: bf:e7:51:07:49:c4:f7:04:43:33:83:e0:b0:00:cb: b3:9e:93:11:ac:7d:4f:05:53:43:0a:3e:3b:95:32: 13:e9:fd:59:8b:fc:44:28:c6:f0:a3:8c:bf:99:3e: 8d:44:9e:2f:54:72:cf:67:23:54:be:69:86:b1:4a: 69:85:90:e1:26:64:75:f7:93:01:e2:56:a3:fb:73: d3:a9:5b:1e:16:69:84:6c:7e:40:a0:fa:f1:03:02: be:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:2F:7E:D1:B7:BC:CF:17:BE:CF:69:76:67:62:A5:6E:C6:66:EE:F3 X509v3 Authority Key Identifier: keyid:FF:E2:A0:37:29:F3:2D:32:22:7A:99:C9:25:15:8C:82:CA:54:B9:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-KgNynzLTIiepnJJRWMgspUuVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:7a:84:73:a8:50:c5:bc:c9:c7:e1:85:47:19:af:5c:e7:8c: 33:45:72:ff:f8:53:85:5e:2c:82:29:6a:da:53:62:aa:3c:65: 6e:ee:29:4c:09:f0:09:77:24:14:72:31:0f:d2:38:27:d2:f1: 34:f0:b6:82:67:30:9a:8f:d4:e7:58:9a:e5:0e:02:a4:59:cf: 64:17:99:71:36:11:31:75:6a:a7:15:bf:15:23:5e:a6:53:9a: 63:e6:de:35:40:73:fc:cf:38:01:fa:81:50:47:56:b0:76:eb: 32:bd:8b:a7:6d:b0:c5:73:1e:f9:44:f2:2e:2a:2f:63:03:e1: 91:5e:0b:37:83:8f:7d:48:b8:ee:d4:70:22:f7:c2:9a:81:2d: f5:cd:a6:4c:1c:57:50:d4:99:d7:2f:ce:85:bf:a9:10:6b:45: c3:fc:c1:80:9c:81:30:9e:6b:ad:7c:40:09:6a:06:25:4b:1b: de:39:2a:9c:5e:82:85:67:c6:34:fe:2c:72:59:76:8a:4a:3e: ea:a7:b8:3a:0a:95:3b:60:ab:84:d1:89:ec:4b:56:fa:9a:f4: 75:19:c7:1a:62:9b:b3:ab:d7:1c:10:85:5e:ac:0d:57:67:c2: 00:1a:b6:69:82:16:f2:c8:a3:ef:2f:5d:d9:09:e7:d9:ce:8b: 66:45:d3:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzIyNUQxMTAvBgNVBAUTKEZGRTJBMDM3MjlGMzJEMzIyMjdBOTlDOTI1MTU4Qzgy Q0E1NEI5NTcwHhcNMjUwNjE4MTQyMzEzWhcNMjUwNjI1MTQyMzEzWjAYMRYwFAYD VQQDEw02ODUyY2JkMS1jYjZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAunHLNOnIr2DgzZbYymdmvFS0UrnDRHm7TF7GENeWXl2hwqpuLN4utQ4cjjND 7Vot3HMU88AfYlFnApfTHESb/wsWrphdCBL0+K3sSBYmkyuSZGa5YCOMMQIF/LKk HcXlP9HbSTTiecs5x/vxvyXmoJCPkPKERuKghd+iQdU7D+u08pstEJULHdqsjNTs 46wzWvdeQsKZcMLv4Ekik2I3x9JCS3C/51EHScT3BEMzg+CwAMuznpMRrH1PBVND Cj47lTIT6f1Zi/xEKMbwo4y/mT6NRJ4vVHLPZyNUvmmGsUpphZDhJmR195MB4laj +3PTqVseFmmEbH5AoPrxAwK+1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBUvftG3 vM8Xvs9pdmdipW7GZu7zMB8GA1UdIwQYMBaAFP/ioDcp8y0yInqZySUVjILKVLlX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjI1RC8xRjU1MDgzMDFE ODQxMUUyOTE3QkQwRDkwOEIwMkNEMi9fLUtnTnluekxUSWllcG5KSlJXTWdzcFV1 VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18tS2dOeW56TFRJaWVwbkpKUldNZ3NwVXVWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjI1RC8xRjU1MDgzMDFEODQxMUUyOTE3QkQwRDkwOEIwMkNEMi9fLUtnTnluekxU SWllcG5KSlJXTWdzcFV1VmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGeoRzqFDFvMnH4YVHGa9c54wzRXL/+FOFXiyCKWraU2KqPGVu7ilM CfAJdyQUcjEP0jgn0vE08LaCZzCaj9TnWJrlDgKkWc9kF5lxNhExdWqnFb8VI16m U5pj5t41QHP8zzgB+oFQR1awdusyvYunbbDFcx75RPIuKi9jA+GRXgs3g499SLju 1HAi98KagS31zaZMHFdQ1JnXL86Fv6kQa0XD/MGAnIEwnmutfEAJagYlSxveOSqc XoKFZ8Y0/ixyWXaKSj7qp7g6CpU7YKuE0YnsS1b6mvR1GccaYpuzq9ccEIVerA1X Z8IAGrZpghbyyKPvL13ZCefZzotmRdMX -----END CERTIFICATE-----Generated at Wed Jun 18 16:15:48 2025 by rpki-client