$ rpki-client -vvf rpki.apnic.net/member_repository/A91790EC/24B8BFE03E5811EF996DA321C4F9AE02/KTzh3tGmQEsAssDM-z886vshpQg.mft File: KTzh3tGmQEsAssDM-z886vshpQg.mft (raw, json) Hash identifier: fRjwvfnA1TRTCOnyhHohBnMvWLS58hCgS/bIWV1hSaw= Subject key identifier: A9:A5:8A:6E:A6:12:E5:C8:CF:96:EF:E9:9C:69:89:06:44:F5:3C:3F Authority key identifier: 29:3C:E1:DE:D1:A6:40:4B:00:B2:C0:CC:FB:3F:3C:EA:FB:21:A5:08 Certificate issuer: /CN=A91790EC/serialNumber=293CE1DED1A6404B00B2C0CCFB3F3CEAFB21A508 Certificate serial: B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTzh3tGmQEsAssDM-z886vshpQg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91790EC/24B8BFE03E5811EF996DA321C4F9AE02/KTzh3tGmQEsAssDM-z886vshpQg.mft Manifest number: AF Signing time: Fri 13 Jun 2025 04:59:24 +0000 Manifest this update: Fri 13 Jun 2025 04:59:23 +0000 Manifest next update: Fri 20 Jun 2025 04:59:23 +0000 Files and hashes: 1: KTzh3tGmQEsAssDM-z886vshpQg.crl (hash: cTaOFLBzLt3urIKT3mjDwDz6Ocga/JZG2AKtCkTlbmU=) 2: 81AA7D1A3E5811EFAE13B943C4F9AE02.roa (hash: WIZmU+L0O9RcMZGa4g5/Y6rLFYKaR2VClhlEkEMS/7E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91790EC/24B8BFE03E5811EF996DA321C4F9AE02/KTzh3tGmQEsAssDM-z886vshpQg.crl rsync://rpki.apnic.net/member_repository/A91790EC/24B8BFE03E5811EF996DA321C4F9AE02/KTzh3tGmQEsAssDM-z886vshpQg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTzh3tGmQEsAssDM-z886vshpQg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 04:59:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 177 (0xb1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91790EC, serialNumber=293CE1DED1A6404B00B2C0CCFB3F3CEAFB21A508 Validity Not Before: Jun 13 04:59:23 2025 GMT Not After : Jun 20 04:59:23 2025 GMT Subject: CN=684bb02b-222e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c4:ec:96:fb:b8:6d:52:8c:89:51:ef:09:71: 4b:18:fa:f3:65:6f:71:b3:4c:d6:53:4b:c3:55:9c: 54:99:ae:33:fb:71:d1:0c:c0:46:70:6a:62:d6:31: 23:9b:03:0c:f0:34:fc:41:74:79:49:c2:22:1e:a0: 2c:b0:23:26:6f:c7:a4:63:2e:83:ee:c2:f5:e2:ef: 57:0f:d4:06:a5:05:00:21:54:e3:42:2a:a0:e8:42: 8f:8d:dc:5d:ad:9b:7e:d3:05:08:d1:05:38:2f:e4: 05:ae:39:76:68:c7:17:da:87:68:b8:cc:08:93:61: ab:68:f3:1f:de:5d:81:bd:ab:d6:43:cb:cc:8e:cc: 16:2b:30:27:97:fc:ff:3b:2c:61:10:3b:58:6f:48: 0e:38:c5:22:85:7e:cb:55:21:b8:92:7b:f6:5b:2a: 7a:0a:4d:c6:fd:13:fd:10:6a:82:20:ed:49:cd:25: 6e:92:23:a9:2e:eb:57:7b:88:01:ae:56:b8:1e:5c: a6:0b:b6:26:f5:30:af:d9:cd:68:9c:27:fd:a2:59: 71:05:e8:d0:64:13:25:63:2a:b1:3d:20:36:d7:ea: 09:58:e9:58:f3:20:69:75:71:75:ac:2b:ec:e6:5f: e9:c2:2c:75:eb:a5:da:df:ea:a2:b8:14:1c:47:9a: e3:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:A5:8A:6E:A6:12:E5:C8:CF:96:EF:E9:9C:69:89:06:44:F5:3C:3F X509v3 Authority Key Identifier: keyid:29:3C:E1:DE:D1:A6:40:4B:00:B2:C0:CC:FB:3F:3C:EA:FB:21:A5:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91790EC/24B8BFE03E5811EF996DA321C4F9AE02/KTzh3tGmQEsAssDM-z886vshpQg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTzh3tGmQEsAssDM-z886vshpQg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91790EC/24B8BFE03E5811EF996DA321C4F9AE02/KTzh3tGmQEsAssDM-z886vshpQg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:29:da:2a:a6:76:d6:83:6e:b3:d6:be:2b:ce:c1:00:b2:cd: 52:fc:2b:b0:30:ca:62:2c:c6:38:45:e2:f0:39:7e:49:ba:98: b6:89:6b:c5:c0:e1:f5:7e:08:6b:a4:97:58:24:68:8a:12:f4: 12:bb:db:f3:00:b6:28:8b:8b:0a:8c:3d:37:96:5d:9e:0d:61: 0e:93:9a:64:7c:f4:d8:7e:b7:ba:29:9a:0e:41:e5:0f:d7:b6: a1:33:c8:cd:b4:e3:84:8e:19:71:9e:5e:73:4c:a6:1b:ef:29: d8:02:9b:73:15:61:2b:b8:c3:c8:5d:7e:6b:e3:0b:c3:f5:0d: 05:27:61:14:e1:d9:a2:31:a5:b9:d0:c4:97:f6:9f:13:e0:8e: 9e:03:db:00:6a:85:bc:fc:1e:ba:31:f1:4e:0f:59:4a:74:e3: 01:ce:3b:0b:26:24:39:b6:e6:af:4f:93:70:fc:88:68:4c:b6: 9a:10:9c:80:02:d3:df:2c:80:fc:31:dc:a1:b7:4b:ca:71:3a: 3d:a3:8f:e5:8d:f7:53:06:ae:3f:51:3b:d5:65:0d:9b:f3:58: ac:c9:aa:5e:5a:c0:86:e3:90:5b:38:45:fd:a7:5e:88:8d:7c: 41:80:c0:c6:5f:6b:60:a2:84:44:c6:45:4c:95:61:b7:9a:23: 0f:e9:13:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzkwRUMxMTAvBgNVBAUTKDI5M0NFMURFRDFBNjQwNEIwMEIyQzBDQ0ZCM0YzQ0VB RkIyMUE1MDgwHhcNMjUwNjEzMDQ1OTIzWhcNMjUwNjIwMDQ1OTIzWjAYMRYwFAYD VQQDEw02ODRiYjAyYi0yMjJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvcTslvu4bVKMiVHvCXFLGPrzZW9xs0zWU0vDVZxUma4z+3HRDMBGcGpi1jEj mwMM8DT8QXR5ScIiHqAssCMmb8ekYy6D7sL14u9XD9QGpQUAIVTjQiqg6EKPjdxd rZt+0wUI0QU4L+QFrjl2aMcX2odouMwIk2GraPMf3l2BvavWQ8vMjswWKzAnl/z/ OyxhEDtYb0gOOMUihX7LVSG4knv2Wyp6Ck3G/RP9EGqCIO1JzSVukiOpLutXe4gB rla4HlymC7Ym9TCv2c1onCf9ollxBejQZBMlYyqxPSA21+oJWOlY8yBpdXF1rCvs 5l/pwix166Xa3+qiuBQcR5rjiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKmlim6m EuXIz5bv6ZxpiQZE9Tw/MB8GA1UdIwQYMBaAFCk84d7RpkBLALLAzPs/POr7IaUI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTBFQy8yNEI4QkZFMDNF NTgxMUVGOTk2REEzMjFDNEY5QUUwMi9LVHpoM3RHbVFFc0Fzc0RNLXo4ODZ2c2hw UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tUemgzdEdtUUVzQXNzRE0tejg4NnZzaHBRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTBFQy8yNEI4QkZFMDNFNTgxMUVGOTk2REEzMjFDNEY5QUUwMi9LVHpoM3RHbVFF c0Fzc0RNLXo4ODZ2c2hwUWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcKdoqpnbWg26z1r4rzsEAss1S/CuwMMpiLMY4ReLwOX5Jupi2iWvF wOH1fghrpJdYJGiKEvQSu9vzALYoi4sKjD03ll2eDWEOk5pkfPTYfre6KZoOQeUP 17ahM8jNtOOEjhlxnl5zTKYb7ynYAptzFWEruMPIXX5r4wvD9Q0FJ2EU4dmiMaW5 0MSX9p8T4I6eA9sAaoW8/B66MfFOD1lKdOMBzjsLJiQ5tuavT5Nw/IhoTLaaEJyA AtPfLID8Mdyht0vKcTo9o4/ljfdTBq4/UTvVZQ2b81isyapeWsCG45BbOEX9p16I jXxBgMDGX2tgooRExkVMlWG3miMP6RN+ -----END CERTIFICATE-----Generated at Sat Jun 14 19:36:40 2025 by rpki-client