$ rpki-client -vvf rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.mft File: KJYksuALd009OQ9aCtELW8NfVtg.mft (raw, json) Hash identifier: /6h7vOejivRd0dH2/xRWSyVbKxuieY46ZwXgMttFLSQ= Subject key identifier: E3:84:BB:95:03:2B:01:93:AE:BE:2E:10:94:DB:D2:24:E2:55:09:4F Authority key identifier: 28:96:24:B2:E0:0B:77:4D:3D:39:0F:5A:0A:D1:0B:5B:C3:5F:56:D8 Certificate issuer: /CN=A918748C/serialNumber=289624B2E00B774D3D390F5A0AD10B5BC35F56D8 Certificate serial: 0A88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJYksuALd009OQ9aCtELW8NfVtg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.mft Manifest number: 0A6C Signing time: Thu 12 Jun 2025 19:27:32 +0000 Manifest this update: Thu 12 Jun 2025 19:27:32 +0000 Manifest next update: Thu 19 Jun 2025 19:27:32 +0000 Files and hashes: 1: KJYksuALd009OQ9aCtELW8NfVtg.crl (hash: 75vk1CMh+EM42MLPVkxSftocTcPvYxPosRwMzpEQXf4=) 2: DCE066622C7811EC97C8D979C4F9AE02.roa (hash: 0+FYOd7cEHhPhl5/EXB24cdR/+U1VPktvi4vWKzamkI=) 3: DE137C362C7811EC97C8D979C4F9AE02.roa (hash: ORPxj2tqrIsIpHEdVkZPm4n/aNb1Vqu1v7KB5t0Gcw8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.crl rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJYksuALd009OQ9aCtELW8NfVtg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 19:27:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2696 (0xa88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918748C, serialNumber=289624B2E00B774D3D390F5A0AD10B5BC35F56D8 Validity Not Before: Jun 12 19:27:32 2025 GMT Not After : Jun 19 19:27:32 2025 GMT Subject: CN=684b2a24-08a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:ae:6d:7d:47:1f:e4:9d:7a:23:40:38:4f:f7: 20:2f:61:8a:51:44:02:70:ea:d4:e8:c6:37:f4:73: cb:c5:1d:c5:3f:9a:2a:36:76:08:65:b7:06:7d:19: 9f:f2:ad:48:89:35:a5:71:54:8a:84:86:e0:30:78: 52:cf:88:83:b0:92:20:18:a4:92:da:96:7d:dc:3e: 44:cc:f7:de:b5:8b:81:d2:ea:d5:61:ab:55:8c:54: 7a:cf:9b:1e:0e:b8:6d:94:d7:41:41:5e:ea:7e:16: 5e:9e:2d:36:f9:cd:3c:d0:a8:dd:07:29:75:83:d4: 0f:70:3b:37:c7:9b:2d:88:74:3b:2b:43:30:4d:6a: 90:5d:5a:19:8e:1f:06:a3:4c:47:fb:9e:91:bc:fd: 8e:86:1d:a9:5d:b3:6c:c6:8a:d6:24:f1:b3:14:ff: f0:5c:1b:b5:49:af:43:d1:b4:90:07:c0:ba:9e:87: 86:ab:f2:cb:96:b5:8c:8a:ba:9d:de:f1:07:02:83: 40:df:87:48:c0:bd:77:d1:a9:33:67:bb:4e:cc:f5: 17:0c:e2:fa:e8:da:c5:44:c9:71:36:f8:9f:4c:f5: 3f:49:f1:82:6d:4b:fa:06:e0:e9:7c:de:bf:37:1e: b6:18:05:46:b6:78:42:52:6d:80:5f:1a:45:da:f0: 63:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:84:BB:95:03:2B:01:93:AE:BE:2E:10:94:DB:D2:24:E2:55:09:4F X509v3 Authority Key Identifier: keyid:28:96:24:B2:E0:0B:77:4D:3D:39:0F:5A:0A:D1:0B:5B:C3:5F:56:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJYksuALd009OQ9aCtELW8NfVtg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:74:da:4f:a1:82:3b:37:5c:f2:ba:eb:30:fe:4a:8a:b2:fc: 4b:32:2d:88:3f:95:0a:65:cc:6a:9f:da:16:a8:2c:91:2a:11: 37:a9:04:81:33:4f:7a:1d:ab:9f:a0:cc:8c:63:90:5d:24:c3: 31:e8:13:ca:7a:4a:f7:f2:28:d5:a8:ee:f2:1c:a8:ce:9d:66: 2d:f1:7a:9c:bf:a2:34:78:87:1f:15:8b:f7:41:76:98:de:f3: 24:b7:a7:a2:19:a2:15:24:aa:83:07:6c:32:57:72:43:cc:ed: 6e:c4:93:e5:2c:75:af:ed:99:a4:16:6a:5e:5a:bc:25:83:46: 5c:58:99:1f:1d:9d:3f:b7:12:0c:94:1e:bf:3d:dd:70:1d:92: 18:90:94:1e:4a:91:8f:57:9e:e0:4d:c9:b0:c6:1e:10:37:fc: fe:a1:77:19:40:86:b5:4f:4b:1b:d7:ed:6a:e8:60:f3:84:39: 9d:29:6a:49:d1:53:9f:d7:ba:19:66:d9:e3:84:40:b4:18:d4: 4f:2e:1a:d6:e3:03:a2:bb:8b:d4:b3:29:f4:37:04:e0:2e:1e: 2d:bc:da:99:f8:fe:33:91:81:65:b1:48:96:39:ea:92:58:10: d1:4d:1f:d4:82:de:b3:21:51:31:89:1f:fd:67:d0:05:06:19: 1e:93:ee:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCogwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc0OEMxMTAvBgNVBAUTKDI4OTYyNEIyRTAwQjc3NEQzRDM5MEY1QTBBRDEwQjVC QzM1RjU2RDgwHhcNMjUwNjEyMTkyNzMyWhcNMjUwNjE5MTkyNzMyWjAYMRYwFAYD VQQDEw02ODRiMmEyNC0wOGE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3K5tfUcf5J16I0A4T/cgL2GKUUQCcOrU6MY39HPLxR3FP5oqNnYIZbcGfRmf 8q1IiTWlcVSKhIbgMHhSz4iDsJIgGKSS2pZ93D5EzPfetYuB0urVYatVjFR6z5se DrhtlNdBQV7qfhZeni02+c080KjdByl1g9QPcDs3x5stiHQ7K0MwTWqQXVoZjh8G o0xH+56RvP2Ohh2pXbNsxorWJPGzFP/wXBu1Sa9D0bSQB8C6noeGq/LLlrWMirqd 3vEHAoNA34dIwL130akzZ7tOzPUXDOL66NrFRMlxNvifTPU/SfGCbUv6BuDpfN6/ Nx62GAVGtnhCUm2AXxpF2vBjuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOOEu5UD KwGTrr4uEJTb0iTiVQlPMB8GA1UdIwQYMBaAFCiWJLLgC3dNPTkPWgrRC1vDX1bY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzQ4Qy9BNzREQTc3MjY0 QjQxMUVBQjM4QTM0MERDNEY5QUUwMi9LSllrc3VBTGQwMDlPUTlhQ3RFTFc4TmZW dGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tKWWtzdUFMZDAwOU9ROWFDdEVMVzhOZlZ0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzQ4Qy9BNzREQTc3MjY0QjQxMUVBQjM4QTM0MERDNEY5QUUwMi9LSllrc3VBTGQw MDlPUTlhQ3RFTFc4TmZWdGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxdNpPoYI7N1zyuusw/kqKsvxLMi2IP5UKZcxqn9oWqCyRKhE3qQSB M096HaufoMyMY5BdJMMx6BPKekr38ijVqO7yHKjOnWYt8Xqcv6I0eIcfFYv3QXaY 3vMkt6eiGaIVJKqDB2wyV3JDzO1uxJPlLHWv7ZmkFmpeWrwlg0ZcWJkfHZ0/txIM lB6/Pd1wHZIYkJQeSpGPV57gTcmwxh4QN/z+oXcZQIa1T0sb1+1q6GDzhDmdKWpJ 0VOf17oZZtnjhEC0GNRPLhrW4wOiu4vUsyn0NwTgLh4tvNqZ+P4zkYFlsUiWOeqS WBDRTR/Ugt6zIVExiR/9Z9AFBhkek+7K -----END CERTIFICATE-----Generated at Sat Jun 14 18:57:34 2025 by rpki-client