$ rpki-client -vvf rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft File: KmvwVK0j6tLbOVMbZGcmypRaxJI.mft (raw, json) Hash identifier: V45kj2E8M4VcM4eLoXOqXomn/OjZY7vF+CAxNaykojw= Subject key identifier: AD:41:80:B0:6C:10:92:DD:FB:41:CE:34:07:37:42:B0:8C:34:8B:D7 Authority key identifier: 2A:6B:F0:54:AD:23:EA:D2:DB:39:53:1B:64:67:26:CA:94:5A:C4:92 Certificate issuer: /CN=A918AB7E/serialNumber=2A6BF054AD23EAD2DB39531B646726CA945AC492 Certificate serial: 2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft Manifest number: 2C Signing time: Sun 15 Jun 2025 06:49:39 +0000 Manifest this update: Sun 15 Jun 2025 06:49:39 +0000 Manifest next update: Sun 22 Jun 2025 06:49:39 +0000 Files and hashes: 1: KmvwVK0j6tLbOVMbZGcmypRaxJI.crl (hash: 6IXhDA5HA25tMBhhjged81B1grORORidcC+1RHwYanA=) 2: 3CF5A86C088211F0BB90C23EC4F9AE02.roa (hash: WjhNkxKHghzjWbpSoIkFccSDxcFZFh5y2Re0ypkmeM8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.crl rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45 (0x2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918AB7E, serialNumber=2A6BF054AD23EAD2DB39531B646726CA945AC492 Validity Not Before: Jun 15 06:49:39 2025 GMT Not After : Jun 22 06:49:39 2025 GMT Subject: CN=684e6d03-6227 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:e2:a1:fe:cb:9a:d6:32:51:d6:5d:07:52:27: 03:df:15:05:a6:80:ae:55:d0:a9:1e:7c:33:5f:dc: 68:5a:9c:24:94:e3:cc:e6:c0:c3:b7:3a:b4:7f:a8: bf:3c:7e:81:47:e4:54:b4:3f:d6:57:d8:e9:c1:fc: b7:be:84:e5:ae:02:47:96:94:4f:dd:57:10:f4:bd: ea:0d:0f:4c:d8:1d:7e:9a:ee:de:fa:11:67:90:8e: 96:6e:9a:63:7c:2a:c8:0d:5f:ae:55:0c:b3:16:06: 0b:7e:20:2a:62:d0:47:92:a3:60:41:a5:e6:0a:f4: bd:ad:0e:e3:86:3d:d2:8c:4b:c0:69:d1:1f:91:65: e4:e6:c3:84:a2:e6:38:3d:d8:2c:32:d8:92:8f:b2: 5d:70:aa:c0:73:5d:10:58:13:40:88:b9:0e:dd:73: da:14:ef:27:6e:e2:e8:51:f1:69:fb:8a:bc:96:1c: 9c:c7:0f:c6:b0:ca:ce:86:28:21:43:9b:b3:80:ce: a1:58:68:2a:9f:ff:2c:ee:f0:a0:15:c5:1b:bb:03: 17:59:28:b8:3a:e9:27:4b:55:b3:db:f4:80:37:db: 54:60:1d:7c:12:9f:5a:85:77:86:e4:cb:6a:ff:ac: d0:99:a0:7b:db:0b:53:43:55:56:97:90:13:fe:f7: 93:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:41:80:B0:6C:10:92:DD:FB:41:CE:34:07:37:42:B0:8C:34:8B:D7 X509v3 Authority Key Identifier: keyid:2A:6B:F0:54:AD:23:EA:D2:DB:39:53:1B:64:67:26:CA:94:5A:C4:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:b5:c3:97:79:e3:15:82:74:dc:34:b2:11:c9:c0:13:41:85: 7d:02:58:06:96:13:6f:2d:0f:f2:88:bd:97:39:2b:90:b2:22: f5:f0:01:1c:ee:55:71:f4:ec:16:dc:80:75:c0:08:9f:9e:90: a8:b2:9f:82:75:ec:f5:e2:cc:8c:ed:d9:54:0f:b5:3b:f8:e8: 27:c8:50:24:0a:88:54:52:58:d0:ae:7b:d2:9c:c3:80:de:5f: 9d:2f:bd:fb:43:9f:9b:d9:06:b8:5a:76:13:78:a7:58:02:5f: 03:c3:20:50:ea:1d:3d:c6:28:fb:3c:4d:5f:68:d9:ee:3e:db: 78:91:eb:a3:19:41:d4:93:d0:34:7e:2d:b7:e3:b4:1f:97:ef: ef:cf:60:e5:f6:fb:39:56:b3:b9:7b:22:aa:4c:ac:dc:82:f0: 3e:7c:e8:e2:84:cb:7d:8a:7e:45:97:07:ed:77:97:eb:79:da: ba:57:63:12:4a:63:00:c2:1b:5d:1f:aa:6b:5d:2e:4f:04:cb: fb:28:ae:61:6c:b5:a6:dd:16:de:09:34:6d:2a:49:f8:4d:d5: 64:b5:f6:bc:d7:93:f2:e2:a0:b2:2a:96:5a:44:c8:a6:48:b2: 1e:b4:c4:ca:d0:d0:6c:50:8e:69:17:b3:19:d2:2c:5c:e1:34: 3f:e4:b9:ea -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 QUI3RTExMC8GA1UEBRMoMkE2QkYwNTRBRDIzRUFEMkRCMzk1MzFCNjQ2NzI2Q0E5 NDVBQzQ5MjAeFw0yNTA2MTUwNjQ5MzlaFw0yNTA2MjIwNjQ5MzlaMBgxFjAUBgNV BAMTDTY4NGU2ZDAzLTYyMjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC84qH+y5rWMlHWXQdSJwPfFQWmgK5V0KkefDNf3GhanCSU48zmwMO3OrR/qL88 foFH5FS0P9ZX2OnB/Le+hOWuAkeWlE/dVxD0veoND0zYHX6a7t76EWeQjpZummN8 KsgNX65VDLMWBgt+ICpi0EeSo2BBpeYK9L2tDuOGPdKMS8Bp0R+RZeTmw4Si5jg9 2Cwy2JKPsl1wqsBzXRBYE0CIuQ7dc9oU7ydu4uhR8Wn7iryWHJzHD8awys6GKCFD m7OAzqFYaCqf/yzu8KAVxRu7AxdZKLg66SdLVbPb9IA321RgHXwSn1qFd4bky2r/ rNCZoHvbC1NDVVaXkBP+95PVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUrUGAsGwQ kt37Qc40BzdCsIw0i9cwHwYDVR0jBBgwFoAUKmvwVK0j6tLbOVMbZGcmypRaxJIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThBQjdFL0Y3NTk3OTZFMDg4 MTExRjBCQUMzNDEzRUM0RjlBRTAyL0ttdndWSzBqNnRMYk9WTWJaR2NteXBSYXhK SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS212d1ZLMGo2dExiT1ZNYlpHY215cFJheEpJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThB QjdFL0Y3NTk3OTZFMDg4MTExRjBCQUMzNDEzRUM0RjlBRTAyL0ttdndWSzBqNnRM Yk9WTWJaR2NteXBSYXhKSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABC1w5d54xWCdNw0shHJwBNBhX0CWAaWE28tD/KIvZc5K5CyIvXwARzu VXH07BbcgHXACJ+ekKiyn4J17PXizIzt2VQPtTv46CfIUCQKiFRSWNCue9Kcw4De X50vvftDn5vZBrhadhN4p1gCXwPDIFDqHT3GKPs8TV9o2e4+23iR66MZQdST0DR+ LbfjtB+X7+/PYOX2+zlWs7l7IqpMrNyC8D586OKEy32KfkWXB+13l+t52rpXYxJK YwDCG10fqmtdLk8Ey/sormFstabdFt4JNG0qSfhN1WS19rzXk/LioLIqllpEyKZI sh60xMrQ0GxQjmkXsxnSLFzhND/kueo= -----END CERTIFICATE-----Generated at Sun Jun 15 10:03:18 2025 by rpki-client