$ rpki-client -vvf rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft File: kDfAsp43CSqDhSzkuIW3dqfB47Y.mft (raw, json) Hash identifier: 5dhqw9F1hHU8wvucEDDW3U4DshWByljy3upa1IE8/GQ= Subject key identifier: A7:27:89:CE:91:AA:E5:A8:52:B4:22:CA:E2:FA:DC:4F:F3:C4:D3:15 Authority key identifier: 90:37:C0:B2:9E:37:09:2A:83:85:2C:E4:B8:85:B7:76:A7:C1:E3:B6 Certificate issuer: /CN=A91957D1/serialNumber=9037C0B29E37092A83852CE4B885B776A7C1E3B6 Certificate serial: 0124 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft Manifest number: 0120 Signing time: Fri 13 Jun 2025 03:54:47 +0000 Manifest this update: Fri 13 Jun 2025 03:54:46 +0000 Manifest next update: Fri 20 Jun 2025 03:54:46 +0000 Files and hashes: 1: kDfAsp43CSqDhSzkuIW3dqfB47Y.crl (hash: 4oUGzoSXpBlH9R/6AQwEosVK8III9RCHX+Gm9Zf0UM0=) 2: 72CE4D80958411EEB3748B58C4F9AE02.roa (hash: GyK0WIBreUywAdxh5kO624MwwPbx0zTO9wpPeKdWbNg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.crl rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 03:54:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 292 (0x124) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91957D1, serialNumber=9037C0B29E37092A83852CE4B885B776A7C1E3B6 Validity Not Before: Jun 13 03:54:46 2025 GMT Not After : Jun 20 03:54:46 2025 GMT Subject: CN=684ba106-bc9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:1d:1c:f4:e9:7c:b6:8f:f7:aa:23:d9:8c:20: dd:cf:a5:3e:92:ac:20:a7:f3:95:15:66:2f:66:28: e1:9b:82:9b:f6:a6:64:5d:49:c9:67:0a:50:0c:ec: 40:ef:b5:07:cc:82:4f:59:1a:d5:d9:c7:6e:82:9a: 0b:7a:2f:4f:f0:dd:9c:88:17:d3:44:ad:7c:98:e0: 6a:f2:d9:71:86:dc:ce:bf:05:46:90:73:4e:35:bd: 11:6a:c7:65:b6:58:69:14:7e:b9:ab:84:4f:9e:6c: 74:0c:97:1c:9c:47:36:4d:be:47:e1:f2:cf:55:c4: 17:77:9e:43:7d:ac:2d:9c:a1:df:5c:c6:5f:62:fd: 1e:03:e5:8e:26:23:7d:a0:05:32:7e:23:41:bb:38: 45:78:95:42:7a:e6:1f:77:42:ad:cb:2b:32:e7:9f: 2a:79:6f:34:d8:78:00:c9:bf:cb:c3:32:b6:81:67: 9a:ee:1b:03:70:9c:ad:6e:12:2c:0d:f2:e8:bb:d1: 8f:cf:37:bd:30:eb:2e:01:de:af:07:12:ca:74:4f: 70:5f:99:21:30:23:aa:22:e5:90:4d:9e:c9:b1:8d: b7:6e:54:b2:ce:42:e5:6d:d8:8a:60:04:9c:1f:fc: db:64:c8:7b:33:a1:61:9b:a4:81:00:36:62:3c:a1: b5:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:27:89:CE:91:AA:E5:A8:52:B4:22:CA:E2:FA:DC:4F:F3:C4:D3:15 X509v3 Authority Key Identifier: keyid:90:37:C0:B2:9E:37:09:2A:83:85:2C:E4:B8:85:B7:76:A7:C1:E3:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:61:4a:65:d7:45:3b:ea:3f:19:f3:a8:47:8e:60:74:06:f4: a5:c2:dc:53:a7:76:b8:df:4d:d1:e4:60:70:38:10:8f:b2:b5: de:64:be:ed:15:3d:32:be:28:ae:a3:c0:0a:95:34:eb:73:77: b4:b8:e2:9f:c5:eb:b0:52:51:89:7f:05:63:ed:ff:13:06:1d: 5b:9d:ae:3c:94:9c:ad:4f:45:f0:b0:c6:fb:5c:58:cd:e1:4f: 20:b5:39:46:de:67:4b:50:b3:8f:70:b6:0e:bf:0e:55:66:64: 2e:36:5f:33:f7:15:f6:31:8f:1a:f3:09:96:8a:dd:ed:c6:11: d4:eb:b5:88:08:74:da:6d:17:a1:8e:95:b5:73:f4:2b:48:61: 61:73:e3:64:d0:84:6d:db:0a:9f:61:a7:a5:28:b7:99:10:d6: ce:4c:8a:75:d0:c6:b7:d6:4b:75:35:bb:61:24:5f:73:05:48: 6d:be:ed:d0:77:55:68:bf:11:f0:eb:65:8d:41:cd:0a:68:db: 60:20:2c:b4:7c:c7:ae:8b:61:f8:e5:5e:8d:05:aa:61:bf:65: ab:1b:17:51:f4:5f:7c:98:63:c7:6a:d7:71:45:d2:dc:f4:ee: 05:8e:00:fb:f7:84:6a:a3:57:9c:65:a1:f9:6f:48:64:d0:2e: 67:9e:27:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU3RDExMTAvBgNVBAUTKDkwMzdDMEIyOUUzNzA5MkE4Mzg1MkNFNEI4ODVCNzc2 QTdDMUUzQjYwHhcNMjUwNjEzMDM1NDQ2WhcNMjUwNjIwMDM1NDQ2WjAYMRYwFAYD VQQDEw02ODRiYTEwNi1iYzllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuR0c9Ol8to/3qiPZjCDdz6U+kqwgp/OVFWYvZijhm4Kb9qZkXUnJZwpQDOxA 77UHzIJPWRrV2cdugpoLei9P8N2ciBfTRK18mOBq8tlxhtzOvwVGkHNONb0Rasdl tlhpFH65q4RPnmx0DJccnEc2Tb5H4fLPVcQXd55DfawtnKHfXMZfYv0eA+WOJiN9 oAUyfiNBuzhFeJVCeuYfd0Ktyysy558qeW802HgAyb/LwzK2gWea7hsDcJytbhIs DfLou9GPzze9MOsuAd6vBxLKdE9wX5khMCOqIuWQTZ7JsY23blSyzkLlbdiKYASc H/zbZMh7M6Fhm6SBADZiPKG1YwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKcnic6R quWoUrQiyuL63E/zxNMVMB8GA1UdIwQYMBaAFJA3wLKeNwkqg4Us5LiFt3anweO2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTdEMS9GMDUzNzc5NDkz QkQxMUVFODFGODBBNTJDNEY5QUUwMi9rRGZBc3A0M0NTcURoU3prdUlXM2RxZkI0 N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tEZkFzcDQzQ1NxRGhTemt1SVczZHFmQjQ3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTdEMS9GMDUzNzc5NDkzQkQxMUVFODFGODBBNTJDNEY5QUUwMi9rRGZBc3A0M0NT cURoU3prdUlXM2RxZkI0N1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChYUpl10U76j8Z86hHjmB0BvSlwtxTp3a4303R5GBwOBCPsrXeZL7t FT0yviiuo8AKlTTrc3e0uOKfxeuwUlGJfwVj7f8TBh1bna48lJytT0XwsMb7XFjN 4U8gtTlG3mdLULOPcLYOvw5VZmQuNl8z9xX2MY8a8wmWit3txhHU67WICHTabReh jpW1c/QrSGFhc+Nk0IRt2wqfYaelKLeZENbOTIp10Ma31kt1NbthJF9zBUhtvu3Q d1VovxHw62WNQc0KaNtgICy0fMeui2H45V6NBaphv2WrGxdR9F98mGPHatdxRdLc 9O4FjgD794Rqo1ecZaH5b0hk0C5nnifo -----END CERTIFICATE-----Generated at Sat Jun 14 19:29:32 2025 by rpki-client