$ rpki-client -vvf rpki.apnic.net/member_repository/A91999F5/6A3DB5789F7911EC9CB47A0AC4F9AE02/khLuorkaMmYPdScf7IWJswnDifA.mft File: khLuorkaMmYPdScf7IWJswnDifA.mft (raw, json) Hash identifier: c7ZELyFychh9XPTT6c8ruCfrNYsbONpLqKp294zpRqg= Subject key identifier: FF:29:AA:23:08:09:09:43:E6:82:FD:CD:AD:3C:B9:9A:9C:D5:72:43 Authority key identifier: 92:12:EE:A2:B9:1A:32:66:0F:75:27:1F:EC:85:89:B3:09:C3:89:F0 Certificate issuer: /CN=A91999F5/serialNumber=9212EEA2B91A32660F75271FEC8589B309C389F0 Certificate serial: 03A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khLuorkaMmYPdScf7IWJswnDifA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91999F5/6A3DB5789F7911EC9CB47A0AC4F9AE02/khLuorkaMmYPdScf7IWJswnDifA.mft Manifest number: 039F Signing time: Fri 13 Jun 2025 00:21:43 +0000 Manifest this update: Fri 13 Jun 2025 00:21:43 +0000 Manifest next update: Fri 20 Jun 2025 00:21:43 +0000 Files and hashes: 1: khLuorkaMmYPdScf7IWJswnDifA.crl (hash: xduFx1i+Zf5nOm2IkjYwaYy0aCvVi0hpvYuOP+6lv8A=) 2: F84777FCD9DC11EDA4083A71C4F9AE02.roa (hash: CoOJrAcKTrWo0nejzXhp58RWFVEIO9a7vZX9DurBX3o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91999F5/6A3DB5789F7911EC9CB47A0AC4F9AE02/khLuorkaMmYPdScf7IWJswnDifA.crl rsync://rpki.apnic.net/member_repository/A91999F5/6A3DB5789F7911EC9CB47A0AC4F9AE02/khLuorkaMmYPdScf7IWJswnDifA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khLuorkaMmYPdScf7IWJswnDifA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 00:21:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 935 (0x3a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91999F5, serialNumber=9212EEA2B91A32660F75271FEC8589B309C389F0 Validity Not Before: Jun 13 00:21:43 2025 GMT Not After : Jun 20 00:21:43 2025 GMT Subject: CN=684b6f17-57b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:30:e7:ae:79:2e:66:00:57:94:f9:00:3e:b8: 84:f8:eb:8f:11:78:30:90:78:b4:fe:29:b1:e2:74: c1:3b:5a:f8:2b:5f:88:8a:1c:76:b4:e4:a2:b6:a1: c8:3c:c4:a4:91:c2:ef:33:d8:06:1f:8c:98:00:e9: b8:06:69:92:da:a1:9e:4e:97:83:7a:bd:64:75:b2: 4a:1a:7f:ea:62:1f:b5:10:f1:d3:7b:a2:bc:1b:75: 2c:fc:b8:77:5a:55:bd:bd:43:84:77:d6:6b:da:3b: d8:2a:de:79:d6:2f:f5:a1:4f:0d:b4:c5:24:31:ca: 9b:98:f2:6f:fd:65:d5:b1:9e:e5:2a:cb:4f:05:7a: f2:c6:7c:82:ee:b4:a4:bc:07:1e:ac:1e:59:7e:8a: 16:73:ef:8e:dc:23:91:e9:7d:b9:f8:1d:6a:4d:0e: 6c:63:01:bf:f7:95:5c:cf:15:89:e9:66:c0:77:74: 88:0d:57:02:b6:55:51:d9:79:ef:ba:96:1e:84:86: 40:3e:eb:40:1b:86:a0:bf:6f:14:17:da:65:e0:91: 06:6f:9a:bf:fe:50:48:f8:72:6c:79:7a:cb:99:74: 1e:d5:1d:72:f9:40:ea:d3:06:e3:4a:e8:01:29:9d: 42:e0:50:94:3d:2a:09:4b:f0:91:1a:84:79:3a:84: 1c:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:29:AA:23:08:09:09:43:E6:82:FD:CD:AD:3C:B9:9A:9C:D5:72:43 X509v3 Authority Key Identifier: keyid:92:12:EE:A2:B9:1A:32:66:0F:75:27:1F:EC:85:89:B3:09:C3:89:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91999F5/6A3DB5789F7911EC9CB47A0AC4F9AE02/khLuorkaMmYPdScf7IWJswnDifA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khLuorkaMmYPdScf7IWJswnDifA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91999F5/6A3DB5789F7911EC9CB47A0AC4F9AE02/khLuorkaMmYPdScf7IWJswnDifA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:9b:9d:a6:97:73:c7:88:7f:a5:2d:39:e0:e9:0a:f1:4d:f4: d6:96:c5:58:03:ad:b0:81:fa:d8:60:ba:da:ac:84:f6:bc:07: 0a:af:3f:c0:b7:77:be:d8:5f:b2:54:93:86:dc:49:f7:59:b6: 66:a6:3c:4a:09:7b:f3:8a:ed:9a:a1:a0:f8:7b:f4:6f:a6:95: ed:90:c7:48:2d:d3:83:a6:d9:26:4d:16:3c:62:d2:39:fb:a5: f1:02:5f:49:cc:d3:ba:e4:61:d1:42:37:2e:67:54:b8:1a:8c: 16:5d:bb:11:cc:d8:c5:8c:e2:77:94:94:95:35:82:a8:f4:8f: 3e:96:62:2f:6c:af:89:5c:64:7a:26:a3:8d:ee:20:c9:b5:43: 76:1c:75:dd:de:c2:05:8b:4f:c0:da:b5:6d:11:fd:e3:6e:ee: a1:b8:d0:50:c8:da:70:bb:f8:9e:47:ed:fd:49:59:cb:3d:b5: ae:ba:c5:53:d0:24:11:67:9f:d6:bb:10:1a:eb:29:e9:cd:69: ce:e5:99:33:ed:60:fe:2c:b1:27:ac:92:66:f5:04:a0:90:ce: 33:44:5c:72:db:a6:d5:de:a3:c4:e5:12:5e:ae:27:b1:b3:57: 9f:f2:8c:a9:0d:1a:0e:ff:20:b3:ff:02:9e:4c:7a:15:ee:f0: 19:2c:7c:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk5RjUxMTAvBgNVBAUTKDkyMTJFRUEyQjkxQTMyNjYwRjc1MjcxRkVDODU4OUIz MDlDMzg5RjAwHhcNMjUwNjEzMDAyMTQzWhcNMjUwNjIwMDAyMTQzWjAYMRYwFAYD VQQDEw02ODRiNmYxNy01N2IyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4DDnrnkuZgBXlPkAPriE+OuPEXgwkHi0/imx4nTBO1r4K1+Iihx2tOSitqHI PMSkkcLvM9gGH4yYAOm4BmmS2qGeTpeDer1kdbJKGn/qYh+1EPHTe6K8G3Us/Lh3 WlW9vUOEd9Zr2jvYKt551i/1oU8NtMUkMcqbmPJv/WXVsZ7lKstPBXryxnyC7rSk vAcerB5ZfooWc++O3COR6X25+B1qTQ5sYwG/95VczxWJ6WbAd3SIDVcCtlVR2Xnv upYehIZAPutAG4agv28UF9pl4JEGb5q//lBI+HJseXrLmXQe1R1y+UDq0wbjSugB KZ1C4FCUPSoJS/CRGoR5OoQcAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP8pqiMI CQlD5oL9za08uZqc1XJDMB8GA1UdIwQYMBaAFJIS7qK5GjJmD3UnH+yFibMJw4nw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTlGNS82QTNEQjU3ODlG NzkxMUVDOUNCNDdBMEFDNEY5QUUwMi9raEx1b3JrYU1tWVBkU2NmN0lXSnN3bkRp ZkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2toTHVvcmthTW1ZUGRTY2Y3SVdKc3duRGlmQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTlGNS82QTNEQjU3ODlGNzkxMUVDOUNCNDdBMEFDNEY5QUUwMi9raEx1b3JrYU1t WVBkU2NmN0lXSnN3bkRpZkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGm52ml3PHiH+lLTng6QrxTfTWlsVYA62wgfrYYLrarIT2vAcKrz/A t3e+2F+yVJOG3En3WbZmpjxKCXvziu2aoaD4e/RvppXtkMdILdODptkmTRY8YtI5 +6XxAl9JzNO65GHRQjcuZ1S4GowWXbsRzNjFjOJ3lJSVNYKo9I8+lmIvbK+JXGR6 JqON7iDJtUN2HHXd3sIFi0/A2rVtEf3jbu6huNBQyNpwu/ieR+39SVnLPbWuusVT 0CQRZ5/WuxAa6ynpzWnO5Zkz7WD+LLEnrJJm9QSgkM4zRFxy26bV3qPE5RJeriex s1ef8oypDRoO/yCz/wKeTHoV7vAZLHxV -----END CERTIFICATE-----Generated at Sat Jun 14 19:02:37 2025 by rpki-client