$ rpki-client -vvf rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.mft File: Kz24XvlSI40ZLc8XDua-scjbA6k.mft (raw, json) Hash identifier: gQN1L5OqxKK0+q3LilZeozD+qlVB20Ek+zjylR1HeAg= Subject key identifier: 9E:F8:60:D0:16:8A:F7:BC:59:49:CC:97:87:57:DB:D3:A3:79:3D:47 Authority key identifier: 2B:3D:B8:5E:F9:52:23:8D:19:2D:CF:17:0E:E6:BE:B1:C8:DB:03:A9 Certificate issuer: /CN=A919F525/serialNumber=2B3DB85EF952238D192DCF170EE6BEB1C8DB03A9 Certificate serial: 8C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kz24XvlSI40ZLc8XDua-scjbA6k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.mft Manifest number: 88 Signing time: Tue 17 Jun 2025 05:31:27 +0000 Manifest this update: Tue 17 Jun 2025 05:31:26 +0000 Manifest next update: Tue 24 Jun 2025 05:31:26 +0000 Files and hashes: 1: Kz24XvlSI40ZLc8XDua-scjbA6k.crl (hash: uO5aO1eNfXZAIIa3XA6rFUDD7BBcMQTK8C+fwK7z768=) 2: 4AFF817484EF11EFBDCD721DC4F9AE02.roa (hash: VYuqdxkeY8VDCaP9z9fc7NoqICt3B9Gb1p23SFkZpM0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.crl rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kz24XvlSI40ZLc8XDua-scjbA6k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 05:31:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 140 (0x8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F525, serialNumber=2B3DB85EF952238D192DCF170EE6BEB1C8DB03A9 Validity Not Before: Jun 17 05:31:26 2025 GMT Not After : Jun 24 05:31:26 2025 GMT Subject: CN=6850fdaf-3485 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:72:e2:27:26:3b:57:6b:bd:3f:4a:af:f0:0a: 72:57:cb:73:c1:b1:69:99:56:55:d5:12:a8:87:8c: 35:64:ed:0a:c7:13:c6:4d:d9:3d:87:f6:2f:42:32: 2f:ea:cc:6c:66:f0:fb:e4:88:8f:1c:af:31:37:24: 04:df:08:b8:f3:87:6a:c8:63:7b:a3:3c:55:ac:08: 64:bd:cc:42:e2:59:81:d5:b1:7d:b1:db:16:36:a0: 7a:d4:6a:e8:8f:8f:28:99:8f:26:12:f5:48:a3:e8: f3:57:c9:87:b4:d3:95:e4:9f:ba:ac:21:15:0a:f3: b1:66:03:01:f8:07:29:87:f0:32:4b:0f:5f:9e:11: fd:4e:cc:2e:f8:73:df:9f:07:a1:bb:0e:86:0f:17: 00:5f:e6:f2:40:9a:b8:ba:45:65:67:63:a1:25:81: 9a:5d:7b:57:7f:ef:5e:44:45:d6:27:dc:59:6e:22: d1:f7:af:1e:5e:56:6d:e2:b0:56:e6:e8:05:6c:32: 8d:b3:0c:cd:79:18:b3:2c:67:ad:e5:5e:d7:01:dc: 9b:0b:42:cd:eb:2a:ac:2e:9f:93:ab:39:b7:5d:be: 17:25:0c:c1:3e:9c:ca:01:85:a1:12:a6:08:e5:40: 53:a0:b4:b6:23:50:86:36:aa:ee:2a:39:a6:f6:27: b2:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:F8:60:D0:16:8A:F7:BC:59:49:CC:97:87:57:DB:D3:A3:79:3D:47 X509v3 Authority Key Identifier: keyid:2B:3D:B8:5E:F9:52:23:8D:19:2D:CF:17:0E:E6:BE:B1:C8:DB:03:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kz24XvlSI40ZLc8XDua-scjbA6k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:f6:30:ae:7d:1f:19:07:35:e0:83:8c:c4:19:8b:e0:8e:08: cd:82:83:63:96:ec:82:f9:9e:6c:7b:eb:ea:17:27:e7:e3:03: 55:28:35:66:80:f3:51:02:71:64:92:a9:65:6d:4f:f9:4a:3b: 07:46:d7:c5:a2:a1:94:a8:6a:ac:18:3b:16:3a:45:87:59:36: 9a:47:6e:ab:33:e6:91:aa:79:14:f3:1a:01:36:ee:3f:ca:aa: e6:2f:67:c7:d1:a0:61:f3:ee:10:a1:c2:16:85:aa:39:8f:ec: a0:83:84:ac:9a:c6:7b:06:16:5b:0b:73:f5:04:4f:2f:e8:7c: 93:61:2c:e2:5e:bb:d0:51:6a:1b:4c:fa:e6:e7:22:47:8e:79: 79:4b:5f:0e:aa:ec:c5:bf:9e:25:97:83:21:7c:9d:d5:48:b1: bf:ee:d1:a9:0f:9b:1f:fa:cb:db:8b:fa:0b:bf:95:a9:3f:34: 68:8f:9d:86:b6:ad:b4:e9:72:ec:26:1b:81:75:29:ac:09:81: 7f:8c:25:4a:da:be:47:07:7f:94:3b:4a:49:1c:0e:f0:32:98: 43:39:fb:e8:18:4b:6e:17:42:26:f1:9f:0d:ac:c5:ab:56:46: 31:43:00:66:92:5c:6f:14:43:5d:51:3c:93:78:39:97:a9:d5: e7:0e:2e:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUY1MjUxMTAvBgNVBAUTKDJCM0RCODVFRjk1MjIzOEQxOTJEQ0YxNzBFRTZCRUIx QzhEQjAzQTkwHhcNMjUwNjE3MDUzMTI2WhcNMjUwNjI0MDUzMTI2WjAYMRYwFAYD VQQDEw02ODUwZmRhZi0zNDg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt3LiJyY7V2u9P0qv8ApyV8tzwbFpmVZV1RKoh4w1ZO0KxxPGTdk9h/YvQjIv 6sxsZvD75IiPHK8xNyQE3wi484dqyGN7ozxVrAhkvcxC4lmB1bF9sdsWNqB61Gro j48omY8mEvVIo+jzV8mHtNOV5J+6rCEVCvOxZgMB+Acph/AySw9fnhH9Tswu+HPf nwehuw6GDxcAX+byQJq4ukVlZ2OhJYGaXXtXf+9eREXWJ9xZbiLR968eXlZt4rBW 5ugFbDKNswzNeRizLGet5V7XAdybC0LN6yqsLp+Tqzm3Xb4XJQzBPpzKAYWhEqYI 5UBToLS2I1CGNqruKjmm9ieyNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ74YNAW ive8WUnMl4dX29OjeT1HMB8GA1UdIwQYMBaAFCs9uF75UiONGS3PFw7mvrHI2wOp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjUyNS9FMTg3MTc3Njg0 RUQxMUVGQjlGRjJENUFDNEY5QUUwMi9LejI0WHZsU0k0MFpMYzhYRHVhLXNjamJB NmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0t6MjRYdmxTSTQwWkxjOFhEdWEtc2NqYkE2ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RjUyNS9FMTg3MTc3Njg0RUQxMUVGQjlGRjJENUFDNEY5QUUwMi9LejI0WHZsU0k0 MFpMYzhYRHVhLXNjamJBNmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBc9jCufR8ZBzXgg4zEGYvgjgjNgoNjluyC+Z5se+vqFyfn4wNVKDVm gPNRAnFkkqllbU/5SjsHRtfFoqGUqGqsGDsWOkWHWTaaR26rM+aRqnkU8xoBNu4/ yqrmL2fH0aBh8+4QocIWhao5j+ygg4SsmsZ7BhZbC3P1BE8v6HyTYSziXrvQUWob TPrm5yJHjnl5S18OquzFv54ll4MhfJ3VSLG/7tGpD5sf+svbi/oLv5WpPzRoj52G tq206XLsJhuBdSmsCYF/jCVK2r5HB3+UO0pJHA7wMphDOfvoGEtuF0Im8Z8NrMWr VkYxQwBmklxvFENdUTyTeDmXqdXnDi7F -----END CERTIFICATE-----Generated at Wed Jun 18 15:28:05 2025 by rpki-client