$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.mft File: kfPcWc0PodJBy3h1fR2qksKsn2A.mft (raw, json) Hash identifier: aLpr7lMuH9ecCQhqYPDxGMLTeFtx+jGhXTkGnW2YkZE= Subject key identifier: 17:62:92:C7:DE:FE:C2:0B:E8:35:B3:54:F0:86:1C:63:B7:D3:52:27 Authority key identifier: 91:F3:DC:59:CD:0F:A1:D2:41:CB:78:75:7D:1D:AA:92:C2:AC:9F:60 Certificate issuer: /CN=A91A0432/serialNumber=91F3DC59CD0FA1D241CB78757D1DAA92C2AC9F60 Certificate serial: 039C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfPcWc0PodJBy3h1fR2qksKsn2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.mft Manifest number: 0395 Signing time: Thu 19 Jun 2025 00:40:38 +0000 Manifest this update: Thu 19 Jun 2025 00:40:37 +0000 Manifest next update: Thu 26 Jun 2025 00:40:37 +0000 Files and hashes: 1: kfPcWc0PodJBy3h1fR2qksKsn2A.crl (hash: gtFc9zrndqQGiu4i01LYDA7OqHcvqgcda5u39vd4Wj0=) 2: 4114509A597511EFA2B79A84C4F9AE02.roa (hash: 8U+UsiCXDKifnoegufsPJKGalX6CUXoFX96X70pYMYI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.crl rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfPcWc0PodJBy3h1fR2qksKsn2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 00:40:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 924 (0x39c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0432, serialNumber=91F3DC59CD0FA1D241CB78757D1DAA92C2AC9F60 Validity Not Before: Jun 19 00:40:37 2025 GMT Not After : Jun 26 00:40:37 2025 GMT Subject: CN=68535c86-06e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:8b:80:20:2e:4f:7e:c6:0a:04:af:ff:55:e3: 63:b9:22:07:dd:14:55:89:74:c7:cf:10:70:86:2a: 16:aa:51:c1:a1:6c:6b:01:c0:2c:c2:10:46:e2:3e: 90:88:b1:d4:08:a4:a1:f2:10:ea:05:41:e2:7e:3a: 83:ed:88:4e:ca:ff:fa:05:54:0b:ab:12:ee:b7:68: 57:4f:6d:c6:d5:22:93:fc:35:cf:06:a1:2a:47:67: ce:19:ee:89:bf:1f:2c:43:45:b9:8d:ec:d1:72:f8: 91:69:ca:3d:4d:79:2f:9b:f8:ab:69:44:fb:51:f9: e0:84:92:85:41:ca:cc:ec:72:ce:e2:66:51:6b:3f: 02:6f:23:9f:8e:f3:96:cf:c3:e6:ec:52:dd:4d:4e: 14:74:00:af:dc:07:5a:dc:ef:fb:0d:58:d0:1a:43: 80:75:1b:1d:b9:89:7a:33:c4:6b:80:f4:1c:58:c1: ad:a4:13:f1:40:a9:bb:ff:80:d6:d2:73:17:07:1c: f2:be:bc:cb:09:b4:c8:0e:1b:f0:f0:d2:79:94:80: f7:f0:31:13:f7:08:cf:f2:3f:50:ee:63:22:da:dd: 6f:b4:57:83:98:6d:5d:89:e1:0c:b5:4c:78:ef:62: a1:aa:2d:8e:03:bf:9e:1c:e1:7d:e5:1d:9d:33:82: 14:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:62:92:C7:DE:FE:C2:0B:E8:35:B3:54:F0:86:1C:63:B7:D3:52:27 X509v3 Authority Key Identifier: keyid:91:F3:DC:59:CD:0F:A1:D2:41:CB:78:75:7D:1D:AA:92:C2:AC:9F:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfPcWc0PodJBy3h1fR2qksKsn2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:60:90:a2:5a:ce:c0:0c:5f:8d:c9:90:e1:e4:d2:f5:80:bc: c2:47:7f:35:c7:46:6f:c0:36:e0:8a:3f:47:e9:d9:50:07:fd: ac:8c:c4:23:4c:1f:59:30:a5:c7:dc:a7:4d:75:1a:81:de:07: 7e:94:b2:c3:5f:54:bb:92:d4:6d:23:ae:23:29:2e:35:4d:c4: 46:34:c1:e5:1e:18:ac:7c:53:2c:60:c1:32:34:82:b5:d8:29: b2:57:ed:c7:bb:cb:c7:11:4c:3b:46:48:b6:fd:e2:1f:1c:41: 08:56:a3:6c:95:18:65:cc:1f:d8:de:d3:f3:92:a8:07:f0:21: 3d:28:85:1d:5a:aa:fb:8e:e4:b0:97:c9:64:72:17:3c:d2:3a: b2:a0:bd:21:68:f5:e1:90:0c:39:c2:4c:0b:67:55:09:0d:57: e3:99:51:3a:ff:38:ec:76:d3:c0:78:bb:47:54:b5:02:82:81: 8a:0b:5b:43:b1:82:ba:f9:1f:d5:f5:01:b0:28:f3:99:97:6c: c2:4c:49:b1:9e:f8:ea:cc:65:b9:9e:f4:dd:14:02:4f:c5:6e: 7e:d1:63:91:1a:75:83:b0:94:02:51:c5:34:c2:b5:ec:76:ae: 34:cc:39:38:40:e1:08:f0:61:11:92:65:4c:0b:c5:e9:f3:ff: 80:54:67:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA0MzIxMTAvBgNVBAUTKDkxRjNEQzU5Q0QwRkExRDI0MUNCNzg3NTdEMURBQTky QzJBQzlGNjAwHhcNMjUwNjE5MDA0MDM3WhcNMjUwNjI2MDA0MDM3WjAYMRYwFAYD VQQDEw02ODUzNWM4Ni0wNmU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqouAIC5PfsYKBK//VeNjuSIH3RRViXTHzxBwhioWqlHBoWxrAcAswhBG4j6Q iLHUCKSh8hDqBUHifjqD7YhOyv/6BVQLqxLut2hXT23G1SKT/DXPBqEqR2fOGe6J vx8sQ0W5jezRcviRaco9TXkvm/iraUT7UfnghJKFQcrM7HLO4mZRaz8CbyOfjvOW z8Pm7FLdTU4UdACv3Ada3O/7DVjQGkOAdRsduYl6M8RrgPQcWMGtpBPxQKm7/4DW 0nMXBxzyvrzLCbTIDhvw8NJ5lID38DET9wjP8j9Q7mMi2t1vtFeDmG1dieEMtUx4 72Khqi2OA7+eHOF95R2dM4IU2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBdiksfe /sIL6DWzVPCGHGO301InMB8GA1UdIwQYMBaAFJHz3FnND6HSQct4dX0dqpLCrJ9g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDQzMi9GNUJGNjk5Q0E0 Q0ExMUVDQUM0RTU3NDRDNEY5QUUwMi9rZlBjV2MwUG9kSkJ5M2gxZlIycWtzS3Nu MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tmUGNXYzBQb2RKQnkzaDFmUjJxa3NLc24yQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDQzMi9GNUJGNjk5Q0E0Q0ExMUVDQUM0RTU3NDRDNEY5QUUwMi9rZlBjV2MwUG9k SkJ5M2gxZlIycWtzS3NuMkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxYJCiWs7ADF+NyZDh5NL1gLzCR381x0ZvwDbgij9H6dlQB/2sjMQj TB9ZMKXH3KdNdRqB3gd+lLLDX1S7ktRtI64jKS41TcRGNMHlHhisfFMsYMEyNIK1 2CmyV+3Hu8vHEUw7Rki2/eIfHEEIVqNslRhlzB/Y3tPzkqgH8CE9KIUdWqr7juSw l8lkchc80jqyoL0haPXhkAw5wkwLZ1UJDVfjmVE6/zjsdtPAeLtHVLUCgoGKC1tD sYK6+R/V9QGwKPOZl2zCTEmxnvjqzGW5nvTdFAJPxW5+0WORGnWDsJQCUcU0wrXs dq40zDk4QOEI8GERkmVMC8Xp8/+AVGfy -----END CERTIFICATE-----Generated at Fri Jun 20 09:57:37 2025 by rpki-client