$ rpki-client -vvf rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft File: kuYzl488XC0IYKzbDh3VEhAOie8.mft (raw, json) Hash identifier: QiVs5twHTXcED7sP5A7SYTmkHTODUi/VE2oD1G+WKfM= Subject key identifier: 44:92:62:D0:03:A8:8C:A2:31:DA:E3:13:2F:C6:1C:AC:2D:86:CE:02 Authority key identifier: 92:E6:33:97:8F:3C:5C:2D:08:60:AC:DB:0E:1D:D5:12:10:0E:89:EF Certificate issuer: /CN=A91A15FB/serialNumber=92E633978F3C5C2D0860ACDB0E1DD512100E89EF Certificate serial: BB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kuYzl488XC0IYKzbDh3VEhAOie8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft Manifest number: BA Signing time: Thu 19 Jun 2025 05:13:38 +0000 Manifest this update: Thu 19 Jun 2025 05:13:37 +0000 Manifest next update: Thu 26 Jun 2025 05:13:37 +0000 Files and hashes: 1: kuYzl488XC0IYKzbDh3VEhAOie8.crl (hash: ZPOb4KmLbK4hrxbNxRIGS6q+mHsPzlQZeLXrV5RxmEc=) 2: 431868FE2EC811EFBB3A6574C4F9AE02.roa (hash: yYqs2C5AMpVdcomEvwsEelNt35bcShUcpatPOoqg3y0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.crl rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kuYzl488XC0IYKzbDh3VEhAOie8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 05:13:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 187 (0xbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A15FB, serialNumber=92E633978F3C5C2D0860ACDB0E1DD512100E89EF Validity Not Before: Jun 19 05:13:37 2025 GMT Not After : Jun 26 05:13:37 2025 GMT Subject: CN=68539c82-d860 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:f7:e4:09:e2:e5:d5:4b:93:7b:c0:62:8b:90: 8e:38:df:68:43:bc:be:e0:c4:b9:74:4e:13:25:29: 1e:ce:44:67:04:c0:a7:4c:a5:a3:85:3c:9a:c8:d8: 3f:ba:cf:6b:28:2b:f1:83:69:20:17:63:ce:e1:7c: f1:a8:1b:7e:f4:9f:3e:36:06:83:63:ee:69:b5:7f: 60:20:13:28:f7:d8:da:c7:07:a9:07:15:2d:77:d5: 41:2d:cd:1d:95:37:d6:7b:59:3c:7c:d4:bc:75:2b: b5:06:5d:0c:40:4b:63:38:a8:75:1a:9e:f9:f0:12: b6:7e:3e:c0:e5:74:e3:6e:00:dc:3f:5d:26:a7:22: 8b:9b:b8:43:e5:07:b6:ad:06:46:1b:a9:29:8c:16: ee:c9:fe:25:59:5d:27:c9:51:49:6e:96:a9:46:fe: 64:7b:bf:c5:57:47:45:58:e5:00:d8:8f:85:1f:50: 8c:f5:8a:d5:a8:04:ec:dd:6f:47:ed:1f:78:93:ca: 6d:23:e3:08:e5:d2:10:1d:a8:6c:a1:28:14:17:7d: e8:e7:92:7b:06:4f:8b:99:2f:10:ce:85:e6:54:30: 4e:68:f2:a6:32:89:7b:48:91:5c:92:10:3a:66:e8: 1c:6a:fd:bd:e9:35:a1:b1:00:bb:89:61:f7:66:6d: 09:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:92:62:D0:03:A8:8C:A2:31:DA:E3:13:2F:C6:1C:AC:2D:86:CE:02 X509v3 Authority Key Identifier: keyid:92:E6:33:97:8F:3C:5C:2D:08:60:AC:DB:0E:1D:D5:12:10:0E:89:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kuYzl488XC0IYKzbDh3VEhAOie8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:89:5b:10:90:14:55:92:5e:e9:01:80:2c:13:c8:7d:ec:9f: fe:b2:b5:af:0c:7f:08:53:93:fd:35:6b:06:38:fd:81:6c:59: 19:15:58:36:05:eb:32:d9:e8:bb:73:ef:17:5f:43:e8:6c:8c: 62:93:85:cc:7b:60:7c:72:ee:89:15:36:e8:ec:cd:a3:b7:b8: 47:c1:37:02:3f:ba:88:99:32:c8:be:7c:61:1e:7a:9b:b6:c9: bd:df:32:64:c1:6b:36:b1:02:ea:f5:8f:27:6b:58:e5:7f:06: 69:8a:72:0e:36:a1:bd:de:55:4b:42:36:88:89:b5:75:6d:98: 0d:5d:f3:42:74:c9:5b:51:e1:77:5c:92:09:2d:2a:c4:12:f6: 18:c6:9d:56:3b:04:cd:52:3c:06:f8:7a:67:55:e2:19:72:c7: f4:cb:eb:6f:13:89:2e:bf:a4:f1:6e:fe:5d:50:8c:dd:d1:c4: 1c:87:af:9f:0c:1f:ad:86:1d:bd:6c:59:3f:40:e0:1c:1d:75: 5a:0b:cd:5e:6a:a0:1e:db:e6:bb:72:38:93:12:99:ac:b6:c6: 41:8d:1f:ea:d7:c6:20:61:9e:92:a8:b4:42:f1:3e:09:ed:da: 62:04:da:f5:56:8f:66:60:5a:1c:72:6f:46:51:87:1c:a7:ae: c4:6f:13:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTE1RkIxMTAvBgNVBAUTKDkyRTYzMzk3OEYzQzVDMkQwODYwQUNEQjBFMURENTEy MTAwRTg5RUYwHhcNMjUwNjE5MDUxMzM3WhcNMjUwNjI2MDUxMzM3WjAYMRYwFAYD VQQDEw02ODUzOWM4Mi1kODYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw/fkCeLl1UuTe8Bii5COON9oQ7y+4MS5dE4TJSkezkRnBMCnTKWjhTyayNg/ us9rKCvxg2kgF2PO4XzxqBt+9J8+NgaDY+5ptX9gIBMo99jaxwepBxUtd9VBLc0d lTfWe1k8fNS8dSu1Bl0MQEtjOKh1Gp758BK2fj7A5XTjbgDcP10mpyKLm7hD5Qe2 rQZGG6kpjBbuyf4lWV0nyVFJbpapRv5ke7/FV0dFWOUA2I+FH1CM9YrVqATs3W9H 7R94k8ptI+MI5dIQHahsoSgUF33o55J7Bk+LmS8QzoXmVDBOaPKmMol7SJFckhA6 Zugcav296TWhsQC7iWH3Zm0JzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFESSYtAD qIyiMdrjEy/GHKwths4CMB8GA1UdIwQYMBaAFJLmM5ePPFwtCGCs2w4d1RIQDonv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTVGQi9CRTg4QTcwQzJF QzcxMUVGODIyMDgyNzNDNEY5QUUwMi9rdVl6bDQ4OFhDMElZS3piRGgzVkVoQU9p ZTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2t1WXpsNDg4WEMwSVlLemJEaDNWRWhBT2llOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTVGQi9CRTg4QTcwQzJFQzcxMUVGODIyMDgyNzNDNEY5QUUwMi9rdVl6bDQ4OFhD MElZS3piRGgzVkVoQU9pZTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiiVsQkBRVkl7pAYAsE8h97J/+srWvDH8IU5P9NWsGOP2BbFkZFVg2 Besy2ei7c+8XX0PobIxik4XMe2B8cu6JFTbo7M2jt7hHwTcCP7qImTLIvnxhHnqb tsm93zJkwWs2sQLq9Y8na1jlfwZpinIONqG93lVLQjaIibV1bZgNXfNCdMlbUeF3 XJIJLSrEEvYYxp1WOwTNUjwG+HpnVeIZcsf0y+tvE4kuv6Txbv5dUIzd0cQch6+f DB+thh29bFk/QOAcHXVaC81eaqAe2+a7cjiTEpmstsZBjR/q18YgYZ6SqLRC8T4J 7dpiBNr1Vo9mYFoccm9GUYccp67EbxPP -----END CERTIFICATE-----Generated at Fri Jun 20 06:43:52 2025 by rpki-client