$ rpki-client -vvf rpki.apnic.net/member_repository/A91A308F/B9B3445C6F8711EA93A9F933C4F9AE02/KGguxyPM4zYYWzMwIBP_AGDd4Jo.mft File: KGguxyPM4zYYWzMwIBP_AGDd4Jo.mft (raw, json) Hash identifier: 3hHowu+wuE0nYUlbfuWcmzlFQi5e8P7ITtdK8XEvb88= Subject key identifier: FC:BF:2B:F5:79:44:13:0F:0E:88:C4:5D:E4:71:77:A9:6C:9C:9E:02 Authority key identifier: 28:68:2E:C7:23:CC:E3:36:18:5B:33:30:20:13:FF:00:60:DD:E0:9A Certificate issuer: /CN=A91A308F/serialNumber=28682EC723CCE336185B33302013FF0060DDE09A Certificate serial: 0A2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KGguxyPM4zYYWzMwIBP_AGDd4Jo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A308F/B9B3445C6F8711EA93A9F933C4F9AE02/KGguxyPM4zYYWzMwIBP_AGDd4Jo.mft Manifest number: 0A29 Signing time: Sat 14 Jun 2025 19:35:48 +0000 Manifest this update: Sat 14 Jun 2025 19:35:48 +0000 Manifest next update: Sat 21 Jun 2025 19:35:48 +0000 Files and hashes: 1: KGguxyPM4zYYWzMwIBP_AGDd4Jo.crl (hash: DXH6BNlUrRMzaQtNOcC8h4umnM26GH+hRUSJSeV6jf4=) 2: 6303AF646F8911EA92087E39C4F9AE02.roa (hash: 9EGc7zo1rzNKxXV6Dja051NIq2qalXgFXf2PEqhm154=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A308F/B9B3445C6F8711EA93A9F933C4F9AE02/KGguxyPM4zYYWzMwIBP_AGDd4Jo.crl rsync://rpki.apnic.net/member_repository/A91A308F/B9B3445C6F8711EA93A9F933C4F9AE02/KGguxyPM4zYYWzMwIBP_AGDd4Jo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KGguxyPM4zYYWzMwIBP_AGDd4Jo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 19:35:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2607 (0xa2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A308F, serialNumber=28682EC723CCE336185B33302013FF0060DDE09A Validity Not Before: Jun 14 19:35:48 2025 GMT Not After : Jun 21 19:35:48 2025 GMT Subject: CN=684dcf14-a41d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:60:ae:d5:7f:a8:25:7e:52:58:a1:09:01:c9: f9:35:6a:ac:b8:40:50:e1:ab:a7:2f:cd:5b:65:26: 46:46:58:d4:46:74:e2:6b:4e:14:c1:e5:f0:ac:bf: b0:ef:01:43:45:d2:4c:fe:72:1a:ef:93:8b:81:41: ee:56:e0:aa:28:e9:a2:56:e0:28:b7:33:2c:95:98: 90:3b:21:f7:4d:48:ce:f7:da:14:e2:8c:12:e1:2b: 7c:65:54:13:18:58:fa:e1:2e:b1:a3:d1:82:32:3f: f1:a8:b8:ee:d6:82:d2:1e:a5:eb:62:a2:8d:07:79: 0e:d8:91:60:68:56:af:7a:18:ca:19:be:ea:90:26: 0b:af:55:96:6a:b6:3b:3a:9f:96:e1:75:58:ed:0c: 33:1a:8b:0b:80:3e:81:c7:42:e3:3a:3e:0a:f7:a4: df:ff:85:de:13:ff:3b:50:bf:7c:50:0a:0f:c4:5f: 40:e7:44:b1:a0:19:bc:26:9e:12:d3:f6:4b:15:82: 94:c3:4a:85:39:d9:e3:f4:02:c6:40:4a:3a:2b:fc: 43:91:9e:01:3e:bc:b9:38:2f:65:62:fe:25:e5:d4: 73:a5:22:1c:ef:53:7a:ca:78:fc:8c:26:64:60:3e: d9:d6:c2:6c:c8:82:82:a8:60:20:3f:43:d9:98:1f: ad:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:BF:2B:F5:79:44:13:0F:0E:88:C4:5D:E4:71:77:A9:6C:9C:9E:02 X509v3 Authority Key Identifier: keyid:28:68:2E:C7:23:CC:E3:36:18:5B:33:30:20:13:FF:00:60:DD:E0:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A308F/B9B3445C6F8711EA93A9F933C4F9AE02/KGguxyPM4zYYWzMwIBP_AGDd4Jo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KGguxyPM4zYYWzMwIBP_AGDd4Jo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A308F/B9B3445C6F8711EA93A9F933C4F9AE02/KGguxyPM4zYYWzMwIBP_AGDd4Jo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:68:5f:e5:5f:4e:05:ea:b7:0d:f3:42:de:61:93:75:fa:9c: d6:46:4f:41:dc:12:82:89:f7:42:93:bb:1d:44:f7:eb:e0:eb: f3:a3:8e:64:b0:4c:2e:e5:01:15:d5:58:e9:72:96:70:46:24: 53:12:d8:25:59:65:4e:e0:79:4b:10:86:d2:2e:0a:c1:d2:4e: 5c:2a:09:82:a3:49:a3:aa:9f:eb:fe:92:a2:22:9a:b7:80:73: 73:17:cf:f7:a1:23:d9:9a:7a:8e:43:d0:b1:16:5a:04:b4:5a: 4e:e4:24:94:97:3d:e2:b5:b1:c4:6c:cb:d5:10:75:2a:2a:c9: 8b:7c:f2:4c:52:14:cb:71:ec:f8:77:cf:fc:16:c4:e3:9a:04: 1f:03:8a:25:3b:a1:02:c3:b7:62:d0:d4:5c:05:c4:66:b5:5d: 09:60:94:6b:0f:54:5d:b8:8d:a6:16:5a:6f:6d:f3:97:1c:e1: 62:19:84:b0:55:41:09:9f:94:89:45:a3:12:5a:7e:e1:45:08: 35:64:b6:5b:95:9b:eb:22:32:2d:0a:0d:5c:3f:dc:df:13:4e: d3:81:7c:21:98:ff:ab:1b:53:3b:56:47:35:c9:b9:c0:bb:04: 80:35:a5:c2:50:69:fd:3f:1f:cb:39:43:0d:67:cc:f6:ce:9c: b7:d9:3f:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCi8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTMwOEYxMTAvBgNVBAUTKDI4NjgyRUM3MjNDQ0UzMzYxODVCMzMzMDIwMTNGRjAw NjBEREUwOUEwHhcNMjUwNjE0MTkzNTQ4WhcNMjUwNjIxMTkzNTQ4WjAYMRYwFAYD VQQDEw02ODRkY2YxNC1hNDFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAymCu1X+oJX5SWKEJAcn5NWqsuEBQ4aunL81bZSZGRljURnTia04UweXwrL+w 7wFDRdJM/nIa75OLgUHuVuCqKOmiVuAotzMslZiQOyH3TUjO99oU4owS4St8ZVQT GFj64S6xo9GCMj/xqLju1oLSHqXrYqKNB3kO2JFgaFavehjKGb7qkCYLr1WWarY7 Op+W4XVY7QwzGosLgD6Bx0LjOj4K96Tf/4XeE/87UL98UAoPxF9A50SxoBm8Jp4S 0/ZLFYKUw0qFOdnj9ALGQEo6K/xDkZ4BPry5OC9lYv4l5dRzpSIc71N6ynj8jCZk YD7Z1sJsyIKCqGAgP0PZmB+twwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPy/K/V5 RBMPDojEXeRxd6lsnJ4CMB8GA1UdIwQYMBaAFChoLscjzOM2GFszMCAT/wBg3eCa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzA4Ri9COUIzNDQ1QzZG ODcxMUVBOTNBOUY5MzNDNEY5QUUwMi9LR2d1eHlQTTR6WVlXek13SUJQX0FHRGQ0 Sm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tHZ3V4eVBNNHpZWVd6TXdJQlBfQUdEZDRKby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzA4Ri9COUIzNDQ1QzZGODcxMUVBOTNBOUY5MzNDNEY5QUUwMi9LR2d1eHlQTTR6 WVlXek13SUJQX0FHRGQ0Sm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+aF/lX04F6rcN80LeYZN1+pzWRk9B3BKCifdCk7sdRPfr4Ovzo45k sEwu5QEV1VjpcpZwRiRTEtglWWVO4HlLEIbSLgrB0k5cKgmCo0mjqp/r/pKiIpq3 gHNzF8/3oSPZmnqOQ9CxFloEtFpO5CSUlz3itbHEbMvVEHUqKsmLfPJMUhTLcez4 d8/8FsTjmgQfA4olO6ECw7di0NRcBcRmtV0JYJRrD1RduI2mFlpvbfOXHOFiGYSw VUEJn5SJRaMSWn7hRQg1ZLZblZvrIjItCg1cP9zfE07TgXwhmP+rG1M7Vkc1ybnA uwSANaXCUGn9Px/LOUMNZ8z2zpy32T8S -----END CERTIFICATE-----Generated at Sun Jun 15 07:16:11 2025 by rpki-client