$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft File: KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft (raw, json) Hash identifier: 1YOWbmlEYmQuU+Hd+WYSwibiURp0xlulWpHSokTIq0k= Subject key identifier: 3D:D7:5A:9C:36:52:A2:38:6C:A8:19:24:34:D8:8A:CC:AA:29:37:86 Authority key identifier: 28:F5:E6:5D:75:05:96:1D:C5:50:A9:49:24:DB:CE:FB:B6:76:94:BD Certificate issuer: /CN=A91ACC22/serialNumber=28F5E65D7505961DC550A94924DBCEFBB67694BD Certificate serial: 100F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft Manifest number: 0FFE Signing time: Fri 20 Jun 2025 17:27:01 +0000 Manifest this update: Fri 20 Jun 2025 17:27:01 +0000 Manifest next update: Fri 27 Jun 2025 17:27:01 +0000 Files and hashes: 1: KPXmXXUFlh3FUKlJJNvO-7Z2lL0.crl (hash: BtrLPR+3NXiSi1s2kx8rZDdm6yUA5LoT6GuQ9KcUEkg=) 2: 2A3D8B5EA97D11EABA31B843C4F9AE02.roa (hash: fPoBgkYnMh4IMhrB/TA39+M1O1OAHZFrtUEJDkMooUg=) 3: EF66DDE4E46A11EB9552D31BC4F9AE02.roa (hash: ucL3j8TnFmy+7V5qbIqZDaLy79WcFoXLeH1a5In6i8E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.crl rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Jun 2025 17:27:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4111 (0x100f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACC22, serialNumber=28F5E65D7505961DC550A94924DBCEFBB67694BD Validity Not Before: Jun 20 17:27:01 2025 GMT Not After : Jun 27 17:27:01 2025 GMT Subject: CN=685599e5-4953 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:13:0a:fb:d6:18:db:9e:0f:0e:8b:36:1e:f0: db:19:84:57:9a:f9:2d:2f:26:d7:c7:13:58:3e:80: 82:82:fe:f9:6e:1e:22:33:ee:70:2d:19:53:1c:6c: ac:c9:cb:29:ee:cb:6c:7c:60:2c:6a:cd:39:fc:fd: 31:e9:6b:e2:d7:23:52:02:e4:6f:27:0e:4b:4f:f2: 9f:30:13:48:06:68:cf:fe:dd:fd:6d:89:5f:67:23: 35:1b:38:f5:39:dd:50:6e:23:ca:37:91:b5:3f:62: 53:2c:68:51:57:e4:c3:fb:05:16:84:b7:0c:1e:1b: 49:3e:13:d8:77:2b:b4:01:ec:e1:f5:63:a5:3e:b0: 11:33:58:84:bc:ce:58:eb:e0:dd:71:5d:3e:dd:ab: 73:d2:98:eb:bf:84:0c:66:4d:b8:41:25:54:48:d8: 51:95:ad:a4:b5:1a:c2:b2:86:ac:e4:8f:08:14:1f: 2d:08:f7:af:ea:9f:94:6a:30:65:2e:09:59:9a:f6: 29:54:57:30:00:f5:c1:1b:44:81:25:53:bb:a2:36: a5:aa:dc:80:5f:14:5b:1c:b7:d1:28:34:e6:e2:18: 8f:ef:51:6d:78:36:90:2b:23:32:93:f1:e0:f3:7a: 64:4b:8a:9c:5d:d7:f4:ea:77:45:2a:31:ac:cb:2f: 3a:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:D7:5A:9C:36:52:A2:38:6C:A8:19:24:34:D8:8A:CC:AA:29:37:86 X509v3 Authority Key Identifier: keyid:28:F5:E6:5D:75:05:96:1D:C5:50:A9:49:24:DB:CE:FB:B6:76:94:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:7a:d0:47:2a:6c:69:79:26:c9:82:4d:95:10:7c:24:18:6b: 1b:44:87:86:6d:c3:00:ef:5c:d1:a1:15:59:ec:73:5a:eb:82: a3:2e:00:a6:06:fd:6e:f2:6a:52:62:dd:ae:98:4d:8b:c9:4a: ee:73:9c:4e:18:80:87:1d:92:22:17:be:9a:0e:68:f2:47:0d: 43:3e:a9:62:8e:26:97:2d:a0:8c:f4:8f:a5:0b:9c:a5:3e:28: 50:cb:ae:98:6e:2c:73:56:31:ac:32:e3:07:3c:49:d6:32:e4: de:92:eb:ee:32:36:94:a8:a0:91:82:5f:bb:d7:0e:ac:34:02: d5:db:0d:7a:6b:0e:ac:e4:5d:97:fc:f3:d8:68:d3:9c:18:f4: c5:6d:cb:a9:54:9f:c8:e9:6c:b1:f8:09:ad:92:83:3d:ca:31: 9c:01:99:7c:e8:43:4c:13:5b:ef:58:c3:22:5b:7c:c8:d3:59: 0e:16:d9:7e:08:4d:ec:41:d3:a1:71:8b:f2:24:52:e6:e5:c0: 33:e1:3f:39:5a:81:e5:d9:ae:75:5e:78:74:96:62:3b:23:2c: 35:20:25:ff:b2:67:c8:10:04:27:a0:ab:84:f4:7e:5d:ee:5b: 68:3a:2b:28:7a:b4:1e:f4:d2:5e:c1:8d:90:58:50:b1:93:76: 2a:ea:18:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEA8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNDMjIxMTAvBgNVBAUTKDI4RjVFNjVENzUwNTk2MURDNTUwQTk0OTI0REJDRUZC QjY3Njk0QkQwHhcNMjUwNjIwMTcyNzAxWhcNMjUwNjI3MTcyNzAxWjAYMRYwFAYD VQQDEw02ODU1OTllNS00OTUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxBMK+9YY254PDos2HvDbGYRXmvktLybXxxNYPoCCgv75bh4iM+5wLRlTHGys ycsp7stsfGAsas05/P0x6Wvi1yNSAuRvJw5LT/KfMBNIBmjP/t39bYlfZyM1Gzj1 Od1QbiPKN5G1P2JTLGhRV+TD+wUWhLcMHhtJPhPYdyu0Aezh9WOlPrARM1iEvM5Y 6+DdcV0+3atz0pjrv4QMZk24QSVUSNhRla2ktRrCsoas5I8IFB8tCPev6p+UajBl LglZmvYpVFcwAPXBG0SBJVO7ojalqtyAXxRbHLfRKDTm4hiP71FteDaQKyMyk/Hg 83pkS4qcXdf06ndFKjGsyy86FQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD3XWpw2 UqI4bKgZJDTYisyqKTeGMB8GA1UdIwQYMBaAFCj15l11BZYdxVCpSSTbzvu2dpS9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0MyMi82OTA2QzZGQTRD NzQxMUU5QjdDNEJCNTVDNEY5QUUwMi9LUFhtWFhVRmxoM0ZVS2xKSk52Ty03WjJs TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tQWG1YWFVGbGgzRlVLbEpKTnZPLTdaMmxMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Q0MyMi82OTA2QzZGQTRDNzQxMUU5QjdDNEJCNTVDNEY5QUUwMi9LUFhtWFhVRmxo M0ZVS2xKSk52Ty03WjJsTDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxetBHKmxpeSbJgk2VEHwkGGsbRIeGbcMA71zRoRVZ7HNa64KjLgCm Bv1u8mpSYt2umE2LyUruc5xOGICHHZIiF76aDmjyRw1DPqlijiaXLaCM9I+lC5yl PihQy66YbixzVjGsMuMHPEnWMuTekuvuMjaUqKCRgl+71w6sNALV2w16aw6s5F2X /PPYaNOcGPTFbcupVJ/I6Wyx+AmtkoM9yjGcAZl86ENME1vvWMMiW3zI01kOFtl+ CE3sQdOhcYvyJFLm5cAz4T85WoHl2a51Xnh0lmI7Iyw1ICX/smfIEAQnoKuE9H5d 7ltoOisoerQe9NJewY2QWFCxk3Yq6hgp -----END CERTIFICATE-----Generated at Fri Jun 20 21:30:37 2025 by rpki-client