$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADD64/4EB2B428134B11EF94424D3DC4F9AE02/_Kk1XBq-QE8_PPUZL9NLEloAvxs.mft File: _Kk1XBq-QE8_PPUZL9NLEloAvxs.mft (raw, json) Hash identifier: gaHwGkmqZs68QLaDih6LWUjVQhwYrZc6AhRpfIxhutc= Subject key identifier: 8A:1C:06:17:50:CD:18:CD:28:58:9C:1E:CD:34:53:8E:55:82:D4:19 Authority key identifier: FC:A9:35:5C:1A:BE:40:4F:3F:3C:F5:19:2F:D3:4B:12:5A:00:BF:1B Certificate issuer: /CN=A91ADD64/serialNumber=FCA9355C1ABE404F3F3CF5192FD34B125A00BF1B Certificate serial: D3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_Kk1XBq-QE8_PPUZL9NLEloAvxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADD64/4EB2B428134B11EF94424D3DC4F9AE02/_Kk1XBq-QE8_PPUZL9NLEloAvxs.mft Manifest number: CF Signing time: Thu 19 Jun 2025 05:02:26 +0000 Manifest this update: Thu 19 Jun 2025 05:02:26 +0000 Manifest next update: Thu 26 Jun 2025 05:02:26 +0000 Files and hashes: 1: _Kk1XBq-QE8_PPUZL9NLEloAvxs.crl (hash: +TZh1DZbkQxegwEpIDWSE0JI6nP0KjnNaX84Xm5KQDI=) 2: 57FBE074370111F094BF7862C4F9AE02.roa (hash: NzrXfR/7zniLvrCXQlmVGg2isIi5LfwP1ubwC3yxm7E=) 3: 5740BDF8370111F094BF7862C4F9AE02.roa (hash: /GfdIIe6m1dYDx7Tm/mUgCqzxCNCLDFcedZ67s1StUY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADD64/4EB2B428134B11EF94424D3DC4F9AE02/_Kk1XBq-QE8_PPUZL9NLEloAvxs.crl rsync://rpki.apnic.net/member_repository/A91ADD64/4EB2B428134B11EF94424D3DC4F9AE02/_Kk1XBq-QE8_PPUZL9NLEloAvxs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_Kk1XBq-QE8_PPUZL9NLEloAvxs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 05:02:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 211 (0xd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADD64, serialNumber=FCA9355C1ABE404F3F3CF5192FD34B125A00BF1B Validity Not Before: Jun 19 05:02:26 2025 GMT Not After : Jun 26 05:02:26 2025 GMT Subject: CN=685399e2-504f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:f9:d3:e0:75:f9:79:32:f5:f6:5f:f8:68:0f: 93:ca:f0:81:9c:68:48:8d:a6:d3:79:b5:a5:c1:63: 78:7d:38:a0:9a:e0:bf:d6:4a:fa:f7:f6:f7:eb:f5: 70:63:83:23:36:9c:6f:87:13:16:9b:b1:72:89:d4: f3:f1:76:c1:a1:13:27:a8:38:e0:16:7f:4b:2d:64: da:b6:1e:96:dd:cb:ac:ad:fb:a5:5c:6a:d9:59:2e: 3c:ce:c3:30:d2:b0:da:b0:00:31:98:7b:3f:41:25: 0d:f1:e9:10:a7:a4:a1:ad:e6:48:92:90:28:3f:c8: cf:2c:64:d2:e4:10:61:21:8c:97:bc:b7:d4:3e:57: a5:e6:5c:96:96:4c:43:a1:6d:2e:7e:1d:09:d9:14: 8d:58:ee:35:e4:22:f1:d4:18:46:f2:c1:27:8d:c7: 91:f7:83:10:03:00:0b:95:58:9d:b5:d7:85:8c:22: b0:83:a2:88:af:27:7a:51:f2:04:a2:7c:fa:62:23: dc:8a:19:fb:9b:19:9f:3d:0b:83:55:d8:ac:8f:20: e2:eb:ee:c3:5a:c4:c6:5f:53:1c:6e:ca:33:f7:65: df:31:b7:ad:41:20:42:a8:66:be:ed:d8:70:a0:47: 64:02:a2:45:b2:87:21:39:78:0a:cd:b8:85:6a:5a: 86:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:1C:06:17:50:CD:18:CD:28:58:9C:1E:CD:34:53:8E:55:82:D4:19 X509v3 Authority Key Identifier: keyid:FC:A9:35:5C:1A:BE:40:4F:3F:3C:F5:19:2F:D3:4B:12:5A:00:BF:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADD64/4EB2B428134B11EF94424D3DC4F9AE02/_Kk1XBq-QE8_PPUZL9NLEloAvxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_Kk1XBq-QE8_PPUZL9NLEloAvxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADD64/4EB2B428134B11EF94424D3DC4F9AE02/_Kk1XBq-QE8_PPUZL9NLEloAvxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:90:cd:1d:b0:a1:a6:3a:aa:a5:41:60:08:38:5d:e4:4a:18: ac:75:8d:f4:e2:93:27:f1:f0:c7:95:aa:cd:e7:5f:27:ee:b3: 62:1b:31:26:c0:5f:7e:fe:fc:bc:a3:a6:18:0d:a8:65:c3:84: a2:d1:bd:c2:ec:08:ca:84:c2:5b:23:c6:3d:bf:80:55:bd:76: fb:8b:cd:da:b8:9c:19:3d:89:bd:e9:72:71:13:76:3a:65:b4: 2f:72:c9:20:9e:61:3a:14:14:17:28:80:5d:11:38:38:7e:b7: 12:f3:2b:97:9c:11:07:dc:3b:1b:af:48:fb:b8:0e:29:3e:4e: 88:35:70:fc:a7:a1:99:80:69:eb:c2:39:76:0b:85:0a:e7:d6: 46:79:cd:db:ac:13:40:58:ef:4f:eb:85:c7:9b:99:6b:3d:3b: 51:cd:c1:c8:99:a7:f0:aa:76:a1:2c:52:18:b4:22:65:d1:b9: cb:1e:db:6c:bf:2a:73:14:b0:59:05:c0:73:89:92:80:ee:01: 72:4b:5c:54:7e:a5:66:c4:43:0a:b5:2b:8d:a0:f0:f6:cc:42: d3:2a:24:a5:e4:ba:8f:76:70:c1:37:d4:d9:4e:1d:f3:5b:02: 52:c9:37:e0:21:c6:b8:a7:3b:62:82:8e:99:77:a4:2e:3a:b9: 62:45:41:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QURENjQxMTAvBgNVBAUTKEZDQTkzNTVDMUFCRTQwNEYzRjNDRjUxOTJGRDM0QjEy NUEwMEJGMUIwHhcNMjUwNjE5MDUwMjI2WhcNMjUwNjI2MDUwMjI2WjAYMRYwFAYD VQQDEw02ODUzOTllMi01MDRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtvnT4HX5eTL19l/4aA+TyvCBnGhIjabTebWlwWN4fTigmuC/1kr69/b36/Vw Y4MjNpxvhxMWm7FyidTz8XbBoRMnqDjgFn9LLWTath6W3cusrfulXGrZWS48zsMw 0rDasAAxmHs/QSUN8ekQp6ShreZIkpAoP8jPLGTS5BBhIYyXvLfUPlel5lyWlkxD oW0ufh0J2RSNWO415CLx1BhG8sEnjceR94MQAwALlVidtdeFjCKwg6KIryd6UfIE onz6YiPcihn7mxmfPQuDVdisjyDi6+7DWsTGX1Mcbsoz92XfMbetQSBCqGa+7dhw oEdkAqJFsochOXgKzbiFalqGjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIocBhdQ zRjNKFicHs00U45VgtQZMB8GA1UdIwQYMBaAFPypNVwavkBPPzz1GS/TSxJaAL8b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBREQ2NC80RUIyQjQyODEz NEIxMUVGOTQ0MjREM0RDNEY5QUUwMi9fS2sxWEJxLVFFOF9QUFVaTDlOTEVsb0F2 eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL19LazFYQnEtUUU4X1BQVVpMOU5MRWxvQXZ4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB REQ2NC80RUIyQjQyODEzNEIxMUVGOTQ0MjREM0RDNEY5QUUwMi9fS2sxWEJxLVFF OF9QUFVaTDlOTEVsb0F2eHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwkM0dsKGmOqqlQWAIOF3kShisdY304pMn8fDHlarN518n7rNiGzEm wF9+/vy8o6YYDahlw4Si0b3C7AjKhMJbI8Y9v4BVvXb7i83auJwZPYm96XJxE3Y6 ZbQvcskgnmE6FBQXKIBdETg4frcS8yuXnBEH3Dsbr0j7uA4pPk6INXD8p6GZgGnr wjl2C4UK59ZGec3brBNAWO9P64XHm5lrPTtRzcHImafwqnahLFIYtCJl0bnLHtts vypzFLBZBcBziZKA7gFyS1xUfqVmxEMKtSuNoPD2zELTKiSl5LqPdnDBN9TZTh3z WwJSyTfgIca4pztigo6Zd6QuOrliRUHv -----END CERTIFICATE-----Generated at Fri Jun 20 14:57:35 2025 by rpki-client