$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft File: K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft (raw, json) Hash identifier: zecbyDap2RoMObDnujTXQdYU7oECezOYohauLzuZe/Y= Subject key identifier: 90:81:32:B0:0F:02:C8:10:9E:11:58:A4:33:00:77:D1:8C:93:BD:9E Authority key identifier: 2B:CA:12:D4:6D:46:11:ED:6E:F1:88:6F:36:44:68:DF:3D:02:ED:E5 Certificate issuer: /CN=A91AE25A/serialNumber=2BCA12D46D4611ED6EF1886F364468DF3D02EDE5 Certificate serial: 0158 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8oS1G1GEe1u8YhvNkRo3z0C7eU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft Manifest number: 0155 Signing time: Fri 13 Jun 2025 03:05:38 +0000 Manifest this update: Fri 13 Jun 2025 03:05:38 +0000 Manifest next update: Fri 20 Jun 2025 03:05:38 +0000 Files and hashes: 1: K8oS1G1GEe1u8YhvNkRo3z0C7eU.crl (hash: d6mKe2zB0tNHiRMic6dpV4ElY8kkMzNsyuTE+Xlxgrs=) 2: AB366D1C409611EE92C55F40C4F9AE02.roa (hash: bUZufHm2YUJjKX7UE+iKB/iI+xqEJZ46mEmd8NCr+x8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.crl rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8oS1G1GEe1u8YhvNkRo3z0C7eU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 03:05:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 344 (0x158) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE25A, serialNumber=2BCA12D46D4611ED6EF1886F364468DF3D02EDE5 Validity Not Before: Jun 13 03:05:38 2025 GMT Not After : Jun 20 03:05:38 2025 GMT Subject: CN=684b9582-2699 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b6:4b:50:e7:80:0a:8a:af:63:68:02:7c:e0: 9e:2f:8d:c8:7c:9f:ea:e8:32:4d:10:9d:75:23:ee: 51:83:02:ac:8d:ab:33:d8:33:bd:1d:15:f5:89:72: 63:23:96:ac:e2:62:a5:8b:a0:dd:69:ac:fc:70:8d: 02:75:4e:bd:3a:e1:89:bf:97:2d:d3:57:d8:d9:86: b6:f7:3b:75:bb:f9:96:65:80:ec:42:96:0d:29:ea: 35:48:a6:b3:93:29:34:46:8a:44:c3:5b:34:0f:6f: 19:fe:a1:e2:e1:a3:08:8c:42:ef:38:2f:48:49:1a: 55:54:b1:1d:f8:36:02:40:27:8a:ce:00:69:7a:bf: 78:73:05:ec:bf:61:e3:66:73:41:d0:d1:94:0d:4a: 3c:d5:db:b2:bc:46:d2:cc:ca:44:2e:5b:c5:15:c7: 26:6f:6a:64:e8:23:ab:fd:61:b4:3b:c5:64:e7:24: 3c:38:38:59:6d:b5:9a:53:1b:08:90:86:2c:d6:fa: e9:7c:76:eb:4a:98:c2:a9:c8:78:92:0b:5a:d2:a2: 64:f9:11:43:81:76:be:3e:a0:77:d6:e1:75:62:ad: 64:fb:f0:57:62:e6:33:1b:ce:7d:22:9a:57:dc:30: 17:51:7d:4e:23:46:6a:51:bf:3b:a7:2c:42:e0:bb: 6b:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:81:32:B0:0F:02:C8:10:9E:11:58:A4:33:00:77:D1:8C:93:BD:9E X509v3 Authority Key Identifier: keyid:2B:CA:12:D4:6D:46:11:ED:6E:F1:88:6F:36:44:68:DF:3D:02:ED:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8oS1G1GEe1u8YhvNkRo3z0C7eU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:92:c9:1a:5e:25:ab:ba:ff:f4:19:8c:5e:74:2b:8f:4a:1f: ba:fd:7d:b7:7a:05:fa:fe:4c:14:be:3e:de:99:ac:79:0c:ba: e3:cf:f8:43:c2:c1:a9:5d:48:15:f4:f2:97:56:9d:84:21:0b: b3:6d:39:84:51:46:ba:1d:cb:43:6f:08:e5:2f:83:c2:f7:ed: 6a:14:03:d4:c4:ce:7e:61:88:98:eb:c2:77:f2:f1:f6:6f:20: 44:90:a3:7b:e6:c7:c7:f5:53:61:0a:9c:df:38:1f:4f:72:8e: 8a:c9:70:4a:39:c9:75:17:ca:23:0f:e0:d2:32:4d:ba:e2:b5: 86:6a:e9:ca:2e:f7:7e:4f:be:f2:4c:42:b3:44:53:1e:50:db: 48:2c:c5:9f:58:4c:12:30:10:ac:13:83:33:2d:00:71:0c:d0: 76:a5:00:d3:1b:c2:47:c0:95:18:d0:fc:61:8e:b8:26:de:14: b8:fa:49:f6:ef:59:ea:8f:16:03:83:06:a8:1b:2f:6e:f7:2d: 99:2e:b3:ce:10:a9:ef:f0:67:1b:e2:24:cf:fc:aa:7f:d0:18: 05:54:ad:2d:96:d4:c5:da:a5:71:93:9e:8b:c7:c6:19:be:a0: 05:7b:d4:fe:5b:87:63:9a:6f:b5:05:cf:2c:23:a1:79:b1:30: 48:b8:d5:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUUyNUExMTAvBgNVBAUTKDJCQ0ExMkQ0NkQ0NjExRUQ2RUYxODg2RjM2NDQ2OERG M0QwMkVERTUwHhcNMjUwNjEzMDMwNTM4WhcNMjUwNjIwMDMwNTM4WjAYMRYwFAYD VQQDEw02ODRiOTU4Mi0yNjk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwrZLUOeACoqvY2gCfOCeL43IfJ/q6DJNEJ11I+5RgwKsjasz2DO9HRX1iXJj I5as4mKli6Ddaaz8cI0CdU69OuGJv5ct01fY2Ya29zt1u/mWZYDsQpYNKeo1SKaz kyk0RopEw1s0D28Z/qHi4aMIjELvOC9ISRpVVLEd+DYCQCeKzgBper94cwXsv2Hj ZnNB0NGUDUo81duyvEbSzMpELlvFFccmb2pk6COr/WG0O8Vk5yQ8ODhZbbWaUxsI kIYs1vrpfHbrSpjCqch4kgta0qJk+RFDgXa+PqB31uF1Yq1k+/BXYuYzG859IppX 3DAXUX1OI0ZqUb87pyxC4LtraQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJCBMrAP AsgQnhFYpDMAd9GMk72eMB8GA1UdIwQYMBaAFCvKEtRtRhHtbvGIbzZEaN89Au3l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTI1QS8yQzk2RjUwODQw OTYxMUVFQjQ2RTZGM0ZDNEY5QUUwMi9LOG9TMUcxR0VlMXU4WWh2TmtSbzN6MEM3 ZVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s4b1MxRzFHRWUxdThZaHZOa1JvM3owQzdlVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTI1QS8yQzk2RjUwODQwOTYxMUVFQjQ2RTZGM0ZDNEY5QUUwMi9LOG9TMUcxR0Vl MXU4WWh2TmtSbzN6MEM3ZVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+kskaXiWruv/0GYxedCuPSh+6/X23egX6/kwUvj7emax5DLrjz/hD wsGpXUgV9PKXVp2EIQuzbTmEUUa6HctDbwjlL4PC9+1qFAPUxM5+YYiY68J38vH2 byBEkKN75sfH9VNhCpzfOB9Pco6KyXBKOcl1F8ojD+DSMk264rWGaunKLvd+T77y TEKzRFMeUNtILMWfWEwSMBCsE4MzLQBxDNB2pQDTG8JHwJUY0Pxhjrgm3hS4+kn2 71nqjxYDgwaoGy9u9y2ZLrPOEKnv8Gcb4iTP/Kp/0BgFVK0tltTF2qVxk56Lx8YZ vqAFe9T+W4djmm+1Bc8sI6F5sTBIuNXX -----END CERTIFICATE-----Generated at Sat Jun 14 19:34:01 2025 by rpki-client