$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7897/B6C5941C1D3511EDA5E6307DC4F9AE02/KqJ4lEtBD6LIO3wq8yxmr6IMEns.mft File: KqJ4lEtBD6LIO3wq8yxmr6IMEns.mft (raw, json) Hash identifier: dWZueTZm+MS2Eb9ztWQ7EaVURsDT95pbTxdMM0wH/lo= Subject key identifier: 69:04:01:2F:89:F8:D5:6E:7B:8E:4A:59:75:96:12:D7:26:49:58:01 Authority key identifier: 2A:A2:78:94:4B:41:0F:A2:C8:3B:7C:2A:F3:2C:66:AF:A2:0C:12:7B Certificate issuer: /CN=A91B7897/serialNumber=2AA278944B410FA2C83B7C2AF32C66AFA20C127B Certificate serial: 026C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KqJ4lEtBD6LIO3wq8yxmr6IMEns.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7897/B6C5941C1D3511EDA5E6307DC4F9AE02/KqJ4lEtBD6LIO3wq8yxmr6IMEns.mft Manifest number: 0260 Signing time: Sun 15 Jun 2025 01:30:38 +0000 Manifest this update: Sun 15 Jun 2025 01:30:37 +0000 Manifest next update: Sun 22 Jun 2025 01:30:37 +0000 Files and hashes: 1: KqJ4lEtBD6LIO3wq8yxmr6IMEns.crl (hash: Rqhi6+p2RgDq8F6js/iue6Hw6uEMgN+RRyp5J1PiwLA=) 2: 6C83604E1E2711EDAA33DF76C4F9AE02.roa (hash: bzrwDCcFjUbW1ddYfzBH2lmiEyj4Sa0r3rrfjXsh0+Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7897/B6C5941C1D3511EDA5E6307DC4F9AE02/KqJ4lEtBD6LIO3wq8yxmr6IMEns.crl rsync://rpki.apnic.net/member_repository/A91B7897/B6C5941C1D3511EDA5E6307DC4F9AE02/KqJ4lEtBD6LIO3wq8yxmr6IMEns.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KqJ4lEtBD6LIO3wq8yxmr6IMEns.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 01:30:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 620 (0x26c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7897, serialNumber=2AA278944B410FA2C83B7C2AF32C66AFA20C127B Validity Not Before: Jun 15 01:30:37 2025 GMT Not After : Jun 22 01:30:37 2025 GMT Subject: CN=684e223e-528c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:df:0f:d9:ac:91:b3:90:a8:77:4b:dc:82:41: b9:60:10:57:d3:22:c8:9a:13:df:79:a6:9c:7e:27: 02:5a:16:e9:02:32:3b:03:68:85:60:7f:2c:5b:d5: 5b:9b:b7:ed:b1:fc:c3:68:f8:3e:9b:42:e9:29:bd: 73:78:d4:81:e8:a6:5f:26:ac:ad:3a:ef:99:87:69: 6c:3e:07:a8:d4:55:94:d9:65:28:3f:9c:68:08:49: 4e:54:34:5f:2f:9a:a0:33:1f:b9:07:2d:48:7f:57: 2f:4a:71:72:a9:5a:27:47:07:52:ba:dc:92:3c:ff: 97:0e:5d:f6:c5:ca:b3:ce:53:8c:1f:03:70:e6:60: 0e:f9:70:bd:96:5a:85:c7:f5:1b:46:40:63:c7:fb: 1a:b2:07:3a:c4:a0:d0:77:cb:bc:a9:07:b6:34:26: b1:a8:a7:8f:37:29:c9:b9:76:87:7c:77:dc:fd:b0: 6a:df:0c:da:7a:39:61:33:7a:76:96:48:31:63:c8: 7c:b4:0c:36:3f:b9:ac:20:75:cd:aa:71:fc:67:47: 89:85:30:ea:3d:15:84:f4:94:92:89:83:1d:ff:ac: a4:e9:ab:4c:2b:4e:9a:80:0a:25:9c:ce:48:ae:13: 8c:6f:5e:34:62:c6:b1:6e:e2:69:16:35:b2:86:61: d0:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:04:01:2F:89:F8:D5:6E:7B:8E:4A:59:75:96:12:D7:26:49:58:01 X509v3 Authority Key Identifier: keyid:2A:A2:78:94:4B:41:0F:A2:C8:3B:7C:2A:F3:2C:66:AF:A2:0C:12:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7897/B6C5941C1D3511EDA5E6307DC4F9AE02/KqJ4lEtBD6LIO3wq8yxmr6IMEns.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KqJ4lEtBD6LIO3wq8yxmr6IMEns.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7897/B6C5941C1D3511EDA5E6307DC4F9AE02/KqJ4lEtBD6LIO3wq8yxmr6IMEns.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:42:a1:65:e8:ef:d8:e7:72:a9:a0:dc:cf:24:a8:03:01:8e: 63:ce:5d:03:30:7d:75:cb:d3:71:72:08:85:a6:74:22:44:db: fd:cc:8b:9e:ba:d2:8b:76:52:72:b5:2a:80:e6:ec:55:01:ac: 4d:03:50:75:3a:34:cb:e9:ef:74:ad:3a:31:60:1d:5f:73:21: 26:37:39:83:d2:10:44:58:4e:ec:6d:db:83:1a:61:cb:bd:38: 36:5f:95:9b:bd:07:47:d3:80:ee:01:55:99:b9:4f:f4:48:ef: e6:cb:19:2b:0a:b3:9c:74:11:cf:4a:8e:ba:43:ae:0c:08:d5: 72:72:5b:6b:1a:eb:4d:c0:50:70:b5:fb:27:81:23:c8:5f:d5: 5a:88:e1:8d:38:85:d8:e0:cb:5b:9b:23:31:70:08:42:3c:d5: 1c:f7:55:43:5a:67:c5:6b:89:ca:5a:55:fb:4b:99:ac:65:a8: 04:c8:69:6c:1d:e1:c6:42:b4:7c:fc:64:07:05:44:60:48:0a: 5a:30:10:ba:4e:ed:94:d2:de:9f:b3:a7:94:9f:df:78:33:7b: 26:62:af:81:9b:26:a8:e9:d2:64:15:20:5d:a2:91:52:a0:c2: 4a:45:f1:c2:60:d8:ac:90:bc:3e:b2:dc:a3:fd:58:46:a2:52: d4:93:3c:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc4OTcxMTAvBgNVBAUTKDJBQTI3ODk0NEI0MTBGQTJDODNCN0MyQUYzMkM2NkFG QTIwQzEyN0IwHhcNMjUwNjE1MDEzMDM3WhcNMjUwNjIyMDEzMDM3WjAYMRYwFAYD VQQDEw02ODRlMjIzZS01MjhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAod8P2ayRs5Cod0vcgkG5YBBX0yLImhPfeaacficCWhbpAjI7A2iFYH8sW9Vb m7ftsfzDaPg+m0LpKb1zeNSB6KZfJqytOu+Zh2lsPgeo1FWU2WUoP5xoCElOVDRf L5qgMx+5By1If1cvSnFyqVonRwdSutySPP+XDl32xcqzzlOMHwNw5mAO+XC9llqF x/UbRkBjx/sasgc6xKDQd8u8qQe2NCaxqKePNynJuXaHfHfc/bBq3wzaejlhM3p2 lkgxY8h8tAw2P7msIHXNqnH8Z0eJhTDqPRWE9JSSiYMd/6yk6atMK06agAolnM5I rhOMb140YsaxbuJpFjWyhmHQ7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGkEAS+J +NVue45KWXWWEtcmSVgBMB8GA1UdIwQYMBaAFCqieJRLQQ+iyDt8KvMsZq+iDBJ7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzg5Ny9CNkM1OTQxQzFE MzUxMUVEQTVFNjMwN0RDNEY5QUUwMi9LcUo0bEV0QkQ2TElPM3dxOHl4bXI2SU1F bnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0txSjRsRXRCRDZMSU8zd3E4eXhtcjZJTUVucy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Nzg5Ny9CNkM1OTQxQzFEMzUxMUVEQTVFNjMwN0RDNEY5QUUwMi9LcUo0bEV0QkQ2 TElPM3dxOHl4bXI2SU1FbnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOQqFl6O/Y53KpoNzPJKgDAY5jzl0DMH11y9NxcgiFpnQiRNv9zIue utKLdlJytSqA5uxVAaxNA1B1OjTL6e90rToxYB1fcyEmNzmD0hBEWE7sbduDGmHL vTg2X5WbvQdH04DuAVWZuU/0SO/myxkrCrOcdBHPSo66Q64MCNVycltrGutNwFBw tfsngSPIX9VaiOGNOIXY4MtbmyMxcAhCPNUc91VDWmfFa4nKWlX7S5msZagEyGls HeHGQrR8/GQHBURgSApaMBC6Tu2U0t6fs6eUn994M3smYq+Bmyao6dJkFSBdopFS oMJKRfHCYNiskLw+styj/VhGolLUkzzE -----END CERTIFICATE-----Generated at Sun Jun 15 05:46:58 2025 by rpki-client