$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft File: kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft (raw, json) Hash identifier: Rryc4xChssuLHZNN+UQmQKZo0O0xzF/9YygEChbzmNI= Subject key identifier: 0B:D7:C1:A0:C4:F9:36:97:5E:B9:48:DC:4C:B5:22:51:55:C2:50:5B Authority key identifier: 91:9F:A8:19:B2:FF:F1:45:52:1A:F6:64:03:52:78:E7:E7:91:4A:49 Certificate issuer: /CN=A91BB6E3/serialNumber=919FA819B2FFF145521AF664035278E7E7914A49 Certificate serial: 01D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kZ-oGbL_8UVSGvZkA1J45-eRSkk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft Manifest number: 01BC Signing time: Sun 15 Jun 2025 02:30:31 +0000 Manifest this update: Sun 15 Jun 2025 02:30:30 +0000 Manifest next update: Sun 22 Jun 2025 02:30:30 +0000 Files and hashes: 1: kZ-oGbL_8UVSGvZkA1J45-eRSkk.crl (hash: 3y0YsB+2SRYkzXqwfKcmv9O2YZwndpHnGm7sxXsuBYY=) 2: F96174ECC27D11EDB8226F2DC4F9AE02.roa (hash: kXeNIsHETQcXUic6LYufG6XvgVMVgH9sGtHQdmkZT90=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.crl rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kZ-oGbL_8UVSGvZkA1J45-eRSkk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:30:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 465 (0x1d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB6E3, serialNumber=919FA819B2FFF145521AF664035278E7E7914A49 Validity Not Before: Jun 15 02:30:30 2025 GMT Not After : Jun 22 02:30:30 2025 GMT Subject: CN=684e3047-1cda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:58:dd:f9:c2:e8:24:88:7c:28:e7:31:84:22: 46:41:cd:2e:8d:fd:55:44:f7:5e:cc:67:17:ad:37: ff:18:37:79:6c:da:68:2a:7c:e7:e3:e9:c3:14:3f: c3:e2:9c:29:46:96:4d:94:26:ee:91:ec:3c:58:34: 35:11:ab:53:40:e2:b7:b1:4e:9f:2d:af:ae:ea:d9: c5:79:af:6c:74:53:a7:71:71:ab:fc:be:70:fb:d7: ed:96:90:7f:b1:f2:06:32:d7:2c:4c:a8:3b:38:a0: bd:99:bd:cf:07:91:b5:a7:84:3a:6a:86:ec:c1:de: aa:d1:68:2f:83:52:60:cd:cf:96:42:7c:6e:a4:53: c4:7c:f9:40:56:25:96:e2:51:d8:6c:3b:ea:39:80: d5:90:24:8f:56:a5:47:ab:70:cc:b5:e3:ac:5c:f8: 34:21:7b:8c:dd:ce:65:0c:a9:18:8f:e8:e0:ec:5a: f5:e7:02:34:fa:78:3d:8d:e7:d5:46:0e:4d:b9:11: 4a:5e:74:18:ee:56:8a:c1:c0:c8:b7:4a:44:a5:fd: 65:6a:22:04:12:65:05:f3:45:93:03:7c:6a:be:cb: 0b:fc:d5:38:a3:88:30:06:b7:34:89:2f:d5:02:8a: e1:bb:2b:2c:66:16:d5:ee:e9:3d:bd:dd:f8:8d:20: d3:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:D7:C1:A0:C4:F9:36:97:5E:B9:48:DC:4C:B5:22:51:55:C2:50:5B X509v3 Authority Key Identifier: keyid:91:9F:A8:19:B2:FF:F1:45:52:1A:F6:64:03:52:78:E7:E7:91:4A:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kZ-oGbL_8UVSGvZkA1J45-eRSkk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:66:97:d4:31:a0:1d:a1:1c:da:0a:66:9a:f5:a5:37:88:72: bf:87:52:d2:26:c5:21:bd:02:6e:27:f7:e7:6f:28:60:f2:13: c2:26:90:c0:c6:03:f6:9c:07:5f:07:0d:13:e9:d5:b9:a3:58: ff:33:4e:e2:15:60:6e:11:d3:fd:49:99:94:2e:a7:fd:fd:4e: 1c:84:dd:ef:d3:2a:b0:3a:de:e4:26:f9:34:d1:fa:f1:27:89: af:b1:81:5d:08:8f:e4:b0:60:0c:05:4c:2f:f3:43:d2:68:10: a9:3b:50:a0:ab:26:a2:f2:0f:25:eb:3c:60:16:e3:bb:63:29: 91:ec:05:ff:9c:f9:49:be:83:e4:ed:01:0d:9e:28:fd:d8:2f: 2b:65:02:31:70:e9:d0:20:ab:80:5a:20:e5:0c:fd:d0:1f:f0: f8:3f:2b:84:5b:fc:a7:4d:17:36:77:1f:eb:aa:90:ad:4c:93: 74:d3:d6:52:1a:e2:f9:ed:5a:ca:84:7d:19:2b:50:b4:98:c5: 4e:b2:12:f3:95:74:47:99:e5:69:71:8e:26:d5:71:ac:a3:f7: 21:51:59:72:87:94:1e:a3:97:a3:49:af:30:1b:d6:5e:16:42: 4f:dd:d3:83:8e:6a:a8:e5:07:73:26:51:fd:59:2e:1d:5a:31: 37:0f:a6:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI2RTMxMTAvBgNVBAUTKDkxOUZBODE5QjJGRkYxNDU1MjFBRjY2NDAzNTI3OEU3 RTc5MTRBNDkwHhcNMjUwNjE1MDIzMDMwWhcNMjUwNjIyMDIzMDMwWjAYMRYwFAYD VQQDEw02ODRlMzA0Ny0xY2RhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArljd+cLoJIh8KOcxhCJGQc0ujf1VRPdezGcXrTf/GDd5bNpoKnzn4+nDFD/D 4pwpRpZNlCbukew8WDQ1EatTQOK3sU6fLa+u6tnFea9sdFOncXGr/L5w+9ftlpB/ sfIGMtcsTKg7OKC9mb3PB5G1p4Q6aobswd6q0Wgvg1Jgzc+WQnxupFPEfPlAViWW 4lHYbDvqOYDVkCSPVqVHq3DMteOsXPg0IXuM3c5lDKkYj+jg7Fr15wI0+ng9jefV Rg5NuRFKXnQY7laKwcDIt0pEpf1laiIEEmUF80WTA3xqvssL/NU4o4gwBrc0iS/V AorhuyssZhbV7uk9vd34jSDTGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAvXwaDE +TaXXrlI3Ey1IlFVwlBbMB8GA1UdIwQYMBaAFJGfqBmy//FFUhr2ZANSeOfnkUpJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjZFMy9BMjJDODE0Q0My NzUxMUVEQjNCNEQ3MjhDNEY5QUUwMi9rWi1vR2JMXzhVVlNHdlprQTFKNDUtZVJT a2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2taLW9HYkxfOFVWU0d2WmtBMUo0NS1lUlNray5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjZFMy9BMjJDODE0Q0MyNzUxMUVEQjNCNEQ3MjhDNEY5QUUwMi9rWi1vR2JMXzhV VlNHdlprQTFKNDUtZVJTa2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoZpfUMaAdoRzaCmaa9aU3iHK/h1LSJsUhvQJuJ/fnbyhg8hPCJpDA xgP2nAdfBw0T6dW5o1j/M07iFWBuEdP9SZmULqf9/U4chN3v0yqwOt7kJvk00frx J4mvsYFdCI/ksGAMBUwv80PSaBCpO1Cgqyai8g8l6zxgFuO7YymR7AX/nPlJvoPk 7QENnij92C8rZQIxcOnQIKuAWiDlDP3QH/D4PyuEW/ynTRc2dx/rqpCtTJN009ZS GuL57VrKhH0ZK1C0mMVOshLzlXRHmeVpcY4m1XGso/chUVlyh5Qeo5ejSa8wG9Ze FkJP3dODjmqo5QdzJlH9WS4dWjE3D6YY -----END CERTIFICATE-----Generated at Sun Jun 15 08:03:45 2025 by rpki-client