$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6A35/99277846D49211EFB564DE62C4F9AE02/kkhmtAwwRC1pbyR3AVR1xfBwKsg.mft File: kkhmtAwwRC1pbyR3AVR1xfBwKsg.mft (raw, json) Hash identifier: 3SVv6mUp5XPyt7fbwbV3bnkVw0R4BpnDmH64W86jyeI= Subject key identifier: FE:61:4D:36:E4:F9:2B:DF:B4:DA:A1:24:DD:FC:4C:FB:3E:B8:B6:6D Authority key identifier: 92:48:66:B4:0C:30:44:2D:69:6F:24:77:01:54:75:C5:F0:70:2A:C8 Certificate issuer: /CN=A91C6A35/serialNumber=924866B40C30442D696F2477015475C5F0702AC8 Certificate serial: 50 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kkhmtAwwRC1pbyR3AVR1xfBwKsg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6A35/99277846D49211EFB564DE62C4F9AE02/kkhmtAwwRC1pbyR3AVR1xfBwKsg.mft Manifest number: 4F Signing time: Thu 19 Jun 2025 06:39:40 +0000 Manifest this update: Thu 19 Jun 2025 06:39:40 +0000 Manifest next update: Thu 26 Jun 2025 06:39:40 +0000 Files and hashes: 1: kkhmtAwwRC1pbyR3AVR1xfBwKsg.crl (hash: VKB8BGr/olSQK8WuzV3QtQAkMp1FNZUibGizJuugxZg=) 2: 06522672D49411EFA8DF5E69C4F9AE02.roa (hash: xnlYEk4KW2VhWwSazH9YyKPxeFaHVTp0cHWmf0iyBnI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6A35/99277846D49211EFB564DE62C4F9AE02/kkhmtAwwRC1pbyR3AVR1xfBwKsg.crl rsync://rpki.apnic.net/member_repository/A91C6A35/99277846D49211EFB564DE62C4F9AE02/kkhmtAwwRC1pbyR3AVR1xfBwKsg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kkhmtAwwRC1pbyR3AVR1xfBwKsg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 06:39:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 80 (0x50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6A35, serialNumber=924866B40C30442D696F2477015475C5F0702AC8 Validity Not Before: Jun 19 06:39:40 2025 GMT Not After : Jun 26 06:39:40 2025 GMT Subject: CN=6853b0ac-4bd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:4c:6a:97:af:8b:ce:13:10:53:18:e6:87:02: 09:da:bb:ac:21:22:87:34:8a:6e:ba:14:a9:e8:73: 6c:85:22:c3:27:29:0f:a4:a6:36:c4:42:63:da:ba: 7a:29:cf:3c:18:d7:14:c1:6d:d6:2c:38:88:b6:18: ab:e1:da:fc:b5:8d:04:b1:86:29:31:56:03:b2:ef: 3a:34:15:f4:2d:a3:b5:ca:ea:0b:5c:c5:db:ba:6e: 39:31:0d:e1:9f:41:7e:1a:53:e4:3c:25:8b:e9:99: e9:9d:e5:ce:2d:d4:38:91:e7:ff:c5:cc:20:24:ed: 39:e1:90:26:65:74:ba:97:d1:19:a8:76:18:b1:fc: 20:52:94:2d:43:af:e1:0b:aa:fb:04:3d:32:7e:41: 55:7f:38:a9:be:b2:fc:6c:f7:d9:a7:82:a1:52:cc: 33:df:68:8c:24:e3:be:38:a1:24:2b:23:62:81:75: 1b:a7:4a:02:82:1c:c9:64:60:8c:d7:e3:ad:bb:06: 25:b5:21:90:a4:7a:01:44:c4:dc:8e:35:bc:01:28: f8:87:be:45:e7:53:6d:ea:c1:e7:53:60:50:e6:77: 4f:0d:bb:cd:f8:cc:d6:1b:53:68:1e:02:b3:f2:25: 49:4f:2e:75:e8:97:c1:8e:81:46:da:c6:6f:c5:9b: af:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:61:4D:36:E4:F9:2B:DF:B4:DA:A1:24:DD:FC:4C:FB:3E:B8:B6:6D X509v3 Authority Key Identifier: keyid:92:48:66:B4:0C:30:44:2D:69:6F:24:77:01:54:75:C5:F0:70:2A:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6A35/99277846D49211EFB564DE62C4F9AE02/kkhmtAwwRC1pbyR3AVR1xfBwKsg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kkhmtAwwRC1pbyR3AVR1xfBwKsg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6A35/99277846D49211EFB564DE62C4F9AE02/kkhmtAwwRC1pbyR3AVR1xfBwKsg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:32:f0:61:70:f9:44:f8:65:a1:f4:d0:9a:50:a7:9c:6c:78: 16:93:7d:95:86:ec:86:c2:de:76:23:ad:e7:e0:c5:8f:99:d8: 52:b5:96:ab:8d:25:7f:c1:43:17:43:09:ef:15:3c:33:8c:d8: 3a:6a:56:7d:7e:a8:d0:f2:fd:db:93:2c:5f:d7:55:0f:84:3b: a3:7b:da:87:5f:80:d9:f8:5c:7c:82:3f:06:b5:5c:8b:cc:8a: 35:73:61:4b:f8:93:cd:c1:07:6b:9a:60:d2:4b:f4:9b:a2:c2: c6:51:8e:3b:96:47:02:93:1b:e0:20:42:2b:22:df:66:2a:ef: ea:b6:ed:b2:ce:0e:a2:ea:ca:cd:29:01:24:98:fb:13:6a:e8: 78:d8:b4:20:88:23:d0:35:32:12:ad:fe:45:88:bd:61:74:2a: 8f:32:82:a8:9c:a6:fd:9c:66:3b:69:e5:d4:cd:e6:a7:27:0c: 9f:5e:85:58:a6:b8:8e:11:a6:b7:54:b0:c3:cd:58:23:07:61: e2:d5:19:f9:87:48:90:34:f0:a8:c9:b0:85:32:af:fb:d7:0e: d6:49:5d:25:d8:57:5f:5b:7b:96:ae:c0:8a:bb:65:7c:9b:45: 60:d3:6f:5a:51:06:48:7f:ee:7d:8a:72:db:31:eb:3e:80:dc: 58:79:1d:47 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NkEzNTExMC8GA1UEBRMoOTI0ODY2QjQwQzMwNDQyRDY5NkYyNDc3MDE1NDc1QzVG MDcwMkFDODAeFw0yNTA2MTkwNjM5NDBaFw0yNTA2MjYwNjM5NDBaMBgxFjAUBgNV BAMTDTY4NTNiMGFjLTRiZDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCxTGqXr4vOExBTGOaHAgnau6whIoc0im66FKnoc2yFIsMnKQ+kpjbEQmPaunop zzwY1xTBbdYsOIi2GKvh2vy1jQSxhikxVgOy7zo0FfQto7XK6gtcxdu6bjkxDeGf QX4aU+Q8JYvpmemd5c4t1DiR5//FzCAk7TnhkCZldLqX0Rmodhix/CBSlC1Dr+EL qvsEPTJ+QVV/OKm+svxs99mngqFSzDPfaIwk4744oSQrI2KBdRunSgKCHMlkYIzX 4627BiW1IZCkegFExNyONbwBKPiHvkXnU23qwedTYFDmd08Nu834zNYbU2geArPy JUlPLnXol8GOgUbaxm/Fm6/nAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU/mFNNuT5 K9+02qEk3fxM+z64tm0wHwYDVR0jBBgwFoAUkkhmtAwwRC1pbyR3AVR1xfBwKsgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM2QTM1Lzk5Mjc3ODQ2RDQ5 MjExRUZCNTY0REU2MkM0RjlBRTAyL2traG10QXd3UkMxcGJ5UjNBVlIxeGZCd0tz Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIva2tobXRBd3dSQzFwYnlSM0FWUjF4ZkJ3S3NnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM2 QTM1Lzk5Mjc3ODQ2RDQ5MjExRUZCNTY0REU2MkM0RjlBRTAyL2traG10QXd3UkMx cGJ5UjNBVlIxeGZCd0tzZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKMy8GFw+UT4ZaH00JpQp5xseBaTfZWG7IbC3nYjrefgxY+Z2FK1lquN JX/BQxdDCe8VPDOM2DpqVn1+qNDy/duTLF/XVQ+EO6N72odfgNn4XHyCPwa1XIvM ijVzYUv4k83BB2uaYNJL9JuiwsZRjjuWRwKTG+AgQisi32Yq7+q27bLODqLqys0p ASSY+xNq6HjYtCCII9A1MhKt/kWIvWF0Ko8ygqicpv2cZjtp5dTN5qcnDJ9ehVim uI4RprdUsMPNWCMHYeLVGfmHSJA08KjJsIUyr/vXDtZJXSXYV19be5auwIq7ZXyb RWDTb1pRBkh/7n2Kctsx6z6A3Fh5HUc= -----END CERTIFICATE-----Generated at Sat Jun 21 01:11:18 2025 by rpki-client