$ rpki-client -vvf rpki.apnic.net/member_repository/A91C744F/B7F9385E22B711EB8C37033CC4F9AE02/KJ6yPyjJzyP6W5GKZQy4QoBQMHs.mft File: KJ6yPyjJzyP6W5GKZQy4QoBQMHs.mft (raw, json) Hash identifier: LWBkylvkmIA05kvYpqxIqwUzNxbO0iMueqSJuyDqeKE= Subject key identifier: 93:48:29:53:EF:BE:73:AF:C1:30:A9:C2:2D:41:3B:41:ED:C8:9B:5A Authority key identifier: 28:9E:B2:3F:28:C9:CF:23:FA:5B:91:8A:65:0C:B8:42:80:50:30:7B Certificate issuer: /CN=A91C744F/serialNumber=289EB23F28C9CF23FA5B918A650CB8428050307B Certificate serial: 0784 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJ6yPyjJzyP6W5GKZQy4QoBQMHs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C744F/B7F9385E22B711EB8C37033CC4F9AE02/KJ6yPyjJzyP6W5GKZQy4QoBQMHs.mft Manifest number: 076F Signing time: Sat 14 Jun 2025 21:21:41 +0000 Manifest this update: Sat 14 Jun 2025 21:21:40 +0000 Manifest next update: Sat 21 Jun 2025 21:21:40 +0000 Files and hashes: 1: KJ6yPyjJzyP6W5GKZQy4QoBQMHs.crl (hash: 5Aea/VtfPk6VltJH2aFfp4vzj1B3qPFbhqTSinPdK1A=) 2: E7EFEDC07C1F11EB95B6492DC4F9AE02.roa (hash: PfwMudypLXBG0l/8zURzPSjDmL/lqt08xsdYYn3A5t8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C744F/B7F9385E22B711EB8C37033CC4F9AE02/KJ6yPyjJzyP6W5GKZQy4QoBQMHs.crl rsync://rpki.apnic.net/member_repository/A91C744F/B7F9385E22B711EB8C37033CC4F9AE02/KJ6yPyjJzyP6W5GKZQy4QoBQMHs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJ6yPyjJzyP6W5GKZQy4QoBQMHs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 21:21:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1924 (0x784) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C744F, serialNumber=289EB23F28C9CF23FA5B918A650CB8428050307B Validity Not Before: Jun 14 21:21:40 2025 GMT Not After : Jun 21 21:21:40 2025 GMT Subject: CN=684de7e4-c1fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:87:42:33:ae:e5:9a:75:2d:f3:7b:fe:59:72: 5a:e6:fe:9f:5a:42:8a:fb:77:10:a6:c5:f1:bc:ae: 5c:f3:4d:57:07:6e:ac:47:e3:16:b3:9f:73:1c:88: 88:ba:4d:86:62:44:22:b8:1d:c8:d3:b1:fc:1a:31: ab:00:64:0e:63:08:69:96:39:30:ad:8e:67:ea:6f: 93:a3:ef:e4:34:51:d4:41:fe:ff:ee:9a:52:01:1b: 74:87:a1:64:82:a0:2b:c2:e8:41:69:45:03:7b:f1: 9b:b1:a4:22:c8:87:fd:ff:e6:62:e6:39:42:8a:8e: d1:9f:58:87:cf:45:b8:81:93:1f:ed:6e:19:f1:97: de:13:f6:d1:57:89:f1:2f:94:60:b3:32:e5:84:70: 89:91:2c:4d:b0:b2:1d:03:8b:1b:93:a7:64:e1:b5: eb:73:7d:6b:f0:de:0a:34:28:d5:de:9e:70:36:37: df:78:20:77:73:93:73:eb:12:1a:c1:36:f3:15:02: af:a1:70:68:d8:ee:70:64:3a:cf:cd:be:69:d0:0d: fd:28:ee:7d:a8:67:01:eb:66:f0:d5:2f:d3:07:64: 79:7b:85:e9:eb:29:e8:c1:61:55:d9:ca:b2:ce:6c: 6e:dd:48:42:c4:54:63:18:d1:49:e9:2d:25:81:a7: ad:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:48:29:53:EF:BE:73:AF:C1:30:A9:C2:2D:41:3B:41:ED:C8:9B:5A X509v3 Authority Key Identifier: keyid:28:9E:B2:3F:28:C9:CF:23:FA:5B:91:8A:65:0C:B8:42:80:50:30:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C744F/B7F9385E22B711EB8C37033CC4F9AE02/KJ6yPyjJzyP6W5GKZQy4QoBQMHs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJ6yPyjJzyP6W5GKZQy4QoBQMHs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C744F/B7F9385E22B711EB8C37033CC4F9AE02/KJ6yPyjJzyP6W5GKZQy4QoBQMHs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:7e:57:06:24:af:3b:b3:84:dd:60:47:da:bb:6c:22:7b:ff: 9b:93:13:18:96:c6:c9:43:fb:d5:97:1a:8e:d9:b7:c6:e7:90: 12:30:12:d7:cf:01:fc:b9:f6:99:aa:96:49:ed:c3:ae:c6:fd: 7c:58:39:65:41:6f:5c:9c:13:3b:db:b1:60:cc:69:ae:2d:79: 6a:f6:73:94:bf:03:06:ba:55:bf:7d:4a:f9:9a:19:f5:39:e6: b7:98:58:af:4f:5a:7a:59:90:38:7f:ac:90:0b:6e:ed:48:c4: ee:ca:26:a2:38:5d:6a:5a:cf:38:9d:06:b8:77:9a:de:b8:d6: bc:b5:e3:72:d5:81:43:93:87:3e:e4:90:ed:f7:b3:e9:76:60: 45:99:f3:d7:e1:8b:f2:1a:4d:a9:e2:71:d0:d9:bc:a0:16:f7: 3d:01:34:71:99:ae:e2:97:6d:3a:67:95:b9:61:33:96:15:3a: 54:ae:21:3a:4f:98:cb:56:05:7d:97:2c:d5:53:db:7b:8f:eb: 8c:3c:96:50:00:9a:9c:0a:32:45:9c:96:8c:b4:3d:ba:59:40: fb:b2:c1:2d:df:d3:5f:4f:68:b6:f4:4b:07:eb:77:da:e5:36: d4:05:5b:4c:02:b0:8c:7d:9a:67:2d:24:cf:2a:0a:1e:ff:54: 9e:78:31:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB4QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc0NEYxMTAvBgNVBAUTKDI4OUVCMjNGMjhDOUNGMjNGQTVCOTE4QTY1MENCODQy ODA1MDMwN0IwHhcNMjUwNjE0MjEyMTQwWhcNMjUwNjIxMjEyMTQwWjAYMRYwFAYD VQQDEw02ODRkZTdlNC1jMWZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA34dCM67lmnUt83v+WXJa5v6fWkKK+3cQpsXxvK5c801XB26sR+MWs59zHIiI uk2GYkQiuB3I07H8GjGrAGQOYwhpljkwrY5n6m+To+/kNFHUQf7/7ppSARt0h6Fk gqArwuhBaUUDe/GbsaQiyIf9/+Zi5jlCio7Rn1iHz0W4gZMf7W4Z8ZfeE/bRV4nx L5RgszLlhHCJkSxNsLIdA4sbk6dk4bXrc31r8N4KNCjV3p5wNjffeCB3c5Nz6xIa wTbzFQKvoXBo2O5wZDrPzb5p0A39KO59qGcB62bw1S/TB2R5e4Xp6ynowWFV2cqy zmxu3UhCxFRjGNFJ6S0lgaetNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJNIKVPv vnOvwTCpwi1BO0HtyJtaMB8GA1UdIwQYMBaAFCiesj8oyc8j+luRimUMuEKAUDB7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzQ0Ri9CN0Y5Mzg1RTIy QjcxMUVCOEMzNzAzM0NDNEY5QUUwMi9LSjZ5UHlqSnp5UDZXNUdLWlF5NFFvQlFN SHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tKNnlQeWpKenlQNlc1R0taUXk0UW9CUU1Icy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzQ0Ri9CN0Y5Mzg1RTIyQjcxMUVCOEMzNzAzM0NDNEY5QUUwMi9LSjZ5UHlqSnp5 UDZXNUdLWlF5NFFvQlFNSHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaflcGJK87s4TdYEfau2wie/+bkxMYlsbJQ/vVlxqO2bfG55ASMBLX zwH8ufaZqpZJ7cOuxv18WDllQW9cnBM727FgzGmuLXlq9nOUvwMGulW/fUr5mhn1 Oea3mFivT1p6WZA4f6yQC27tSMTuyiaiOF1qWs84nQa4d5reuNa8teNy1YFDk4c+ 5JDt97PpdmBFmfPX4YvyGk2p4nHQ2bygFvc9ATRxma7il206Z5W5YTOWFTpUriE6 T5jLVgV9lyzVU9t7j+uMPJZQAJqcCjJFnJaMtD26WUD7ssEt39NfT2i29EsH63fa 5TbUBVtMArCMfZpnLSTPKgoe/1SeeDER -----END CERTIFICATE-----Generated at Sun Jun 15 04:44:27 2025 by rpki-client