$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9C05/E9D9A0221DAA11E28C98DBA608B02CD2/kN_cE0DUTo_iVh19jeSe71QGEII.mft File: kN_cE0DUTo_iVh19jeSe71QGEII.mft (raw, json) Hash identifier: yLCXsDTAIkCLhlDtJXLZFCdNW+8SNZS9b8KNVj8SkA0= Subject key identifier: DD:A4:61:2B:AE:EA:DD:5D:7E:21:DF:50:43:21:C6:2F:CF:B2:B8:46 Authority key identifier: 90:DF:DC:13:40:D4:4E:8F:E2:56:1D:7D:8D:E4:9E:EF:54:06:10:82 Certificate issuer: /CN=A91C9C05/serialNumber=90DFDC1340D44E8FE2561D7D8DE49EEF54061082 Certificate serial: 348C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kN_cE0DUTo_iVh19jeSe71QGEII.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9C05/E9D9A0221DAA11E28C98DBA608B02CD2/kN_cE0DUTo_iVh19jeSe71QGEII.mft Manifest number: 348A Signing time: Sat 14 Jun 2025 15:17:14 +0000 Manifest this update: Sat 14 Jun 2025 15:17:14 +0000 Manifest next update: Sat 21 Jun 2025 15:17:14 +0000 Files and hashes: 1: kN_cE0DUTo_iVh19jeSe71QGEII.crl (hash: qzhAxukDMa3SeMBPsIxiLarOoLoswo7vbdZ1L7HdvCM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9C05/E9D9A0221DAA11E28C98DBA608B02CD2/kN_cE0DUTo_iVh19jeSe71QGEII.crl rsync://rpki.apnic.net/member_repository/A91C9C05/E9D9A0221DAA11E28C98DBA608B02CD2/kN_cE0DUTo_iVh19jeSe71QGEII.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kN_cE0DUTo_iVh19jeSe71QGEII.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:17:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13452 (0x348c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9C05, serialNumber=90DFDC1340D44E8FE2561D7D8DE49EEF54061082 Validity Not Before: Jun 14 15:17:14 2025 GMT Not After : Jun 21 15:17:14 2025 GMT Subject: CN=684d927a-e5c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:db:db:fd:20:dc:f7:fe:3a:2c:95:a7:07:47: 19:60:12:9e:eb:59:0b:61:99:d2:7c:db:f5:bb:fc: 3b:68:29:68:a1:59:6c:70:48:fc:12:49:2b:9c:bf: 1a:c4:b4:b2:41:a2:8c:ad:2c:62:e1:4d:15:11:3f: e1:60:1e:5a:35:ad:e1:a7:f0:dc:35:29:23:a6:4e: 13:0f:24:f0:06:b9:45:bf:41:e4:7a:7a:d6:60:69: 30:fa:1a:57:29:f8:47:a3:d8:b0:d0:78:5b:d6:c8: 53:b1:a7:d1:d6:e3:91:a3:27:7f:f7:6c:16:0d:27: 75:1f:0a:f4:fc:7c:f8:79:e4:9f:aa:8c:d9:7b:28: c8:71:f6:99:48:2c:d2:67:c1:97:45:b8:6e:6f:08: 24:12:5e:b0:2d:16:af:f8:55:2c:30:86:89:bc:66: f7:7e:a3:0a:9e:c3:6d:c9:b8:cb:f3:3c:74:9d:e2: 85:e7:79:62:d4:02:03:d6:d9:dc:5b:fb:f8:bb:d9: de:bf:d9:91:4a:28:74:05:c0:d8:2b:7e:94:c5:b4: ac:34:cd:2f:5a:54:14:83:64:7f:ae:70:91:fa:dd: 36:8e:25:13:62:94:46:21:0e:00:08:47:fa:0a:5d: c4:a7:a3:bc:ce:34:0a:e2:90:7e:b0:6e:8f:e7:00: 3a:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:A4:61:2B:AE:EA:DD:5D:7E:21:DF:50:43:21:C6:2F:CF:B2:B8:46 X509v3 Authority Key Identifier: keyid:90:DF:DC:13:40:D4:4E:8F:E2:56:1D:7D:8D:E4:9E:EF:54:06:10:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9C05/E9D9A0221DAA11E28C98DBA608B02CD2/kN_cE0DUTo_iVh19jeSe71QGEII.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kN_cE0DUTo_iVh19jeSe71QGEII.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9C05/E9D9A0221DAA11E28C98DBA608B02CD2/kN_cE0DUTo_iVh19jeSe71QGEII.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:69:dc:6c:62:a7:79:67:30:1e:02:82:49:d5:51:42:2a:cc: d7:49:08:48:54:27:b2:0a:67:2f:00:80:03:39:ff:e0:9d:70: 56:5d:6a:1d:7e:e4:6e:65:d7:5b:ca:2a:92:14:d5:ca:fe:fe: 20:50:dd:dd:21:44:af:b7:50:7f:cd:ba:10:13:38:30:0a:ac: d9:30:2a:f6:6b:2e:fd:bb:83:06:f2:da:16:44:ea:a4:ef:2d: 0e:46:ac:87:fa:68:7f:d2:6c:ed:be:d6:19:77:cf:b1:06:5c: 2e:53:c9:08:34:9f:4a:27:4a:49:43:e9:e7:0a:bc:06:41:42: 41:d1:a6:fb:24:3a:a1:5d:82:bd:2b:90:3b:a7:61:82:e9:b7: 76:c3:75:9f:b0:97:0e:88:fe:3f:2d:f8:70:e2:d5:89:b6:e0: 72:5d:c3:e9:65:66:21:ec:7b:18:19:c0:35:06:e5:40:07:32: c6:dd:ba:ce:17:c5:75:7a:77:5c:ad:af:0d:29:28:32:b9:1f: 2e:ec:05:5f:b2:0b:5e:84:1d:4c:1c:b0:d3:d7:26:34:d8:38: a2:64:2e:f0:4f:7b:4b:5c:2f:70:b0:f5:37:37:30:a0:12:dc: 11:2a:81:13:ea:29:4d:1a:80:bd:4a:0a:aa:b4:f7:9c:f1:7e: e3:2b:e1:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlDMDUxMTAvBgNVBAUTKDkwREZEQzEzNDBENDRFOEZFMjU2MUQ3RDhERTQ5RUVG NTQwNjEwODIwHhcNMjUwNjE0MTUxNzE0WhcNMjUwNjIxMTUxNzE0WjAYMRYwFAYD VQQDEw02ODRkOTI3YS1lNWM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvtvb/SDc9/46LJWnB0cZYBKe61kLYZnSfNv1u/w7aClooVlscEj8EkkrnL8a xLSyQaKMrSxi4U0VET/hYB5aNa3hp/DcNSkjpk4TDyTwBrlFv0HkenrWYGkw+hpX KfhHo9iw0Hhb1shTsafR1uORoyd/92wWDSd1Hwr0/Hz4eeSfqozZeyjIcfaZSCzS Z8GXRbhubwgkEl6wLRav+FUsMIaJvGb3fqMKnsNtybjL8zx0neKF53li1AID1tnc W/v4u9nev9mRSih0BcDYK36UxbSsNM0vWlQUg2R/rnCR+t02jiUTYpRGIQ4ACEf6 Cl3Ep6O8zjQK4pB+sG6P5wA6aQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN2kYSuu 6t1dfiHfUEMhxi/PsrhGMB8GA1UdIwQYMBaAFJDf3BNA1E6P4lYdfY3knu9UBhCC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUMwNS9FOUQ5QTAyMjFE QUExMUUyOEM5OERCQTYwOEIwMkNEMi9rTl9jRTBEVVRvX2lWaDE5amVTZTcxUUdF SUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tOX2NFMERVVG9faVZoMTlqZVNlNzFRR0VJSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUMwNS9FOUQ5QTAyMjFEQUExMUUyOEM5OERCQTYwOEIwMkNEMi9rTl9jRTBEVVRv X2lWaDE5amVTZTcxUUdFSUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByadxsYqd5ZzAeAoJJ1VFCKszXSQhIVCeyCmcvAIADOf/gnXBWXWod fuRuZddbyiqSFNXK/v4gUN3dIUSvt1B/zboQEzgwCqzZMCr2ay79u4MG8toWROqk 7y0ORqyH+mh/0mztvtYZd8+xBlwuU8kINJ9KJ0pJQ+nnCrwGQUJB0ab7JDqhXYK9 K5A7p2GC6bd2w3WfsJcOiP4/Lfhw4tWJtuByXcPpZWYh7HsYGcA1BuVABzLG3brO F8V1endcra8NKSgyuR8u7AVfsgtehB1MHLDT1yY02DiiZC7wT3tLXC9wsPU3NzCg EtwRKoET6ilNGoC9SgqqtPec8X7jK+Hx -----END CERTIFICATE-----Generated at Sat Jun 14 18:49:22 2025 by rpki-client