$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.mft File: KTvwacT02DHu52nVsTnjAh2zSwA.mft (raw, json) Hash identifier: KNwyTZcjtdIe5GcdLetgzNiA6kIwd3C2w1Jk0OyBEdU= Subject key identifier: B1:56:15:30:AA:39:93:16:D0:E1:CC:A6:4F:6C:92:01:34:6C:7F:7B Authority key identifier: 29:3B:F0:69:C4:F4:D8:31:EE:E7:69:D5:B1:39:E3:02:1D:B3:4B:00 Certificate issuer: /CN=A91CE65A/serialNumber=293BF069C4F4D831EEE769D5B139E3021DB34B00 Certificate serial: AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTvwacT02DHu52nVsTnjAh2zSwA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.mft Manifest number: A8 Signing time: Fri 13 Jun 2025 05:05:57 +0000 Manifest this update: Fri 13 Jun 2025 05:05:56 +0000 Manifest next update: Fri 20 Jun 2025 05:05:56 +0000 Files and hashes: 1: KTvwacT02DHu52nVsTnjAh2zSwA.crl (hash: QjuMBY7oyKdFjJCS3p5b6GGaXKMdlUEEzND6U6a2kpo=) 2: 77BDF1A0497B11EFAE69D243C4F9AE02.roa (hash: EAkL+z2TTbEwn03dT2Ny9vtbrcbH4dnoXpbzZjpawbU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.crl rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTvwacT02DHu52nVsTnjAh2zSwA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 05:05:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 170 (0xaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE65A, serialNumber=293BF069C4F4D831EEE769D5B139E3021DB34B00 Validity Not Before: Jun 13 05:05:56 2025 GMT Not After : Jun 20 05:05:56 2025 GMT Subject: CN=684bb1b5-c36e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:1b:2b:c2:c8:2b:8c:51:7f:c3:19:76:ba:0f: 05:11:cc:7d:a1:08:84:06:7e:ee:4f:28:b3:fe:48: 70:a8:08:da:30:a4:a4:e8:3f:08:e3:b2:44:60:9e: 2a:04:c6:50:ec:70:5d:fa:b0:e8:8f:4e:4e:c8:64: 4b:c5:e6:5d:76:1f:53:e1:f0:6b:83:e5:d2:70:fb: ab:f4:88:5c:4e:13:78:ca:de:4a:c5:92:68:2f:90: 70:b3:3e:bc:bc:39:95:65:c4:b1:fb:91:a5:86:28: a1:ed:8b:8e:95:71:bf:f2:37:e9:86:2d:8e:49:bf: 59:67:80:aa:1a:c7:5c:39:f0:81:ec:6f:db:6d:fe: 31:e6:f1:f2:8f:e2:46:49:1c:b4:35:14:21:3d:c7: fe:70:02:07:26:d3:d1:1b:41:b1:1b:44:8f:00:23: 8c:09:71:1c:64:7f:fb:b7:41:9b:d1:1d:b1:52:d7: e5:fa:4f:90:e0:3d:34:26:2a:d8:6b:e5:6d:07:7c: e0:2e:b6:9a:c3:ec:be:ce:b4:10:36:b7:db:e9:3d: 2d:f4:1e:07:53:50:95:75:ca:b1:b8:7d:c4:29:af: e1:2e:f3:d9:03:1b:e8:1c:b0:1f:f3:1e:3b:f5:32: 57:82:9b:b4:7d:a9:5f:78:ae:6b:7a:3a:1e:89:a2: ab:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:56:15:30:AA:39:93:16:D0:E1:CC:A6:4F:6C:92:01:34:6C:7F:7B X509v3 Authority Key Identifier: keyid:29:3B:F0:69:C4:F4:D8:31:EE:E7:69:D5:B1:39:E3:02:1D:B3:4B:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTvwacT02DHu52nVsTnjAh2zSwA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:68:ce:af:aa:8a:48:36:5c:b4:c0:6d:0e:71:cd:4a:6d:8c: ea:23:72:35:d6:b0:5f:0d:9a:db:f0:81:48:93:52:fa:6e:a1: 26:9e:35:53:c3:a3:1c:33:68:bd:8c:63:26:e2:27:dc:9f:60: 52:ec:9b:1f:93:20:1e:60:68:41:3f:0e:93:b4:18:6c:d1:79: e8:0d:22:93:ef:fb:27:fa:ca:9f:5a:0c:e9:53:bc:de:e0:56: b4:c6:74:50:66:bd:0e:f5:64:95:e0:07:a8:c4:39:90:e8:90: f0:0f:df:ba:31:43:30:5c:39:e1:48:34:9a:b1:b0:e5:e3:f0: 41:bd:6e:17:31:84:b5:dc:43:54:4e:7b:b1:ce:fa:99:cf:61: ce:e9:11:b5:6c:08:22:58:e8:0b:c0:c9:0a:17:b2:49:86:d6: 96:8a:7c:4e:63:73:9d:6e:8b:f7:b0:c4:5b:c6:bd:17:22:66: c8:f4:53:b7:c9:94:96:37:ab:36:e9:45:a9:8f:df:d5:94:b7: 7a:70:6e:dc:5f:e3:d4:18:f5:c5:d5:a8:ec:27:b7:bd:72:c5: 13:3b:f5:9b:45:02:aa:49:6f:e8:ad:5b:16:bc:56:e9:44:6c: 41:b6:5e:1d:2e:1c:ff:f6:bf:6b:a5:43:7e:d4:8e:3e:69:3c: d9:3b:23:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2NUExMTAvBgNVBAUTKDI5M0JGMDY5QzRGNEQ4MzFFRUU3NjlENUIxMzlFMzAy MURCMzRCMDAwHhcNMjUwNjEzMDUwNTU2WhcNMjUwNjIwMDUwNTU2WjAYMRYwFAYD VQQDEw02ODRiYjFiNS1jMzZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4RsrwsgrjFF/wxl2ug8FEcx9oQiEBn7uTyiz/khwqAjaMKSk6D8I47JEYJ4q BMZQ7HBd+rDoj05OyGRLxeZddh9T4fBrg+XScPur9IhcThN4yt5KxZJoL5Bwsz68 vDmVZcSx+5Glhiih7YuOlXG/8jfphi2OSb9ZZ4CqGsdcOfCB7G/bbf4x5vHyj+JG SRy0NRQhPcf+cAIHJtPRG0GxG0SPACOMCXEcZH/7t0Gb0R2xUtfl+k+Q4D00JirY a+VtB3zgLraaw+y+zrQQNrfb6T0t9B4HU1CVdcqxuH3EKa/hLvPZAxvoHLAf8x47 9TJXgpu0falfeK5rejoeiaKrJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLFWFTCq OZMW0OHMpk9skgE0bH97MB8GA1UdIwQYMBaAFCk78GnE9Ngx7udp1bE54wIds0sA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTY1QS82NkU2RkUzNjQ5 N0ExMUVGQUY1NTE4NDJDNEY5QUUwMi9LVHZ3YWNUMDJESHU1Mm5Wc1RuakFoMnpT d0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tUdndhY1QwMkRIdTUyblZzVG5qQWgyelN3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTY1QS82NkU2RkUzNjQ5N0ExMUVGQUY1NTE4NDJDNEY5QUUwMi9LVHZ3YWNUMDJE SHU1Mm5Wc1RuakFoMnpTd0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVaM6vqopINly0wG0Occ1KbYzqI3I11rBfDZrb8IFIk1L6bqEmnjVT w6McM2i9jGMm4ifcn2BS7JsfkyAeYGhBPw6TtBhs0XnoDSKT7/sn+sqfWgzpU7ze 4Fa0xnRQZr0O9WSV4AeoxDmQ6JDwD9+6MUMwXDnhSDSasbDl4/BBvW4XMYS13ENU TnuxzvqZz2HO6RG1bAgiWOgLwMkKF7JJhtaWinxOY3Odbov3sMRbxr0XImbI9FO3 yZSWN6s26UWpj9/VlLd6cG7cX+PUGPXF1ajsJ7e9csUTO/WbRQKqSW/orVsWvFbp RGxBtl4dLhz/9r9rpUN+1I4+aTzZOyMl -----END CERTIFICATE-----Generated at Sat Jun 14 19:31:32 2025 by rpki-client