$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft File: KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft (raw, json) Hash identifier: eT5DEa5dHSIUvGaYGcrzVDgPrWuc2EhVuXI7yITP0DE= Subject key identifier: A2:97:42:36:9F:A3:46:DE:C4:BC:92:37:5F:4A:CF:C8:73:CE:E5:05 Authority key identifier: 28:F1:8E:C7:49:EA:91:B5:A3:29:97:49:F2:AB:E2:78:8A:10:C6:91 Certificate issuer: /CN=A91DA252/serialNumber=28F18EC749EA91B5A3299749F2ABE2788A10C691 Certificate serial: 09B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPGOx0nqkbWjKZdJ8qvieIoQxpE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft Manifest number: 09B0 Signing time: Wed 18 Jun 2025 19:53:50 +0000 Manifest this update: Wed 18 Jun 2025 19:53:50 +0000 Manifest next update: Wed 25 Jun 2025 19:53:50 +0000 Files and hashes: 1: KPGOx0nqkbWjKZdJ8qvieIoQxpE.crl (hash: cHqLQs0LmMNSK52fLIKtlfoTCLff+NqG5rs8UDznD4U=) 2: 81E66AB486DD11EAA5DCD466C4F9AE02.roa (hash: PABbUqoLwf3xZn77dm2ppG3YXtLL0LLzakgXhNUgKAg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.crl rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPGOx0nqkbWjKZdJ8qvieIoQxpE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 19:53:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2486 (0x9b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA252, serialNumber=28F18EC749EA91B5A3299749F2ABE2788A10C691 Validity Not Before: Jun 18 19:53:50 2025 GMT Not After : Jun 25 19:53:50 2025 GMT Subject: CN=6853194e-5c0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:f1:19:30:44:ad:ef:37:57:ef:20:ad:93:4c: db:5c:93:53:62:e2:b0:89:bf:cb:31:54:89:18:82: a1:78:26:ce:af:01:ba:50:d2:70:c4:c4:5e:dc:14: 16:51:ef:90:1c:93:72:11:1e:cb:0b:f3:77:63:44: 48:7c:07:6c:f7:47:08:3c:90:9a:02:31:45:7f:1d: 62:4d:8d:b1:46:5d:35:7d:74:e9:d4:49:5f:4f:83: e9:6f:39:94:a4:60:f3:b8:a5:d2:79:8d:8b:31:2b: db:d3:db:23:24:e5:ea:9c:9c:24:2b:2c:1f:57:7d: bd:0a:a8:6a:d5:b7:af:8d:73:c6:98:4e:4e:09:7f: 01:c2:77:76:ed:4f:46:fd:dc:55:d4:5e:83:2d:50: 73:3a:19:84:71:2b:ad:50:b3:cc:74:d8:ea:c1:09: bf:c4:a5:2f:0d:18:f1:62:12:98:a1:35:9f:79:40: fa:16:07:e2:52:21:4b:fd:99:29:00:5a:99:cb:75: 1e:d1:f7:66:e4:9c:3f:01:b5:35:a8:41:ad:2d:8f: 51:32:5c:2b:01:cc:5e:e5:6d:d1:9c:01:6b:e3:ad: 0e:23:e2:bf:a6:cb:b3:cc:e0:ac:56:69:f5:a6:b2: bb:65:cd:48:93:55:6b:31:82:92:42:8f:d0:2a:2f: d9:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:97:42:36:9F:A3:46:DE:C4:BC:92:37:5F:4A:CF:C8:73:CE:E5:05 X509v3 Authority Key Identifier: keyid:28:F1:8E:C7:49:EA:91:B5:A3:29:97:49:F2:AB:E2:78:8A:10:C6:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPGOx0nqkbWjKZdJ8qvieIoQxpE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:59:47:80:ab:85:fd:df:dc:b9:de:ff:bb:27:d9:54:f0:41: 59:69:1e:fa:89:29:cb:89:58:21:77:c2:e9:dd:9a:ab:ec:11: 37:43:cc:fd:55:e8:a2:93:f0:4f:62:77:1a:52:63:11:5a:d5: 9a:b4:84:82:a1:41:5d:a6:8b:3c:19:04:8f:da:d2:6f:33:fd: f1:33:d2:e0:b0:00:a5:14:d6:50:1f:02:c1:aa:0b:89:30:9d: 9b:b2:f7:bd:c0:6c:11:ba:fa:98:2b:03:96:a5:53:15:3e:00: 00:45:2f:65:79:ff:90:ae:f6:3f:97:ca:92:83:0b:e1:6b:6c: 54:ff:a0:01:0a:c5:ac:4b:21:01:99:b9:b4:7d:62:dd:bb:2e: cf:70:cf:61:41:a4:de:4e:c4:32:b2:02:b6:25:74:96:0e:db: ea:f9:8b:7b:e5:75:0f:d7:8b:c9:13:c6:51:fe:91:6d:c2:83: e8:04:4b:c3:c4:f4:65:6e:6b:75:fb:79:63:c8:f3:02:37:ac: 10:66:69:25:fd:0c:37:9b:76:16:a4:9e:7a:db:c0:f9:cb:c4: a3:29:c8:da:80:aa:40:12:9c:f7:07:64:fa:25:4b:ae:80:97: 31:be:59:bf:81:35:59:89:ab:96:7d:18:84:09:f4:59:49:df: f1:d7:01:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCbYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEyNTIxMTAvBgNVBAUTKDI4RjE4RUM3NDlFQTkxQjVBMzI5OTc0OUYyQUJFMjc4 OEExMEM2OTEwHhcNMjUwNjE4MTk1MzUwWhcNMjUwNjI1MTk1MzUwWjAYMRYwFAYD VQQDEw02ODUzMTk0ZS01YzBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtvEZMESt7zdX7yCtk0zbXJNTYuKwib/LMVSJGIKheCbOrwG6UNJwxMRe3BQW Ue+QHJNyER7LC/N3Y0RIfAds90cIPJCaAjFFfx1iTY2xRl01fXTp1ElfT4PpbzmU pGDzuKXSeY2LMSvb09sjJOXqnJwkKywfV329Cqhq1bevjXPGmE5OCX8Bwnd27U9G /dxV1F6DLVBzOhmEcSutULPMdNjqwQm/xKUvDRjxYhKYoTWfeUD6FgfiUiFL/Zkp AFqZy3Ue0fdm5Jw/AbU1qEGtLY9RMlwrAcxe5W3RnAFr460OI+K/psuzzOCsVmn1 prK7Zc1Ik1VrMYKSQo/QKi/ZsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKKXQjaf o0bexLySN19Kz8hzzuUFMB8GA1UdIwQYMBaAFCjxjsdJ6pG1oymXSfKr4niKEMaR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTI1Mi9GMDgxNzE2ODg2 REMxMUVBOUJEM0M0NjZDNEY5QUUwMi9LUEdPeDBucWtiV2pLWmRKOHF2aWVJb1F4 cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tQR094MG5xa2JXaktaZEo4cXZpZUlvUXhwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTI1Mi9GMDgxNzE2ODg2REMxMUVBOUJEM0M0NjZDNEY5QUUwMi9LUEdPeDBucWti V2pLWmRKOHF2aWVJb1F4cEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2WUeAq4X939y53v+7J9lU8EFZaR76iSnLiVghd8Lp3Zqr7BE3Q8z9 Veiik/BPYncaUmMRWtWatISCoUFdpos8GQSP2tJvM/3xM9LgsAClFNZQHwLBqguJ MJ2bsve9wGwRuvqYKwOWpVMVPgAARS9lef+QrvY/l8qSgwvha2xU/6ABCsWsSyEB mbm0fWLduy7PcM9hQaTeTsQysgK2JXSWDtvq+Yt75XUP14vJE8ZR/pFtwoPoBEvD xPRlbmt1+3ljyPMCN6wQZmkl/Qw3m3YWpJ5628D5y8SjKcjagKpAEpz3B2T6JUuu gJcxvlm/gTVZiauWfRiECfRZSd/x1wGZ -----END CERTIFICATE-----Generated at Thu Jun 19 04:38:31 2025 by rpki-client