$ rpki-client -vvf rpki.apnic.net/member_repository/A91E04FE/86A6F654B73F11EEAF12B87BC4F9AE02/KIN0Gw9bynZPTTyD0-1qDyfNIpg.mft File: KIN0Gw9bynZPTTyD0-1qDyfNIpg.mft (raw, json) Hash identifier: uyzDDygyP56kkiiAOz8DSScHCJZBia8nZdcpnoX1heQ= Subject key identifier: 64:56:3D:6C:C9:B6:CE:AD:E2:42:82:87:96:2B:C7:5C:59:B2:6C:2C Authority key identifier: 28:83:74:1B:0F:5B:CA:76:4F:4D:3C:83:D3:ED:6A:0F:27:CD:22:98 Certificate issuer: /CN=A91E04FE/serialNumber=2883741B0F5BCA764F4D3C83D3ED6A0F27CD2298 Certificate serial: 010F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KIN0Gw9bynZPTTyD0-1qDyfNIpg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E04FE/86A6F654B73F11EEAF12B87BC4F9AE02/KIN0Gw9bynZPTTyD0-1qDyfNIpg.mft Manifest number: 010B Signing time: Tue 17 Jun 2025 04:01:47 +0000 Manifest this update: Tue 17 Jun 2025 04:01:47 +0000 Manifest next update: Tue 24 Jun 2025 04:01:47 +0000 Files and hashes: 1: KIN0Gw9bynZPTTyD0-1qDyfNIpg.crl (hash: 8RjaywiUzvvaLvlrMkxYw8ZuEAqjMHkPYpYqpdCs2Hw=) 2: 5EE215CCC33D11EE97B67979C4F9AE02.roa (hash: qIW59Vu75lotEAXz2XFEI0+6mfrqPvKAPSHChiVChpE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E04FE/86A6F654B73F11EEAF12B87BC4F9AE02/KIN0Gw9bynZPTTyD0-1qDyfNIpg.crl rsync://rpki.apnic.net/member_repository/A91E04FE/86A6F654B73F11EEAF12B87BC4F9AE02/KIN0Gw9bynZPTTyD0-1qDyfNIpg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KIN0Gw9bynZPTTyD0-1qDyfNIpg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 04:01:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 271 (0x10f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E04FE, serialNumber=2883741B0F5BCA764F4D3C83D3ED6A0F27CD2298 Validity Not Before: Jun 17 04:01:47 2025 GMT Not After : Jun 24 04:01:47 2025 GMT Subject: CN=6850e8ab-3130 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:db:e6:e7:7f:91:09:50:04:b3:4a:f7:ff:da: 08:d2:23:6f:b9:63:9d:c9:0a:80:27:ed:ad:1e:98: 10:5a:2b:17:5b:d9:aa:31:90:8a:b3:69:8e:d2:8a: 4c:bc:b7:e9:0a:33:7d:f0:da:dc:ee:b1:0b:3a:6a: 0b:a5:a5:d0:35:36:cb:6e:d7:c3:82:4f:8b:0c:ff: 80:8a:23:83:9e:d0:48:66:e4:dd:55:47:19:f6:f9: 82:01:2e:90:b5:d1:0d:76:1c:24:78:4f:ba:b6:ef: 52:00:31:f6:a4:90:d0:6c:cc:81:d4:b1:5a:21:8b: 26:e4:98:77:72:b6:9c:4d:4d:01:05:ad:2e:1b:07: a7:d6:ed:f1:c6:e1:55:94:8b:eb:e9:97:f9:03:65: a4:ba:eb:8d:c8:4f:a3:c0:49:3d:cd:7a:38:35:73: 18:62:85:32:35:30:f3:a5:18:74:09:ee:75:fd:07: d6:3d:98:95:4c:9e:3a:c2:f4:1d:79:f3:ac:85:fb: 86:ee:33:73:aa:ee:45:c6:85:f0:cd:4b:d1:dc:82: 4a:5c:c8:a5:68:1a:ed:65:4a:55:e8:4f:25:4e:48: 1a:dc:0d:c4:0d:19:00:09:de:b8:97:11:ff:70:45: f8:75:a9:3e:e7:b8:73:89:10:5f:d9:65:30:85:dd: 1c:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:56:3D:6C:C9:B6:CE:AD:E2:42:82:87:96:2B:C7:5C:59:B2:6C:2C X509v3 Authority Key Identifier: keyid:28:83:74:1B:0F:5B:CA:76:4F:4D:3C:83:D3:ED:6A:0F:27:CD:22:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E04FE/86A6F654B73F11EEAF12B87BC4F9AE02/KIN0Gw9bynZPTTyD0-1qDyfNIpg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KIN0Gw9bynZPTTyD0-1qDyfNIpg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E04FE/86A6F654B73F11EEAF12B87BC4F9AE02/KIN0Gw9bynZPTTyD0-1qDyfNIpg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:09:c7:cb:47:f7:70:72:7d:5d:53:56:d0:e1:9f:15:d0:7c: 38:34:03:65:a3:5a:00:80:2d:43:7d:4c:21:52:70:f5:fa:52: f3:21:c7:9e:28:ff:c0:5d:f7:33:ef:1e:fa:7d:99:0a:7c:44: b0:9a:55:0e:dc:a5:1b:d9:0f:16:fe:44:e2:c2:b4:ed:8f:6c: a3:00:a8:9e:f4:84:fd:72:2d:5d:d1:2b:5b:2f:76:27:f5:27: ec:9c:4d:f7:d7:55:c5:00:0a:35:80:ec:73:41:3a:da:1d:32: 74:1f:83:91:04:cc:46:e1:02:0a:71:2d:04:29:41:a3:da:de: b1:3c:b2:40:a0:26:62:35:41:74:82:7d:bc:19:95:33:1b:d7: 1c:c4:7c:4e:07:0b:c1:b5:2a:f0:2d:8f:af:af:89:a9:20:5c: c1:82:6e:65:19:fb:5e:e0:ac:4b:42:26:d5:ae:51:c7:b6:c2: 41:bc:b8:a9:75:3c:65:79:09:62:c9:7e:1d:25:0e:fe:a7:49: e7:ac:91:b1:46:0e:14:ff:70:2a:79:7b:eb:de:0a:01:b6:8b: 36:5d:80:e4:c4:f8:55:5c:71:12:67:3b:fb:1d:cc:7d:ca:fc: e9:8b:44:fa:5b:0e:63:73:15:30:c3:9e:6d:da:00:b6:b1:26: 5b:1f:ec:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTA0RkUxMTAvBgNVBAUTKDI4ODM3NDFCMEY1QkNBNzY0RjREM0M4M0QzRUQ2QTBG MjdDRDIyOTgwHhcNMjUwNjE3MDQwMTQ3WhcNMjUwNjI0MDQwMTQ3WjAYMRYwFAYD VQQDEw02ODUwZThhYi0zMTMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAutvm53+RCVAEs0r3/9oI0iNvuWOdyQqAJ+2tHpgQWisXW9mqMZCKs2mO0opM vLfpCjN98Nrc7rELOmoLpaXQNTbLbtfDgk+LDP+AiiODntBIZuTdVUcZ9vmCAS6Q tdENdhwkeE+6tu9SADH2pJDQbMyB1LFaIYsm5Jh3cracTU0BBa0uGwen1u3xxuFV lIvr6Zf5A2WkuuuNyE+jwEk9zXo4NXMYYoUyNTDzpRh0Ce51/QfWPZiVTJ46wvQd efOshfuG7jNzqu5FxoXwzUvR3IJKXMilaBrtZUpV6E8lTkga3A3EDRkACd64lxH/ cEX4dak+57hziRBf2WUwhd0cGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGRWPWzJ ts6t4kKCh5Yrx1xZsmwsMB8GA1UdIwQYMBaAFCiDdBsPW8p2T008g9Ptag8nzSKY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDRGRS84NkE2RjY1NEI3 M0YxMUVFQUYxMkI4N0JDNEY5QUUwMi9LSU4wR3c5YnluWlBUVHlEMC0xcUR5Zk5J cGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tJTjBHdzlieW5aUFRUeUQwLTFxRHlmTklwZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDRGRS84NkE2RjY1NEI3M0YxMUVFQUYxMkI4N0JDNEY5QUUwMi9LSU4wR3c5Ynlu WlBUVHlEMC0xcUR5Zk5JcGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwCcfLR/dwcn1dU1bQ4Z8V0Hw4NANlo1oAgC1DfUwhUnD1+lLzIcee KP/AXfcz7x76fZkKfESwmlUO3KUb2Q8W/kTiwrTtj2yjAKie9IT9ci1d0StbL3Yn 9SfsnE3311XFAAo1gOxzQTraHTJ0H4ORBMxG4QIKcS0EKUGj2t6xPLJAoCZiNUF0 gn28GZUzG9ccxHxOBwvBtSrwLY+vr4mpIFzBgm5lGfte4KxLQibVrlHHtsJBvLip dTxleQliyX4dJQ7+p0nnrJGxRg4U/3AqeXvr3goBtos2XYDkxPhVXHESZzv7Hcx9 yvzpi0T6Ww5jcxUww55t2gC2sSZbH+xp -----END CERTIFICATE-----Generated at Tue Jun 17 16:47:38 2025 by rpki-client