$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft File: kKmEULnak4EYotWtU02IKPS5RjQ.mft (raw, json) Hash identifier: tJ4gMN607iUHosLqbqljysnOy2u4z2PWE9pH+Lk281U= Subject key identifier: FE:49:12:2D:5E:D8:BA:15:31:94:95:81:6C:3B:AE:09:8B:03:F9:9F Authority key identifier: 90:A9:84:50:B9:DA:93:81:18:A2:D5:AD:53:4D:88:28:F4:B9:46:34 Certificate issuer: /CN=A91EA2CC/serialNumber=90A98450B9DA938118A2D5AD534D8828F4B94634 Certificate serial: 0C24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft Manifest number: 0C12 Signing time: Thu 12 Jun 2025 18:32:57 +0000 Manifest this update: Thu 12 Jun 2025 18:32:57 +0000 Manifest next update: Thu 19 Jun 2025 18:32:57 +0000 Files and hashes: 1: kKmEULnak4EYotWtU02IKPS5RjQ.crl (hash: QK54u3cc/hLad3/3z0F3aZjL4cDOzp5Y0x6iDsb8HhI=) 2: D376CA2E63B311EFBEFCDF10C4F9AE02.roa (hash: G+U7uQFgAb2U+N/txdaeFUXvdA97Z5VnhrdZ+BD6M4c=) 3: E6144BC6F52011EFB886A255C4F9AE02.roa (hash: aEMS3M29hCCeByUCXZ+uvfYFpf4/VBfRmYpl07QvYhY=) 4: C9989D9EF52011EF88416555C4F9AE02.roa (hash: 5ttWZpUai22oFSUg02AkUKazNYGpWMAvqC2hReQsDD4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.crl rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 18:32:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3108 (0xc24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA2CC, serialNumber=90A98450B9DA938118A2D5AD534D8828F4B94634 Validity Not Before: Jun 12 18:32:57 2025 GMT Not After : Jun 19 18:32:57 2025 GMT Subject: CN=684b1d59-b9cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:8c:c7:21:63:c4:77:bc:a2:59:a0:10:4f:18: c8:68:24:6e:a5:15:60:78:2b:97:c7:0c:23:5b:43: ba:22:88:ce:dc:b0:dd:b8:dc:c8:2f:04:6d:7f:44: e6:58:3a:cd:bf:ea:88:30:26:a9:6a:36:17:56:12: aa:50:5b:c8:b1:f5:7b:7e:5d:09:92:9c:68:b9:a1: e1:8e:c9:4a:61:3a:31:13:9a:f8:0a:8c:91:c6:f5: bf:7c:43:fa:46:b9:e3:e1:78:5d:6c:34:e1:f1:f8: 2a:98:28:0d:52:54:51:8b:07:4d:72:69:20:e0:7e: 40:32:87:e1:d5:79:ea:f2:b6:e0:4b:ab:00:98:3f: 6c:95:78:b6:42:30:7b:64:65:55:d0:5c:1b:ab:74: 89:bd:7a:06:96:bb:16:ca:b3:cb:81:30:3f:ba:55: f8:e8:df:f7:36:9c:47:69:25:a6:55:03:8d:63:cb: f7:34:c8:3e:8a:b6:d5:34:4d:37:e2:fb:b2:88:35: 11:3c:58:89:ef:94:fe:78:a1:88:18:fa:d3:d1:7e: 23:2b:c8:e0:55:46:65:7b:f3:12:81:7f:46:61:d5: 8e:0b:3a:55:4f:9e:e1:5e:19:f6:2e:1d:e2:e4:5d: 18:80:f9:c9:a2:d7:d3:9c:c8:d1:1d:69:ed:07:d7: 26:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:49:12:2D:5E:D8:BA:15:31:94:95:81:6C:3B:AE:09:8B:03:F9:9F X509v3 Authority Key Identifier: keyid:90:A9:84:50:B9:DA:93:81:18:A2:D5:AD:53:4D:88:28:F4:B9:46:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:ac:37:9f:ba:6c:0d:d6:b7:a8:a4:ed:64:9f:9c:fb:85:a7: 19:bc:52:7a:1c:14:be:2d:84:fd:3a:9e:ea:7c:9d:1a:6e:63: 43:65:d0:b9:97:83:82:35:65:c8:2a:96:ad:50:0c:b5:6d:f1: be:bc:84:8b:03:56:ce:87:81:ce:d1:8f:09:92:fe:87:75:ee: 20:74:14:94:30:78:8c:9f:f6:40:7f:ec:3a:db:b1:98:44:79: 0e:4d:9a:52:0d:86:5c:20:34:f4:21:db:99:02:73:e9:30:ee: 9b:e2:58:7e:98:27:3e:38:40:3f:f3:26:65:73:3b:64:50:a6: ec:3a:fc:19:5b:4a:4b:af:26:55:2f:30:3a:bb:40:92:e7:a2: d8:3a:62:e1:79:05:24:b6:47:bc:00:72:85:2d:ad:67:6a:43: 0d:0f:e7:94:91:de:c3:0e:fb:4d:d8:46:b5:2b:1e:54:82:e6: 36:de:16:af:89:01:eb:0b:66:cf:43:ca:e8:38:5b:2e:e7:7b: 18:c5:65:87:1e:36:c7:9b:67:bc:1c:4d:a6:19:f0:16:fe:7c: 15:51:b5:96:ed:5a:d8:90:3a:99:64:f0:f1:52:80:c1:7a:f8: 71:2a:c2:16:b0:ff:1c:e8:95:9c:93:93:df:0f:c9:73:5d:4a: d2:da:6a:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUEyQ0MxMTAvBgNVBAUTKDkwQTk4NDUwQjlEQTkzODExOEEyRDVBRDUzNEQ4ODI4 RjRCOTQ2MzQwHhcNMjUwNjEyMTgzMjU3WhcNMjUwNjE5MTgzMjU3WjAYMRYwFAYD VQQDEw02ODRiMWQ1OS1iOWNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvIzHIWPEd7yiWaAQTxjIaCRupRVgeCuXxwwjW0O6IojO3LDduNzILwRtf0Tm WDrNv+qIMCapajYXVhKqUFvIsfV7fl0JkpxouaHhjslKYToxE5r4CoyRxvW/fEP6 Rrnj4XhdbDTh8fgqmCgNUlRRiwdNcmkg4H5AMofh1Xnq8rbgS6sAmD9slXi2QjB7 ZGVV0Fwbq3SJvXoGlrsWyrPLgTA/ulX46N/3NpxHaSWmVQONY8v3NMg+irbVNE03 4vuyiDURPFiJ75T+eKGIGPrT0X4jK8jgVUZle/MSgX9GYdWOCzpVT57hXhn2Lh3i 5F0YgPnJotfTnMjRHWntB9cmVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP5JEi1e 2LoVMZSVgWw7rgmLA/mfMB8GA1UdIwQYMBaAFJCphFC52pOBGKLVrVNNiCj0uUY0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTJDQy9GMjZFMDZDRTEx RjkxMUVBOUNCODhDMzVDNEY5QUUwMi9rS21FVUxuYWs0RVlvdFd0VTAySUtQUzVS alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tLbUVVTG5hazRFWW90V3RVMDJJS1BTNVJqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTJDQy9GMjZFMDZDRTExRjkxMUVBOUNCODhDMzVDNEY5QUUwMi9rS21FVUxuYWs0 RVlvdFd0VTAySUtQUzVSalEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzrDefumwN1reopO1kn5z7hacZvFJ6HBS+LYT9Op7qfJ0abmNDZdC5 l4OCNWXIKpatUAy1bfG+vISLA1bOh4HO0Y8Jkv6Hde4gdBSUMHiMn/ZAf+w627GY RHkOTZpSDYZcIDT0IduZAnPpMO6b4lh+mCc+OEA/8yZlcztkUKbsOvwZW0pLryZV LzA6u0CS56LYOmLheQUktke8AHKFLa1nakMND+eUkd7DDvtN2Ea1Kx5UguY23hav iQHrC2bPQ8roOFsu53sYxWWHHjbHm2e8HE2mGfAW/nwVUbWW7VrYkDqZZPDxUoDB evhxKsIWsP8c6JWck5PfD8lzXUrS2mr7 -----END CERTIFICATE-----Generated at Sat Jun 14 19:37:17 2025 by rpki-client