$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft File: KHuwzWb71-W3qIumZ4kSTAsExXg.mft (raw, json) Hash identifier: eIplamP0WtqulnlA1elFMjm3yndBoAHHwAgHnVyyRdQ= Subject key identifier: BA:97:7C:49:BE:62:EF:32:04:1F:A4:A4:ED:4A:2D:F3:09:B4:2B:16 Authority key identifier: 28:7B:B0:CD:66:FB:D7:E5:B7:A8:8B:A6:67:89:12:4C:0B:04:C5:78 Certificate issuer: /CN=A91EAE25/serialNumber=287BB0CD66FBD7E5B7A88BA66789124C0B04C578 Certificate serial: 0B7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHuwzWb71-W3qIumZ4kSTAsExXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft Manifest number: 0B71 Signing time: Mon 16 Jun 2025 18:56:56 +0000 Manifest this update: Mon 16 Jun 2025 18:56:55 +0000 Manifest next update: Mon 23 Jun 2025 18:56:55 +0000 Files and hashes: 1: KHuwzWb71-W3qIumZ4kSTAsExXg.crl (hash: 8jbbXoseJqxha5JYk6EVXnWpK3xRPLCeVfEEMvXB6a0=) 2: 2BA212DC306D11EA81D19B38C4F9AE02.roa (hash: rkLsb+deDCPqbk0gObiXfMhdhI5eY1I1eSaPovL0Epo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.crl rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHuwzWb71-W3qIumZ4kSTAsExXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 18:56:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2938 (0xb7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE25, serialNumber=287BB0CD66FBD7E5B7A88BA66789124C0B04C578 Validity Not Before: Jun 16 18:56:55 2025 GMT Not After : Jun 23 18:56:55 2025 GMT Subject: CN=685068f8-67a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:6d:a3:7f:ff:6e:7d:8c:1b:23:ce:8d:19:e0: f7:e7:67:e8:fc:bd:87:26:aa:93:64:82:48:aa:d9: e8:f2:31:36:7d:c3:b2:8c:1c:22:14:d1:46:e8:23: 78:96:26:ef:ef:82:09:50:68:ea:37:ef:4f:80:ae: 10:ae:cd:7a:1b:c4:42:3a:09:d3:e2:01:0c:20:96: f1:c3:b4:bc:0d:a4:8d:2c:85:98:7f:6d:78:d2:f9: fc:e4:48:f7:fc:2d:d4:5b:44:bf:9c:af:74:73:c3: 88:b0:55:1c:f5:18:75:b4:07:f6:83:b1:ca:d8:84: e5:dc:5a:16:97:e1:83:49:83:f1:1e:7a:59:cf:f2: 82:22:79:56:69:96:c5:cf:d7:dc:6c:17:24:4e:06: c3:98:1a:bd:7e:cd:b8:cc:86:82:22:41:c4:eb:34: aa:0b:ee:74:27:c4:c5:a0:7e:d7:ed:1e:95:59:16: 0a:35:f0:c0:e8:e9:32:2d:a1:8b:e0:45:da:92:8b: a4:ed:f6:07:2f:99:f4:f8:fd:38:0d:cc:dd:a9:f6: 67:59:36:1b:b6:2d:94:63:89:ad:95:7c:74:d4:5b: 9a:4c:34:38:29:6f:fa:01:6c:56:04:03:c0:1f:2d: f6:b4:4b:02:2f:4c:62:69:fa:83:1b:f5:1f:2e:c2: 13:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:97:7C:49:BE:62:EF:32:04:1F:A4:A4:ED:4A:2D:F3:09:B4:2B:16 X509v3 Authority Key Identifier: keyid:28:7B:B0:CD:66:FB:D7:E5:B7:A8:8B:A6:67:89:12:4C:0B:04:C5:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHuwzWb71-W3qIumZ4kSTAsExXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:a8:da:d0:e0:d0:3e:7a:81:92:9e:1a:d6:bb:0e:e1:8f:75: 8b:e5:1f:49:8d:1d:33:b0:95:e8:e4:a1:01:3e:d3:dd:16:26: a9:32:e4:ab:0e:04:90:41:d7:b9:2e:bc:dd:f0:2e:bc:7e:2c: df:90:00:5a:05:3e:91:69:fa:cb:98:02:db:da:38:1e:6e:80: 34:57:25:1d:ed:8d:1e:81:ee:a6:6e:0f:7e:c4:cb:ae:bb:9c: 0d:87:82:57:28:f1:d1:77:81:0a:78:0d:30:13:eb:d9:fb:02: c7:26:7e:70:11:8a:c9:83:f2:06:a8:2f:0d:05:f4:91:72:2b: 88:ca:0e:f6:2c:ec:5f:01:55:59:2d:c8:fb:16:a5:9c:d6:d5: 34:14:3c:25:4b:38:85:55:04:3d:6d:2c:b5:8e:50:14:a7:2a: e0:57:fb:c8:a1:7f:1e:bd:24:54:d3:10:87:9d:ae:9f:db:e6: 7b:2e:77:93:86:f7:03:a1:37:63:0c:16:8d:6c:cd:e2:46:b2: 89:f8:3a:c0:21:db:51:49:a3:e2:46:cc:76:2b:ef:83:ee:3b: 24:ba:8e:4f:e5:ae:6b:50:db:24:34:de:50:b9:8d:72:62:8d: fa:18:89:67:59:72:f4:8b:4f:3a:70:a8:e6:e7:0d:73:10:90: 87:95:42:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC3owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFMjUxMTAvBgNVBAUTKDI4N0JCMENENjZGQkQ3RTVCN0E4OEJBNjY3ODkxMjRD MEIwNEM1NzgwHhcNMjUwNjE2MTg1NjU1WhcNMjUwNjIzMTg1NjU1WjAYMRYwFAYD VQQDEw02ODUwNjhmOC02N2EzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA022jf/9ufYwbI86NGeD352fo/L2HJqqTZIJIqtno8jE2fcOyjBwiFNFG6CN4 libv74IJUGjqN+9PgK4Qrs16G8RCOgnT4gEMIJbxw7S8DaSNLIWYf2140vn85Ej3 /C3UW0S/nK90c8OIsFUc9Rh1tAf2g7HK2ITl3FoWl+GDSYPxHnpZz/KCInlWaZbF z9fcbBckTgbDmBq9fs24zIaCIkHE6zSqC+50J8TFoH7X7R6VWRYKNfDA6OkyLaGL 4EXakouk7fYHL5n0+P04DczdqfZnWTYbti2UY4mtlXx01FuaTDQ4KW/6AWxWBAPA Hy32tEsCL0xiafqDG/UfLsIT+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLqXfEm+ Yu8yBB+kpO1KLfMJtCsWMB8GA1UdIwQYMBaAFCh7sM1m+9flt6iLpmeJEkwLBMV4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUyNS82OEU1N0FFRTMw NjgxMUVBQTcwNkUzMkFDNEY5QUUwMi9LSHV3eldiNzEtVzNxSXVtWjRrU1RBc0V4 WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tIdXd6V2I3MS1XM3FJdW1aNGtTVEFzRXhYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUUyNS82OEU1N0FFRTMwNjgxMUVBQTcwNkUzMkFDNEY5QUUwMi9LSHV3eldiNzEt VzNxSXVtWjRrU1RBc0V4WGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYqNrQ4NA+eoGSnhrWuw7hj3WL5R9JjR0zsJXo5KEBPtPdFiapMuSr DgSQQde5Lrzd8C68fizfkABaBT6RafrLmALb2jgeboA0VyUd7Y0ege6mbg9+xMuu u5wNh4JXKPHRd4EKeA0wE+vZ+wLHJn5wEYrJg/IGqC8NBfSRciuIyg72LOxfAVVZ Lcj7FqWc1tU0FDwlSziFVQQ9bSy1jlAUpyrgV/vIoX8evSRU0xCHna6f2+Z7LneT hvcDoTdjDBaNbM3iRrKJ+DrAIdtRSaPiRsx2K++D7jskuo5P5a5rUNskNN5QuY1y Yo36GIlnWXL0i086cKjm5w1zEJCHlUI6 -----END CERTIFICATE-----Generated at Tue Jun 17 01:27:13 2025 by rpki-client