$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft File: kBqfnorkBi5SGbdlLY6f7n7FrjM.mft (raw, json) Hash identifier: 7bs1e/FYniA8hfJNoxACxgBe9jal4CFZTan/Dmj7kks= Subject key identifier: EB:18:80:96:10:B9:9F:F0:24:D5:4A:B8:34:93:0C:B1:B3:56:CC:69 Authority key identifier: 90:1A:9F:9E:8A:E4:06:2E:52:19:B7:65:2D:8E:9F:EE:7E:C5:AE:33 Certificate issuer: /CN=A91F2CE7/serialNumber=901A9F9E8AE4062E5219B7652D8E9FEE7EC5AE33 Certificate serial: A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kBqfnorkBi5SGbdlLY6f7n7FrjM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft Manifest number: A0 Signing time: Thu 19 Jun 2025 05:33:27 +0000 Manifest this update: Thu 19 Jun 2025 05:33:27 +0000 Manifest next update: Thu 26 Jun 2025 05:33:27 +0000 Files and hashes: 1: kBqfnorkBi5SGbdlLY6f7n7FrjM.crl (hash: 6evn3Uv0gWLusscLSr+/mVBlo28ai8KeV1bSBwGD7Vo=) 2: B377200E5ADD11EF9A462440C4F9AE02.roa (hash: ku0nQgImAfjqlfmOWSwIKN/zsrk6kYnMycZSjI2lh3o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.crl rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kBqfnorkBi5SGbdlLY6f7n7FrjM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 05:33:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 162 (0xa2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2CE7, serialNumber=901A9F9E8AE4062E5219B7652D8E9FEE7EC5AE33 Validity Not Before: Jun 19 05:33:27 2025 GMT Not After : Jun 26 05:33:27 2025 GMT Subject: CN=6853a127-14b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:03:65:a4:1d:27:4f:ee:84:e5:31:6d:d1:e3: a7:fa:00:88:22:a0:0c:e7:c1:07:98:05:e1:1e:09: 65:65:4b:3a:37:4d:ff:eb:1b:e1:d9:32:1f:66:34: bd:c3:48:aa:a5:19:7a:f4:d0:8d:2b:2f:8b:95:fb: 2f:12:3b:89:b0:99:70:69:fd:60:3e:d3:2e:a1:45: 23:24:6e:ff:17:5e:c9:67:a3:83:92:e7:ef:07:2c: a6:21:54:59:f3:a7:fb:f6:5d:25:2f:e0:57:b0:80: 32:12:67:23:03:5c:3a:21:c1:ec:34:a9:9b:62:26: 2e:7a:55:12:a1:f2:0d:8f:3c:ec:c3:12:3c:95:c6: e8:e1:e4:eb:97:28:9d:46:63:ff:91:25:8e:d4:ca: 44:08:98:fa:e1:6a:47:31:5a:67:f2:4b:ae:16:da: 04:c7:09:22:01:93:18:c5:ff:a2:7c:9c:db:53:c6: 19:86:29:fc:63:ef:26:49:ee:10:06:34:31:56:75: 2d:66:d6:ba:dc:24:96:3a:c6:9f:7b:f7:0f:12:17: 78:82:ee:0d:e8:2f:d3:e6:f0:45:26:f3:5f:22:5a: b2:e3:0e:08:91:52:2a:ed:4c:09:da:94:a3:40:7a: fe:4b:4e:a7:5e:60:02:98:92:dd:8d:98:20:31:a4: 8e:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:18:80:96:10:B9:9F:F0:24:D5:4A:B8:34:93:0C:B1:B3:56:CC:69 X509v3 Authority Key Identifier: keyid:90:1A:9F:9E:8A:E4:06:2E:52:19:B7:65:2D:8E:9F:EE:7E:C5:AE:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kBqfnorkBi5SGbdlLY6f7n7FrjM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:2d:96:e2:00:d9:d4:02:e0:d3:1a:ba:1d:8f:3b:d5:85:3e: 37:2f:91:9e:f0:e1:e4:dd:f8:fd:25:25:26:f5:4a:00:20:10: c0:db:98:40:ea:e4:bb:45:88:6a:5d:d7:39:20:0b:df:d1:47: 03:a9:51:ce:db:df:e3:49:95:4f:c3:bc:55:1c:a4:50:69:74: 28:b7:c2:37:64:f9:42:71:e1:1a:e3:c3:d9:88:d1:50:17:2d: f6:2f:9a:98:2b:16:91:83:81:2e:c7:34:b1:6c:a9:60:a2:39: 37:3d:54:ff:c7:f3:e4:a0:0b:65:e3:41:1c:95:fe:5c:e3:0b: 02:7e:33:7d:73:2f:87:29:66:7a:0d:16:7e:59:98:6a:a5:bb: 3d:5e:17:00:33:a9:7d:2f:d9:00:16:1d:08:65:c9:8c:76:b8: 23:0f:de:80:0a:7f:70:39:0a:b8:66:47:27:50:62:33:21:ac: b1:37:3d:35:25:46:76:56:ee:36:6a:5e:e7:e7:6d:6e:91:65: 69:2d:4b:d2:ed:01:7f:63:9d:ae:83:d7:32:f9:e2:4b:01:c0: 4f:79:b0:2d:73:11:e9:3c:b3:17:3b:51:a0:2e:64:8e:9a:e9: db:c7:b0:1f:ec:7c:ef:44:0f:4c:16:17:31:a8:f9:d0:0f:42: 0e:4d:96:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJDRTcxMTAvBgNVBAUTKDkwMUE5RjlFOEFFNDA2MkU1MjE5Qjc2NTJEOEU5RkVF N0VDNUFFMzMwHhcNMjUwNjE5MDUzMzI3WhcNMjUwNjI2MDUzMzI3WjAYMRYwFAYD VQQDEw02ODUzYTEyNy0xNGIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzgNlpB0nT+6E5TFt0eOn+gCIIqAM58EHmAXhHgllZUs6N03/6xvh2TIfZjS9 w0iqpRl69NCNKy+LlfsvEjuJsJlwaf1gPtMuoUUjJG7/F17JZ6ODkufvByymIVRZ 86f79l0lL+BXsIAyEmcjA1w6IcHsNKmbYiYuelUSofINjzzswxI8lcbo4eTrlyid RmP/kSWO1MpECJj64WpHMVpn8kuuFtoExwkiAZMYxf+ifJzbU8YZhin8Y+8mSe4Q BjQxVnUtZta63CSWOsafe/cPEhd4gu4N6C/T5vBFJvNfIlqy4w4IkVIq7UwJ2pSj QHr+S06nXmACmJLdjZggMaSOfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOsYgJYQ uZ/wJNVKuDSTDLGzVsxpMB8GA1UdIwQYMBaAFJAan56K5AYuUhm3ZS2On+5+xa4z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkNFNy83MkY3NUI5ODVB REQxMUVGODEyQzkyM0ZDNEY5QUUwMi9rQnFmbm9ya0JpNVNHYmRsTFk2ZjduN0Zy ak0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tCcWZub3JrQmk1U0diZGxMWTZmN243RnJqTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MkNFNy83MkY3NUI5ODVBREQxMUVGODEyQzkyM0ZDNEY5QUUwMi9rQnFmbm9ya0Jp NVNHYmRsTFk2ZjduN0Zyak0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByLZbiANnUAuDTGrodjzvVhT43L5Ge8OHk3fj9JSUm9UoAIBDA25hA 6uS7RYhqXdc5IAvf0UcDqVHO29/jSZVPw7xVHKRQaXQot8I3ZPlCceEa48PZiNFQ Fy32L5qYKxaRg4EuxzSxbKlgojk3PVT/x/PkoAtl40Eclf5c4wsCfjN9cy+HKWZ6 DRZ+WZhqpbs9XhcAM6l9L9kAFh0IZcmMdrgjD96ACn9wOQq4ZkcnUGIzIayxNz01 JUZ2Vu42al7n521ukWVpLUvS7QF/Y52ug9cy+eJLAcBPebAtcxHpPLMXO1GgLmSO munbx7Af7HzvRA9MFhcxqPnQD0IOTZZw -----END CERTIFICATE-----Generated at Thu Jun 19 15:02:07 2025 by rpki-client