$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft File: Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft (raw, json) Hash identifier: PedZqEx4Wc2NtC4up+Rmt7ABYceZDZQJSDOSaIB2vwQ= Subject key identifier: 8F:EF:C3:47:4D:A1:25:AF:C7:10:A8:D3:F4:AA:05:77:D8:78:2D:08 Authority key identifier: 2B:3E:E4:4E:A9:CB:5B:81:29:6B:B6:7D:F0:F5:46:F8:AA:C8:A4:B4 Certificate issuer: /CN=A91F4F00/serialNumber=2B3EE44EA9CB5B81296BB67DF0F546F8AAC8A4B4 Certificate serial: 0789 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft Manifest number: 0783 Signing time: Thu 12 Jun 2025 21:07:51 +0000 Manifest this update: Thu 12 Jun 2025 21:07:51 +0000 Manifest next update: Thu 19 Jun 2025 21:07:51 +0000 Files and hashes: 1: Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl (hash: TigwSmiTd4Qv4By20LAt2xsBbwoilaWBeQ1/sU+HUBM=) 2: 395AFD84135811EB942A3E15C4F9AE02.roa (hash: +nVGHDmFpNMeCZK4D+EYT1WCdxSsITi4ixDFG3tX1xc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 21:07:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1929 (0x789) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4F00, serialNumber=2B3EE44EA9CB5B81296BB67DF0F546F8AAC8A4B4 Validity Not Before: Jun 12 21:07:51 2025 GMT Not After : Jun 19 21:07:51 2025 GMT Subject: CN=684b41a7-ca11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:c4:4b:f3:2b:d4:2a:d6:8d:c8:f7:26:a2:17: e5:e9:40:12:d9:48:2d:7f:78:0a:8d:3e:02:9f:72: f2:ca:00:fa:5a:0c:d3:62:1e:9f:04:11:99:be:e8: cb:6e:ff:63:0e:85:29:dc:af:7d:58:6f:a2:54:3a: e3:8c:1f:c6:81:55:f9:8c:3d:2d:44:a7:19:a8:68: 74:97:e0:6b:50:5b:70:47:4f:ab:9b:4b:34:86:43: bc:14:25:32:4d:0c:08:5f:d8:48:65:02:d5:38:bf: 2f:74:0c:b9:f6:c2:81:ac:fd:04:aa:b7:f7:75:3c: a1:44:bb:35:83:61:48:bb:fa:f1:2a:82:a8:8f:62: b4:51:bc:51:4d:6d:56:50:f3:53:49:80:df:4d:e8: 24:26:41:6e:9d:ff:02:d5:0e:9d:7d:74:f3:07:42: 53:7b:85:74:e6:2a:59:a1:8f:74:a0:ae:ef:f5:82: 61:bf:41:13:d3:58:fa:0e:ae:4e:7e:b0:85:e8:64: a5:33:2f:28:21:99:9e:bd:7d:ec:12:76:b0:ae:50: 37:02:d3:47:d3:ca:4f:df:e3:8a:00:4a:f8:ee:7f: 51:e2:28:81:ab:df:1e:e4:8e:9e:69:e1:0f:bb:b2: fa:82:56:94:7f:14:83:ae:9a:99:cf:73:ff:a8:79: c9:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:EF:C3:47:4D:A1:25:AF:C7:10:A8:D3:F4:AA:05:77:D8:78:2D:08 X509v3 Authority Key Identifier: keyid:2B:3E:E4:4E:A9:CB:5B:81:29:6B:B6:7D:F0:F5:46:F8:AA:C8:A4:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:b9:cb:03:1d:e2:dd:e3:0a:9e:98:72:5c:12:d1:13:34:5e: 11:61:0d:8a:06:90:50:8e:82:b9:db:3c:5d:f2:d2:0c:7b:af: 80:45:8e:e2:80:c1:74:43:e6:7f:fe:ce:2f:82:3a:68:1c:bc: e4:92:5c:ac:fb:67:5c:1f:7b:70:88:20:ca:b5:df:3a:c5:20: 28:bb:78:2d:83:d9:a3:5f:c2:58:f0:e5:1e:05:37:4b:80:21: d3:c2:16:6c:cf:f8:27:3b:3d:8b:63:ae:2f:de:6c:dc:eb:25: 45:8d:3f:3e:15:f5:79:5d:0b:cb:f5:69:45:12:22:4e:12:1b: 4e:b4:44:fb:ba:3c:19:f5:c6:08:a1:1d:1f:9d:7d:12:4c:0b: 37:3e:6c:ce:ba:c1:00:25:d3:a4:35:ee:9f:3d:fd:9b:39:e0: 83:10:05:63:67:4f:ff:cd:f4:c2:f9:1c:1f:55:7b:9c:7b:41: c6:1b:95:5a:da:a2:80:db:a9:76:51:03:2e:4c:ce:38:1e:5a: 58:e8:29:9d:f4:64:6a:40:ca:7b:ce:a3:33:c8:bf:f5:2d:00: 36:a1:e8:09:28:0c:5a:20:54:4a:a7:70:80:af:36:79:f9:79: d1:08:27:df:a6:d4:d8:5f:42:4f:b1:d5:ef:5b:93:a3:55:58: 70:b8:91:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB4kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRGMDAxMTAvBgNVBAUTKDJCM0VFNDRFQTlDQjVCODEyOTZCQjY3REYwRjU0NkY4 QUFDOEE0QjQwHhcNMjUwNjEyMjEwNzUxWhcNMjUwNjE5MjEwNzUxWjAYMRYwFAYD VQQDEw02ODRiNDFhNy1jYTExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnMRL8yvUKtaNyPcmohfl6UAS2Ugtf3gKjT4Cn3LyygD6WgzTYh6fBBGZvujL bv9jDoUp3K99WG+iVDrjjB/GgVX5jD0tRKcZqGh0l+BrUFtwR0+rm0s0hkO8FCUy TQwIX9hIZQLVOL8vdAy59sKBrP0Eqrf3dTyhRLs1g2FIu/rxKoKoj2K0UbxRTW1W UPNTSYDfTegkJkFunf8C1Q6dfXTzB0JTe4V05ipZoY90oK7v9YJhv0ET01j6Dq5O frCF6GSlMy8oIZmevX3sEnawrlA3AtNH08pP3+OKAEr47n9R4iiBq98e5I6eaeEP u7L6glaUfxSDrpqZz3P/qHnJtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI/vw0dN oSWvxxCo0/SqBXfYeC0IMB8GA1UdIwQYMBaAFCs+5E6py1uBKWu2ffD1RviqyKS0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEYwMC8zREE2OTAxNjEz NTcxMUVCQTIzREE3MTRDNEY5QUUwMi9LejdrVHFuTFc0RXBhN1o5OFBWRy1Lcklw TFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t6N2tUcW5MVzRFcGE3Wjk4UFZHLUtySXBMUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEYwMC8zREE2OTAxNjEzNTcxMUVCQTIzREE3MTRDNEY5QUUwMi9LejdrVHFuTFc0 RXBhN1o5OFBWRy1LcklwTFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAucsDHeLd4wqemHJcEtETNF4RYQ2KBpBQjoK52zxd8tIMe6+ARY7i gMF0Q+Z//s4vgjpoHLzkklys+2dcH3twiCDKtd86xSAou3gtg9mjX8JY8OUeBTdL gCHTwhZsz/gnOz2LY64v3mzc6yVFjT8+FfV5XQvL9WlFEiJOEhtOtET7ujwZ9cYI oR0fnX0STAs3PmzOusEAJdOkNe6fPf2bOeCDEAVjZ0//zfTC+RwfVXuce0HGG5Va 2qKA26l2UQMuTM44HlpY6Cmd9GRqQMp7zqMzyL/1LQA2oegJKAxaIFRKp3CArzZ5 +XnRCCffptTYX0JPsdXvW5OjVVhwuJE3 -----END CERTIFICATE-----Generated at Sat Jun 14 19:30:12 2025 by rpki-client