$ rpki-client -vvf rpki.apnic.net/member_repository/A91F79A2/1A05E6EE2D2E11EFA54C8042C4F9AE02/kTOsvs_e7PTaOiIigng09bc6-qc.mft File: kTOsvs_e7PTaOiIigng09bc6-qc.mft (raw, json) Hash identifier: Y5aFxogsglFJf5rr4PAxDv1U+ckW2ghf8xCksMLU++k= Subject key identifier: 1F:BE:78:1B:96:B6:DA:4E:E7:3A:F5:8D:DF:C5:77:35:B4:4F:A0:15 Authority key identifier: 91:33:AC:BE:CF:DE:EC:F4:DA:3A:22:22:82:78:34:F5:B7:3A:FA:A7 Certificate issuer: /CN=A91F79A2/serialNumber=9133ACBECFDEECF4DA3A2222827834F5B73AFAA7 Certificate serial: BE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kTOsvs_e7PTaOiIigng09bc6-qc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F79A2/1A05E6EE2D2E11EFA54C8042C4F9AE02/kTOsvs_e7PTaOiIigng09bc6-qc.mft Manifest number: BC Signing time: Sun 15 Jun 2025 04:58:52 +0000 Manifest this update: Sun 15 Jun 2025 04:58:51 +0000 Manifest next update: Sun 22 Jun 2025 04:58:50 +0000 Files and hashes: 1: kTOsvs_e7PTaOiIigng09bc6-qc.crl (hash: OkJB9cpMmPb0YeFAdDu8ePWtFCA0+9Ue2B8yK1mVOms=) 2: 6B9D491C379A11F0B3AC7740C4F9AE02.roa (hash: RLph3rOI+XvGrIXc+VEb/mig9QwsOBw+jIRI25aGTLo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F79A2/1A05E6EE2D2E11EFA54C8042C4F9AE02/kTOsvs_e7PTaOiIigng09bc6-qc.crl rsync://rpki.apnic.net/member_repository/A91F79A2/1A05E6EE2D2E11EFA54C8042C4F9AE02/kTOsvs_e7PTaOiIigng09bc6-qc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kTOsvs_e7PTaOiIigng09bc6-qc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 04:58:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 190 (0xbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F79A2, serialNumber=9133ACBECFDEECF4DA3A2222827834F5B73AFAA7 Validity Not Before: Jun 15 04:58:51 2025 GMT Not After : Jun 22 04:58:50 2025 GMT Subject: CN=684e530b-893b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:72:1d:36:5a:0b:2e:53:09:fb:b0:04:6f:20: 8a:d4:b9:bf:da:e0:c8:a7:be:88:bd:5d:a6:28:b2: 97:26:5b:ef:11:4b:b9:4d:14:bc:9e:8c:56:41:fe: 75:9b:96:60:45:da:82:0c:ed:35:45:4b:07:73:1a: 3f:ff:ef:21:38:04:5d:a1:6f:5a:9f:35:82:27:94: 21:d5:77:99:5e:59:94:24:e0:22:45:82:c3:90:45: 9f:52:78:c1:d6:cd:c9:65:49:e7:94:68:f3:1b:12: da:56:f5:65:1b:55:9a:13:9a:0e:f6:70:22:1a:13: 15:45:ae:5e:da:d5:cb:81:b9:77:cb:2e:21:7f:33: ec:32:7a:b6:1d:ff:4c:e1:62:56:3a:9a:3e:9d:b4: 82:c2:e3:9e:1b:90:af:0f:83:df:96:6e:83:56:23: 55:5a:0b:f3:f3:24:1d:40:55:57:de:14:a9:a2:a8: 68:2a:11:ec:1d:de:1d:4e:ae:8a:18:bc:f0:bb:bd: 62:ca:e5:f0:48:86:ab:38:3e:f9:f0:19:df:f9:e5: df:90:40:71:d1:69:eb:fc:d5:c3:49:08:37:ed:dc: 53:c8:5a:63:2f:bd:f8:c6:76:3d:75:08:cc:06:99: 30:5e:01:4d:d5:7d:87:2e:34:60:e0:9a:6a:1b:93: 12:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:BE:78:1B:96:B6:DA:4E:E7:3A:F5:8D:DF:C5:77:35:B4:4F:A0:15 X509v3 Authority Key Identifier: keyid:91:33:AC:BE:CF:DE:EC:F4:DA:3A:22:22:82:78:34:F5:B7:3A:FA:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F79A2/1A05E6EE2D2E11EFA54C8042C4F9AE02/kTOsvs_e7PTaOiIigng09bc6-qc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kTOsvs_e7PTaOiIigng09bc6-qc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F79A2/1A05E6EE2D2E11EFA54C8042C4F9AE02/kTOsvs_e7PTaOiIigng09bc6-qc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:90:2b:ca:b1:8c:8b:0b:12:51:b1:a3:f6:52:a2:0c:7b:2a: ad:dd:67:36:a9:e4:95:b6:ad:9d:55:c2:95:18:8d:d4:f3:43: a6:ad:56:10:fb:f2:58:e4:fb:ed:d2:f2:a2:f7:f2:3e:cf:91: 26:72:45:62:f9:fa:96:e4:eb:4e:5a:ef:0f:cb:03:7e:e9:e8: 5b:92:85:9b:e5:4f:6e:4a:4d:45:f3:23:6a:a8:7d:5b:0b:d8: 9d:b6:6d:ab:c4:65:7a:dd:c1:ab:cd:9d:b7:7f:ff:13:12:25: 53:18:f4:8e:b0:b7:56:c9:be:04:d5:d1:6d:48:45:d0:79:ea: b3:9d:a4:e8:c4:cc:f7:13:d2:56:53:9e:41:a1:c2:b8:37:1c: ec:a4:6d:67:92:f8:a0:1d:24:53:fa:14:ea:33:7f:96:88:55: a2:31:97:30:7b:d5:a0:f3:37:6a:91:2c:66:b2:92:b0:71:9f: 7d:a8:16:96:a7:76:b4:54:ca:d6:84:a2:88:38:b9:09:ee:20: 6d:c4:5e:de:34:c3:19:72:56:83:3f:52:c9:c1:33:b8:8d:3f: 18:9b:08:d7:5e:cf:e7:70:4c:b7:2e:b5:de:91:33:27:1c:f9: 1e:b7:05:62:4d:3d:e9:ab:a9:16:f7:cb:19:62:fe:3c:53:13: 3a:82:8b:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjc5QTIxMTAvBgNVBAUTKDkxMzNBQ0JFQ0ZERUVDRjREQTNBMjIyMjgyNzgzNEY1 QjczQUZBQTcwHhcNMjUwNjE1MDQ1ODUxWhcNMjUwNjIyMDQ1ODUwWjAYMRYwFAYD VQQDEw02ODRlNTMwYi04OTNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvXIdNloLLlMJ+7AEbyCK1Lm/2uDIp76IvV2mKLKXJlvvEUu5TRS8noxWQf51 m5ZgRdqCDO01RUsHcxo//+8hOARdoW9anzWCJ5Qh1XeZXlmUJOAiRYLDkEWfUnjB 1s3JZUnnlGjzGxLaVvVlG1WaE5oO9nAiGhMVRa5e2tXLgbl3yy4hfzPsMnq2Hf9M 4WJWOpo+nbSCwuOeG5CvD4Pflm6DViNVWgvz8yQdQFVX3hSpoqhoKhHsHd4dTq6K GLzwu71iyuXwSIarOD758Bnf+eXfkEBx0Wnr/NXDSQg37dxTyFpjL734xnY9dQjM BpkwXgFN1X2HLjRg4JpqG5MSLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB++eBuW ttpO5zr1jd/FdzW0T6AVMB8GA1UdIwQYMBaAFJEzrL7P3uz02joiIoJ4NPW3Ovqn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzlBMi8xQTA1RTZFRTJE MkUxMUVGQTU0QzgwNDJDNEY5QUUwMi9rVE9zdnNfZTdQVGFPaUlpZ25nMDliYzYt cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tUT3N2c19lN1BUYU9pSWlnbmcwOWJjNi1xYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzlBMi8xQTA1RTZFRTJEMkUxMUVGQTU0QzgwNDJDNEY5QUUwMi9rVE9zdnNfZTdQ VGFPaUlpZ25nMDliYzYtcWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCvkCvKsYyLCxJRsaP2UqIMeyqt3Wc2qeSVtq2dVcKVGI3U80OmrVYQ +/JY5Pvt0vKi9/I+z5EmckVi+fqW5OtOWu8PywN+6ehbkoWb5U9uSk1F8yNqqH1b C9idtm2rxGV63cGrzZ23f/8TEiVTGPSOsLdWyb4E1dFtSEXQeeqznaToxMz3E9JW U55BocK4NxzspG1nkvigHSRT+hTqM3+WiFWiMZcwe9Wg8zdqkSxmspKwcZ99qBaW p3a0VMrWhKKIOLkJ7iBtxF7eNMMZclaDP1LJwTO4jT8YmwjXXs/ncEy3LrXekTMn HPketwViTT3pq6kW98sZYv48UxM6gouL -----END CERTIFICATE-----Generated at Mon Jun 16 18:50:09 2025 by rpki-client