$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.mft File: K5XY2CKKiRR9gBk9l3DrUK7du2s.mft (raw, json) Hash identifier: 8spILfDKAMWMb/9yMExODyJmme4lEFePhH17VDtBoo8= Subject key identifier: FB:BE:8B:E5:FC:C1:BE:42:6D:E8:86:AE:BF:4D:97:52:EC:07:63:D3 Authority key identifier: 2B:95:D8:D8:22:8A:89:14:7D:80:19:3D:97:70:EB:50:AE:DD:BB:6B Certificate issuer: /CN=A91FF5A9/serialNumber=2B95D8D8228A89147D80193D9770EB50AEDDBB6B Certificate serial: 16C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5XY2CKKiRR9gBk9l3DrUK7du2s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.mft Manifest number: 16AF Signing time: Sat 14 Jun 2025 16:36:29 +0000 Manifest this update: Sat 14 Jun 2025 16:36:29 +0000 Manifest next update: Sat 21 Jun 2025 16:36:29 +0000 Files and hashes: 1: K5XY2CKKiRR9gBk9l3DrUK7du2s.crl (hash: g8vWrxjaZGHaFXyXBxpSakUE5etAeCRNtnZIg9wqvJM=) 2: 07D665E0862711EBAC147872C4F9AE02.roa (hash: h1jWRhCaXCGscugt7m7NPkJTh1NUHltfWypGJXiPwZw=) 3: F9E21144D90F11EDB2DBEA49C4F9AE02.roa (hash: fP45NGSHNvdQShMBiD1rePe2Esz9p+VlDQo2vfi2cz0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.crl rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5XY2CKKiRR9gBk9l3DrUK7du2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 16:36:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5832 (0x16c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF5A9, serialNumber=2B95D8D8228A89147D80193D9770EB50AEDDBB6B Validity Not Before: Jun 14 16:36:29 2025 GMT Not After : Jun 21 16:36:29 2025 GMT Subject: CN=684da50d-8ad6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:7e:bc:92:db:94:56:80:92:72:73:b3:74:53: 3c:92:6a:44:83:72:a1:ed:89:e7:f4:92:af:9e:cb: 39:e5:8d:84:e1:49:c0:df:1b:d2:38:8c:a8:5e:57: 56:94:7b:1f:e5:40:10:50:af:f6:4f:8f:12:01:09: ce:68:58:79:83:bf:d6:0f:b5:60:30:99:81:50:59: d1:12:17:fb:3d:49:f8:99:4c:d2:eb:ae:95:d4:29: a6:28:03:c2:c8:ec:1b:57:1f:a9:37:a8:fa:87:81: 8a:22:93:ea:86:2e:df:d0:e7:9e:89:53:2d:60:24: 49:3a:93:22:86:e4:51:bc:46:c6:2e:29:3f:e7:e4: 9c:e9:14:26:62:a9:d4:74:9b:99:12:2b:b2:7a:2e: 96:32:d5:35:1c:9b:d7:68:e1:58:99:a6:48:25:c8: 91:bd:2f:50:6f:a3:ed:f1:55:48:e9:45:c3:95:68: fa:eb:70:26:df:cb:b8:7f:95:b6:81:fa:10:26:23: 0c:3b:51:68:d3:2f:36:2e:06:60:b7:91:d8:51:70: 2d:6e:27:8e:57:c6:31:71:91:97:52:d5:66:a4:8e: 11:b3:ee:61:91:a6:50:88:ec:96:3f:4b:b7:2c:6c: 49:ac:99:17:01:82:24:9b:16:0d:2c:28:73:c4:8c: 43:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:BE:8B:E5:FC:C1:BE:42:6D:E8:86:AE:BF:4D:97:52:EC:07:63:D3 X509v3 Authority Key Identifier: keyid:2B:95:D8:D8:22:8A:89:14:7D:80:19:3D:97:70:EB:50:AE:DD:BB:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5XY2CKKiRR9gBk9l3DrUK7du2s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:39:95:fb:8b:9b:3a:40:cc:91:12:93:d8:4c:03:40:74:e0: 59:f3:7c:9d:f6:51:6a:bc:16:2f:c6:c4:b3:e1:72:ab:29:26: f5:a4:d7:3d:a7:22:43:aa:91:4d:7d:d4:4b:6a:3b:ba:22:08: 31:b3:72:2e:cc:7e:4a:8f:db:d7:7c:f8:41:61:de:01:59:95: 86:87:4a:fb:e5:bc:43:3d:1c:47:7c:a7:ed:1c:6f:d7:30:3d: 81:d6:44:28:8f:25:c6:f4:b5:ad:79:bf:30:22:d7:f5:c4:75: 70:dc:0e:5e:e9:67:e6:19:35:41:34:85:34:7d:71:fe:91:ed: c2:54:a4:ea:bf:f5:13:46:0b:b8:70:23:0d:38:ef:2e:73:3d: c9:03:71:74:8e:58:3c:ed:8b:10:8e:fa:71:1f:42:38:34:68: 18:32:47:b3:32:e1:42:ed:48:7d:86:8c:47:48:3f:a3:15:55: d2:ee:ca:96:ee:84:48:6b:25:2b:00:be:a2:ef:4c:1c:98:f6: 57:10:ec:e2:5b:03:89:90:27:d6:84:8c:7e:d7:cc:be:0d:40: a7:f0:74:1c:49:68:62:40:f9:4b:2a:58:d1:b4:60:88:ae:13: 79:61:dd:58:9c:40:07:c1:13:37:96:9f:02:d8:e7:ce:5f:2e: 8e:77:31:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFsgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY1QTkxMTAvBgNVBAUTKDJCOTVEOEQ4MjI4QTg5MTQ3RDgwMTkzRDk3NzBFQjUw QUVEREJCNkIwHhcNMjUwNjE0MTYzNjI5WhcNMjUwNjIxMTYzNjI5WjAYMRYwFAYD VQQDEw02ODRkYTUwZC04YWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsH68ktuUVoCScnOzdFM8kmpEg3Kh7Ynn9JKvnss55Y2E4UnA3xvSOIyoXldW lHsf5UAQUK/2T48SAQnOaFh5g7/WD7VgMJmBUFnREhf7PUn4mUzS666V1CmmKAPC yOwbVx+pN6j6h4GKIpPqhi7f0OeeiVMtYCRJOpMihuRRvEbGLik/5+Sc6RQmYqnU dJuZEiuyei6WMtU1HJvXaOFYmaZIJciRvS9Qb6Pt8VVI6UXDlWj663Am38u4f5W2 gfoQJiMMO1Fo0y82LgZgt5HYUXAtbieOV8YxcZGXUtVmpI4Rs+5hkaZQiOyWP0u3 LGxJrJkXAYIkmxYNLChzxIxDVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPu+i+X8 wb5CbeiGrr9Nl1LsB2PTMB8GA1UdIwQYMBaAFCuV2NgiiokUfYAZPZdw61Cu3btr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjVBOS8wMEI3MTUxQ0ZE MDgxMUU3QTQyOEZGMEZDNEY5QUUwMi9LNVhZMkNLS2lSUjlnQms5bDNEclVLN2R1 MnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s1WFkyQ0tLaVJSOWdCazlsM0RyVUs3ZHUycy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjVBOS8wMEI3MTUxQ0ZEMDgxMUU3QTQyOEZGMEZDNEY5QUUwMi9LNVhZMkNLS2lS UjlnQms5bDNEclVLN2R1MnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHOZX7i5s6QMyREpPYTANAdOBZ83yd9lFqvBYvxsSz4XKrKSb1pNc9 pyJDqpFNfdRLaju6Iggxs3IuzH5Kj9vXfPhBYd4BWZWGh0r75bxDPRxHfKftHG/X MD2B1kQojyXG9LWteb8wItf1xHVw3A5e6WfmGTVBNIU0fXH+ke3CVKTqv/UTRgu4 cCMNOO8ucz3JA3F0jlg87YsQjvpxH0I4NGgYMkezMuFC7Uh9hoxHSD+jFVXS7sqW 7oRIayUrAL6i70wcmPZXEOziWwOJkCfWhIx+18y+DUCn8HQcSWhiQPlLKljRtGCI rhN5Yd1YnEAHwRM3lp8C2OfOXy6OdzEN -----END CERTIFICATE-----Generated at Sun Jun 15 09:55:12 2025 by rpki-client