$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft File: kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft (raw, json) Hash identifier: mQhAVbwxoigX8FIW5WsqyGar9ChM6ztKk5O8E414ees= Subject key identifier: 91:B9:06:A4:69:4F:5C:0C:D7:23:6D:4B:9B:AD:AB:88:B4:28:54:17 Authority key identifier: 91:17:6D:16:9C:42:F0:3D:95:28:2B:BB:A2:04:C4:E4:4D:31:ED:09 Certificate issuer: /CN=A91FF5B9/serialNumber=91176D169C42F03D95282BBBA204C4E44D31ED09 Certificate serial: 2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft Manifest number: 2A Signing time: Fri 13 Jun 2025 06:41:38 +0000 Manifest this update: Fri 13 Jun 2025 06:41:37 +0000 Manifest next update: Fri 20 Jun 2025 06:41:37 +0000 Files and hashes: 1: kRdtFpxC8D2VKCu7ogTE5E0x7Qk.crl (hash: vFuFqY6IVPPsX8yxnZFOv33+psxqBIIeFLn6OUI3IGQ=) 2: DA700744185511F09304D972C4F9AE02.roa (hash: AVDeCRqbZoyZl3fF1YnTf6HcDZbje6RSX9dEEeI1q44=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.crl rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 06:41:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44 (0x2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF5B9, serialNumber=91176D169C42F03D95282BBBA204C4E44D31ED09 Validity Not Before: Jun 13 06:41:37 2025 GMT Not After : Jun 20 06:41:37 2025 GMT Subject: CN=684bc821-7185 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:5d:9b:f1:2f:0c:88:8e:2f:c6:87:8f:e3:db: e0:b4:1a:cc:dd:1b:b5:91:96:72:84:48:0f:f0:96: 77:6c:a2:2d:df:e6:68:34:65:48:50:a1:1c:c9:47: 0e:0d:5f:bb:d0:45:19:8e:79:8c:ce:a3:72:b4:a9: 39:77:49:3b:8f:6f:8a:55:3d:ec:3b:bb:3a:94:f1: cc:dd:07:b4:44:74:f7:f3:99:0a:2f:0c:1d:fa:92: b8:a8:27:91:58:75:f4:3d:f2:09:77:4e:0b:e1:79: 70:3b:51:3e:63:67:58:46:2f:af:b0:f0:d1:e2:d3: 8b:6c:b3:e7:7f:d5:8c:4b:1c:e0:60:16:0c:de:6a: 5a:46:b2:b2:a7:7a:52:46:3c:bb:f9:5f:4c:df:c4: a0:ea:29:50:98:a8:ee:51:dd:3b:82:16:1a:34:ff: 6a:57:fc:77:dc:8d:2d:2b:7c:15:94:61:f6:f0:c4: f8:66:33:2d:53:fa:cd:22:8d:9a:fc:69:1e:bf:33: ae:65:88:93:4c:64:14:c0:a0:aa:82:f5:51:8a:5a: b8:12:3b:56:f4:83:02:40:69:28:e2:11:27:df:23: 63:15:01:eb:e4:8a:aa:53:52:4f:8f:fd:6f:73:b9: 94:c7:0a:03:c8:ed:4c:4c:8a:23:05:e1:19:63:b9: 13:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:B9:06:A4:69:4F:5C:0C:D7:23:6D:4B:9B:AD:AB:88:B4:28:54:17 X509v3 Authority Key Identifier: keyid:91:17:6D:16:9C:42:F0:3D:95:28:2B:BB:A2:04:C4:E4:4D:31:ED:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:4d:87:0e:d3:b7:8f:f3:1f:27:fb:72:cf:96:35:41:6f:0c: 8e:9b:c6:ec:27:8f:5e:c0:91:13:0c:2f:f5:0a:ba:c9:ce:0c: d4:c5:9c:c8:2b:56:11:e0:7f:a1:7a:ab:3f:83:de:2f:df:69: 49:0b:7f:a0:3a:7a:09:e7:4d:a1:82:9f:23:f9:ee:e1:d6:36: 17:ba:31:90:05:0f:58:84:c8:50:89:65:c6:92:88:09:91:89: 99:92:97:76:e8:c7:65:67:1c:48:d2:6d:27:87:5f:0d:4d:73: 60:b2:55:1b:6b:fa:3f:08:18:43:39:a2:01:2d:a4:8e:6d:fc: a3:b3:20:82:9c:ce:51:ed:bc:b4:d7:ad:c9:93:bb:a1:2d:f2: cb:a8:22:23:62:2c:76:8b:8d:76:25:b2:9f:06:07:de:23:07: 41:da:b0:79:40:c2:20:ea:73:3c:cf:44:51:6a:d3:b8:3d:cd: 0a:9e:a4:37:1a:b3:1a:66:91:7c:0c:00:4a:38:a4:fb:d7:2c: 13:cb:69:c6:2d:74:73:ed:e2:41:04:42:1b:24:aa:77:e6:3e: a6:2f:ce:d2:68:ed:aa:6f:bc:5a:15:51:5e:fe:ca:09:d5:42: 24:6c:8c:6c:db:8f:bc:4c:d6:8d:a6:72:1a:82:74:92:df:7e: 74:e4:67:53 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG RjVCOTExMC8GA1UEBRMoOTExNzZEMTY5QzQyRjAzRDk1MjgyQkJCQTIwNEM0RTQ0 RDMxRUQwOTAeFw0yNTA2MTMwNjQxMzdaFw0yNTA2MjAwNjQxMzdaMBgxFjAUBgNV BAMTDTY4NGJjODIxLTcxODUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCXZvxLwyIji/Gh4/j2+C0GszdG7WRlnKESA/wlndsoi3f5mg0ZUhQoRzJRw4N X7vQRRmOeYzOo3K0qTl3STuPb4pVPew7uzqU8czdB7REdPfzmQovDB36krioJ5FY dfQ98gl3TgvheXA7UT5jZ1hGL6+w8NHi04tss+d/1YxLHOBgFgzealpGsrKnelJG PLv5X0zfxKDqKVCYqO5R3TuCFho0/2pX/HfcjS0rfBWUYfbwxPhmMy1T+s0ijZr8 aR6/M65liJNMZBTAoKqC9VGKWrgSO1b0gwJAaSjiESffI2MVAevkiqpTUk+P/W9z uZTHCgPI7UxMiiMF4RljuRPHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUkbkGpGlP XAzXI21Lm62riLQoVBcwHwYDVR0jBBgwFoAUkRdtFpxC8D2VKCu7ogTE5E0x7Qkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZGNUI5LzUyMDJEMDI4MERG OTExRjA4RTZFNzYyQUM0RjlBRTAyL2tSZHRGcHhDOEQyVktDdTdvZ1RFNUUweDdR ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIva1JkdEZweEM4RDJWS0N1N29nVEU1RTB4N1FrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZG NUI5LzUyMDJEMDI4MERGOTExRjA4RTZFNzYyQUM0RjlBRTAyL2tSZHRGcHhDOEQy VktDdTdvZ1RFNUUweDdRay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAhNhw7Tt4/zHyf7cs+WNUFvDI6bxuwnj17AkRMML/UKusnODNTFnMgr VhHgf6F6qz+D3i/faUkLf6A6egnnTaGCnyP57uHWNhe6MZAFD1iEyFCJZcaSiAmR iZmSl3box2VnHEjSbSeHXw1Nc2CyVRtr+j8IGEM5ogEtpI5t/KOzIIKczlHtvLTX rcmTu6Et8suoIiNiLHaLjXYlsp8GB94jB0HasHlAwiDqczzPRFFq07g9zQqepDca sxpmkXwMAEo4pPvXLBPLacYtdHPt4kEEQhskqnfmPqYvztJo7apvvFoVUV7+ygnV QiRsjGzbj7xM1o2mchqCdJLffnTkZ1M= -----END CERTIFICATE-----Generated at Sun Jun 15 05:11:31 2025 by rpki-client