$ rpki-client -vvf rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft File: 2kcnine73_Ktn5igEaKnoufNYNg.mft (raw, json) Hash identifier: KR9/fn2qkFJJ+sB6uOJvllgvWxO8H1Ri+NgASQQxy6k= Subject key identifier: 01:2A:4C:A2:AD:C5:A0:3E:12:9E:1C:20:D7:C4:2F:63:27:71:0C:91 Authority key identifier: DA:47:27:8A:77:BB:DF:F2:AD:9F:98:A0:11:A2:A7:A2:E7:CD:60:D8 Certificate issuer: /CN=A91393BE/serialNumber=DA47278A77BBDFF2AD9F98A011A2A7A2E7CD60D8 Certificate serial: B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft Manifest number: B3 Signing time: Sat 19 Jul 2025 06:10:54 +0000 Manifest this update: Sat 19 Jul 2025 06:10:53 +0000 Manifest next update: Sat 26 Jul 2025 06:10:53 +0000 Files and hashes: 1: 2kcnine73_Ktn5igEaKnoufNYNg.crl (hash: hOgQ14B5dotrl70DSG/4V3wNq0Uyq5nFfy28qKQ+IAg=) 2: 05A966C652DB11EF990CB840C4F9AE02.roa (hash: 7cyDiCG+GWMMc47d/9wE/tr8+3lmCjNtDuQzc5Jy9ng=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.crl rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 06:10:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 181 (0xb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91393BE, serialNumber=DA47278A77BBDFF2AD9F98A011A2A7A2E7CD60D8 Validity Not Before: Jul 19 06:10:53 2025 GMT Not After : Jul 26 06:10:53 2025 GMT Subject: CN=687b36ed-2602 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:1a:96:d3:e0:87:27:61:28:f9:f2:ad:3f:d4: 5f:8b:c1:78:6e:78:c9:2f:fd:e1:b5:83:39:0a:b5: 71:5d:ad:ae:d7:a9:af:c9:d2:1b:72:82:fd:3b:c4: 01:7c:3c:4c:4e:0b:6e:b6:a1:e5:77:fb:64:e4:a7: 15:88:89:ee:5e:d4:7d:ad:2d:08:2f:e4:91:fd:54: ab:46:07:eb:65:ff:6b:5f:81:f1:d1:6c:0f:00:af: a7:a0:54:7a:b2:6d:1f:a8:29:aa:41:6b:67:1d:94: 1a:74:de:56:56:3e:8c:80:09:0e:ad:f0:12:b4:47: fa:36:37:5a:0e:a7:b8:95:63:a8:c2:a1:67:2d:b2: 39:4c:3b:f6:31:c8:29:35:9f:be:06:c9:ee:4e:26: 08:58:c8:a9:cf:7d:93:c6:b2:0b:0a:05:75:00:2c: 42:c5:d2:34:9a:f3:d2:e7:69:fe:58:c7:72:72:5e: 25:b9:c3:33:ef:c8:5d:53:0e:36:11:8c:74:81:e5: be:6a:c3:95:b2:00:f0:b5:90:fb:44:5c:ea:03:4b: 1d:04:c2:f9:f2:a1:37:c4:df:0e:8e:89:23:ea:a5: d4:28:7c:ae:ba:5e:f3:44:66:de:e5:fe:c8:02:46: 23:84:2e:0f:bc:27:a1:df:ef:04:04:64:e5:ad:19: ac:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:2A:4C:A2:AD:C5:A0:3E:12:9E:1C:20:D7:C4:2F:63:27:71:0C:91 X509v3 Authority Key Identifier: keyid:DA:47:27:8A:77:BB:DF:F2:AD:9F:98:A0:11:A2:A7:A2:E7:CD:60:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:df:37:a6:bb:ac:22:f1:88:a2:34:22:0c:f5:dd:42:4c:90: 5a:a2:7e:9c:51:0a:22:a0:b1:94:76:30:8d:08:77:a9:f3:fc: c1:db:9f:af:98:59:8a:a8:04:a0:96:f4:4e:b8:4e:89:a5:67: ec:bc:50:3a:d1:5c:92:de:9b:cb:19:2c:a0:bf:fa:9e:e1:c8: 75:29:fc:fa:58:3e:dc:24:de:45:cc:fd:90:b1:a9:46:41:33: c5:bb:ea:71:39:8d:6c:bf:37:ff:fd:a4:62:53:db:96:c7:1c: be:70:06:4a:b9:04:20:69:37:13:a1:1f:44:1b:83:23:30:b8: 95:22:fd:88:e1:1b:f9:49:c1:ad:7e:22:c9:06:a6:69:83:c1: ac:7c:42:f0:51:2f:fd:5d:df:cf:8b:e4:4b:40:9d:0c:90:65: 8f:b3:6d:a0:74:e7:86:c8:33:2d:04:cb:23:47:08:14:6d:17: 92:a0:40:db:a6:08:58:de:53:e6:ea:e5:57:a3:b5:15:2c:6d: ac:87:67:13:58:48:6b:d9:0e:30:0c:90:6a:49:64:00:99:ac: 7d:67:65:f0:39:19:29:67:f7:86:71:44:75:91:b4:97:fc:99: 59:81:ee:e5:d2:85:ee:7f:23:8f:63:c2:1c:c5:e8:6b:13:74: 56:17:1b:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkzQkUxMTAvBgNVBAUTKERBNDcyNzhBNzdCQkRGRjJBRDlGOThBMDExQTJBN0Ey RTdDRDYwRDgwHhcNMjUwNzE5MDYxMDUzWhcNMjUwNzI2MDYxMDUzWjAYMRYwFAYD VQQDEw02ODdiMzZlZC0yNjAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3xqW0+CHJ2Eo+fKtP9Rfi8F4bnjJL/3htYM5CrVxXa2u16mvydIbcoL9O8QB fDxMTgtutqHld/tk5KcViInuXtR9rS0IL+SR/VSrRgfrZf9rX4Hx0WwPAK+noFR6 sm0fqCmqQWtnHZQadN5WVj6MgAkOrfAStEf6NjdaDqe4lWOowqFnLbI5TDv2Mcgp NZ++BsnuTiYIWMipz32TxrILCgV1ACxCxdI0mvPS52n+WMdycl4lucMz78hdUw42 EYx0geW+asOVsgDwtZD7RFzqA0sdBML58qE3xN8Ojokj6qXUKHyuul7zRGbe5f7I AkYjhC4PvCeh3+8EBGTlrRmsCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAEqTKKt xaA+Ep4cINfEL2MncQyRMB8GA1UdIwQYMBaAFNpHJ4p3u9/yrZ+YoBGip6LnzWDY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTNCRS83NzQxNjE0QzUy RDMxMUVGQkFFRERDMUVDNEY5QUUwMi8ya2NuaW5lNzNfS3RuNWlnRWFLbm91Zk5Z TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJrY25pbmU3M19LdG41aWdFYUtub3VmTllOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTNCRS83NzQxNjE0QzUyRDMxMUVGQkFFRERDMUVDNEY5QUUwMi8ya2NuaW5lNzNf S3RuNWlnRWFLbm91Zk5ZTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCN3zemu6wi8YiiNCIM9d1CTJBaon6cUQoioLGUdjCNCHep8/zB25+v mFmKqASglvROuE6JpWfsvFA60VyS3pvLGSygv/qe4ch1Kfz6WD7cJN5FzP2QsalG QTPFu+pxOY1svzf//aRiU9uWxxy+cAZKuQQgaTcToR9EG4MjMLiVIv2I4Rv5ScGt fiLJBqZpg8GsfELwUS/9Xd/Pi+RLQJ0MkGWPs22gdOeGyDMtBMsjRwgUbReSoEDb pghY3lPm6uVXo7UVLG2sh2cTWEhr2Q4wDJBqSWQAmax9Z2XwORkpZ/eGcUR1kbSX /JlZge7l0oXufyOPY8IcxehrE3RWFxts -----END CERTIFICATE-----Generated at Sun Jul 20 11:36:17 2025 by rpki-client