$ rpki-client -vvf rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft File: knWZPcnEM_JdNYCsd-OV0GaWSD0.mft (raw, json) Hash identifier: 28z/hfu/O01piCtiaa9wyz6PIj6F0fClFJ5cmWNhzXY= Subject key identifier: A7:CB:F1:21:E7:50:59:DF:14:1E:F2:6D:B1:E9:4B:80:F6:3C:84:57 Authority key identifier: 92:75:99:3D:C9:C4:33:F2:5D:35:80:AC:77:E3:95:D0:66:96:48:3D Certificate issuer: /CN=A91276A3/serialNumber=9275993DC9C433F25D3580AC77E395D06696483D Certificate serial: 06E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft Manifest number: 06E0 Signing time: Fri 30 May 2025 22:12:35 +0000 Manifest this update: Fri 30 May 2025 22:12:34 +0000 Manifest next update: Fri 06 Jun 2025 22:12:34 +0000 Files and hashes: 1: knWZPcnEM_JdNYCsd-OV0GaWSD0.crl (hash: 2MNgk5qH3w9M0phtD3mK9o3K7tmYnLamXmdozwZMVd8=) 2: 57BAE77C517D11EB8949D438C4F9AE02.roa (hash: W8Pbilr3L/+CfQDONlD1s3S+g13SAXBwRt28BIl7t2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.crl rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 22:12:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1769 (0x6e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91276A3, serialNumber=9275993DC9C433F25D3580AC77E395D06696483D Validity Not Before: May 30 22:12:34 2025 GMT Not After : Jun 6 22:12:34 2025 GMT Subject: CN=683a2d52-60df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:1f:14:49:ca:0a:1a:e1:1a:e4:82:bb:aa:6d: 40:42:cc:33:2b:3f:51:c2:8d:7e:53:0d:26:e9:94: 69:d6:74:32:cd:91:71:f2:df:d1:2b:96:ef:08:16: 12:4f:de:c8:79:0c:9f:82:9b:50:32:5f:34:d1:47: f9:82:54:c7:0e:f8:3b:69:1d:03:63:87:90:92:10: c5:f6:e5:71:e1:6e:6d:d7:6b:7d:a0:22:a5:5f:91: 3a:fa:b0:06:34:c8:51:20:31:15:d0:4d:97:8a:71: 1d:26:f9:b8:5a:6b:02:ac:8f:53:94:85:f4:ee:6b: 2d:2d:23:e6:95:59:1f:1a:15:d3:e3:47:68:91:64: bc:8d:69:bb:ea:60:ff:bb:cc:9b:2b:17:46:35:26: 62:f4:79:cd:f2:9e:2b:5b:a6:40:b9:4c:13:11:ca: 03:f8:84:c6:e5:a2:b4:9e:a7:83:1c:67:88:6f:26: 95:a3:30:a2:ed:43:31:22:41:3e:2d:69:72:2e:92: 5e:b5:99:da:d2:3f:c3:f2:e2:ed:af:4e:c7:87:a9: c9:97:d4:88:ec:be:71:75:9e:e7:d3:3f:29:3c:d5: 62:4a:68:8f:40:ab:29:2d:3d:0c:d1:45:57:5b:f6: fa:3a:59:b1:36:13:29:1d:06:22:c0:f1:12:55:64: b4:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:CB:F1:21:E7:50:59:DF:14:1E:F2:6D:B1:E9:4B:80:F6:3C:84:57 X509v3 Authority Key Identifier: keyid:92:75:99:3D:C9:C4:33:F2:5D:35:80:AC:77:E3:95:D0:66:96:48:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:c8:73:2f:81:d8:bb:e7:3a:1a:a9:fc:71:bf:d3:0e:c3:f3: ab:55:f1:1b:43:58:37:79:e3:1b:4d:32:47:20:b0:ca:e0:83: b5:d1:4a:5d:fd:a0:06:80:16:c0:54:73:e4:72:ff:19:7d:78: cc:a2:3a:2d:0a:4c:f5:53:90:b6:ef:a9:cf:05:97:33:bc:fe: 62:f5:fc:cc:cc:7f:6c:45:38:58:48:7d:96:77:0a:db:f4:44: 00:a4:52:3b:f9:2f:91:7e:8b:85:bb:c1:63:c7:02:f4:06:0b: 91:c5:ca:16:eb:c0:d5:5a:d0:ae:87:92:39:fd:a7:be:c6:1f: 4b:7d:9e:39:6a:39:f8:c1:31:a1:ad:71:04:8b:f5:2d:4e:ae: 46:8e:99:f7:47:c3:bf:e5:97:8e:5e:96:3d:3f:36:ee:d2:97: cf:65:94:a5:58:ae:06:07:1c:59:ca:e9:3a:f4:df:a6:9f:53: 1d:ba:ca:57:a6:f5:24:8e:0d:d7:46:9d:f4:1d:dd:1d:2a:d4: 91:5c:4c:f3:96:0b:49:56:1d:44:c2:91:ae:e5:2e:80:5f:14: f3:b4:52:5c:18:76:25:ad:29:59:d8:a1:39:0e:61:9c:7c:2a: d2:00:40:91:99:eb:f1:33:ae:93:40:a6:62:a4:b6:c0:18:cb: a5:7a:54:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBukwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc2QTMxMTAvBgNVBAUTKDkyNzU5OTNEQzlDNDMzRjI1RDM1ODBBQzc3RTM5NUQw NjY5NjQ4M0QwHhcNMjUwNTMwMjIxMjM0WhcNMjUwNjA2MjIxMjM0WjAYMRYwFAYD VQQDEw02ODNhMmQ1Mi02MGRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3x8UScoKGuEa5IK7qm1AQswzKz9Rwo1+Uw0m6ZRp1nQyzZFx8t/RK5bvCBYS T97IeQyfgptQMl800Uf5glTHDvg7aR0DY4eQkhDF9uVx4W5t12t9oCKlX5E6+rAG NMhRIDEV0E2XinEdJvm4WmsCrI9TlIX07mstLSPmlVkfGhXT40dokWS8jWm76mD/ u8ybKxdGNSZi9HnN8p4rW6ZAuUwTEcoD+ITG5aK0nqeDHGeIbyaVozCi7UMxIkE+ LWlyLpJetZna0j/D8uLtr07Hh6nJl9SI7L5xdZ7n0z8pPNViSmiPQKspLT0M0UVX W/b6OlmxNhMpHQYiwPESVWS0YQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKfL8SHn UFnfFB7ybbHpS4D2PIRXMB8GA1UdIwQYMBaAFJJ1mT3JxDPyXTWArHfjldBmlkg9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzZBMy84MzIwQkQxQzUx N0IxMUVCODZDMkQ3MzZDNEY5QUUwMi9rbldaUGNuRU1fSmROWUNzZC1PVjBHYVdT RDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tuV1pQY25FTV9KZE5ZQ3NkLU9WMEdhV1NEMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzZBMy84MzIwQkQxQzUxN0IxMUVCODZDMkQ3MzZDNEY5QUUwMi9rbldaUGNuRU1f SmROWUNzZC1PVjBHYVdTRDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/yHMvgdi75zoaqfxxv9MOw/OrVfEbQ1g3eeMbTTJHILDK4IO10Upd /aAGgBbAVHPkcv8ZfXjMojotCkz1U5C276nPBZczvP5i9fzMzH9sRThYSH2Wdwrb 9EQApFI7+S+RfouFu8FjxwL0BguRxcoW68DVWtCuh5I5/ae+xh9LfZ45ajn4wTGh rXEEi/UtTq5Gjpn3R8O/5ZeOXpY9Pzbu0pfPZZSlWK4GBxxZyuk69N+mn1MduspX pvUkjg3XRp30Hd0dKtSRXEzzlgtJVh1EwpGu5S6AXxTztFJcGHYlrSlZ2KE5DmGc fCrSAECRmevxM66TQKZipLbAGMulelTm -----END CERTIFICATE-----Generated at Sat May 31 17:07:44 2025 by rpki-client