$ rpki-client -vvf rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft File: 2kcnine73_Ktn5igEaKnoufNYNg.mft (raw, json) Hash identifier: M6Ggk+JGH95lslwXRSdpZaA3M2Cdss+j3t5Qf6Z/9qo= Subject key identifier: BE:FC:21:94:28:62:60:58:73:A4:CB:4D:02:A4:5B:23:86:D8:80:7C Authority key identifier: DA:47:27:8A:77:BB:DF:F2:AD:9F:98:A0:11:A2:A7:A2:E7:CD:60:D8 Certificate issuer: /CN=A91393BE/serialNumber=DA47278A77BBDFF2AD9F98A011A2A7A2E7CD60D8 Certificate serial: 9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft Manifest number: 9A Signing time: Sat 31 May 2025 05:51:18 +0000 Manifest this update: Sat 31 May 2025 05:51:18 +0000 Manifest next update: Sat 07 Jun 2025 05:51:18 +0000 Files and hashes: 1: 2kcnine73_Ktn5igEaKnoufNYNg.crl (hash: qAmwwc9ZPt8ovHnVc4YjSNMcr+TXTtmfR/Vy+GTasfE=) 2: 05A966C652DB11EF990CB840C4F9AE02.roa (hash: 7cyDiCG+GWMMc47d/9wE/tr8+3lmCjNtDuQzc5Jy9ng=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.crl rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:51:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 156 (0x9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91393BE, serialNumber=DA47278A77BBDFF2AD9F98A011A2A7A2E7CD60D8 Validity Not Before: May 31 05:51:18 2025 GMT Not After : Jun 7 05:51:18 2025 GMT Subject: CN=683a98d6-fafe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:32:53:ea:b2:e0:6f:24:6a:81:96:40:21:6f: 20:d0:6e:a9:78:84:b8:47:86:b1:53:01:fb:f6:bb: a1:d6:f6:3f:cc:31:5e:ae:c5:b7:3e:2d:8d:e3:ea: 05:88:1a:35:d3:01:c6:c4:da:a8:79:66:34:6b:ae: 35:a1:13:02:bb:a3:f3:5e:9b:28:55:e6:0a:d8:78: 0e:6b:e8:44:71:80:b5:f8:fb:5e:ee:3d:36:a7:39: 97:70:3c:01:44:94:65:98:7a:10:3b:4c:3b:07:0d: c1:68:cf:77:22:d4:cf:36:31:be:ea:8b:96:ec:a5: 71:a3:d5:35:55:76:7f:c6:42:4e:d6:b7:8a:ab:a6: 3f:29:b8:a7:e9:a2:04:86:4c:40:9a:b2:a0:b4:5a: 98:c2:43:9f:f7:0b:b9:45:98:7e:6a:39:df:31:47: a9:09:d6:2f:bd:c1:3f:10:58:cc:d3:cb:67:93:43: c9:cf:90:17:76:60:47:bf:40:50:25:68:e8:34:0b: 81:92:18:b9:b6:b1:4f:cb:bc:c1:e7:87:43:fb:c4: 94:0f:45:0a:f3:3b:91:74:ca:7c:46:16:21:11:03: 50:2c:25:e5:7c:14:c7:6f:de:25:f8:5e:99:51:4c: bd:eb:c7:c2:34:fe:57:fe:5e:da:dc:4c:eb:26:88: a3:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:FC:21:94:28:62:60:58:73:A4:CB:4D:02:A4:5B:23:86:D8:80:7C X509v3 Authority Key Identifier: keyid:DA:47:27:8A:77:BB:DF:F2:AD:9F:98:A0:11:A2:A7:A2:E7:CD:60:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:8f:34:58:4f:cc:63:a4:87:8f:d6:68:92:97:6a:ab:bb:89: 9d:30:3c:c5:d5:60:ad:b7:dd:99:b3:6f:da:e1:3c:82:0d:a4: de:b8:96:90:51:b4:43:47:7b:84:15:e9:4b:81:b8:77:ba:86: 7e:14:96:31:4a:b5:36:ed:f1:d8:ee:6b:b8:58:23:ef:86:d1: ea:ff:0e:ad:e1:ec:81:34:2d:5b:62:6a:9b:45:38:48:dc:6b: 21:70:cd:90:00:7b:62:4f:63:7c:c3:52:29:64:c6:b6:41:00: a5:12:ee:32:c8:ec:31:1f:2c:3d:d7:a9:96:ba:d0:74:2a:b2: 6f:0e:ae:57:aa:18:b0:e9:12:b5:91:8b:ee:35:70:e0:11:65: 0f:a2:2e:c1:50:0c:23:bb:8d:46:be:82:9d:4e:89:39:dc:c8: 61:38:ff:dc:b8:85:a9:eb:95:fc:c6:1a:2a:8c:14:28:e6:51: 87:f3:b6:75:9d:89:dd:06:47:4b:d8:d2:43:ba:24:b0:d7:ca: 4f:fe:ff:2b:9c:16:3a:f9:7d:38:bf:30:a0:b0:a5:8a:a5:22: a1:85:d7:b6:31:fa:03:09:0b:9a:0b:75:07:f5:59:b9:71:06: 8c:7b:26:dc:c1:48:8c:e8:50:73:c3:b9:24:96:bc:ff:b7:d3: fa:eb:10:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkzQkUxMTAvBgNVBAUTKERBNDcyNzhBNzdCQkRGRjJBRDlGOThBMDExQTJBN0Ey RTdDRDYwRDgwHhcNMjUwNTMxMDU1MTE4WhcNMjUwNjA3MDU1MTE4WjAYMRYwFAYD VQQDEw02ODNhOThkNi1mYWZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9TJT6rLgbyRqgZZAIW8g0G6peIS4R4axUwH79ruh1vY/zDFersW3Pi2N4+oF iBo10wHGxNqoeWY0a641oRMCu6PzXpsoVeYK2HgOa+hEcYC1+Pte7j02pzmXcDwB RJRlmHoQO0w7Bw3BaM93ItTPNjG+6ouW7KVxo9U1VXZ/xkJO1reKq6Y/Kbin6aIE hkxAmrKgtFqYwkOf9wu5RZh+ajnfMUepCdYvvcE/EFjM08tnk0PJz5AXdmBHv0BQ JWjoNAuBkhi5trFPy7zB54dD+8SUD0UK8zuRdMp8RhYhEQNQLCXlfBTHb94l+F6Z UUy968fCNP5X/l7a3EzrJoijBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL78IZQo YmBYc6TLTQKkWyOG2IB8MB8GA1UdIwQYMBaAFNpHJ4p3u9/yrZ+YoBGip6LnzWDY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTNCRS83NzQxNjE0QzUy RDMxMUVGQkFFRERDMUVDNEY5QUUwMi8ya2NuaW5lNzNfS3RuNWlnRWFLbm91Zk5Z TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJrY25pbmU3M19LdG41aWdFYUtub3VmTllOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTNCRS83NzQxNjE0QzUyRDMxMUVGQkFFRERDMUVDNEY5QUUwMi8ya2NuaW5lNzNf S3RuNWlnRWFLbm91Zk5ZTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkjzRYT8xjpIeP1miSl2qru4mdMDzF1WCtt92Zs2/a4TyCDaTeuJaQ UbRDR3uEFelLgbh3uoZ+FJYxSrU27fHY7mu4WCPvhtHq/w6t4eyBNC1bYmqbRThI 3GshcM2QAHtiT2N8w1IpZMa2QQClEu4yyOwxHyw916mWutB0KrJvDq5Xqhiw6RK1 kYvuNXDgEWUPoi7BUAwju41GvoKdTok53MhhOP/cuIWp65X8xhoqjBQo5lGH87Z1 nYndBkdL2NJDuiSw18pP/v8rnBY6+X04vzCgsKWKpSKhhde2MfoDCQuaC3UH9Vm5 cQaMeybcwUiM6FBzw7kklrz/t9P66xBN -----END CERTIFICATE-----Generated at Sat May 31 17:32:01 2025 by rpki-client