$ rpki-client -vvf rpki.apnic.net/member_repository/A91608B2/C95A49AE4A5211F0989D700FC4F9AE02/KcmzN9Z7DxREgXmLTVsNc9eIrys.mft File: KcmzN9Z7DxREgXmLTVsNc9eIrys.mft (raw, json) Hash identifier: Wzue7U1694HsqgfV0LDGdTWyhM0iA6Q6GkWk0QQnlug= Subject key identifier: 64:47:5E:24:75:FD:4C:E0:C1:DC:00:A8:C6:31:90:AF:F5:8A:E7:0A Authority key identifier: 29:C9:B3:37:D6:7B:0F:14:44:81:79:8B:4D:5B:0D:73:D7:88:AF:2B Certificate issuer: /CN=A91608B2/serialNumber=29C9B337D67B0F144481798B4D5B0D73D788AF2B Certificate serial: 0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KcmzN9Z7DxREgXmLTVsNc9eIrys.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91608B2/C95A49AE4A5211F0989D700FC4F9AE02/KcmzN9Z7DxREgXmLTVsNc9eIrys.mft Manifest number: 0C Signing time: Tue 01 Jul 2025 08:56:12 +0000 Manifest this update: Tue 01 Jul 2025 08:56:11 +0000 Manifest next update: Tue 08 Jul 2025 08:56:11 +0000 Files and hashes: 1: KcmzN9Z7DxREgXmLTVsNc9eIrys.crl (hash: +WYM6y4kPVf7QNQoygdHlCpkANaZ6/JvEsc9Y4dyqdA=) 2: 13B4125A4A5311F08B06EF0FC4F9AE02.roa (hash: JRzGJdFSse2irDcL+W7kuHv+w+d8AeO+g8YTYnBtHyU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91608B2/C95A49AE4A5211F0989D700FC4F9AE02/KcmzN9Z7DxREgXmLTVsNc9eIrys.crl rsync://rpki.apnic.net/member_repository/A91608B2/C95A49AE4A5211F0989D700FC4F9AE02/KcmzN9Z7DxREgXmLTVsNc9eIrys.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KcmzN9Z7DxREgXmLTVsNc9eIrys.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 08:56:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13 (0xd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91608B2, serialNumber=29C9B337D67B0F144481798B4D5B0D73D788AF2B Validity Not Before: Jul 1 08:56:11 2025 GMT Not After : Jul 8 08:56:11 2025 GMT Subject: CN=6863a2ab-46d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:68:73:7a:4a:2b:45:e6:ed:67:17:71:44:7e: 0a:7f:6b:65:84:8c:52:83:b7:3a:75:82:ac:e6:4f: 82:f5:23:44:f7:9a:17:ba:b6:77:03:64:7e:3b:ce: 03:3d:99:cc:65:0f:97:80:0a:62:6e:c1:45:45:65: 35:82:6e:79:a8:73:88:b9:58:d4:7d:ae:ac:75:60: 18:4f:0f:b9:48:79:66:fd:4d:26:ed:3a:fe:84:1d: 47:dd:bf:bd:0b:b5:74:80:8b:3d:ed:55:04:ef:73: 84:3f:d4:2f:61:d7:8c:01:7d:06:82:eb:67:7c:0e: 5c:05:3f:d1:d7:5a:b5:e2:ae:39:6b:32:82:00:e8: f8:6d:8f:fe:a3:cd:e3:ad:d2:dc:46:22:ab:db:c0: 55:b7:2c:bc:1a:8b:2f:82:04:71:bf:df:ff:29:2f: 6b:a3:a0:4a:96:64:34:31:fa:f7:8d:00:ef:5a:e0: ea:e6:7a:60:40:a8:3b:25:0c:dc:19:14:20:4f:22: 53:45:e8:0e:dc:7a:1a:2d:bf:37:75:02:46:10:8c: 61:0d:5b:48:25:89:af:5f:2b:03:3e:21:44:db:04: f1:0e:6a:ad:33:85:f3:5f:21:73:e1:ec:c6:79:a7: dd:75:38:04:49:36:53:49:50:44:e4:91:ac:44:49: 74:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:47:5E:24:75:FD:4C:E0:C1:DC:00:A8:C6:31:90:AF:F5:8A:E7:0A X509v3 Authority Key Identifier: keyid:29:C9:B3:37:D6:7B:0F:14:44:81:79:8B:4D:5B:0D:73:D7:88:AF:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91608B2/C95A49AE4A5211F0989D700FC4F9AE02/KcmzN9Z7DxREgXmLTVsNc9eIrys.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KcmzN9Z7DxREgXmLTVsNc9eIrys.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91608B2/C95A49AE4A5211F0989D700FC4F9AE02/KcmzN9Z7DxREgXmLTVsNc9eIrys.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:2e:77:86:2c:bd:42:57:d9:17:e1:3a:0d:c0:88:16:bc:f2: 5c:6e:8e:54:a4:d3:3a:82:00:e4:5a:af:2b:08:8d:44:7c:d6: 47:c6:21:bc:e2:8c:a7:95:19:27:09:01:07:7f:c5:df:82:d2: 6d:cc:25:f2:b2:41:27:b6:74:39:45:48:6c:ab:06:19:ac:39: 8e:07:32:be:c6:04:1f:e1:78:56:be:2b:3e:fa:11:eb:87:7e: f4:ab:3b:69:96:d6:0b:29:e5:66:13:e2:47:d2:b5:b9:64:19: 0a:10:26:49:da:9d:77:5b:30:ce:d8:be:7b:14:68:aa:c0:f8: c5:52:d0:13:51:96:69:11:e6:2f:6a:dd:54:6f:cb:a0:ce:87: a7:c3:07:7c:f3:63:55:2a:c9:85:d5:d8:42:23:1e:70:37:d1: 9a:1d:5c:60:4b:80:a0:0a:3a:10:60:b5:c2:18:8c:b8:27:13: 95:be:da:ba:3a:8f:e3:2c:1c:ee:76:23:b3:d1:ed:5c:bc:52: 3f:64:ae:1a:df:0d:93:65:92:7e:a7:90:c8:06:d6:73:82:71: 11:b6:87:55:d6:c4:6e:ef:1d:9d:9c:8f:70:75:7d:11:19:03: f2:16:ce:ff:ca:f2:fb:dc:8b:c5:c0:b8:bc:a0:7a:b4:15:d1: 1f:24:59:11 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MDhCMjExMC8GA1UEBRMoMjlDOUIzMzdENjdCMEYxNDQ0ODE3OThCNEQ1QjBENzNE Nzg4QUYyQjAeFw0yNTA3MDEwODU2MTFaFw0yNTA3MDgwODU2MTFaMBgxFjAUBgNV BAMTDTY4NjNhMmFiLTQ2ZDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCqaHN6SitF5u1nF3FEfgp/a2WEjFKDtzp1gqzmT4L1I0T3mhe6tncDZH47zgM9 mcxlD5eACmJuwUVFZTWCbnmoc4i5WNR9rqx1YBhPD7lIeWb9TSbtOv6EHUfdv70L tXSAiz3tVQTvc4Q/1C9h14wBfQaC62d8DlwFP9HXWrXirjlrMoIA6Phtj/6jzeOt 0txGIqvbwFW3LLwaiy+CBHG/3/8pL2ujoEqWZDQx+veNAO9a4OrmemBAqDslDNwZ FCBPIlNF6A7cehotvzd1AkYQjGENW0glia9fKwM+IUTbBPEOaq0zhfNfIXPh7MZ5 p911OARJNlNJUETkkaxESXSFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUZEdeJHX9 TODB3ACoxjGQr/WK5wowHwYDVR0jBBgwFoAUKcmzN9Z7DxREgXmLTVsNc9eIrysw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYwOEIyL0M5NUE0OUFFNEE1 MjExRjA5ODlENzAwRkM0RjlBRTAyL0tjbXpOOVo3RHhSRWdYbUxUVnNOYzllSXJ5 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS2Ntek45WjdEeFJFZ1htTFRWc05jOWVJcnlzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYw OEIyL0M5NUE0OUFFNEE1MjExRjA5ODlENzAwRkM0RjlBRTAyL0tjbXpOOVo3RHhS RWdYbUxUVnNOYzllSXJ5cy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADoud4YsvUJX2RfhOg3AiBa88lxujlSk0zqCAORarysIjUR81kfGIbzi jKeVGScJAQd/xd+C0m3MJfKyQSe2dDlFSGyrBhmsOY4HMr7GBB/heFa+Kz76EeuH fvSrO2mW1gsp5WYT4kfStblkGQoQJknanXdbMM7YvnsUaKrA+MVS0BNRlmkR5i9q 3VRvy6DOh6fDB3zzY1UqyYXV2EIjHnA30ZodXGBLgKAKOhBgtcIYjLgnE5W+2ro6 j+MsHO52I7PR7Vy8Uj9krhrfDZNlkn6nkMgG1nOCcRG2h1XWxG7vHZ2cj3B1fREZ A/IWzv/K8vvci8XAuLygerQV0R8kWRE= -----END CERTIFICATE-----Generated at Tue Jul 1 18:37:08 2025 by rpki-client