$ rpki-client -vvf rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.mft File: kJUWWXx2-jz_qxUgjArpiGY0qgM.mft (raw, json) Hash identifier: jLC6KSswrJdFnynpTF6/lH9LPTeAx6BV7FriKX/gnOY= Subject key identifier: 79:CB:00:A9:2F:E9:E7:D2:0C:B6:49:01:EF:5F:DB:68:2A:D1:13:75 Authority key identifier: 90:95:16:59:7C:76:FA:3C:FF:AB:15:20:8C:0A:E9:88:66:34:AA:03 Certificate issuer: /CN=A91847A2/serialNumber=909516597C76FA3CFFAB15208C0AE9886634AA03 Certificate serial: 0AAA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kJUWWXx2-jz_qxUgjArpiGY0qgM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.mft Manifest number: 0AA2 Signing time: Sat 31 May 2025 19:37:48 +0000 Manifest this update: Sat 31 May 2025 19:37:47 +0000 Manifest next update: Sat 07 Jun 2025 19:37:47 +0000 Files and hashes: 1: kJUWWXx2-jz_qxUgjArpiGY0qgM.crl (hash: YaAohqRWJyBMgWf71YE1R5IKVW+pDdrU+x3TGG1dDno=) 2: 54EDB8542E1811EBB4E80B1FC4F9AE02.roa (hash: 3V95dG8EwbjGC7EMndTVlVAHQWvt90W2HKQwUZ++P/E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.crl rsync://rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kJUWWXx2-jz_qxUgjArpiGY0qgM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 19:37:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2730 (0xaaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91847A2, serialNumber=909516597C76FA3CFFAB15208C0AE9886634AA03 Validity Not Before: May 31 19:37:47 2025 GMT Not After : Jun 7 19:37:47 2025 GMT Subject: CN=683b5a8c-1525 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:49:ba:c5:8a:aa:05:45:04:32:59:52:42:be: 2e:ae:c1:a2:93:ec:a7:cc:c1:2b:f1:39:16:de:91: 0f:a8:0a:25:94:1a:11:db:08:8a:7e:fb:25:83:2e: f3:66:2f:cc:15:3e:d5:ca:b5:02:33:4f:58:4e:08: 64:07:8c:c3:f5:84:50:ad:fb:fc:0f:ba:e9:5d:26: 38:96:60:83:3d:5d:18:13:21:0a:60:9a:23:07:ca: 88:8a:8b:4b:45:2d:cc:03:d9:76:67:82:58:ec:75: ac:4d:38:13:a2:5f:ac:a3:27:02:da:30:9e:aa:27: 68:45:fc:02:7f:c2:bc:5e:e6:86:25:ca:a1:26:6b: dd:9d:1a:d8:f5:37:6b:de:60:c8:d7:2f:90:f0:bb: 16:3d:5f:66:ee:03:7b:27:ae:8f:f7:60:1e:fb:ad: f1:3b:89:82:ac:9a:09:ae:ec:52:96:b5:6d:1c:46: 8f:a3:25:cf:fd:35:99:26:1c:df:db:c3:27:84:ec: 08:05:24:a0:e7:31:3d:e0:9d:ed:46:54:4b:64:a1: b0:eb:46:7a:3f:8b:06:0b:65:b0:d3:a0:f6:84:2f: 42:05:19:7c:16:67:aa:aa:f8:76:7f:85:03:b0:c0: 5d:cc:71:a7:42:d3:c1:6c:32:3a:c2:0e:2a:ae:c8: 67:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:CB:00:A9:2F:E9:E7:D2:0C:B6:49:01:EF:5F:DB:68:2A:D1:13:75 X509v3 Authority Key Identifier: keyid:90:95:16:59:7C:76:FA:3C:FF:AB:15:20:8C:0A:E9:88:66:34:AA:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kJUWWXx2-jz_qxUgjArpiGY0qgM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:2e:1e:17:6a:7b:17:2d:b5:8a:50:bd:c7:e4:ee:0c:c7:14: d6:4d:9d:2e:b4:17:6c:fd:72:d7:b2:7a:d0:62:10:40:00:c6: 37:e9:17:a9:17:5d:59:2f:a4:64:26:49:95:9d:f7:dc:91:22: 04:e4:69:6b:cf:83:80:df:24:43:e3:53:f5:17:da:83:3d:66: 72:e5:ff:a3:48:f8:d4:f1:17:e3:f4:0e:49:1c:45:56:33:01: d9:6f:7f:01:94:65:ec:66:53:3b:5d:4a:bc:c7:bd:fe:6e:3b: a1:a1:af:04:18:d6:b6:40:46:8e:c6:6b:93:61:e8:93:18:0a: 28:06:73:ab:59:a8:c1:1a:be:e3:08:a3:28:91:ec:ef:e0:26: 5c:aa:d8:b9:83:69:20:73:86:43:f9:9d:6d:c2:a8:60:46:5d: 89:77:f7:7b:61:95:3c:c6:38:19:73:08:bd:8c:0b:69:a4:29: 0c:9a:4f:b9:9b:01:d6:ac:c5:5e:62:17:03:bf:99:01:ab:27: 52:15:d8:9f:9a:4b:89:59:89:28:cd:db:0e:c2:dc:4f:5f:d5: a5:17:0c:9b:b9:d0:4d:a2:0f:ba:ad:1b:0f:81:90:b0:73:30: f4:40:83:40:82:56:09:89:8d:30:1b:ac:92:9a:55:52:56:23: df:8b:b7:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCqowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ3QTIxMTAvBgNVBAUTKDkwOTUxNjU5N0M3NkZBM0NGRkFCMTUyMDhDMEFFOTg4 NjYzNEFBMDMwHhcNMjUwNTMxMTkzNzQ3WhcNMjUwNjA3MTkzNzQ3WjAYMRYwFAYD VQQDEw02ODNiNWE4Yy0xNTI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnkm6xYqqBUUEMllSQr4ursGik+ynzMEr8TkW3pEPqAollBoR2wiKfvslgy7z Zi/MFT7VyrUCM09YTghkB4zD9YRQrfv8D7rpXSY4lmCDPV0YEyEKYJojB8qIiotL RS3MA9l2Z4JY7HWsTTgTol+soycC2jCeqidoRfwCf8K8XuaGJcqhJmvdnRrY9Tdr 3mDI1y+Q8LsWPV9m7gN7J66P92Ae+63xO4mCrJoJruxSlrVtHEaPoyXP/TWZJhzf 28MnhOwIBSSg5zE94J3tRlRLZKGw60Z6P4sGC2Ww06D2hC9CBRl8Fmeqqvh2f4UD sMBdzHGnQtPBbDI6wg4qrshnHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHnLAKkv 6efSDLZJAe9f22gq0RN1MB8GA1UdIwQYMBaAFJCVFll8dvo8/6sVIIwK6YhmNKoD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDdBMi9BRUQzRDM1RTU5 NDIxMUVBOTM2RkNFNDNDNEY5QUUwMi9rSlVXV1h4Mi1qel9xeFVnakFycGlHWTBx Z00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tKVVdXWHgyLWp6X3F4VWdqQXJwaUdZMHFnTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDdBMi9BRUQzRDM1RTU5NDIxMUVBOTM2RkNFNDNDNEY5QUUwMi9rSlVXV1h4Mi1q el9xeFVnakFycGlHWTBxZ00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6Lh4XansXLbWKUL3H5O4MxxTWTZ0utBds/XLXsnrQYhBAAMY36Rep F11ZL6RkJkmVnffckSIE5Glrz4OA3yRD41P1F9qDPWZy5f+jSPjU8Rfj9A5JHEVW MwHZb38BlGXsZlM7XUq8x73+bjuhoa8EGNa2QEaOxmuTYeiTGAooBnOrWajBGr7j CKMokezv4CZcqti5g2kgc4ZD+Z1twqhgRl2Jd/d7YZU8xjgZcwi9jAtppCkMmk+5 mwHWrMVeYhcDv5kBqydSFdifmkuJWYkozdsOwtxPX9WlFwybudBNog+6rRsPgZCw czD0QINAglYJiY0wG6ySmlVSViPfi7ew -----END CERTIFICATE-----Generated at Mon Jun 2 19:52:33 2025 by rpki-client