$ rpki-client -vvf rpki.apnic.net/member_repository/A9193B94/AF41BD10BCD911EF92AB3313C4F9AE02/Klc5bc5w61bAc94adgtipyKwR44.mft File: Klc5bc5w61bAc94adgtipyKwR44.mft (raw, json) Hash identifier: 8hfUAhpKYVmKGzRS4ebJO8OVjYc6VIkiDuj2gUVTPew= Subject key identifier: A8:92:C2:2B:67:BE:FF:4A:32:4F:BC:0F:32:E5:A2:C5:92:AA:B4:F0 Authority key identifier: 2A:57:39:6D:CE:70:EB:56:C0:73:DE:1A:76:0B:62:A7:22:B0:47:8E Certificate issuer: /CN=A9193B94/serialNumber=2A57396DCE70EB56C073DE1A760B62A722B0478E Certificate serial: 57 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klc5bc5w61bAc94adgtipyKwR44.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193B94/AF41BD10BCD911EF92AB3313C4F9AE02/Klc5bc5w61bAc94adgtipyKwR44.mft Manifest number: 56 Signing time: Sun 01 Jun 2025 06:56:32 +0000 Manifest this update: Sun 01 Jun 2025 06:56:31 +0000 Manifest next update: Sun 08 Jun 2025 06:56:31 +0000 Files and hashes: 1: Klc5bc5w61bAc94adgtipyKwR44.crl (hash: 1KeKGPVo7woeM3FK2vNa84CDPNBC5Vd400bFHkMjuHQ=) 2: 329C17E6BCDA11EFA2D81814C4F9AE02.roa (hash: oBdfX7J4SfTWAha0J5te4TT+MMNp1UK2JxnYA8w+Btw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193B94/AF41BD10BCD911EF92AB3313C4F9AE02/Klc5bc5w61bAc94adgtipyKwR44.crl rsync://rpki.apnic.net/member_repository/A9193B94/AF41BD10BCD911EF92AB3313C4F9AE02/Klc5bc5w61bAc94adgtipyKwR44.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klc5bc5w61bAc94adgtipyKwR44.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 06:56:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 87 (0x57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193B94, serialNumber=2A57396DCE70EB56C073DE1A760B62A722B0478E Validity Not Before: Jun 1 06:56:31 2025 GMT Not After : Jun 8 06:56:31 2025 GMT Subject: CN=683bf99f-0bce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:d1:62:fc:52:5d:a9:59:8b:4e:79:7a:e2:1f: 7e:81:ec:9d:7e:04:d6:08:95:b0:d0:ca:28:85:bc: b5:4e:31:0b:70:50:8f:0e:11:c4:b5:1f:59:a8:62: 7b:b3:cf:95:f7:d0:b0:72:28:85:e7:20:e1:33:2c: 2f:3b:0a:3d:cd:bd:c0:33:41:36:ba:57:72:39:70: 5b:1c:83:5f:f3:0b:d4:17:4a:07:0f:e9:1e:de:2d: 44:5d:40:81:7f:ff:a4:88:7f:7d:c7:f1:a4:e8:d3: 1d:78:7e:ca:67:6b:8f:a6:c1:af:cf:f7:6d:bd:9a: 57:92:ca:91:b1:78:2b:98:29:57:25:45:c1:40:3c: c7:b6:5b:1d:94:a8:bf:b6:a9:0d:51:c4:db:2c:6a: b2:3e:5a:c2:0c:a6:3d:c9:3f:b5:27:e8:90:e7:8b: ea:24:b9:dc:ab:98:ab:c3:e1:b8:f0:cc:36:e2:27: 3e:2c:68:a7:a7:f7:81:11:1a:ef:13:0b:f1:cf:61: 96:09:2c:69:eb:32:49:1d:3d:5c:07:9a:2b:b4:28: 8f:55:b9:2c:7f:d7:b5:ac:74:bf:c1:47:1f:7b:91: fe:f8:63:3b:4c:22:c5:3e:24:f9:16:be:f1:90:fa: 07:08:52:3a:10:ab:b9:7a:d7:ab:38:d4:ee:a1:3e: 79:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:92:C2:2B:67:BE:FF:4A:32:4F:BC:0F:32:E5:A2:C5:92:AA:B4:F0 X509v3 Authority Key Identifier: keyid:2A:57:39:6D:CE:70:EB:56:C0:73:DE:1A:76:0B:62:A7:22:B0:47:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193B94/AF41BD10BCD911EF92AB3313C4F9AE02/Klc5bc5w61bAc94adgtipyKwR44.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klc5bc5w61bAc94adgtipyKwR44.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193B94/AF41BD10BCD911EF92AB3313C4F9AE02/Klc5bc5w61bAc94adgtipyKwR44.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:46:b5:33:eb:d9:c8:11:69:56:b5:67:a3:b3:ed:65:1f:cd: 26:07:91:9b:cc:8b:0c:f4:4c:f4:67:56:79:8f:4e:f1:0b:7c: e9:61:84:c2:56:93:97:e1:14:67:38:36:33:e2:fd:dd:42:2e: 85:c3:b7:f5:47:fa:69:f8:58:3b:bf:1a:f0:13:17:87:ec:2b: 38:8e:aa:6c:af:ab:a4:3f:f0:36:da:35:00:94:db:db:55:d9: 20:57:0d:56:76:c6:d9:6c:9f:4d:82:0a:0c:d1:e1:72:87:c5: f2:0c:eb:7c:80:16:e5:35:17:bf:3a:a7:7f:7b:04:aa:d3:7b: 69:22:d0:17:7a:8c:6d:19:8f:42:c0:ae:f4:42:d6:38:0f:55: ff:4e:92:44:69:aa:ec:94:97:76:c4:81:3a:af:16:1e:b2:38: f5:ee:07:5a:de:3a:8f:c8:e5:af:0e:0e:0c:d7:20:42:0c:4b: bb:91:b4:dc:ad:e0:3f:f3:60:68:df:94:7f:14:25:b0:89:69: 35:83:42:6d:e8:2b:ac:5b:90:68:34:c9:a9:65:8e:39:3a:ea: 3a:8c:09:6f:53:9c:08:80:46:57:58:a3:01:39:a5:58:88:d8: a5:7b:b2:85:30:dd:34:06:3a:d3:60:34:dd:a1:99:18:71:7b: a8:38:82:46 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 M0I5NDExMC8GA1UEBRMoMkE1NzM5NkRDRTcwRUI1NkMwNzNERTFBNzYwQjYyQTcy MkIwNDc4RTAeFw0yNTA2MDEwNjU2MzFaFw0yNTA2MDgwNjU2MzFaMBgxFjAUBgNV BAMTDTY4M2JmOTlmLTBiY2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDP0WL8Ul2pWYtOeXriH36B7J1+BNYIlbDQyiiFvLVOMQtwUI8OEcS1H1moYnuz z5X30LByKIXnIOEzLC87Cj3NvcAzQTa6V3I5cFscg1/zC9QXSgcP6R7eLURdQIF/ /6SIf33H8aTo0x14fspna4+mwa/P9229mleSypGxeCuYKVclRcFAPMe2Wx2UqL+2 qQ1RxNssarI+WsIMpj3JP7Un6JDni+okudyrmKvD4bjwzDbiJz4saKen94ERGu8T C/HPYZYJLGnrMkkdPVwHmiu0KI9VuSx/17WsdL/BRx97kf74YztMIsU+JPkWvvGQ +gcIUjoQq7l616s41O6hPnlhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUqJLCK2e+ /0oyT7wPMuWixZKqtPAwHwYDVR0jBBgwFoAUKlc5bc5w61bAc94adgtipyKwR44w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkzQjk0L0FGNDFCRDEwQkNE OTExRUY5MkFCMzMxM0M0RjlBRTAyL0tsYzViYzV3NjFiQWM5NGFkZ3RpcHlLd1I0 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvS2xjNWJjNXc2MWJBYzk0YWRndGlweUt3UjQ0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkz Qjk0L0FGNDFCRDEwQkNEOTExRUY5MkFCMzMxM0M0RjlBRTAyL0tsYzViYzV3NjFi QWM5NGFkZ3RpcHlLd1I0NC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKdGtTPr2cgRaVa1Z6Oz7WUfzSYHkZvMiwz0TPRnVnmPTvELfOlhhMJW k5fhFGc4NjPi/d1CLoXDt/VH+mn4WDu/GvATF4fsKziOqmyvq6Q/8DbaNQCU29tV 2SBXDVZ2xtlsn02CCgzR4XKHxfIM63yAFuU1F786p397BKrTe2ki0Bd6jG0Zj0LA rvRC1jgPVf9OkkRpquyUl3bEgTqvFh6yOPXuB1reOo/I5a8ODgzXIEIMS7uRtNyt 4D/zYGjflH8UJbCJaTWDQm3oK6xbkGg0yalljjk66jqMCW9TnAiARldYowE5pViI 2KV7soUw3TQGOtNgNN2hmRhxe6g4gkY= -----END CERTIFICATE-----Generated at Mon Jun 2 19:39:33 2025 by rpki-client