$ rpki-client -vvf rpki.apnic.net/member_repository/A9198553/A59BFFE4D2ED11EF8DEE5120C4F9AE02/kw3fQQEGkDvrmRnJm94BY4cGVa4.mft File: kw3fQQEGkDvrmRnJm94BY4cGVa4.mft (raw, json) Hash identifier: B/w3CLpvNW4a+HCFV5QxvHSlXlXT5T9rP2G0VcScZyM= Subject key identifier: 92:B8:DB:BA:1E:AA:70:84:FA:30:23:37:A6:17:8B:B1:D3:5D:48:F3 Authority key identifier: 93:0D:DF:41:01:06:90:3B:EB:99:19:C9:9B:DE:01:63:87:06:55:AE Certificate issuer: /CN=A9198553/serialNumber=930DDF410106903BEB9919C99BDE0163870655AE Certificate serial: 4E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kw3fQQEGkDvrmRnJm94BY4cGVa4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198553/A59BFFE4D2ED11EF8DEE5120C4F9AE02/kw3fQQEGkDvrmRnJm94BY4cGVa4.mft Manifest number: 4B Signing time: Sun 01 Jun 2025 07:06:35 +0000 Manifest this update: Sun 01 Jun 2025 07:06:35 +0000 Manifest next update: Sun 08 Jun 2025 07:06:35 +0000 Files and hashes: 1: kw3fQQEGkDvrmRnJm94BY4cGVa4.crl (hash: erFIDsNm5WCXOMj51/XfD4x1kXWpejzZJrHc9buejIQ=) 2: 5042D03ED2EF11EFBA610425C4F9AE02.roa (hash: Td45KF7s5KJjDmYTPbjMG6cwXZMtoTfhOtwsLcRRVB4=) 3: B56BC994E18A11EF94F99968C4F9AE02.roa (hash: gzNobaLbEvK3FJ3mC0CiPYdWO820L9Sv8IKQdUKftFE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198553/A59BFFE4D2ED11EF8DEE5120C4F9AE02/kw3fQQEGkDvrmRnJm94BY4cGVa4.crl rsync://rpki.apnic.net/member_repository/A9198553/A59BFFE4D2ED11EF8DEE5120C4F9AE02/kw3fQQEGkDvrmRnJm94BY4cGVa4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kw3fQQEGkDvrmRnJm94BY4cGVa4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 07:06:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78 (0x4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198553, serialNumber=930DDF410106903BEB9919C99BDE0163870655AE Validity Not Before: Jun 1 07:06:35 2025 GMT Not After : Jun 8 07:06:35 2025 GMT Subject: CN=683bfbfb-8d97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:19:c6:63:2e:c5:09:47:20:18:31:ff:9b:1e: 2f:8d:a9:3c:3c:58:3e:fa:f8:36:cd:30:2b:5f:fa: f7:e4:f2:5a:8b:f6:18:63:93:a4:a2:9b:5f:10:d5: 61:49:48:8a:09:58:c5:f8:69:f8:ac:a7:f6:68:43: 10:c0:3b:cc:69:00:4f:60:c7:31:01:bc:05:17:f2: e9:87:8f:90:02:a8:ac:93:47:8b:b7:1f:58:d8:6f: a9:ce:30:74:dc:eb:f7:87:ca:45:28:a6:1e:8d:0d: 2c:0f:f5:0a:d7:1e:a9:db:09:bd:d2:55:36:ba:14: db:60:b2:52:44:d9:23:dc:d8:fe:b5:f7:35:af:66: 5f:52:db:f3:ac:5e:1b:84:a5:e1:6b:19:b0:e1:d9: 88:a2:40:00:c3:e9:be:af:4a:3e:41:f5:f3:33:b8: 32:0e:45:fe:b1:d5:18:34:f3:0a:0f:5e:e7:6f:e3: 32:b1:e1:95:81:de:da:e1:c2:8b:2b:ff:23:80:ab: 60:61:9d:07:d6:9f:ec:2f:dd:71:b7:dc:07:67:7a: 5f:3e:63:01:36:c9:97:5a:c5:10:7f:75:50:70:17: 3e:e9:96:c2:bb:07:0b:48:aa:78:87:44:a3:1d:45: 80:7e:0b:d0:b3:73:c9:63:cb:40:a4:62:35:0b:57: c7:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:B8:DB:BA:1E:AA:70:84:FA:30:23:37:A6:17:8B:B1:D3:5D:48:F3 X509v3 Authority Key Identifier: keyid:93:0D:DF:41:01:06:90:3B:EB:99:19:C9:9B:DE:01:63:87:06:55:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198553/A59BFFE4D2ED11EF8DEE5120C4F9AE02/kw3fQQEGkDvrmRnJm94BY4cGVa4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kw3fQQEGkDvrmRnJm94BY4cGVa4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198553/A59BFFE4D2ED11EF8DEE5120C4F9AE02/kw3fQQEGkDvrmRnJm94BY4cGVa4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:af:63:1f:aa:29:94:cc:8d:ac:94:9e:f4:46:42:ac:48:34: 86:7e:9c:b4:88:46:f7:e6:dd:c3:c5:67:74:f9:41:ce:3c:36: 72:a8:63:cd:24:7e:b9:dd:1f:4d:dc:b0:f0:0c:4a:3e:c3:03: ac:6a:87:39:71:78:8b:83:a6:71:e3:06:d2:79:9e:d2:aa:ce: 1b:03:3d:f5:de:17:97:e4:60:20:62:48:af:db:ba:aa:fb:c2: df:ec:3f:97:ca:91:5b:14:b3:a2:a9:bf:23:eb:08:85:d0:50: 00:fb:1a:4a:9a:67:0f:4a:dd:9b:2f:ba:2b:40:c4:be:aa:7a: 4c:2c:37:6c:d2:31:d2:49:28:a9:1d:c4:09:40:fe:0d:39:bc: 0b:01:e0:e2:75:db:2c:0e:88:13:dd:88:5c:6a:2e:b1:d8:3c: 6d:78:26:5e:ad:41:db:27:f5:9c:90:70:88:7d:f4:c9:07:cd: b0:f0:cb:cd:91:ec:74:7d:9c:9e:4f:4e:1f:e0:82:95:d5:0d: 5b:6a:58:ee:08:e8:64:7d:58:fb:14:9b:44:09:48:08:54:6f: 4c:a0:e5:fd:d6:52:c2:cd:c9:b8:ee:2e:0b:e4:fc:24:fb:f9: a7:a5:06:d5:fa:cf:9d:55:5e:20:ee:0a:64:e8:57:da:e8:bd: 0b:7e:83:b5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 ODU1MzExMC8GA1UEBRMoOTMwRERGNDEwMTA2OTAzQkVCOTkxOUM5OUJERTAxNjM4 NzA2NTVBRTAeFw0yNTA2MDEwNzA2MzVaFw0yNTA2MDgwNzA2MzVaMBgxFjAUBgNV BAMTDTY4M2JmYmZiLThkOTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCxGcZjLsUJRyAYMf+bHi+NqTw8WD76+DbNMCtf+vfk8lqL9hhjk6Sim18Q1WFJ SIoJWMX4afisp/ZoQxDAO8xpAE9gxzEBvAUX8umHj5ACqKyTR4u3H1jYb6nOMHTc 6/eHykUoph6NDSwP9QrXHqnbCb3SVTa6FNtgslJE2SPc2P619zWvZl9S2/OsXhuE peFrGbDh2YiiQADD6b6vSj5B9fMzuDIORf6x1Rg08woPXudv4zKx4ZWB3trhwosr /yOAq2BhnQfWn+wv3XG33Adnel8+YwE2yZdaxRB/dVBwFz7plsK7BwtIqniHRKMd RYB+C9Czc8ljy0CkYjULV8dHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUkrjbuh6q cIT6MCM3pheLsdNdSPMwHwYDVR0jBBgwFoAUkw3fQQEGkDvrmRnJm94BY4cGVa4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk4NTUzL0E1OUJGRkU0RDJF RDExRUY4REVFNTEyMEM0RjlBRTAyL2t3M2ZRUUVHa0R2cm1SbkptOTRCWTRjR1Zh NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIva3czZlFRRUdrRHZybVJuSm05NEJZNGNHVmE0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk4 NTUzL0E1OUJGRkU0RDJFRDExRUY4REVFNTEyMEM0RjlBRTAyL2t3M2ZRUUVHa0R2 cm1SbkptOTRCWTRjR1ZhNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIKvYx+qKZTMjayUnvRGQqxINIZ+nLSIRvfm3cPFZ3T5Qc48NnKoY80k frndH03csPAMSj7DA6xqhzlxeIuDpnHjBtJ5ntKqzhsDPfXeF5fkYCBiSK/buqr7 wt/sP5fKkVsUs6KpvyPrCIXQUAD7GkqaZw9K3ZsvuitAxL6qekwsN2zSMdJJKKkd xAlA/g05vAsB4OJ12ywOiBPdiFxqLrHYPG14Jl6tQdsn9ZyQcIh99MkHzbDwy82R 7HR9nJ5PTh/ggpXVDVtqWO4I6GR9WPsUm0QJSAhUb0yg5f3WUsLNybjuLgvk/CT7 +aelBtX6z51VXiDuCmToV9rovQt+g7U= -----END CERTIFICATE-----Generated at Mon Jun 2 20:50:09 2025 by rpki-client