$ rpki-client -vvf rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft File: kuYzl488XC0IYKzbDh3VEhAOie8.mft (raw, json) Hash identifier: tCQX+ucbDqW/Yk4EMRlAsqoBM0fwwNRIu7vH8HJN0M8= Subject key identifier: 2B:01:28:56:ED:A0:0A:B1:F1:54:E4:57:FF:8A:9C:81:CC:E2:81:D3 Authority key identifier: 92:E6:33:97:8F:3C:5C:2D:08:60:AC:DB:0E:1D:D5:12:10:0E:89:EF Certificate issuer: /CN=A91A15FB/serialNumber=92E633978F3C5C2D0860ACDB0E1DD512100E89EF Certificate serial: B2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kuYzl488XC0IYKzbDh3VEhAOie8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft Manifest number: B1 Signing time: Sun 01 Jun 2025 05:42:07 +0000 Manifest this update: Sun 01 Jun 2025 05:42:07 +0000 Manifest next update: Sun 08 Jun 2025 05:42:07 +0000 Files and hashes: 1: kuYzl488XC0IYKzbDh3VEhAOie8.crl (hash: UGoI8jk8dShhNqVTzgTwTfBKkzdTDZpbq3i9RoLqoC0=) 2: 431868FE2EC811EFBB3A6574C4F9AE02.roa (hash: yYqs2C5AMpVdcomEvwsEelNt35bcShUcpatPOoqg3y0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.crl rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kuYzl488XC0IYKzbDh3VEhAOie8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 05:42:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 178 (0xb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A15FB, serialNumber=92E633978F3C5C2D0860ACDB0E1DD512100E89EF Validity Not Before: Jun 1 05:42:07 2025 GMT Not After : Jun 8 05:42:07 2025 GMT Subject: CN=683be82f-d143 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:96:65:30:b3:86:70:17:b1:d8:25:50:33:6b: b8:ee:e9:a7:5c:5c:d5:5d:01:31:f0:f5:46:8a:d3: ed:c3:41:af:c2:eb:1a:b1:17:da:65:b4:0c:b7:ab: c0:60:ad:f9:c5:39:cb:15:43:97:8a:67:a1:e6:9b: 3c:5d:60:a2:a8:0b:52:20:6d:25:4f:0d:71:0c:60: 82:34:5c:17:f6:41:2c:05:42:af:2c:eb:3f:76:f1: 9e:2a:d8:4c:b4:80:dd:2a:0f:54:8b:5a:31:22:e3: 9b:c2:99:75:26:09:67:5a:7b:01:1b:09:7f:30:1d: 50:3e:a1:aa:1b:e4:63:28:be:1a:f4:1b:e6:27:12: e7:7e:cc:74:21:d9:26:1a:4c:54:a3:61:82:ef:46: fb:64:19:66:3a:4b:d3:1c:fc:bf:83:46:f8:12:ae: ad:96:b1:20:8e:cd:8a:1d:50:ed:7b:12:5b:8e:52: f0:9f:75:f2:f2:10:6c:87:88:6f:89:f5:27:7c:50: a3:13:4c:42:f8:55:d0:4f:97:ee:20:dc:4c:6e:1c: d5:b2:81:a6:96:80:9b:60:7e:c7:39:68:0d:57:d7: f7:0d:16:9b:45:ef:1f:da:17:3a:58:20:0c:33:0a: dd:e3:ae:08:a4:fc:ce:27:75:74:69:81:5a:3d:41: e2:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:01:28:56:ED:A0:0A:B1:F1:54:E4:57:FF:8A:9C:81:CC:E2:81:D3 X509v3 Authority Key Identifier: keyid:92:E6:33:97:8F:3C:5C:2D:08:60:AC:DB:0E:1D:D5:12:10:0E:89:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kuYzl488XC0IYKzbDh3VEhAOie8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:82:d5:34:b6:d1:af:d1:20:49:38:14:24:78:8e:1e:30:dc: fd:f7:0f:de:a5:f4:46:5f:4b:ff:14:a6:80:63:9e:b7:71:fc: 0d:6d:0b:8d:26:f4:b9:45:b4:90:77:93:ec:d2:4d:85:75:34: 84:e0:a1:92:ae:fd:4a:46:0a:a8:95:c6:b7:30:8a:5e:11:cb: 93:6d:90:c5:53:04:cb:ff:fc:d8:7f:7a:e0:c9:68:3a:52:c1: 45:42:33:7f:68:08:01:48:ab:76:1a:23:21:6e:6b:35:76:79: 1d:f8:51:95:c4:cd:69:d1:86:fa:74:6a:6d:75:6d:33:29:e4: 6e:e7:01:06:d5:f4:bf:1c:e9:f8:31:67:f6:5d:40:b7:5f:c9: 21:61:63:0a:bf:3d:c8:14:98:2b:0d:4a:dd:24:5b:e6:cc:64: f4:a5:9f:99:62:94:39:a4:40:49:54:9c:3a:34:57:dc:f1:19: 95:15:47:24:38:19:e7:cf:04:d9:d5:ee:af:e9:ac:f5:18:d0: 34:ce:1f:86:39:0d:b6:6d:ce:ec:82:6d:13:d3:96:de:30:52: 56:ad:3f:cf:19:12:90:5d:93:76:7c:91:a5:ac:b8:b2:be:b5: cc:3e:0f:8d:14:fe:a5:ce:66:6e:d1:e3:7a:4e:32:45:b1:14: 1c:87:2b:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTE1RkIxMTAvBgNVBAUTKDkyRTYzMzk3OEYzQzVDMkQwODYwQUNEQjBFMURENTEy MTAwRTg5RUYwHhcNMjUwNjAxMDU0MjA3WhcNMjUwNjA4MDU0MjA3WjAYMRYwFAYD VQQDEw02ODNiZTgyZi1kMTQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArZZlMLOGcBex2CVQM2u47umnXFzVXQEx8PVGitPtw0GvwusasRfaZbQMt6vA YK35xTnLFUOXimeh5ps8XWCiqAtSIG0lTw1xDGCCNFwX9kEsBUKvLOs/dvGeKthM tIDdKg9Ui1oxIuObwpl1JglnWnsBGwl/MB1QPqGqG+RjKL4a9BvmJxLnfsx0Idkm GkxUo2GC70b7ZBlmOkvTHPy/g0b4Eq6tlrEgjs2KHVDtexJbjlLwn3Xy8hBsh4hv ifUnfFCjE0xC+FXQT5fuINxMbhzVsoGmloCbYH7HOWgNV9f3DRabRe8f2hc6WCAM Mwrd464IpPzOJ3V0aYFaPUHi4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCsBKFbt oAqx8VTkV/+KnIHM4oHTMB8GA1UdIwQYMBaAFJLmM5ePPFwtCGCs2w4d1RIQDonv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTVGQi9CRTg4QTcwQzJF QzcxMUVGODIyMDgyNzNDNEY5QUUwMi9rdVl6bDQ4OFhDMElZS3piRGgzVkVoQU9p ZTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2t1WXpsNDg4WEMwSVlLemJEaDNWRWhBT2llOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTVGQi9CRTg4QTcwQzJFQzcxMUVGODIyMDgyNzNDNEY5QUUwMi9rdVl6bDQ4OFhD MElZS3piRGgzVkVoQU9pZTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtgtU0ttGv0SBJOBQkeI4eMNz99w/epfRGX0v/FKaAY563cfwNbQuN JvS5RbSQd5Ps0k2FdTSE4KGSrv1KRgqolca3MIpeEcuTbZDFUwTL//zYf3rgyWg6 UsFFQjN/aAgBSKt2GiMhbms1dnkd+FGVxM1p0Yb6dGptdW0zKeRu5wEG1fS/HOn4 MWf2XUC3X8khYWMKvz3IFJgrDUrdJFvmzGT0pZ+ZYpQ5pEBJVJw6NFfc8RmVFUck OBnnzwTZ1e6v6az1GNA0zh+GOQ22bc7sgm0T05beMFJWrT/PGRKQXZN2fJGlrLiy vrXMPg+NFP6lzmZu0eN6TjJFsRQchyvF -----END CERTIFICATE-----Generated at Mon Jun 2 21:59:29 2025 by rpki-client