$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3A64/358C67BE9ADA11EC85713378C4F9AE02/kHuyYrVxYj40suIMYKcYwXOcw70.mft File: kHuyYrVxYj40suIMYKcYwXOcw70.mft (raw, json) Hash identifier: hAMxS9/yUjGKH9WsdST4fKM6SD13RSIRJbFq0EZB90s= Subject key identifier: 8A:58:98:DF:21:05:3A:EE:A2:C4:80:3F:F6:29:4F:79:85:D4:F4:AF Authority key identifier: 90:7B:B2:62:B5:71:62:3E:34:B2:E2:0C:60:A7:18:C1:73:9C:C3:BD Certificate issuer: /CN=A91A3A64/serialNumber=907BB262B571623E34B2E20C60A718C1739CC3BD Certificate serial: 03A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHuyYrVxYj40suIMYKcYwXOcw70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3A64/358C67BE9ADA11EC85713378C4F9AE02/kHuyYrVxYj40suIMYKcYwXOcw70.mft Manifest number: 039F Signing time: Sat 31 May 2025 00:57:48 +0000 Manifest this update: Sat 31 May 2025 00:57:47 +0000 Manifest next update: Sat 07 Jun 2025 00:57:47 +0000 Files and hashes: 1: kHuyYrVxYj40suIMYKcYwXOcw70.crl (hash: e5jVEo1zgBocx8Hvaf4y5Pt06R74S3VnWeKD3OjTMpc=) 2: 5B92665E9ADD11ECA5401423C4F9AE02.roa (hash: ys9QvzSFj3FhbpKZdlZ1B6mYP128OL/SXk3uErxC5zo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3A64/358C67BE9ADA11EC85713378C4F9AE02/kHuyYrVxYj40suIMYKcYwXOcw70.crl rsync://rpki.apnic.net/member_repository/A91A3A64/358C67BE9ADA11EC85713378C4F9AE02/kHuyYrVxYj40suIMYKcYwXOcw70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHuyYrVxYj40suIMYKcYwXOcw70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:57:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 933 (0x3a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3A64, serialNumber=907BB262B571623E34B2E20C60A718C1739CC3BD Validity Not Before: May 31 00:57:47 2025 GMT Not After : Jun 7 00:57:47 2025 GMT Subject: CN=683a540b-ffd9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:3f:93:69:00:49:98:00:01:1d:ec:31:51:12: cf:1f:45:67:47:a5:49:f7:9c:41:95:5b:5c:ef:0d: 37:78:02:d0:b9:37:84:2d:33:a4:59:45:b3:31:7b: 2e:fe:6f:f9:c6:24:35:08:b3:c9:75:68:bc:6d:97: 78:bf:e2:61:c5:65:3d:37:54:ac:bd:64:a2:4f:71: 60:bc:f4:da:c6:27:13:b3:65:6a:76:35:86:f2:07: 56:6d:38:01:54:74:43:4d:12:f2:5a:cf:de:60:31: b6:73:19:bd:7b:e6:f3:70:fa:ed:ef:da:d9:99:2e: 07:9b:12:7a:19:77:b5:a8:89:a1:fc:2b:57:37:df: 1d:55:40:57:aa:ce:6b:95:1b:af:fe:e7:88:26:ef: d8:8f:92:9f:bc:8f:d4:7a:52:f1:73:b4:ae:09:26: 5b:6e:da:30:58:7a:ea:91:88:4d:b8:27:e7:17:82: 16:87:02:25:bb:f1:4d:3c:d7:58:1e:a7:31:8a:6c: b5:b1:89:6f:3a:c6:15:08:cb:c7:98:d7:1c:d0:9d: c4:59:5d:1f:85:bb:b2:53:1e:55:f0:85:15:77:1b: 23:ef:60:4f:f0:15:d7:56:b3:6c:03:0b:e8:6d:9c: 01:ba:9c:05:a0:b3:58:47:5e:c0:e1:42:70:1f:c8: 06:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:58:98:DF:21:05:3A:EE:A2:C4:80:3F:F6:29:4F:79:85:D4:F4:AF X509v3 Authority Key Identifier: keyid:90:7B:B2:62:B5:71:62:3E:34:B2:E2:0C:60:A7:18:C1:73:9C:C3:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3A64/358C67BE9ADA11EC85713378C4F9AE02/kHuyYrVxYj40suIMYKcYwXOcw70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHuyYrVxYj40suIMYKcYwXOcw70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3A64/358C67BE9ADA11EC85713378C4F9AE02/kHuyYrVxYj40suIMYKcYwXOcw70.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:dd:fb:a7:ad:6a:a4:bd:bd:2f:bc:13:1e:50:37:10:c5:8a: a4:bd:45:f1:8f:fc:88:bf:e5:f7:94:f7:f3:76:43:f1:06:00: 6f:5b:4a:c1:ca:7f:75:0a:da:14:77:e2:3d:00:88:86:ad:06: 94:b0:a0:cf:08:26:4c:74:5c:38:3c:d6:b8:bc:aa:43:3b:e4: 56:f2:1d:0b:67:57:ed:d1:77:4b:0a:28:0b:7a:02:2e:67:11: 17:2d:b4:c0:79:d6:53:90:46:3e:5f:89:17:97:75:16:c9:56: 5c:16:20:d6:83:0a:a8:31:72:9e:5d:4f:97:db:0a:21:98:1f: e7:cf:18:eb:de:5b:87:81:28:02:24:05:2f:1f:be:d0:6f:6b: f3:a0:8a:c6:56:c6:f3:40:dd:29:27:75:b1:75:d8:a3:9a:16: 3f:67:2f:c9:19:45:94:f2:c3:87:5e:76:8f:46:d6:53:b7:9f: bb:c7:3d:b7:6f:ce:3f:ce:7e:ee:82:1b:0b:d3:4e:45:07:10: 4d:c1:1c:40:9d:56:62:05:d0:66:64:d0:22:d7:65:cd:c9:ec: 8d:05:ba:18:0c:6b:ca:d1:a4:bf:7d:2a:76:85:47:74:d8:a7: 0d:c3:2b:0f:d8:72:db:cf:f1:1f:99:f0:d8:fa:b4:ff:df:20: 7e:d1:0e:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNBNjQxMTAvBgNVBAUTKDkwN0JCMjYyQjU3MTYyM0UzNEIyRTIwQzYwQTcxOEMx NzM5Q0MzQkQwHhcNMjUwNTMxMDA1NzQ3WhcNMjUwNjA3MDA1NzQ3WjAYMRYwFAYD VQQDEw02ODNhNTQwYi1mZmQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyz+TaQBJmAABHewxURLPH0VnR6VJ95xBlVtc7w03eALQuTeELTOkWUWzMXsu /m/5xiQ1CLPJdWi8bZd4v+JhxWU9N1SsvWSiT3FgvPTaxicTs2VqdjWG8gdWbTgB VHRDTRLyWs/eYDG2cxm9e+bzcPrt79rZmS4HmxJ6GXe1qImh/CtXN98dVUBXqs5r lRuv/ueIJu/Yj5KfvI/UelLxc7SuCSZbbtowWHrqkYhNuCfnF4IWhwIlu/FNPNdY Hqcximy1sYlvOsYVCMvHmNcc0J3EWV0fhbuyUx5V8IUVdxsj72BP8BXXVrNsAwvo bZwBupwFoLNYR17A4UJwH8gGFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIpYmN8h BTruosSAP/YpT3mF1PSvMB8GA1UdIwQYMBaAFJB7smK1cWI+NLLiDGCnGMFznMO9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0E2NC8zNThDNjdCRTlB REExMUVDODU3MTMzNzhDNEY5QUUwMi9rSHV5WXJWeFlqNDBzdUlNWUtjWXdYT2N3 NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tIdXlZclZ4WWo0MHN1SU1ZS2NZd1hPY3c3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB M0E2NC8zNThDNjdCRTlBREExMUVDODU3MTMzNzhDNEY5QUUwMi9rSHV5WXJWeFlq NDBzdUlNWUtjWXdYT2N3NzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCC3funrWqkvb0vvBMeUDcQxYqkvUXxj/yIv+X3lPfzdkPxBgBvW0rB yn91CtoUd+I9AIiGrQaUsKDPCCZMdFw4PNa4vKpDO+RW8h0LZ1ft0XdLCigLegIu ZxEXLbTAedZTkEY+X4kXl3UWyVZcFiDWgwqoMXKeXU+X2wohmB/nzxjr3luHgSgC JAUvH77Qb2vzoIrGVsbzQN0pJ3WxddijmhY/Zy/JGUWU8sOHXnaPRtZTt5+7xz23 b84/zn7ughsL005FBxBNwRxAnVZiBdBmZNAi12XNyeyNBboYDGvK0aS/fSp2hUd0 2KcNwysP2HLbz/EfmfDY+rT/3yB+0Q4N -----END CERTIFICATE-----Generated at Sat May 31 17:53:10 2025 by rpki-client