$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft File: KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft (raw, json) Hash identifier: f3nn8xRfGWGmto5Ih9pEXnZTj+wG/TrkHneZu1OFpjI= Subject key identifier: 1E:C8:7B:8B:38:35:BF:1B:04:40:0A:02:0B:42:93:34:3B:16:72:61 Authority key identifier: 2A:45:A4:1D:60:E2:F1:04:D3:DD:39:C8:6F:14:BC:59:00:88:3F:4B Certificate issuer: /CN=A91A4287/serialNumber=2A45A41D60E2F104D3DD39C86F14BC5900883F4B Certificate serial: 27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkWkHWDi8QTT3TnIbxS8WQCIP0s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft Manifest number: 26 Signing time: Sat 31 May 2025 07:21:55 +0000 Manifest this update: Sat 31 May 2025 07:21:55 +0000 Manifest next update: Sat 07 Jun 2025 07:21:55 +0000 Files and hashes: 1: KkWkHWDi8QTT3TnIbxS8WQCIP0s.crl (hash: P1ehf6Hu91iS87/iQw49AMiComC15G8neO7UVKf7Hg4=) 2: 8CC07FC0047211F0A6541526C4F9AE02.roa (hash: PgYYJ9/o38WTea0u5fJFPWCIw+78oj+kOWm1Hogb3eo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.crl rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkWkHWDi8QTT3TnIbxS8WQCIP0s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 07:21:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39 (0x27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4287, serialNumber=2A45A41D60E2F104D3DD39C86F14BC5900883F4B Validity Not Before: May 31 07:21:55 2025 GMT Not After : Jun 7 07:21:55 2025 GMT Subject: CN=683aae13-7329 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:10:8b:b0:50:0e:e5:9a:3b:8d:03:32:a6:be: 30:b9:6c:8f:d0:ac:d4:90:85:1c:fd:50:12:0f:a6: a3:9b:48:ce:99:b0:ea:e2:6b:06:86:9f:7d:d0:1d: 40:2b:87:13:2f:49:10:8d:0e:9d:fc:37:0d:b4:a1: 67:cc:14:fc:90:cb:2d:f8:9f:1f:81:0b:fa:a5:19: 3d:ff:e5:d7:02:b7:06:13:f8:b4:82:b1:70:5b:28: 3c:30:bb:2c:ba:d1:de:c8:2a:7c:0a:23:1d:fd:9c: 51:60:63:49:e4:be:c1:18:ab:ab:f5:e3:c8:1e:42: 7e:89:f0:72:8e:d3:57:55:62:b6:32:ec:cd:d7:c2: 0e:0c:95:38:94:f3:3c:fe:1c:67:c3:a8:79:9a:1c: b4:36:17:d8:b4:3d:08:d9:c5:b3:d6:8c:17:d9:f9: 93:ce:cf:4d:fc:c1:c4:76:e6:92:a3:4a:de:e3:ac: 69:45:a7:80:1a:0b:d5:cb:c8:03:a7:46:b3:c7:ea: 37:58:f8:d2:ec:c7:f3:67:ad:72:cf:78:9b:c3:20: 90:43:54:8d:96:0f:92:b2:6d:cf:eb:9e:10:e1:46: 0d:8a:8f:81:85:76:9a:9a:7b:91:c9:db:7a:c8:9c: c5:a2:a8:8a:5a:24:ae:1a:02:a6:91:f7:ac:1f:d6: 55:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:C8:7B:8B:38:35:BF:1B:04:40:0A:02:0B:42:93:34:3B:16:72:61 X509v3 Authority Key Identifier: keyid:2A:45:A4:1D:60:E2:F1:04:D3:DD:39:C8:6F:14:BC:59:00:88:3F:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkWkHWDi8QTT3TnIbxS8WQCIP0s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:33:a3:54:1d:31:ee:24:f4:b4:b6:04:6a:48:e7:00:ed:b4: bb:15:f9:90:fc:94:db:a7:62:43:be:ad:8d:d7:79:66:c0:dd: 6a:b1:24:11:cb:73:44:9c:9b:61:7c:be:58:a8:71:29:b3:e7: a4:f2:01:01:cb:eb:4c:58:4e:5c:44:f7:4d:2c:27:4c:f4:6d: ce:9b:a1:63:19:f7:17:84:02:b9:08:af:4d:aa:f9:64:83:26: c3:ab:f3:32:a9:c5:77:94:58:63:6b:53:ca:88:77:6d:4e:f9: 44:72:5a:d7:fa:4c:44:1a:2c:10:35:e4:19:23:a0:ad:1a:02: 47:8a:94:d4:25:83:20:d3:22:bd:2b:59:f5:56:65:9c:92:48: 8a:79:d9:3f:b1:4f:a6:81:30:f4:5c:78:5c:4b:f9:23:05:68: e9:ed:c7:2e:63:c3:28:f8:e0:61:81:2a:14:0b:2b:5d:da:46: 68:24:19:74:9c:8d:4b:e7:21:ac:e9:8c:00:93:d0:0d:b4:b5: ca:3e:25:72:dc:22:28:f0:b6:42:ae:56:6c:31:58:11:8c:e8: f0:e9:a9:74:4c:53:5a:3b:92:e5:4c:5e:6a:c7:6e:0d:0a:48: 9d:48:b2:30:e4:58:01:3b:57:67:64:dd:37:16:b6:d9:bf:27: 25:76:74:6f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NDI4NzExMC8GA1UEBRMoMkE0NUE0MUQ2MEUyRjEwNEQzREQzOUM4NkYxNEJDNTkw MDg4M0Y0QjAeFw0yNTA1MzEwNzIxNTVaFw0yNTA2MDcwNzIxNTVaMBgxFjAUBgNV BAMTDTY4M2FhZTEzLTczMjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLEIuwUA7lmjuNAzKmvjC5bI/QrNSQhRz9UBIPpqObSM6ZsOriawaGn33QHUAr hxMvSRCNDp38Nw20oWfMFPyQyy34nx+BC/qlGT3/5dcCtwYT+LSCsXBbKDwwuyy6 0d7IKnwKIx39nFFgY0nkvsEYq6v148geQn6J8HKO01dVYrYy7M3Xwg4MlTiU8zz+ HGfDqHmaHLQ2F9i0PQjZxbPWjBfZ+ZPOz038wcR25pKjSt7jrGlFp4AaC9XLyAOn RrPH6jdY+NLsx/NnrXLPeJvDIJBDVI2WD5Kybc/rnhDhRg2Kj4GFdpqae5HJ23rI nMWiqIpaJK4aAqaR96wf1lVnAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUHsh7izg1 vxsEQAoCC0KTNDsWcmEwHwYDVR0jBBgwFoAUKkWkHWDi8QTT3TnIbxS8WQCIP0sw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE0Mjg3LzM3Mjc4QzE2MDQ2 RDExRjBCNzdEMDM2MUM0RjlBRTAyL0trV2tIV0RpOFFUVDNUbklieFM4V1FDSVAw cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS2tXa0hXRGk4UVRUM1RuSWJ4UzhXUUNJUDBzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE0 Mjg3LzM3Mjc4QzE2MDQ2RDExRjBCNzdEMDM2MUM0RjlBRTAyL0trV2tIV0RpOFFU VDNUbklieFM4V1FDSVAwcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIMzo1QdMe4k9LS2BGpI5wDttLsV+ZD8lNunYkO+rY3XeWbA3WqxJBHL c0Scm2F8vliocSmz56TyAQHL60xYTlxE900sJ0z0bc6boWMZ9xeEArkIr02q+WSD JsOr8zKpxXeUWGNrU8qId21O+URyWtf6TEQaLBA15BkjoK0aAkeKlNQlgyDTIr0r WfVWZZySSIp52T+xT6aBMPRceFxL+SMFaOntxy5jwyj44GGBKhQLK13aRmgkGXSc jUvnIazpjACT0A20tco+JXLcIijwtkKuVmwxWBGM6PDpqXRMU1o7kuVMXmrHbg0K SJ1IsjDkWAE7V2dk3TcWttm/JyV2dG8= -----END CERTIFICATE-----Generated at Sat May 31 17:41:02 2025 by rpki-client